Ga naar inhoud

taakbalk, bureaublad en taakbeheer lopen vast/reageren niet


Aanbevolen berichten

Zoek.exe Version 4.0.0.2 Updated 22-May-2013

Tool run by Niels on wo 22/05/2013 at 20:41:43,36.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

==== System Restore Info ======================

22/05/2013 20:43:00 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Running Processes ======================

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\Launch Manager\dsiwmis.exe

C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

C:\Windows\SysWOW64\svchost.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files (x86)\Norton 360 Premier Edition\Engine\6.4.1.14\ccSvcHst.exe

C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe

C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe

C:\Program Files\Acer\Acer Updater\UpdaterService.exe

C:\Program Files (x86)\UltraVNC Addons\uvnc_service.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\Norton 360 Premier Edition\Engine\6.4.1.14\ccSvcHst.exe

C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe

C:\Windows\PLFSetI.exe

C:\Users\Niels\AppData\Local\Google\Update\GoogleUpdate.exe

C:\Program Files (x86)\Origin\Origin.exe

C:\Program Files (x86)\Clownfish\Clownfish.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Program Files (x86)\Steam\Steam.exe

C:\Users\Niels\AppData\Local\Facebook\Update\FacebookUpdate.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Program Files (x86)\Skype\Phone\Skype.exe

C:\Windows\SysWOW64\DllHost.exe

C:\Program Files (x86)\Windows Sidebar\sidebar.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files (x86)\Launch Manager\LManager.exe

C:\Users\Niels\Desktop\zoek.exe

C:\Users\Niels\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe

C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe

C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe

C:\Program Files (x86)\Launch Manager\LMworker.exe

C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Windows\SysWOW64\cmd.exe

C:\Program Files (x86)\Common Files\Steam\SteamService.exe

C:\Windows\SysWOW64\cmd.exe

==== Deleting Files \ Folders ======================

"C:\Users\Niels\Downloads\SoftonicDownloader_voor_euro-truck-simulator-2-1-trainer (1).exe" deleted

"C:\Users\Niels\Downloads\SoftonicDownloader_voor_euro-truck-simulator-2-1-trainer.exe" deleted

"C:\Users\Niels\Downloads\SoftonicDownloader_voor_windows-media-player-plugin.exe" deleted

"C:\Program Files (x86)\Common Files\DVDVideoSoft\bin" deleted

"C:\found.000" deleted

"C:\found.001" deleted

"C:\found.002" deleted

"C:\found.003" deleted

"C:\Windows\SysWow64\searchplugins" deleted

"C:\Windows\SysWow64\Extensions" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Niels\AppData\Local\Temp ====

====== C:\Windows\SysWOW64 =====

2013-05-22 15:05:47 26F30066B9FA78C97A0E92803D496211 12324864 ----a-w- C:\Windows\SysWOW64\mshtml.dll

2013-05-22 15:05:44 BAC6BA11D60205F91797329817168B70 2382848 ----a-w- C:\Windows\SysWOW64\mshtml.tlb

2013-05-22 15:03:39 EB776FA63947CB30EC24A71EAFC2D618 73216 ----a-w- C:\Windows\SysWOW64\mshtmled.dll

2013-05-22 15:03:38 6B07400F62998EB6970807C0A69CF152 1796096 ----a-w- C:\Windows\SysWOW64\iertutil.dll

2013-05-22 15:03:38 4B185E9743BFF0DFC905911C4FABAB05 420864 ----a-w- C:\Windows\SysWOW64\vbscript.dll

2013-05-22 15:03:37 9649C970BFFA54F66E77FC18AC9B6BF4 176640 ----a-w- C:\Windows\SysWOW64\ieui.dll

2013-05-22 15:03:36 B64259DE087A5FB227D50F476B466735 1104384 ----a-w- C:\Windows\SysWOW64\urlmon.dll

2013-05-22 15:03:36 AFAF17FF419BA7E47412AD720ABBEC23 231936 ----a-w- C:\Windows\SysWOW64\url.dll

2013-05-22 15:03:36 61AE3CFCD6EFDA9EADAB6B87CD6BC7DC 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe

2013-05-22 15:03:35 DFD966309C42287C731428258BCA997F 1427968 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl

2013-05-22 15:03:33 36AD48C975F88D302C1F824987D691CA 607744 ----a-w- C:\Windows\SysWOW64\msfeeds.dll

2013-05-22 15:03:31 2C96B3921B4CDE10DBAED5AAD760DB67 1129472 ----a-w- C:\Windows\SysWOW64\wininet.dll

2013-05-22 15:03:30 5123EBB7008E8BC0F016CBECAE2A52C3 1800704 ----a-w- C:\Windows\SysWOW64\jscript9.dll

2013-05-22 15:03:30 03CB321720B8607C9BF38B8057E1EE29 717824 ----a-w- C:\Windows\SysWOW64\jscript.dll

2013-05-22 15:03:29 9E254EC51F63C38C3FE4DF83E5CE42CE 65024 ----a-w- C:\Windows\SysWOW64\jsproxy.dll

2013-05-22 15:03:23 054211C307009F31BAF47CF046D48D42 9738752 ----a-w- C:\Windows\SysWOW64\ieframe.dll

2013-05-20 16:57:57 E904178851A6A44BFA97E064EF779E9D 1796096 ----a-w- C:\Windows\SysWOW64\authui.dll

2013-05-20 16:57:57 565D78187494FB5F08B5A52DEB2AEA7A 12872704 ----a-w- C:\Windows\SysWOW64\shell32.dll

2013-05-20 16:57:57 1F05F5A16881CD928C82D53CEFCF4477 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2013-05-22 15:05:44 955A6E94C2728F2A647BAB24F2A0B0D6 2382848 ----a-w- C:\Windows\Sysnative\mshtml.tlb

2013-05-22 15:05:44 7212340908E00AD2F28E58EA04CEB852 17818624 ----a-w- C:\Windows\Sysnative\mshtml.dll

2013-05-22 15:03:39 7A2E6DFEB8F800233FED8D5484306C7D 96768 ----a-w- C:\Windows\Sysnative\mshtmled.dll

2013-05-22 15:03:38 2801567C850F1696D53C5E2CD1AE569A 2147840 ----a-w- C:\Windows\Sysnative\iertutil.dll

2013-05-22 15:03:37 8FECD64E4FA72FE8A85731CD5E840297 248320 ----a-w- C:\Windows\Sysnative\ieui.dll

2013-05-22 15:03:36 4E468ED6298FA175A3F2EA7098D91225 237056 ----a-w- C:\Windows\Sysnative\url.dll

2013-05-22 15:03:36 47BC290F4400C1741B1F26429A352C60 173056 ----a-w- C:\Windows\Sysnative\ieUnatt.exe

2013-05-22 15:03:36 420C9E418CECC3B0DBF5B9BB914F8D0D 1346560 ----a-w- C:\Windows\Sysnative\urlmon.dll

2013-05-22 15:03:35 429597553FE585EECB03C8485D45FE7A 1494528 ----a-w- C:\Windows\Sysnative\inetcpl.cpl

2013-05-22 15:03:34 F28D84112B79212FE84366A4EA517C87 2312704 ----a-w- C:\Windows\Sysnative\jscript9.dll

2013-05-22 15:03:34 C1B443AAB0FC3C98C868B4F804DFD520 729088 ----a-w- C:\Windows\Sysnative\msfeeds.dll

2013-05-22 15:03:31 563C71A913CAC0C3DE5FFCD36EDB43A0 1392128 ----a-w- C:\Windows\Sysnative\wininet.dll

2013-05-22 15:03:31 05A140843C0A768AFAAF443238C6340C 85504 ----a-w- C:\Windows\Sysnative\jsproxy.dll

2013-05-22 15:03:30 51BBFA26DA948738E64B23802E325E04 816640 ----a-w- C:\Windows\Sysnative\jscript.dll

2013-05-22 15:03:30 36A7EEDB4155B1EA04A53C0FFE93C2EE 599040 ----a-w- C:\Windows\Sysnative\vbscript.dll

2013-05-22 15:03:25 F5C9C0C541AE814AED6ED959C1F26423 10926080 ----a-w- C:\Windows\Sysnative\ieframe.dll

2013-05-20 17:02:28 943F527DF79E6B400104341AA7023C75 144384 ----a-w- C:\Windows\Sysnative\cdd.dll

2013-05-20 16:57:59 1BFC94665BCA35F9001ADC7BFB167C63 14172672 ----a-w- C:\Windows\Sysnative\shell32.dll

2013-05-20 16:57:57 E948D1D42DC68923ABD75EEB5BCCD1D3 111448 ----a-w- C:\Windows\Sysnative\consent.exe

2013-05-20 16:57:57 9D2A2369AB4B08A4905FE72DB104498F 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll

2013-05-20 16:57:57 3EF480BFED1B5947A32585E30A58D4ED 1930752 ----a-w- C:\Windows\Sysnative\authui.dll

2013-05-20 16:57:57 22A0AE97360C1B146FDD9AA55AC0E989 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll

2013-05-20 14:35:49 FE90B750AB808FB9DD8FBB428B5FF83B 230400 ----a-w- C:\Windows\Sysnative\wwansvc.dll

2013-05-20 14:35:49 A11523523B31086DD760C0189C763359 3153920 ----a-w- C:\Windows\Sysnative\win32k.sys

2013-05-20 14:35:49 30B1489F2DCD8DC1AB6BB60CA6093615 48640 ----a-w- C:\Windows\Sysnative\wwanprotdim.dll

====== C:\Windows\Sysnative\drivers =====

2013-05-22 13:56:18 0BB97D43299910CBFBA59C461B99B910 25928 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys

2013-05-20 17:02:28 AF2E16242AA723F68F461B6EAE2EAD3D 983400 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys

2013-05-20 17:02:28 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys

2013-04-24 15:21:02 B98F8C6E31CD07B2E6F71F7F648E38C0 1656680 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

======= C:\Program Files (x86) =====

2013-05-07 16:48:54 -------- d-----w- C:\Program Files (x86)\Game Dev Tycoon

2013-05-01 11:52:11 -------- d-----w- C:\Program Files (x86)\Common Files\Skype

======= C: =====

2013-05-20 16:45:35 6507C8A4C7EB9098920CE5DA4B1F541D 19173 ----a-w- C:\AdwCleaner[s1].txt

====== C:\Users\Niels\AppData\Roaming ======

2013-05-14 15:52:21 C6BA2BB137F2B04A9CA2BC3970D99A01 2096 ----a-w- C:\users\Niels\AppData\Local\recently-used.xbel

2013-05-07 16:51:07 -------- d-----w- C:\users\Niels\AppData\Local\Game Dev Tycoon

2013-05-03 17:08:08 -------- d-----w- C:\users\Niels\AppData\Local\Warframe

====== C:\Users\Niels ======

2013-05-07 16:49:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Dev Tycoon

====== C: exe-files ==

2013-05-22 15:03:36 A1B0DEC3BB845C6369F97BC1A3542A07 763504 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2013-05-22 15:03:36 3F00BE80B9CEA20B7FE7363D15EDDB94 757360 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe

2013-05-20 14:29:27 EA49326A11C43E0661ED07F8826BF73D 12882072 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6zm.exe

2013-05-20 14:29:21 02655526776C80812EA45EC94E07997A 12877976 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6mp.exe

2013-05-20 12:55:27 8F11F0321ED84B1533FC1384AC71AC8D 59784 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdateBroker.exe

2013-05-20 12:55:27 00F714CA28A01FACB709486D6DA306A8 59784 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdateOnDemand.exe

2013-05-20 12:55:26 C26BB2535C1B20DEAFAEB12634BF4DC9 781592 ----a-w- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdateSetup.exe

2013-05-20 12:55:16 4E252E85E5DC31BD645E809222AFAF27 287624 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe

2013-05-20 12:55:12 76B35CB0F3A4E69D6DFF27F542B9F856 216968 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe

2013-05-20 12:55:03 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleUpdate.exe

2013-05-20 12:54:54 C26BB2535C1B20DEAFAEB12634BF4DC9 781592 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.145\GoogleUpdateSetup.exe

=== C: other files ==

2013-05-22 18:38:52 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI29082\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-22 18:18:46 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI42882\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-22 14:25:18 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI50042\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-22 13:56:18 0BB97D43299910CBFBA59C461B99B910 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys

2013-05-21 15:23:04 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI36202\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-20 17:02:28 AF2E16242AA723F68F461B6EAE2EAD3D 983400 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2013-05-20 17:02:28 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys

2013-05-20 14:35:49 A11523523B31086DD760C0189C763359 3153920 ----a-w- C:\Windows\System32\win32k.sys

2013-05-20 14:24:54 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI27922\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-20 13:18:12 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI33962\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-20 13:11:37 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI39082\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-20 13:02:28 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI50882\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-20 11:44:28 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI28682\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-20 10:18:46 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI35402\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-20 10:10:58 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI43042\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-20 09:59:36 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI29602\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-19 18:40:11 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI36922\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-18 17:41:36 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI57562\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-18 17:34:09 665AA8773D894DC25E3AD27DD6E401A5 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI21362\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-18 17:18:59 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Niels\AppData\Local\Temp\_MEI46402\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx

2013-05-17 17:10:57 05311014AE62FF9CB34FC942AB5C6F7F 8205500 ----a-w- C:\Users\Niels\AppData\Local\Temp\Vuze_5.0.0.0a_win64.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1983188106-1159261656-3012799415-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"Google Update"="C:\Users\Niels\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"

"Clownfish"="C:\Program Files (x86)\Clownfish\Clownfish.exe"

"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"

"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"

"Facebook Update"="C:\Users\Niels\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"

"Sidebar"="C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

"LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe"

"EgisUpdate"="C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe"

"EgisTecPMMUpdate"="C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe 196609"

"BackupManagerTray"="C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe -h -k"

"NortonOnlineBackupReminder"="C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe UNATTENDED"

"MDS_Menu"="C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso UpdateWithCreateOnce Software\CyberLink\MediaShow Espresso\5.6"

"ArcadeMovieService"="C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe"

"hpqSRMon"="C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe"

"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"LogMeIn Hamachi Ui"="C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start"

"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Google Update"="C:\Users\Niels\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"

"Clownfish"="C:\Program Files (x86)\Clownfish\Clownfish.exe"

"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"

"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"

"Facebook Update"="C:\Users\Niels\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"

"Sidebar"="C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"

"mwlDaemon"="C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe"

"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3"

"PLFSetI"="C:\Windows\PLFSetI.exe"

"Acer ePower Management"="C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe"

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2012-11-04 18:59:37 1051 ----a-w- C:\users\Niels\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

2012-07-07 11:13:57 2103 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Acer Registration Data Sending.job --a------ C:\Program Files (x86)\Acer\Registration\GREG.exe [28/08/2009 11:40]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1983188106-1159261656-3012799415-1001Core.job --a------ C:\Users\Niels\AppData\Local\Facebook\Update\FacebookUpdate.exe [23/01/2013 22:23]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1983188106-1159261656-3012799415-1001UA.job --a------ C:\Users\Niels\AppData\Local\Facebook\Update\FacebookUpdate.exe [23/01/2013 22:23]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21/06/2012 15:08]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21/06/2012 15:08]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1983188106-1159261656-3012799415-1001Core.job --a------ C:\Users\Niels\AppData\Local\Google\Update\GoogleUpdate.exe [21/06/2012 14:50]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1983188106-1159261656-3012799415-1001UA.job --a------ C:\Users\Niels\AppData\Local\Google\Update\GoogleUpdate.exe [21/06/2012 14:50]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1983188106-1159261656-3012799415-1003Core.job --a------ C:\Users\Z esmeralda\AppData\Local\Google\Update\GoogleUpdate.exe [21/06/2012 15:14]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1983188106-1159261656-3012799415-1003UA.job --a------ C:\Users\Z esmeralda\AppData\Local\Google\Update\GoogleUpdate.exe [21/06/2012 15:14]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Niels\AppData\Roaming\Mozilla\Firefox\Profiles\0

- Torntv - %ProfilePath%\extensions\torntv@torntv.com.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be

==== Firefox Plugins ======================

==== Deleting Files \ Folders ======================

"C:\Users\Niels\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\torntv@torntv.com.xpi" deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02/10/2012 13:14]

mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton 360 Premier Edition\Engine\6.4.1.14\Exts\Chrome.crx[02/04/2013 21:14]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

apdfllckaahabafndbhieahigkjlhalf - C:\Users\Niels\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx[06/05/2013 19:02]

nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[12/12/2012 19:51]

Skype Click to Call - Niels - Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

Norton Identity Protection - Niels - Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk

Skype Click to Call - Z esmeralda - Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

Norton Identity Protection - Z esmeralda - Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk

Yontoo - Z esmeralda - Default\Extensions\niapdbllcanepiiimjjndipklodoedlc

GoPhoto.it - Z esmeralda - Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk

BrowserProtect - Z esmeralda - Default\Extensions\pgafcinpmmpklohkojmllohd****efph

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.msn.com/"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

No DefaultScope Set For HKCU

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.msn.com/"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Niels\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Niels\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Z esmeralda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Z esmeralda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Z esmeralda\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Z esmeralda\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Niels\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\users\Niels\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\users\Z esmeralda\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Niels\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Users\Niels\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on do 23/05/2013 at 17:07:14,08 ======================

- - - Updated - - -

mbam logje:

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

Databaseversie: v2013.05.22.06

Windows 7 Service Pack 1 x64 NTFS (Veilige modus/netwerkmogelijkheden)

Internet Explorer 9.0.8112.16421

Niels :: MIJNPC [administrator]

22/05/2013 15:57:25

mbam-log-2013-05-22 (15-57-25).txt

Scan type: Snelle scan

Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM

Uitgeschakelde scan opties: P2P

Objecten gescand: 262081

Verstreken tijd: 6 minuut/minuten, 50 seconde(n)

Geheugenprocessen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Mappen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 2

C:\Users\Niels\AppData\Local\Temp\comver.dll (Adware.GameSpyArcade) -> Succesvol in quarantaine geplaatst en verwijderd.

C:\Users\Niels\Downloads\F1_2012_v1_05_(_12_Trainer)_by_SKIDROW.exe (PUP.Adware.Agent) -> Succesvol in quarantaine geplaatst en verwijderd.

(einde)

aangepast door Mako
Dubbellog verwijderd
Link naar reactie
Delen op andere sites

Hoi,

Dat ziet er goed uit hoor, kan je wel nog even volgende doen aub want de forumsoftware houdt enkele lettertjes voor me verborgen :dong:.


  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op de knop "Options" en vink nu de onderstaande opties aan.

    • Chrome Look

    [*] Klik daarna op de knop "Run script".

    [*] Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).

    [*] Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.

    [*] Hang nu de inhoud van het geopende logje aan je volgende bericht als bijlage.

Link naar reactie
Delen op andere sites

Hoi,

Neen hoor, het ging niet om een virus dat binnenkwam via Windows Update of dergelijke. In elk geval fijn te horen dat je probleem is opgelost :top:. Wat jammer dat je daarvoor moest formatteren, was eigenlijk perfect anders op te lossen.

Nog veel computerplezier :ciao:

Groet,

Mako

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.