nineke

sorry maar ik heb daar zeker alle begrip voor, wat alleen mij stoort, allé, hoe zou ik het zeggen, een beetje ongeduldig maakt, is het feit dat ik nu telkens die melding krijg van beveiligde site's enz, dat is een deel dat ik nog niet heb gehad, maar ik zal mij geduld wat bijschroeven zeker, doe rustig zou ik zeggen, groetjes

wil je mij vlug iets laten weten, want is erg vervelend telkens moet ik toestemming geven om verder te doen, bij elke opening van wat dan ook komt dit nu te voorschijn,

ComboFix 14-06-19.01 - Jeannine 21/06/2014 9:49.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.3000.1580 [GMT 2:00] Gestart vanuit: c:\users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5J09A03M\ComboFix.exe AV: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} SP: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\IWONGEI\Installr\1.bin c:\windows\security\Database\tmp.edb . . (((((((((((((((((((( Bestanden Gemaakt van 2014-05-21 to 2014-06-21 )))))))))))))))))))))))))))))) . . 2014-06-21 08:07 . 2014-06-21 08:07 -------- d-----w- c:\users\Public\AppData\Local\temp 2014-06-21 08:07 . 2014-06-21 08:07 -------- d-----w- c:\users\Default\AppData\Local\temp 2014-06-17 20:08 . 2014-06-17 20:29 -------- d-----w- c:\program files\Malwarebytes Anti-Malware 2014-06-17 20:08 . 2014-05-12 05:26 51928 ----a-w- c:\windows\system32\drivers\mwac.sys 2014-06-17 20:08 . 2014-05-12 05:25 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys 2014-06-17 11:34 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll 2014-06-17 11:33 . 2014-06-17 12:11 -------- d-----w- C:\AdwCleaner 2014-06-16 20:40 . 2014-06-16 21:15 -------- d-----w- C:\zoek_backup 2014-06-16 20:04 . 2014-06-16 20:04 -------- d-----w- C:\rsit 2014-06-12 07:31 . 2014-04-26 16:01 502784 ----a-w- c:\windows\system32\usp10.dll 2014-06-12 07:31 . 2014-04-05 02:42 905664 ----a-w- c:\windows\system32\drivers\tcpip.sys 2014-06-12 07:31 . 2014-03-10 01:22 1401344 ----a-w- c:\windows\system32\msxml6.dll 2014-06-12 07:31 . 2014-03-10 01:22 1248768 ----a-w- c:\windows\system32\msxml3.dll 2014-05-27 09:30 . 2014-04-14 18:13 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2014-06-21 07:33 . 2011-02-21 14:50 110296 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2014-05-14 11:59 . 2013-03-25 09:29 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2014-05-14 11:59 . 2013-03-25 09:29 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2014-05-13 12:19 . 2014-05-13 12:19 192280 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2014-05-13 12:17 . 2014-05-13 12:17 237848 ----a-w- c:\windows\system32\drivers\avglogx.sys 2014-05-13 12:17 . 2014-05-13 12:17 210200 ----a-w- c:\windows\system32\drivers\avgtdix.sys 2014-05-13 12:17 . 2014-05-13 12:17 122136 ----a-w- c:\windows\system32\drivers\avgdiskx.sys 2014-05-13 12:17 . 2014-05-13 12:17 149784 ----a-w- c:\windows\system32\drivers\avgidshx.sys 2014-05-13 12:17 . 2014-05-13 12:17 107288 ----a-w- c:\windows\system32\drivers\avgmfx86.sys 2014-05-13 12:09 . 2014-05-13 12:09 198936 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys 2014-05-13 12:04 . 2014-05-13 12:04 27416 ----a-w- c:\windows\system32\drivers\avgrkx86.sys 2014-05-13 12:04 . 2014-05-13 12:04 21272 ----a-w- c:\windows\system32\drivers\avgidsshimx.sys 2014-05-12 05:25 . 2011-02-21 14:50 23256 ----a-w- c:\windows\system32\drivers\mbam.sys 2014-04-28 09:50 . 2012-08-29 14:45 42272 ----a-w- c:\windows\system32\drivers\avgtpx86.sys 2014-03-31 20:46 . 2014-03-31 20:46 130712 ----a-w- c:\windows\system32\MSSTDFMT.DLL 2014-03-31 20:46 . 2014-03-31 20:46 1070232 ----a-w- c:\windows\system32\MSCOMCTL.OCX . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SmpcSys"="c:\program files\PACKARD BELL\SetUpMyPC\SmpSys.exe" [2008-07-07 1038136] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-12-30 68856] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2014-02-10 20918432] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SmpcSys"="c:\program files\Packard Bell\SetupMyPC\SmpSys.exe" [2008-07-07 1038136] "AVG_UI"="c:\program files\AVG\AVG2014\avgui.exe" [2014-05-13 5181456] "RtHDVCpl"="RtHDVCpl.exe" [2008-08-04 6265376] "Skytel"="Skytel.exe" [2008-08-04 1833504] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336] . c:\users\Jeannine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2013-04-04 21:06 958576 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2013-05-08 21:20 41056 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search] 2010-06-29 12:38 30192 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hiyo] 2010-06-21 20:54 255344 ----a-w- c:\program files\HiYo\Bin\HiYo.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds] 2008-08-12 03:04 170520 ----a-w- c:\windows\System32\hkcmd.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray] 2008-08-12 03:05 150040 ----a-w- c:\windows\System32\igfxtray.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] 2008-04-28 16:16 1828136 ----a-w- c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence] 2008-08-12 03:04 145944 ----a-w- c:\windows\System32\igfxpers.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl] 2008-08-04 09:16 6265376 ----a-w- c:\windows\RtHDVCpl.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel] 2008-08-04 09:17 1833504 ----a-w- c:\windows\SkyTel.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmpcSys] 2008-07-07 15:26 1038136 ----a-w- c:\program files\PACKARD BELL\SetUpMyPC\SmpSys.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2009-12-30 12:49 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh] 2007-06-08 02:53 894512 ----a-w- c:\program files\Synaptics\SynTP\SynTPEnh.exe . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "HP Software Update"=c:\program files\Hp\HP Software Update\HPWuSchd2.exe "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - 84398638 *NewlyCreated* - MBAMSWISSARMY *Deregistered* - 84398638 . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs ezSharedSvc . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2014-06-12 16:44 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe . Inhoud van de 'Gedeelde Taken' map . 2014-06-21 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-25 11:59] . 2014-06-20 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1099087289-2413760901-755791893-1000Core.job - c:\users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-12-06 20:43] . 2014-06-21 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1099087289-2413760901-755791893-1000UA.job - c:\users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-12-06 20:43] . 2014-06-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 12:45] . 2014-06-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 12:45] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ mStart Page = IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 Trusted Zone: dexia.be\www TCP: DhcpNameServer = 192.168.1.1 DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} - hxxp://assets.photobox.com/assets/aurigma/ImageUploader5.cab?20101221064513 DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} - hxxp://foto.hema.be/ips-opdata/layout/hema/objects/jordan.cab DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game.zylom.com/activex/zylomgamesplayer.cab . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-10 - (no file) SafeBoot-WudfPf SafeBoot-WudfRd . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2014-06-21 10:07 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2014-06-21 10:11:04 ComboFix-quarantined-files.txt 2014-06-21 08:11 ComboFix2.txt 2011-02-28 10:45 ComboFix3.txt 2011-02-23 10:17 . Pre-Run: 210.153.533.440 bytes beschikbaar Post-Run: 210.154.094.592 bytes beschikbaar . - - End Of File - - 7CDA90E25A9B49BB9BCA682B6F00B237 7BA4C7EA1EF33A92F5F01BE63EDACB6A ik krijg nu wel telkens een bleke achtergrond en er staat dat ik een beveiligde internetverbinding ga betreden ik moet ja of annuleren drukken, heb ik iets verkeerd gedaan ? groetjes

Het spijt me heel erg, maar die melding blijft, ik kan dus live.com niet opstarten, via de start knop, ook geen facebook bv, naast die site's staat normaal een gekleurd tekentje, wel bij die staat er een blanco, begrijp er ook niets van, en moet ik de malwayre laten staan ? dat start telkens op, kan ik nog iets doen ? groetjes - - - Updated - - - Wil ook nog meegeven dat de pc heel traag is bij het openen van site's, blijft ook soms hangen,

ik kan de log niet plaatsen, niet kopiëren, nochtans kan ik hem selecteren maar er is niets gevonden volgens de log no treats foud staat er, wat moet ik nu nog doen, amai dat is nogal een bevalling zeg

na wat moeite is het toch gelukt,

sorry maar hoe doe ik dit best ? want gewoon kopiëren lukt wel niet

wat moet ik hiermee doen met die quarantaine, moet ik verder nog iets doen ?

1. in quarantaine staat er van alles 2. hoe komt het nu dat ik geen bericht meer ontvang van de reacties die hier geplaatst worden door U, anders krijg ik dat in mijn mailbox, allemaal raar, toch ???

is de hierboven reactie goed ontvangen ? is het dit dat je moest ontvangen ? groetjes

Sorry hoor maar heb je berichtje niet gezien, heMalwarebytes Anti-Malware www.malwarebytes.org Protection, 17/06/2014 22:09:37, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Starting, Protection, 17/06/2014 22:09:37, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Started, Protection, 17/06/2014 22:09:37, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Starting, Protection, 17/06/2014 22:09:41, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Started, Protection, 17/06/2014 22:27:17, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Stopping, Protection, 17/06/2014 22:27:18, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Stopped, Protection, 17/06/2014 22:27:18, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Stopping, Protection, 17/06/2014 22:27:21, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Stopped, Protection, 17/06/2014 22:28:04, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Starting, Protection, 17/06/2014 22:28:04, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Started, Protection, 17/06/2014 22:28:04, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Starting, Protection, 17/06/2014 22:28:09, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Started, Update, 17/06/2014 22:28:23, SYSTEM, PC_VAN_JEANNINE, Manual, Rootkit Database, 2014.2.20.1, 2014.6.2.1, Update, 17/06/2014 22:28:52, SYSTEM, PC_VAN_JEANNINE, Manual, Malware Database, 2014.3.4.9, 2014.6.17.11, Update, 17/06/2014 22:29:06, SYSTEM, PC_VAN_JEANNINE, Manual, program, 2.0.0.1000, 2.0.2.1012, Protection, 17/06/2014 22:29:39, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Stopping, Protection, 17/06/2014 22:29:40, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Stopped, Protection, 17/06/2014 22:29:40, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Stopping, Protection, 17/06/2014 22:29:40, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Stopped, Protection, 17/06/2014 22:30:17, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Starting, Protection, 17/06/2014 22:30:17, SYSTEM, PC_VAN_JEANNINE, Protection, Malware Protection, Started, Protection, 17/06/2014 22:30:17, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Starting, Update, 17/06/2014 22:30:20, SYSTEM, PC_VAN_JEANNINE, Manual, Rootkit Database, 2014.2.20.1, 2014.6.2.1, Protection, 17/06/2014 22:30:23, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Started, Update, 17/06/2014 22:30:50, SYSTEM, PC_VAN_JEANNINE, Manual, Malware Database, 2014.3.4.9, 2014.6.17.11, Protection, 17/06/2014 22:31:01, SYSTEM, PC_VAN_JEANNINE, Protection, Refresh, Starting, Protection, 17/06/2014 22:31:01, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Stopping, Protection, 17/06/2014 22:31:02, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Stopped, Protection, 17/06/2014 22:31:14, SYSTEM, PC_VAN_JEANNINE, Protection, Refresh, Success, Protection, 17/06/2014 22:31:14, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Starting, Protection, 17/06/2014 22:31:16, SYSTEM, PC_VAN_JEANNINE, Protection, Malicious Website Protection, Started, (end)b het eindelijk gevonden, hier is het dan uiteraard ik heb windows vista, sorry voor het misverstand,

???????????? - - - Updated - - - ?????????????

en de pc is ook heel traag vind ik, voor het opstarten van site's

ik heb windows 8 zeker, en nee als ik op de start knop druk (het vlaggetje) dan krijg ik de malwayre scan maar geen logboek

het spijt mij maar waar vind ik dit ? bij schijfbeheer (partitie) vind ik niets terug, sorryyyyyyyyyyyy

ik wil dit plaatsen maar lukt niet, ik vind dit niet terug dat logboek, weet niet wat ik verkeerd doe, pffffffffff historie vind ik ook wel terug, maar kan dat niet copiëren hé, helppppppppppppp

het probleem is nog altijd merkbaar, die melding komt nog altijd te voorschijn als ik op start en dan bv hotmail wil openen, ???? Groetjes

# AdwCleaner v3.212 - Rapport aangemaakt 17/06/2014 op 14:11:54 # Laatste Update 05/06/2014 door Xplode # Besturingssysteem : Windows Vista Home Premium Service Pack 2 (32 bits) # Gebruikersnaam : Jeannine - PC_VAN_JEANNINE # Gestart vanuit : C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7QNKRDOK\adwcleaner_3.212.exe # Optie : Verwijderen ***** [ Services ] ***** [#] Service Verwijderd : APNMCP [#] Service Verwijderd : vToolbarUpdater14.2.0 [#] Service Verwijderd : vToolbarUpdater18.1.0 ***** [ Bestanden / Mappen ] ***** Map Verwijderd : C:\Users\Jeannine\AppData\Local\Temp\apn ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** [#] Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDFF9720-FDD3-4B7D-9CFD-2F31B085605C} [#] Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDFF9720-FDD3-4B7D-9CFD-2F31B085605C} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Prod.cap Sleutel Verwijderd : HKLM\SOFTWARE\Classes\protector_dll.protectorbho Sleutel Verwijderd : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE Sleutel Verwijderd : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 Sleutel Verwijderd : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF780F87-FF2B-4DF8-92D0-73DB16A1543A} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{377E5D4D-77E5-476A-8716-7E70A9272DA0} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} Waarde Verwijderd : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] Sleutel Verwijderd : HKCU\Software\1ClickDownload Sleutel Verwijderd : HKCU\Software\AskPartnerNetwork Sleutel Verwijderd : HKCU\Software\AVG Nation toolbar Sleutel Verwijderd : HKCU\Software\BabylonToolbar Sleutel Verwijderd : HKCU\Software\ilivid Sleutel Verwijderd : HKCU\Software\IM Sleutel Verwijderd : HKCU\Software\ImInstaller Sleutel Verwijderd : HKCU\Software\InstallCore Sleutel Verwijderd : HKCU\Software\SweetIM Sleutel Verwijderd : HKLM\Software\AskPartnerNetwork Sleutel Verwijderd : HKLM\Software\AVG Nation toolbar Sleutel Verwijderd : HKLM\Software\AVG Security Toolbar Sleutel Verwijderd : HKLM\Software\Babylon Sleutel Verwijderd : HKLM\Software\DataMngr Sleutel Verwijderd : HKLM\Software\iLividSRTB Sleutel Verwijderd : HKLM\Software\SweetIM Sleutel Verwijderd : HKLM\Software\systweak Sleutel Verwijderd : HKLM\Software\Tarma Installer Sleutel Verwijderd : HKLM\Software\Uniblue Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Nation toolbar Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF} Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Nation toolbar Sleutel Verwijderd : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4 ***** [ Browsers ] ***** -\\ Internet Explorer v9.0.8112.16555 -\\ Mozilla Firefox v [ Bestand : C:\Users\Jeannine\AppData\Roaming\Mozilla\Firefox\Profiles\[ofr2][opt]rs0\prefs.js ] -\\ Google Chrome v35.0.1916.153 ************************* AdwCleaner[R0].txt - [6622 octets] - [17/06/2014 13:33:45] AdwCleaner[s0].txt - [6619 octets] - [17/06/2014 14:11:54] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [6679 octets] ########## Zo dit is ook geslaagd denk ik

ik vind geen clean terug, verwijderen is dit ook hetzelfde ?

Zoek.exe v5.0.0.0 Updated 16-June-2014 Tool run by Jeannine on di 17/06/2014 at 9:15:08,41. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7QNKRDOK\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2014-06-16-211755.log 30274 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [05/01/2010 10:32] ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02/10/2012 13:14] Skype Click to Call - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing?}" {105E99FF-8B9A-4492-B155-06194B9056D2} Bing Url="{searchTerms} - Bing?}" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="{searchTerms} - Google Search" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" {BAED118C-8891-42C7-810A-734102A2F3D3} Google Url="{searchTerms} - Google Search" ==== Reset Google Chrome ====================== C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7QNKRDOK will be deleted at reboot C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CHE0DCZR will be deleted at reboot C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=470 folders=190 93844445 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\Jeannine\AppData\Local\Temp will be emptied at reboot C:\Users\Public\AppData\Local\temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot Heb ik dit goed gedaan ? groetjes Nineke

Zoek.exe v5.0.0.0 Updated 16-June-2014 Tool run by Jeannine on ma 16/06/2014 at 22:40:33,12. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CHE0DCZR\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 16/06/2014 22:43:55 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\ALDI deleted successfully C:\Program Files\ATDheNetTVApp.com deleted successfully C:\Program Files\MSXML 4.0 deleted successfully C:\Program Files\Symantec deleted successfully C:\Program Files\Common Files\SWF Studio deleted successfully C:\PROGRA~2\Babylon deleted successfully C:\PROGRA~2\Browser Manager deleted successfully C:\PROGRA~2\Oracle deleted successfully C:\PROGRA~2\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted successfully C:\Users\Jeannine\AppData\Roaming\Agasc deleted successfully C:\Users\Jeannine\AppData\Roaming\HpUpdate deleted successfully C:\Users\Jeannine\AppData\Roaming\Systweak deleted successfully C:\Users\Jeannine\AppData\Roaming\Windows Live Writer deleted successfully C:\Users\Jeannine\AppData\Local\Downloaded Installations deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1099087289-2413760901-755791893-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully HKEY_USERS\S-1-5-21-1099087289-2413760901-755791893-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-1099087289-2413760901-755791893-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-1099087289-2413760901-755791893-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9B6103C1-F818-48a8-9683-314055BE6075} deleted successfully HKEY_USERS\S-1-5-21-1099087289-2413760901-755791893-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully HKEY_USERS\S-1-5-21-1099087289-2413760901-755791893-1000\Software\Microsoft\Internet Explorer\SearchScopes\{A413EEBE-BAA6-45F4-BF18-EB8CADC80A2A} deleted successfully HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\APNMCP deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\APNMCP deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater14.2.0 deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\vToolbarUpdater14.2.0 deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.1.0 deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\vToolbarUpdater18.1.0 deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "vProt"=- ""=- "ApnTBMon"=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AvgUninstallURL] ==== Deleting Files \ Folders ====================== C:\PROGRA~2\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} not found C:\ProgramData\AskPartnerNetwork deleted C:\ProgramData\APN deleted C:\Program Files\BrowserCompanion deleted C:\Program Files\Gophoto.it deleted C:\Users\Jeannine\AppData\Roaming\Uniblue deleted C:\Users\Jeannine\AppData\Roaming\Babylon deleted C:\Users\Jeannine\Music\Qtrax Media Library deleted C:\PROGRA~2\AVG Nation toolbar deleted C:\PROGRA~2\GinyasBrowserCompanion deleted C:\PROGRA~2\AVG Secure Search deleted C:\PROGRA~2\Tarma Installer deleted C:\Users\Jeannine\AppData\Local\GLF335E.tmp deleted C:\Users\Jeannine\AppData\Local\AVG Nation toolbar deleted C:\Users\Jeannine\Downloads\rcpsetup_marim_marm (1).exe deleted C:\Users\Jeannine\Downloads\rcpsetup_marim_marm.exe deleted C:\Users\Jeannine\AppData\LocalLow\AVG Nation toolbar deleted C:\Users\Jeannine\AppData\LocalLow\searchresultstb deleted C:\Users\Jeannine\AppData\LocalLow\Delta deleted C:\Users\Jeannine\AppData\LocalLow\DataMngr deleted C:\Users\Jeannine\AppData\LocalLow\microsoft\silverlight\outofbrowser\index\portal.qtrax.com deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Nation toolbar deleted C:\Windows\SYSTEM32\TASKS\Scheduled Update for Ask Toolbar deleted C:\Windows\system32\roboot.exe deleted "C:\Program Files\AVG Nation toolbar\vprot.exe" deleted "C:\Program Files\AVG Nation toolbar\vprot.exe" deleted "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\log4cplusU.dll" deleted "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted "C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.0\SiteSafety.dll" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\log4cplusU.dll" deleted "C:\Program Files\AVG Nation toolbar" deleted "C:\Program Files\AskPartnerNetwork" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater" deleted "C:\Program Files\AVG Nation toolbar" deleted "C:\Program Files\AskPartnerNetwork" deleted "C:\Program Files\Common Files\AVG Secure Search" deleted "C:\Program Files\AskPartnerNetwork\Toolbar" deleted "C:\Program Files\AskPartnerNetwork\Toolbar\Updater" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0" deleted "C:\Program Files\AskPartnerNetwork\Toolbar" deleted "C:\Program Files\AskPartnerNetwork\Toolbar\Updater" deleted "C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater" deleted "C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.0" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Jeannine\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== 2014-06-12 07:32:38 9F5AC4090D7C9F2591060DAC310FD294 1106432 ----a-w- C:\Windows\System32\urlmon.dll 2014-06-12 07:32:38 74DD13DF9DC59CCC5AE5528ECFA29BE9 10752 ----a-w- C:\Windows\System32\msfeedssync.exe 2014-06-12 07:32:38 0D7B6A0829874B057FF9D35F612B44F5 11776 ----a-w- C:\Windows\System32\mshta.exe 2014-06-12 07:32:37 BA7CC0D3170EB03FA610BA8EA3A01E9D 65536 ----a-w- C:\Windows\System32\jsproxy.dll 2014-06-12 07:32:37 B50E34870FC8F8CA79BCC2DC3183D691 421376 ----a-w- C:\Windows\System32\vbscript.dll 2014-06-12 07:32:37 B2D65154D4D36D6CA22BB586C016C1C1 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-06-12 07:32:37 AA5456C16D7F4B73177FD46AD63A12C4 1796096 ----a-w- C:\Windows\System32\iertutil.dll 2014-06-12 07:32:37 4439087A375EFDD297DC470C3214D7D6 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll 2014-06-12 07:32:37 0A3EF805B406103971F27B9597EB98BC 231936 ----a-w- C:\Windows\System32\url.dll 2014-06-12 07:32:36 60D2396F470C110B7FAB1CFA4AC0D34B 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-06-12 07:32:34 CFD26829131439B71D0109F9D5345573 1129472 ----a-w- C:\Windows\System32\wininet.dll 2014-06-12 07:32:34 947DA106EE001900969D42425FBDA183 717824 ----a-w- C:\Windows\System32\jscript.dll 2014-06-12 07:32:34 32FE42E13195DEAF78D1E348F51A5AEE 353792 ----a-w- C:\Windows\System32\dxtmsft.dll 2014-06-12 07:32:34 23330909BD92B7611815365559860952 1810432 ----a-w- C:\Windows\System32\jscript9.dll 2014-06-12 07:32:33 61F727795CAA98C3FCDB48379B78E370 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2014-06-12 07:32:32 3829D7D8B098F87C454E468DCAAE4912 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2014-06-12 07:32:29 2DCB8AEC38AE1427CB1CFE2432D05107 223232 ----a-w- C:\Windows\System32\dxtrans.dll 2014-06-12 07:32:29 148B2F103FD322A4B8AEB82D7B35D0AF 176640 ----a-w- C:\Windows\System32\ieui.dll 2014-06-12 07:32:28 AD2C67A381CC7148BB98A66BB04DDF5B 9711104 ----a-w- C:\Windows\System32\ieframe.dll 2014-06-12 07:32:27 9000CE8689BD16819AF8AFDB83B94CCE 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2014-06-12 07:32:25 B7363143940197BD9F16FD957B4F8131 12356608 ----a-w- C:\Windows\System32\mshtml.dll 2014-06-12 07:31:56 FB3E5FD7F74BFC301AD3FB7DE670EDCB 502784 ----a-w- C:\Windows\System32\usp10.dll 2014-06-12 07:31:50 D0D44370770D491E6BA472C855883422 1248768 ----a-w- C:\Windows\System32\msxml3.dll 2014-06-12 07:31:50 1E06779EDB55D035DD3F4A2B7432A291 1401344 ----a-w- C:\Windows\System32\msxml6.dll ====== C:\Windows\system32\drivers ===== 2014-06-12 07:31:52 C7B0746FCD576D7EEBA6A2530B0B2966 905664 ----a-w- C:\Windows\System32\drivers\tcpip.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C: ===== ====== C:\Users\Jeannine\AppData\Roaming ====== ====== C:\Users\Jeannine ====== 2014-05-27 09:30:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java ====== C: exe-files == 2014-06-16 20:04:11 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\Trend Micro\Jeannine.exe 2014-06-16 20:03:45 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GFLH5OXM\RSIT.exe 2014-06-12 16:44:47 EDAC53E2964C7ACE868208C3B6C5C8F1 39078480 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.153\35.0.1916.153_chrome_installer.exe 2014-06-12 07:49:36 A90034756B9702C2ED0375433EC26C8E 7561808 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.153\35.0.1916.153_35.0.1916.114_chrome_updater_alt.exe 2014-06-12 07:32:38 D14CBA888EF2A88C28CB5E6396A295DA 22528 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe 2014-06-12 07:32:38 74DD13DF9DC59CCC5AE5528ECFA29BE9 10752 ----a-w- C:\Windows\System32\msfeedssync.exe 2014-06-12 07:32:38 0D7B6A0829874B057FF9D35F612B44F5 11776 ----a-w- C:\Windows\System32\mshta.exe 2014-06-12 07:32:37 B2D65154D4D36D6CA22BB586C016C1C1 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-06-12 07:32:35 7BA5B7DEDE25D44F3E664D5BA067E3CD 758000 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-06-12 07:32:34 77AEB4008A5E1015599A4DC6AE50C33B 223232 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-06-12 07:32:32 054E45A74734CDBDDEFB503CBBA0E0DF 469504 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe === C: other files == 2014-06-15 18:13:13 105FA4CEFE2C788A45126FAD4BD4049F 101916 ----a-w- C:\ProgramData\AVG2014\IDS\outbox\tmp_e2e9aeb0-2acb-47d2-bf8a-d16fd8f4b3c6.zip 2014-06-12 07:31:52 C7B0746FCD576D7EEBA6A2530B0B2966 905664 ----a-w- C:\Windows\System32\drivers\tcpip.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-1099087289-2413760901-755791893-1000\Software\Microsoft\Windows\CurrentVersion\Run] "SmpcSys"="C:\Program Files\PACKARD BELL\SetUpMyPC\SmpSys.exe" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Facebook Update"="C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SmpcSys"="C:\Program Files\Packard Bell\SetupMyPC\SmpSys.exe" "AVG_UI"="C:\Program Files\AVG\AVG2014\avgui.exe /TRAYONLY" "RtHDVCpl"="RtHDVCpl.exe" "Skytel"="Skytel.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "SmpcSys"="C:\Program Files\PACKARD BELL\SetUpMyPC\SmpSys.exe" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Facebook Update"="C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe Reader Speed Launcher" "hkey"="HKLM" "command"="\"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AVG_TRAY] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AVG_TRAY" "hkey"="HKLM" "command"="C:\\Program Files\\AVG\\AVG10\\avgtray.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Desktop Search] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Google Desktop Search" "hkey"="HKLM" "command"="\"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HijackThis startup scan] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HijackThis startup scan" "hkey"="HKCU" "command"="C:\\Program Files\\Trend Micro\\HiJackThis\\HijackThis.exe /startupscan" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Hiyo] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Hiyo" "hkey"="HKLM" "command"="C:\\Program Files\\HiYo\\bin\\HiYo.exe /RunFromStartup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotKeysCmds] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HotKeysCmds" "hkey"="HKLM" "command"="C:\\Windows\\system32\\hkcmd.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IgfxTray] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="IgfxTray" "hkey"="HKLM" "command"="C:\\Windows\\system32\\igfxtray.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" "hkey"="HKCU" "command"="\"C:\\Program Files\\Common Files\\Nero\\Lib\\NMIndexStoreSvr.exe\" ASO-616B5711-6DAE-4795-A05F-39A1E5104020" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msnmsgr" "hkey"="HKCU" "command"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Persistence] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Persistence" "hkey"="HKLM" "command"="C:\\Windows\\system32\\igfxpers.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RegistryBooster] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RegistryBooster" "hkey"="HKCU" "command"="\"C:\\Program Files\\Uniblue\\RegistryBooster\\launcher.exe\" delay 20000 " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RtHDVCpl" "hkey"="HKLM" "command"="RtHDVCpl.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skytel] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Skytel" "hkey"="HKLM" "command"="Skytel.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SmpcSys] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SmpcSys" "hkey"="HKCU" "command"="C:\\Program Files\\PACKARD BELL\\SetUpMyPC\\SmpSys.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\swg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="swg" "hkey"="HKCU" "command"="\"C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SynTPEnh" "hkey"="HKLM" "command"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "HP Software Update"="C:\\Program Files\\Hp\\HP Software Update\\HPWuSchd2.exe" "Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"" "Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2011-05-02 14:39:20 1117 ----a-w- C:\Users\Jeannine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14/05/2014 13:59] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1099087289-2413760901-755791893-1000Core.job --a------ C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe [11/07/2012 22:43] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1099087289-2413760901-755791893-1000UA.job --a------ C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe [11/07/2012 22:43] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [31/01/2010 14:45] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [31/01/2010 14:45] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-1099087289-2413760901-755791893-1000Core" [C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-1099087289-2413760901-755791893-1000UA" [C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\HP-Online updateprogramma" [C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe] "C:\Windows\system32\tasks\HPCustParticipation HP Deskjet 3050 J610 series" ["C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPCustPartic.exe"] "C:\Windows\system32\tasks\Java Update Scheduler" [C:\Program Files\Common Files\Java\Java Update\jusched.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn" [] ==== Firefox Extensions ====================== ExtDir: C:\Users\Jeannine\AppData\Roaming\Mozilla\Firefox\Profiles\extensions - GoPhotoIt - %ExtDir%\gophoto@gophoto.it.xpi ==== Firefox Plugins ====================== ==== Deleted Firefox Extensions ====================== C:\Users\Jeannine\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\gophoto@gophoto.it.xpi deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions kkfggacklibaabdomphfdpcodjgihgon - C:\Program Files\ATDheNetTVApp.com\stv10.crx[] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02/10/2012 13:14] ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Nation toolbar\ChromeExt\18.1.0.443\avg.crx[] pfmopbbadnfoelckkcmjjeaaegjpjjbk - C:\Program Files\Gophoto.it\gophotoit14.crx[] pljcgbedjplidkdjahbaalanadmjfgop - C:\ProgramData\AskPartnerNetwork\Toolbar\ORJ-V7C\CRX\ToolbarCR.crx[] Google Docs - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Skype Click to Call - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl AVG Nation Toolbar - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof Google Wallet - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda GoPhoto.it - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk Gmail - Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bodddioamolcibagionmmobehnbhiakf_0.localstorage deleted successfully C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bodddioamolcibagionmmobehnbhiakf_0.localstorage-journal deleted successfully C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndibdjnfmopecpmkdieinmbadjfpblof_0.localstorage deleted successfully C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndibdjnfmopecpmkdieinmbadjfpblof_0.localstorage-journal deleted successfully C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk deleted successfully C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pfmopbbadnfoelckkcmjjeaaegjpjjbk_0.localstorage deleted successfully C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pfmopbbadnfoelckkcmjjeaaegjpjjbk_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="iGoogle Redirect" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search/?q=%s" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="%s - Bing" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing?}" {105E99FF-8B9A-4492-B155-06194B9056D2} Bing Url="{searchTerms} - Bing?}" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="{searchTerms} - Google Search" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" {BAED118C-8891-42C7-810A-734102A2F3D3} Google Url="{searchTerms} - Google Search" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{7BA52691-1876-45ce-9EE6-54BCB3B04BBC} deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Policies\Google\Chrome\ExtensionInstallForcelist deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\kkfggacklibaabdomphfdpcodjgihgon deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pljcgbedjplidkdjahbaalanadmjfgop deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HijackThis startup scan deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryBooster deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7QNKRDOK will be deleted at reboot C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CHE0DCZR will be deleted at reboot C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Jeannine\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=470 folders=190 93844445 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\Jeannine\AppData\Local\Temp will be emptied at reboot C:\Users\Public\AppData\Local\temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot Zo dit is dan ook gelukt hoop, kreeg wel plots terug een AVG verwittiging, van een bedreiging, had nochtans uitgeschakeld, hoop dat dit geen problemen heeft gegeven, Groetjes

Logfile of random's system information tool 1.10 (written by random/random) Run by Jeannine at 2014-06-16 22:04:10 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 198 GB (68%) free of 292 GB Total RAM: 3000 MB (43% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:04:28, on 16/06/2014 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16555) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\ProgramData\DatacardService\DCSHelper.exe C:\Windows\system32\taskeng.exe C:\Program Files\PACKARD BELL\SetUpMyPC\SmpSys.exe C:\Program Files\AVG Nation toolbar\vprot.exe C:\Program Files\AVG\AVG2014\avgui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Windows\system32\ctfmon.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_13_0_0_214_ActiveX.exe C:\Windows\system32\taskeng.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Jeannine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GFLH5OXM\RSIT.exe C:\Program Files\trend micro\Jeannine.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file) O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file) O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll O4 - HKLM\..\Run: [smpcSys] C:\Program Files\Packard Bell\SetupMyPC\SmpSys.exe O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Nation toolbar\vprot.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" O4 - HKCU\..\Run: [smpcSys] C:\Program Files\PACKARD BELL\SetUpMyPC\SmpSys.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [OpenMin] C:\Users\Jeannine\AppData\Local\OpenMin\wincheck.vbs O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurigma/ImageUploader5.cab?20101221064513 O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} (JordanUploader Class) - http://foto.hema.be/ips-opdata/layout/hema/objects/jordan.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUpldnl-be.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.0\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Ask-updateservice (APNMCP) - APN LLC. - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe O23 - Service: Mobistar Internet Everywhere. OUC (Mobistar Internet Everywhere. RunOuc) - Unknown owner - C:\Program Files\Mobistar Internet Everywhere\UpdateDog\ouc.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: vToolbarUpdater14.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe O23 - Service: vToolbarUpdater18.1.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\ToolbarUpdater.exe -- End of file - 10176 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1099087289-2413760901-755791893-1000Core.job - C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1099087289-2413760901-755791893-1000UA.job - C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-14 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}] Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08 393600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-28 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-10-02 4119744] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] Bing Bar Helper - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {95B7759C-8C7F-4BF1-B163-73684A933233} {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-28 194504] {8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SmpcSys"=C:\Program Files\Packard Bell\SetupMyPC\SmpSys.exe [2008-07-07 1038136] "vProt"=C:\Program Files\AVG Nation toolbar\vprot.exe [2014-04-28 2556744] ""= [] "AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2014-05-13 5181456] "RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-08-04 6265376] "Skytel"=C:\Windows\Skytel.exe [2008-08-04 1833504] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "ApnTBMon"=C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2014-05-16 1935824] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "SmpcSys"=C:\Program Files\PACKARD BELL\SetUpMyPC\SmpSys.exe [2008-07-07 1038136] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-12-30 68856] "Facebook Update"=C:\Users\Jeannine\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11 138096] "OpenMin"=C:\Users\Jeannine\AppData\Local\OpenMin\wincheck.vbs [2013-12-09 201] "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240] "Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-02-10 20918432] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AvgUninstallURL] cmd.exe /c start http://www.avg.com/nl.special-uninstallation-feedback-appf?lic=OQBBAFYARgBSAEUARQAtAFYAMwBaAEMAOQAtAEUASwBBAFIAUwAtADYAUgBXAEcAQQAtAEEAQQBUAEMAVQAtAFYAUAA5AEYATgA&inst=NwA3AC0ANAAzADEANAA4ADkAOQA5ADcALQBCAEEAUgA5AEcAKwAxAC0ARgBMACsAOQAtAFgATwAzADYAKwAxAA∏=90&ver=9.0.872 [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-29 30192] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HijackThis startup scan] C:\Program Files\Trend Micro\HiJackThis\HijackThis.exe /startupscan [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hiyo] C:\Program Files\HiYo\bin\HiYo.exe [2010-06-21 255344] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds] C:\Windows\system32\hkcmd.exe [2008-08-12 170520] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray] C:\Windows\system32\igfxtray.exe [2008-08-12 150040] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-04-28 1828136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence] C:\Windows\system32\igfxpers.exe [2008-08-12 145944] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryBooster] C:\Program Files\Uniblue\RegistryBooster\launcher.exe delay 20000 [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl] C:\Windows\RtHDVCpl.exe [2008-08-04 6265376] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel] C:\Windows\Skytel.exe [2008-08-04 1833504] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmpcSys] C:\Program Files\PACKARD BELL\SetUpMyPC\SmpSys.exe [2008-07-07 1038136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-12-30 68856] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-06-08 894512] C:\Users\Jeannine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup OneNote 2007 Schermopname en Snel starten.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2008-07-11 208896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\system32\EZUPBH~1.DLL [2009-12-30 49152] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "msacm.siren"=sirenacm.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 month====== 2014-06-16 22:04:10 ----D---- C:\rsit 2014-06-13 07:48:51 ----ASH---- C:\hiberfil.sys 2014-06-13 03:03:19 ----SHD---- C:\Config.Msi 2014-06-12 09:32:38 ----A---- C:\Windows\system32\urlmon.dll 2014-06-12 09:32:38 ----A---- C:\Windows\system32\mshta.exe 2014-06-12 09:32:38 ----A---- C:\Windows\system32\msfeedssync.exe 2014-06-12 09:32:37 ----A---- C:\Windows\system32\vbscript.dll 2014-06-12 09:32:37 ----A---- C:\Windows\system32\url.dll 2014-06-12 09:32:37 ----A---- C:\Windows\system32\msfeedsbs.dll 2014-06-12 09:32:37 ----A---- C:\Windows\system32\jsproxy.dll 2014-06-12 09:32:37 ----A---- C:\Windows\system32\ieUnatt.exe 2014-06-12 09:32:37 ----A---- C:\Windows\system32\iertutil.dll 2014-06-12 09:32:34 ----A---- C:\Windows\system32\wininet.dll 2014-06-12 09:32:34 ----A---- C:\Windows\system32\jscript9.dll 2014-06-12 09:32:34 ----A---- C:\Windows\system32\jscript.dll 2014-06-12 09:32:34 ----A---- C:\Windows\system32\dxtmsft.dll 2014-06-12 09:32:33 ----A---- C:\Windows\system32\msfeeds.dll 2014-06-12 09:32:29 ----A---- C:\Windows\system32\ieui.dll 2014-06-12 09:32:29 ----A---- C:\Windows\system32\dxtrans.dll 2014-06-12 09:32:28 ----A---- C:\Windows\system32\ieframe.dll 2014-06-12 09:32:27 ----A---- C:\Windows\system32\mshtmled.dll 2014-06-12 09:32:25 ----A---- C:\Windows\system32\mshtml.dll 2014-06-12 09:31:56 ----A---- C:\Windows\system32\usp10.dll 2014-06-12 09:31:52 ----A---- C:\Windows\system32\drivers\tcpip.sys 2014-06-12 09:31:50 ----A---- C:\Windows\system32\msxml6.dll 2014-06-12 09:31:50 ----A---- C:\Windows\system32\msxml3.dll 2014-05-27 11:35:38 ----D---- C:\ProgramData\AskPartnerNetwork 2014-05-27 11:35:38 ----D---- C:\Program Files\AskPartnerNetwork 2014-05-27 11:34:39 ----D---- C:\ProgramData\APN 2014-05-27 11:32:20 ----A---- C:\Windows\system32\javaws.exe 2014-05-27 11:30:55 ----A---- C:\Windows\system32\WindowsAccessBridge.dll 2014-05-27 11:30:55 ----A---- C:\Windows\system32\javaw.exe 2014-05-27 11:30:55 ----A---- C:\Windows\system32\java.exe ======List of files/folders modified in the last 1 month====== 2014-06-16 22:04:28 ----D---- C:\Program Files\Trend Micro 2014-06-16 22:04:25 ----D---- C:\Windows\Prefetch 2014-06-16 22:03:53 ----D---- C:\Windows\temp 2014-06-16 21:57:47 ----D---- C:\Users\Jeannine\AppData\Roaming\Skype 2014-06-16 18:15:37 ----D---- C:\ProgramData\MFAData 2014-06-16 17:47:17 ----D---- C:\Windows\system32\wbem 2014-06-16 17:47:17 ----D---- C:\Windows 2014-06-16 17:40:16 ----D---- C:\Windows\Tasks 2014-06-16 17:40:16 ----D---- C:\Windows\system32\spool 2014-06-16 17:40:16 ----D---- C:\Windows\system32\CodeIntegrity 2014-06-16 17:40:16 ----D---- C:\Windows\system32\catroot2 2014-06-16 17:40:16 ----D---- C:\Windows\inf 2014-06-16 17:40:16 ----D---- C:\Program Files\Common Files\AVG Secure Search 2014-06-16 17:40:15 ----D---- C:\Windows\registration 2014-06-16 17:34:34 ----SHD---- C:\System Volume Information 2014-06-16 14:39:20 ----HD---- C:\Program Files\InstallShield Installation Information 2014-06-16 14:39:13 ----D---- C:\Windows\winsxs 2014-06-16 14:39:12 ----SHD---- C:\Windows\Installer 2014-06-16 14:39:12 ----RSD---- C:\Windows\assembly 2014-06-16 14:39:12 ----D---- C:\Windows\system32\migration 2014-06-16 14:39:12 ----D---- C:\Windows\system32\drivers 2014-06-16 14:39:12 ----D---- C:\Windows\System32 2014-06-16 14:39:11 ----D---- C:\ProgramData\Microsoft Help 2014-06-16 14:39:11 ----D---- C:\Program Files\Internet Explorer 2014-06-13 14:33:32 ----D---- C:\Windows\Debug 2014-06-13 03:05:47 ----D---- C:\Windows\system32\MRT 2014-06-13 03:05:43 ----A---- C:\Windows\system32\mrt.exe 2014-06-12 09:27:14 ----D---- C:\Windows\system32\catroot 2014-05-29 13:55:15 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-05-27 11:51:24 ----D---- C:\ProgramData\Oracle 2014-05-27 11:35:38 ----D---- C:\ProgramData 2014-05-27 11:35:38 ----D---- C:\Program Files 2014-05-27 11:30:54 ----D---- C:\Program Files\Java ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2014-05-13 149784] R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2014-05-13 237848] R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2014-05-13 107288] R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2014-05-13 27416] R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2009-01-08 43528] R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2014-05-13 122136] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2014-05-13 198936] R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-05-13 21272] R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2014-05-13 192280] R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2014-05-13 210200] R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2014-04-28 42272] R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2011-06-03 72576] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-07-11 2381312] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-08-04 2161496] R3 netr28;Ralink 802.11n Wireless Driver for Windows Vista; C:\Windows\system32\DRIVERS\netr28.sys [2008-07-29 418816] R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-08-06 124928] R3 RTSTOR;Realtek USB 2.0 Card Reader; C:\Windows\system32\drivers\RTSTOR.SYS [2008-02-20 60416] R3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-21 9216] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-06-08 187448] R3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272] R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560] S3 catchme;catchme; \??\C:\Users\Jeannine\AppData\Local\Temp\catchme.sys [] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632] S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2011-06-03 102784] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 39272] S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520] S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [2011-06-03 85248] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016] S3 NETw5v32;Stuurprogramma voor Intel® Wireless WiFi Link Adapter onder Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328] S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136] S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656] S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeActiveFileMonitor6.0;Adobe Active File Monitor V6; C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [2007-09-11 124832] R2 APNMCP;Ask-updateservice; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-05-16 166352] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-05-13 3644432] R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2014-05-13 292424] R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2008-01-21 21504] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504] R2 HWDeviceService.exe;HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [2010-11-16 264704] R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864] R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920] R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-02 3064000] R2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe [2013-02-18 968880] R2 vToolbarUpdater18.1.0;vToolbarUpdater18.1.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\ToolbarUpdater.exe [2014-04-28 1793536] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R3 BBUpdate;BBUpdate; C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.exe [2014-03-11 247968] S2 BBSvc;BingBar Service; C:\Program Files\Microsoft\BingBar\7.3.132.0\BBSvc.exe [2014-03-11 193696] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 gupdate;Google Updateservice (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-31 135664] S2 Mobistar Internet Everywhere. RunOuc;Mobistar Internet Everywhere. OUC; C:\Program Files\Mobistar Internet Everywhere\UpdateDog\ouc.exe [2011-06-03 218624] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14 257712] S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2011-09-01 1025352] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-01-08 654848] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840] S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-29 30192] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-31 135664] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-21 194032] S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-04-28 529704] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040] -----------------EOF----------------- Ik denk dat dit gelukt is, groetjes Nineke

Ik schreef eerder deze week, in een andere topic, maar kreeg nog geen hulp, vandaag probeerde ik een systeemherstel te doen van mijn laptop maar dat lukt niet, kan het niet voltooien. De pc start gewoon op maar als ik dan naar start ga om bv hotmail te openen, of FB, krijg ik de volgende melding : http://go.micorsoft.com/fwlink/?LinkId= 72681 de toepassing kan niet worden gestart omdat de configuratie naast elkaar onjuist is. raadpleeg het gebeurtenislogboek Toepassing voor meer informatie. De pc is ook heel traag, en blokkeert precies, WIE KAN MIJ HELPEN ?????? Moet wel zeggen dat ik niet veel af weet van pc en laptop's end. Nineke

ik heb sinds vandaag een probleem waar ik geen oplossing voor heb. De pc start gewoon op maar als ik dan naar start ga om bv hotmail te openen, of FB, krijg ik de volgende melding : http://go.micorsoft.com/fwlink/?LinkId= 72681 de toepassing kan niet worden gestart omdat de configuratie naast elkaar onjuist is. raadpleeg het gebeurtenislogboek Toepassing voor meer informatie. Met dit kan ik gene weg, ik ben daar niet genoeg geschoold in, Kunnen jullie mij stap per stap helpen ? Groetjes, Nineke

Ik het internet met de laptop met een stick, met oplaadkaart, vermits ik dit heel weinig gebruik, wij zitten aan de kust, waar er heel slechte verbinding is, en ook geen wifi, toch bedankt