Ga naar inhoud

Laptop heel erg traag


Aanbevolen berichten


Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Link naar reactie
Delen op andere sites

Hoi,bedankt voor snele reactie op mijn gestelde vraag

hier gescande log.

Logfile of random's system information tool 1.09 (written by random/random)

Run by drago at 2013-10-06 16:10:09

Microsoft Windows 7 Ultimate Service Pack 1

System drive C: has 21 GB (28%) free of 73 GB

Total RAM: 2047 MB (43% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 16:11:15, on 6-10-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16455)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskhost.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\rundll32.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc.exe

C:\Program Files\Winamp\winampa.exe

C:\Program Files\Winamp\winamp.exe

C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe

C:\Windows\system32\schtasks.exe

C:\Windows\system32\conhost.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil32_11_8_800_175_ActiveX.exe

c:\PROGRA~1\mcafee\SITEAD~1\saui.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Users\drago\Downloads\RSIT.exe

C:\Program Files\trend micro\drago.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = QVO6

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = QVO6

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = QVO6

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: searchgol Helper Object - {8F547BDD-FCD4-48F8-A06F-573D6F404A3C} - C:\Program Files\searchgol\searchgol\1.8.16.19\bh\searchgol.dll (file missing)

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: BonanzaDeals - {fe063412-bea4-4d76-8ed3-183be6220d17} - C:\Program Files\BonanzaDeals\BonanzaDealsIE.dll (file missing)

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O3 - Toolbar: searchgol Toolbar - {00078E95-3A4A-4137-8DE7-2824908D1C17} - C:\Program Files\searchgol\searchgol\1.8.16.19\searchgolTlbr.dll (file missing)

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [000StTHK] 000StTHK.exe

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [iTSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START

O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe

O4 - HKLM\..\Run: [TFncKy] TFncKy.exe

O4 - HKLM\..\Run: [00THotkey] C:\Windows\system32\00THotkey.exe

O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"

O4 - HKLM\..\RunOnce: [Del2585250] cmd.exe /Q /D /c del "C:\Users\drago\AppData\Local\Temp\0.del"

O4 - HKCU\..\RunOnce: [Del2585250] cmd.exe /Q /D /c del "C:\Users\drago\AppData\Local\Temp\0.del"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Global Startup: Bluetooth Manager.lnk = ?

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\mcsniepl.dll

O23 - Service: McAfee Application Installer Cleanup (0113021381062623) (0113021381062623mcinstcleanup) - McAfee, Inc. - C:\Windows\TEMP\011302~1.EXE

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: BonanzaDealsLive-service (bonanzadealslive) (bonanzadealslive) - Unknown owner - C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe (file missing)

O23 - Service: BonanzaDealsLive-service (bonanzadealslivem) (bonanzadealslivem) - Unknown owner - C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe (file missing)

O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe

O23 - Service: McAfee Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe

O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe

O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Windows\system32\mfevtps.exe

O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

--

End of file - 8043 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\UpdaterEX.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C}]

searchgol Helper Object - C:\Program Files\searchgol\searchgol\1.8.16.19\bh\searchgol.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]

McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2012-06-21 261568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fe063412-bea4-4d76-8ed3-183be6220d17}]

BonanzaDeals - C:\Program Files\BonanzaDeals\BonanzaDealsIE.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2012-06-21 261568]

{00078E95-3A4A-4137-8DE7-2824908D1C17} - searchgol Toolbar - C:\Program Files\searchgol\searchgol\1.8.16.19\searchgolTlbr.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-03-06 13605408]

"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2009-03-06 92704]

"000StTHK"=C:\Windows\system32\000StTHK.exe [2001-06-23 24576]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

"mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2012-10-07 514936]

"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2008-12-19 83336]

"PadTouch"=C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [2005-08-30 1077327]

"TFncKy"=TFncKy.exe []

"00THotkey"=C:\Windows\system32\00THotkey.exe [2005-05-11 253952]

"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2010-01-14 37888]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"Del2585250"=cmd.exe /Q /D /c del C:\Users\drago\AppData\Local\Temp\0.del []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"Del2585250"=cmd.exe /Q /D /c del C:\Users\drago\AppData\Local\Temp\0.del []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"MSVideo8"=VfWWDM32.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"wave3"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

"wave4"=wdmaud.drv

"midi4"=wdmaud.drv

"mixer4"=wdmaud.drv

"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-10-06 16:10:10 ----D---- C:\Program Files\trend micro

2013-10-06 16:10:09 ----D---- C:\rsit

2013-10-06 15:00:32 ----RASH---- C:\MSDOS.SYS

2013-10-06 15:00:32 ----RASH---- C:\IO.SYS

2013-10-06 15:00:24 ----D---- C:\Windows\system32\Extensions

2013-10-06 15:00:17 ----D---- C:\Windows\system32\searchplugins

2013-10-06 14:59:17 ----D---- C:\Users\drago\AppData\Roaming\searchgol

2013-10-06 14:59:15 ----D---- C:\ProgramData\BitGuard

2013-10-06 14:59:13 ----D---- C:\Users\drago\AppData\Roaming\UpdaterEX

2013-10-06 14:59:03 ----D---- C:\ProgramData\BonanzaDealsLive

2013-10-06 14:57:32 ----D---- C:\ProgramData\Babylon

2013-10-06 14:46:38 ----A---- C:\Windows\system32\drivers\HipShieldK.sys

2013-10-06 14:22:24 ----A---- C:\Windows\system32\D3DX9_42.dll

2013-10-06 14:22:22 ----A---- C:\Windows\system32\d3dx9_31.dll

2013-10-06 14:21:21 ----D---- C:\Program Files\Winamp Detect

2013-10-06 14:09:23 ----D---- C:\Program Files\Common Files\PX Storage Engine

2013-10-06 14:07:14 ----A---- C:\Windows\system32\FlashPlayerApp.exe

2013-10-06 14:07:13 ----D---- C:\Windows\system32\Macromed

2013-10-05 17:25:57 ----D---- C:\Users\drago\AppData\Roaming\Chilirec

2013-10-05 17:17:02 ----D---- C:\Users\drago\AppData\Roaming\ProgSense

2013-10-05 17:17:02 ----D---- C:\Downloads

2013-10-05 17:13:28 ----D---- C:\Users\drago\AppData\Roaming\Orbit

2013-10-05 16:07:54 ----D---- C:\ProgramData\Systweak

2013-10-04 10:46:24 ----D---- C:\Users\drago\AppData\Roaming\NCH Software

2013-10-04 08:31:54 ----D---- C:\Users\drago\AppData\Roaming\Systweak

2013-09-23 17:05:42 ----D---- C:\ProgramData\mquadr.at

2013-09-23 17:05:23 ----DC---- C:\ProgramData\{956A2848-3D1D-4838-BC7C-02757D5398E2}

2013-09-23 17:05:07 ----D---- C:\Program Files\KPN

======List of files/folders modified in the last 1 month======

2013-10-06 16:10:10 ----RD---- C:\Program Files

2013-10-06 15:12:07 ----D---- C:\Windows\inf

2013-10-06 15:10:58 ----D---- C:\Windows\system32\config

2013-10-06 15:10:38 ----D---- C:\Windows\Tasks

2013-10-06 15:05:38 ----D---- C:\Windows\system32\Tasks

2013-10-06 15:02:45 ----D---- C:\Windows\system32\drivers

2013-10-06 15:02:44 ----D---- C:\Windows\system32\DriverStore

2013-10-06 15:01:10 ----SHD---- C:\Windows\Installer

2013-10-06 15:00:24 ----D---- C:\Windows\System32

2013-10-06 14:59:15 ----HD---- C:\ProgramData

2013-10-06 14:56:57 ----SHD---- C:\System Volume Information

2013-10-06 14:47:15 ----D---- C:\Windows\Temp

2013-10-06 14:46:38 ----D---- C:\Windows\system32\catroot

2013-10-06 14:40:28 ----D---- C:\Program Files\Common Files\McAfee

2013-10-06 14:37:54 ----D---- C:\Windows\system32\NDF

2013-10-06 14:30:12 ----D---- C:\Program Files\McAfee

2013-10-06 14:25:56 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-10-06 14:25:30 ----D---- C:\Users\drago\AppData\Roaming\Winamp

2013-10-06 14:23:46 ----D---- C:\Program Files\Winamp

2013-10-06 14:09:23 ----D---- C:\Program Files\Common Files

2013-10-06 14:08:55 ----D---- C:\Windows

2013-10-06 14:07:30 ----D---- C:\Windows\Downloaded Program Files

2013-10-06 14:03:21 ----RSD---- C:\Windows\Media

2013-10-06 14:03:21 ----D---- C:\Windows\system32\wbem

2013-10-06 14:03:21 ----D---- C:\Windows\system32\nl-NL

2013-10-06 14:03:21 ----D---- C:\Windows\ShellNew

2013-10-06 14:03:20 ----D---- C:\Windows\system32\wfp

2013-10-06 14:03:20 ----D---- C:\Program Files\Windows Journal

2013-10-06 14:03:20 ----D---- C:\Program Files\Internet Explorer

2013-10-06 14:03:13 ----D---- C:\Program Files\HTC

2013-10-06 14:03:12 ----D---- C:\Program Files\PC Connectivity Solution

2013-10-06 13:54:56 ----D---- C:\Windows\system32\catroot2

2013-10-06 13:54:54 ----D---- C:\Windows\winsxs

2013-10-06 13:01:32 ----D---- C:\Windows\system32\migration

2013-10-06 13:01:32 ----D---- C:\Windows\system32\en-US

2013-10-06 13:01:32 ----D---- C:\Windows\PolicyDefinitions

2013-10-06 13:01:32 ----D---- C:\Windows\L2Schemas

2013-10-06 13:01:32 ----D---- C:\Windows\AppPatch

2013-10-06 13:01:32 ----D---- C:\Program Files\Windows Defender

2013-10-06 13:01:22 ----D---- C:\Windows\system32\CodeIntegrity

2013-10-06 13:01:22 ----D---- C:\Windows\rescache

2013-10-06 13:01:22 ----D---- C:\Windows\Offline Web Pages

2013-10-06 13:01:12 ----D---- C:\Windows\AppCompat

2013-10-06 13:01:09 ----D---- C:\ProgramData\Microsoft Help

2013-10-06 13:01:09 ----D---- C:\Program Files\WinZip

2013-10-06 13:01:09 ----D---- C:\Program Files\Microsoft Silverlight

2013-10-06 13:01:06 ----D---- C:\Program Files\Common Files\microsoft shared

2013-10-06 13:00:19 ----D---- C:\Program Files\Common Files\Autodesk Shared

2013-10-06 13:00:11 ----D---- C:\Program Files\McAfee Security Scan

2013-10-06 13:00:11 ----D---- C:\Program Files\Lame For Audacity

2013-10-06 13:00:08 ----D---- C:\Program Files\Nokia

2013-10-06 12:59:58 ----D---- C:\ProgramData\FLEXnet

2013-10-06 12:59:01 ----D---- C:\Users\drago\AppData\Roaming\Audacity

2013-10-06 12:57:05 ----D---- C:\Windows\registration

2013-10-06 12:56:46 ----D---- C:\Windows\system32\wdi

2013-10-06 12:55:26 ----D---- C:\Windows\Microsoft.NET

2013-10-06 12:54:57 ----RSD---- C:\Windows\assembly

2013-10-06 12:54:27 ----SD---- C:\Users\drago\AppData\Roaming\Microsoft

2013-10-06 12:54:14 ----SD---- C:\ProgramData\Microsoft

2013-10-06 12:54:14 ----D---- C:\ProgramData\McAfee

2013-10-05 17:35:22 ----D---- C:\Windows\system32\appmgmt

2013-10-05 16:22:22 ----D---- C:\ProgramData\WinZip

2013-10-05 16:05:46 ----D---- C:\ProgramData\NCH Software

2013-09-12 18:40:11 ----D---- C:\Program Files\Google

2013-09-12 09:50:34 ----D---- C:\Windows\Prefetch

2013-09-11 11:16:13 ----D---- C:\Windows\system32\MRT

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 KR10N;KR10N; C:\Windows\system32\DRIVERS\KR10N.sys [2006-02-14 208256]

R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2013-08-07 568632]

R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2013-08-07 213232]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]

R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]

R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]

R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2009-02-19 63872]

R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-14 1035776]

R3 E100B;Intel® PRO Network Connection Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2007-03-14 165760]

R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2013-08-07 133992]

R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2013-08-07 235520]

R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2013-08-07 365224]

R3 mfencbdc;McAfee Inc. mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [2013-07-09 288056]

R3 NETw2v32;Stuurprogramma voor Intel® PRO/Wireless 2200BG-netwerkverbinding onder Windows Vista; C:\Windows\system32\DRIVERS\NETw2v32.sys [2007-03-07 2595840]

R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]

R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\sthda.sys [2005-06-09 967424]

R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2005-06-03 162176]

R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2008-03-25 41472]

R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2008-10-06 137984]

R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2009-03-03 36864]

R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216]

R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2009-03-05 74368]

R3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2009-03-12 16128]

R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2009-03-19 43264]

R3 ttv500x;TOSHIBA PCI TV Tuner(x86); C:\Windows\system32\drivers\ttv500x.sys [2007-03-28 322816]

S0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ.SYS [2004-09-08 9216]

S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]

S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]

S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]

S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]

S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]

S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]

S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]

S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2013-08-07 60920]

S3 HipShieldK;McAfee Inc. HipShieldK; C:\Windows\system32\drivers\HipShieldK.sys [2012-05-28 147472]

S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys []

S3 mfeavfk02;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk02.sys []

S3 mfebopk;McAfee Inc. mfebopk; C:\Windows\system32\drivers\mfebopk.sys [2013-08-07 65928]

S3 mfehidk01;McAfee Inc.; C:\Windows\system32\drivers\mfehidk01.sys []

S3 mfencbdc01;McAfee Inc.; C:\Windows\system32\drivers\mfencbdc01.sys []

S3 mfencbdc02;McAfee Inc.; C:\Windows\system32\drivers\mfencbdc02.sys []

S3 mfencrk;McAfee Inc. mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [2013-07-09 80656]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]

S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]

S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]

S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]

S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]

S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]

S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []

S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2009-03-23 54272]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 49664]

S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []

S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []

S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]

S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-05 65640]

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]

R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe [2012-06-15 95232]

R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]

R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2013-08-05 638976]

R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2013-08-07 169320]

R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2013-08-07 172416]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-03-06 203296]

R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2009-03-17 144752]

R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]

S2 0113021381062623mcinstcleanup;McAfee Application Installer Cleanup (0113021381062623); C:\Windows\TEMP\011302~1.EXE [2013-07-30 834664]

S2 bonanzadealslive;BonanzaDealsLive-service (bonanzadealslive); C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe /svc []

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288]

S2 McMPFSvc;McAfee Personal Firewall; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288]

S2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288]

S2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288]

S2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288]

S2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2012-10-07 184288]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-06 257416]

S3 bonanzadealslivem;BonanzaDealsLive-service (bonanzadealslivem); C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe /medsvc []

S3 McODS;McAfee Scanner; C:\Program Files\McAfee\VirusScan\mcods.exe [2013-08-02 471592]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-23 1343400]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites


Download adwcleaner.pngAdwCleaner by Xplode naar het bureaublad.

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik vervolgens op Scan.
  • Klik vervolgens op Clean als er items zijn gevonden.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[R1].txt.

Post aansluitend de inhoud van dit log als bijlage bij je volgende bericht.

****************************************************************************************************************************

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  1. Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  2. Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik vervolgens op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
    
    
    emptyclsid;
    firefoxlook; 
    Chromelook; 
    CHRdefaults;
    autoclean; 
    iedefaults; 
    filesrcm;
    
    
    


  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.


Link naar reactie
Delen op andere sites

Hoi, Ik heb gedaan (hoop ik) alles wat je gevraagd hebt.

# AdwCleaner v3.006 - Report created 07/10/2013 at 09:18:47

# Updated 01/10/2013 by Xplode

# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)

# Username : drago - QOSMIO

# Running from : C:\Users\drago\Desktop\adwcleaner.exe

# Option : Clean

***** [ Services ] *****

[#] Service Deleted : bonanzadealslive

[#] Service Deleted : bonanzadealslivem

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon

Folder Deleted : C:\ProgramData\BonanzaDealsLive

Folder Deleted : C:\ProgramData\Systweak

Folder Deleted : C:\Users\drago\AppData\Local\BonanzaDealsLive

Folder Deleted : C:\Users\drago\AppData\Local\Temp\eIntaller

Folder Deleted : C:\Users\drago\AppData\Roaming\searchgol

Folder Deleted : C:\Users\drago\AppData\Roaming\Systweak

Folder Deleted : C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl

Folder Deleted : C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\drago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

Shortcut Disinfected : C:\Users\drago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk

Shortcut Disinfected : C:\Users\drago\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

Shortcut Disinfected : C:\Users\drago\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL

Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE

Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane

Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1

Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap

Key Deleted : HKLM\SOFTWARE\Classes\S

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS

Key Deleted : HKLM\SOFTWARE\5b6dadfb16ee542

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00078E95-3A4A-4137-8DE7-2824908D1C17}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE063412-BEA4-4D76-8ED3-183BE6220D17}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063412-BEA4-4D76-8ED3-183BE6220D17}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00078E95-3A4A-4137-8DE7-2824908D1C17}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063412-BEA4-4D76-8ED3-183BE6220D17}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8F547BDD-FCD4-48F8-A06F-573D6F404A3C}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE063412-BEA4-4D76-8ED3-183BE6220D17}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{00078E95-3A4A-4137-8DE7-2824908D1C17}]

Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command

Key Deleted : HKCU\Software\BabSolution

Key Deleted : HKCU\Software\DataMngr

[#] Key Deleted : HKCU\Software\DataMngr_Toolbar

Key Deleted : HKCU\Software\InstallCore

Key Deleted : HKCU\Software\Searchgol

Key Deleted : HKLM\Software\DataMngr

Key Deleted : HKLM\Software\qvo6Software

Key Deleted : HKLM\Software\Searchgol

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16686

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]

-\\ Google Chrome v

[ File : C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [6073 octets] - [07/10/2013 09:17:46]

AdwCleaner[s0].txt - [5278 octets] - [07/10/2013 09:18:47]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [5338 octets] ##########

Zoek.exe Version 4.0.0.4 Updated 27-September-2013

Tool run by drago on ma 07-10-2013 at 9:43:02,87.

Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\drago\AppData\Local\Temp\wz7ed3\zoek.exe [script inserted]

==== System Restore Info ======================

7-10-2013 9:45:45 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1987154144-2504670919-2467418806-1000\Software\Microsoft\Internet Explorer\SearchScopes\{80D19908-E38F-4259-A9A0-A8033230EC78} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

"C:\Windows\system32\tasks\UpdaterEX" deleted

"C:\Windows\tasks\UpdaterEX.job" deleted

"C:\Windows\system32\tasks\BonanzaDealsLiveUpdateTaskMachineCore" deleted

"C:\Windows\system32\tasks\BonanzaDealsLiveUpdateTaskMachineUA" deleted

"C:\Windows\system32\tasks\BonanzaDealsUpdate" deleted

"C:\Users\drago\AppData\Roaming\UpdaterEX" deleted

"C:\Users\drago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BonanzaDeals" deleted

"C:\Windows\System32\searchplugins" deleted

"C:\Windows\System32\Extensions" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\drago\AppData\Local\Temp ====

2013-10-06 13:05:36 25E5512A65B55D216C58769E29C016BA 341360 ----a-w- C:\Users\drago\AppData\Local\Temp\uninst1.exe

2013-10-06 12:58:04 A21DE5067618D4F2DF261416315ED120 6144 ----a-w- C:\Users\drago\AppData\Local\Temp\10B9E30C-BAB0-7891-A03B-EA9750689A30\Latest\IEHelper.dll

2013-10-06 12:58:04 0F66E8E2340569FB17E774DAC2010E31 520234 ----a-w- C:\Users\drago\AppData\Local\Temp\10B9E30C-BAB0-7891-A03B-EA9750689A30\Latest\sqlite3.dll

2013-10-06 12:58:02 B212865E7E478A28A97268F960079A8D 132096 ----a-w- C:\Users\drago\AppData\Local\Temp\10B9E30C-BAB0-7891-A03B-EA9750689A30\Latest\BExternal.dll

2013-09-29 16:29:18 4B5B56BBC4D472D52C03C7DC6C33026D 734576 ------w- C:\Users\drago\AppData\Local\Temp\is1275519350\2430534_stp\SearchGol.exe

2013-09-25 14:11:10 655D2F50763B7F9370EBBF9DDAD80555 202832 ------w- C:\Users\drago\AppData\Local\Temp\is1275519350\2430646_stp\whilokii_is.exe

2013-09-24 14:18:34 F8F24C37A1E930ECADB7736C69F3E7F4 488016 ------w- C:\Users\drago\AppData\Local\Temp\is1275519350\2430604_stp\cor_ar_201392319852_qvo6.exe

2013-09-24 05:38:19 E1D607BD288B979FECE0770324EE6F11 245672 ----a-w- C:\Users\drago\AppData\Local\Temp\10B9E30C-BAB0-7891-A03B-EA9750689A30\Latest\ccp.exe

====== C:\Windows\system32 =====

2013-10-06 17:05:52 E32230F4135D507E79509C998F4D8C92 34304 ----a-w- C:\Windows\System32\atmlib.dll

2013-10-06 17:05:52 5DAF8A6B7F127C4E70A5C1F707347859 295424 ----a-w- C:\Windows\System32\atmfd.dll

2013-10-06 16:07:10 F0D4AE074D9BC0741DC6E91C741F2F8C 23040 ----a-w- C:\Windows\System32\licmgr10.dll

2013-10-06 16:07:10 E5D91D6B81A293AB6854CAD112240A4B 1141248 ----a-w- C:\Windows\System32\urlmon.dll

2013-10-06 16:07:10 E14A07B768EC49D382CABCE2F078D576 232960 ----a-w- C:\Windows\System32\url.dll

2013-10-06 16:07:10 DEFB55D4FF094673DF31FA89A8A8A2F0 226816 ----a-w- C:\Windows\System32\dxtrans.dll

2013-10-06 16:07:10 C68FBBF01E86CB6CF0B797748FBD6C1A 357888 ----a-w- C:\Windows\System32\dxtmsft.dll

2013-10-06 16:07:10 C28A634CF127DA67D566B5E14D0A0170 719360 ----a-w- C:\Windows\System32\mshtmlmedia.dll

2013-10-06 16:07:10 C225E5307D8D4982A1687F2702C37C78 158720 ----a-w- C:\Windows\System32\msls31.dll

2013-10-06 16:07:10 BCA4913CDE903B4BDEEDAD1D6DBF5E2A 391168 ----a-w- C:\Windows\System32\ieui.dll

2013-10-06 16:07:10 B96C13B5C85AC4240FE95DE115945D59 38400 ----a-w- C:\Windows\System32\imgutil.dll

2013-10-06 16:07:10 AF0332E09DDBE0172237D1958A7DADB8 79872 ----a-w- C:\Windows\System32\mshtmled.dll

2013-10-06 16:07:10 A7E8E3A9F92D9B0D495F636A1D282883 48640 ----a-w- C:\Windows\System32\mshtmler.dll

2013-10-06 16:07:10 9DF7A7C74D8632CB5EBD37E3A374825E 204800 ----a-w- C:\Windows\System32\webcheck.dll

2013-10-06 16:07:10 9D9AC6CE9A9D951AC40DE91CD6F0A620 1441280 ----a-w- C:\Windows\System32\inetcpl.cpl

2013-10-06 16:07:10 96E0F0BED5D9EBABB899D8CA83C36A7E 523264 ----a-w- C:\Windows\System32\vbscript.dll

2013-10-06 16:07:10 932571EFF79B93F94E84ADF4989A277F 69120 ----a-w- C:\Windows\System32\icardie.dll

2013-10-06 16:07:10 8C3D32A4A46326031309A43C52539D7F 1400416 ----a-w- C:\Windows\System32\ieapfltr.dat

2013-10-06 16:07:10 8A45166CD9874463AB76B552C9C2D3AD 110592 ----a-w- C:\Windows\System32\IEAdvpack.dll

2013-10-06 16:07:10 87E71F2A83681F41B796CA685818EF2D 163840 ----a-w- C:\Windows\System32\msrating.dll

2013-10-06 16:07:10 828B4A41BE891A7AEC07E693422B4A3A 117248 ----a-w- C:\Windows\System32\iepeers.dll

2013-10-06 16:07:10 81C4D657D37C3A5418B54BFECE821B84 57344 ----a-w- C:\Windows\System32\pngfilt.dll

2013-10-06 16:07:10 80B47F0F45C3EBF41C30E0BA367D25D3 125440 ----a-w- C:\Windows\System32\occache.dll

2013-10-06 16:07:10 7FE153D71E85332B870A6C9A3BA04F03 137216 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-10-06 16:07:10 7E540E07B97DCBCF8F76FA743B486BF2 61440 ----a-w- C:\Windows\System32\iesetup.dll

2013-10-06 16:07:10 7C63629508BB87227C3C861355A155B4 39424 ----a-w- C:\Windows\System32\jsproxy.dll

2013-10-06 16:07:10 79DC575FE905D5DD5C5A4C5993A7C7F9 2876928 ----a-w- C:\Windows\System32\jscript9.dll

2013-10-06 16:07:10 6DF2C6438CFF6EFCBBB88AEE01795501 73728 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe

2013-10-06 16:07:10 5D2D7E7850CE963C2F401D4DEE7BB32A 14332928 ----a-w- C:\Windows\System32\mshtml.dll

2013-10-06 16:07:10 56E51C26745FF7413514EA4DDF33BC6C 11776 ----a-w- C:\Windows\System32\msfeedssync.exe

2013-10-06 16:07:10 54C06D9684F3D0AD7E87502E57CC4655 42496 ----a-w- C:\Windows\System32\ie4uinit.exe

2013-10-06 16:07:10 535F6263035F2530A62D5D64EF6E73D3 1767936 ----a-w- C:\Windows\System32\wininet.dll

2013-10-06 16:07:10 52A7D73D5570F757D865DDECD087FB41 138752 ----a-w- C:\Windows\System32\wextract.exe

2013-10-06 16:07:10 4FCC53B82D91607FB9AE24E617108BB2 13761024 ----a-w- C:\Windows\System32\ieframe.dll

2013-10-06 16:07:10 4A47CAEA8D3B82DE439A79771ECED4B1 361984 ----a-w- C:\Windows\System32\html.iec

2013-10-06 16:07:10 4417377CEDABD9BD161FA7EDEDA175D4 745472 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe

2013-10-06 16:07:10 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-10-06 16:07:10 414A3D9AAE072CDEFE0B64C2EBEE18D2 61952 ----a-w- C:\Windows\System32\tdc.ocx

2013-10-06 16:07:10 404FAD93ABFBD86D1AAAB47D5DFA6505 242200 ----a-w- C:\Windows\System32\iedkcs32.dll

2013-10-06 16:07:10 3B74EADF1B70251D3CDB87BC338DC34D 109056 ----a-w- C:\Windows\System32\iesysprep.dll

2013-10-06 16:07:10 3AB2A38F7EA9E62D176A78FB58761E24 12800 ----a-w- C:\Windows\System32\mshta.exe

2013-10-06 16:07:10 338520304B99471BD0ED121954FE7863 82432 ----a-w- C:\Windows\System32\inseng.dll

2013-10-06 16:07:10 2EC47CF6A36F6A83BB8B98C1425B4D41 493056 ----a-w- C:\Windows\System32\msfeeds.dll

2013-10-06 16:07:10 2D7A29C35D0894481A69FA3AC45F18F0 41984 ----a-w- C:\Windows\System32\msfeedsbs.dll

2013-10-06 16:07:10 281A720B0A984E325599EE1F0342E8FB 2048000 ----a-w- C:\Windows\System32\iertutil.dll

2013-10-06 16:07:10 1FF56AC32B38A94C3C88497BD6E00C96 25185 ----a-w- C:\Windows\System32\ieuinit.inf

2013-10-06 16:07:10 0F44172A5B34E8F208CD0F209EDD4A73 629248 ----a-w- C:\Windows\System32\ieapfltr.dll

2013-10-06 16:07:10 06EEAD5864F357ADC618F65A2F2C5156 2706432 ----a-w- C:\Windows\System32\mshtml.tlb

2013-10-06 16:07:10 0402BFC25AB49E02256BC24E32829773 185344 ----a-w- C:\Windows\System32\elshyph.dll

2013-10-06 16:07:10 038F76279EC64878A072D988DE13C7B2 150528 ----a-w- C:\Windows\System32\iexpress.exe

2013-10-06 16:07:10 00531B52C9468929F2C651B3BCADCBC9 690688 ----a-w- C:\Windows\System32\jscript.dll

2013-10-06 16:07:10 000B55B43992179E69C2E83CCB8F1126 33280 ----a-w- C:\Windows\System32\iernonce.dll

2013-10-06 16:06:26 72E953215CADE1A726C04AAFDF6B463D 49152 ----a-w- C:\Windows\System32\taskhost.exe

2013-10-06 16:05:53 FB3F036EF6A467F7AF46C821FF5D198D 220160 ----a-w- C:\Windows\System32\d3d10core.dll

2013-10-06 16:05:53 E12C4928B32ACE04610259647F072635 906240 ----a-w- C:\Windows\System32\FntCache.dll

2013-10-06 16:05:53 D4F264FE23F8953D840904418220C15E 293376 ----a-w- C:\Windows\System32\dxgi.dll

2013-10-06 16:05:53 D4212AB475A3B25EC4DF574536C3EDC5 249856 ----a-w- C:\Windows\System32\d3d10_1core.dll

2013-10-06 16:05:53 C7A730AFB80B11F93EFC81B1D6F920D7 364544 ----a-w- C:\Windows\System32\XpsGdiConverter.dll

2013-10-06 16:05:53 B3170CCC779B682C3341873EA60CF084 1988096 ----a-w- C:\Windows\System32\d3d10warp.dll

2013-10-06 16:05:53 9FF8F684BACF326082E5562F7C104A79 3419136 ----a-w- C:\Windows\System32\d2d1.dll

2013-10-06 16:05:53 8B285BDAB7735FDFB18E6F7122923B77 187392 ----a-w- C:\Windows\System32\UIAnimation.dll

2013-10-06 16:05:53 8504944851DF6175CC489A8F3328459E 1080832 ----a-w- C:\Windows\System32\d3d10.dll

2013-10-06 16:05:53 6A7B5A3EFCCDB53DA41CF6838056990F 1158144 ----a-w- C:\Windows\System32\XpsPrint.dll

2013-10-06 16:05:53 6A13B4F3B3F575F1E24B877B9359AABA 10752 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-10-06 16:05:53 6951562DC4625EEFC6EACD52AD165866 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-10-06 16:05:53 62A6EB5771580CAE445804389F3F7432 207872 ----a-w- C:\Windows\System32\WindowsCodecsExt.dll

2013-10-06 16:05:53 60F4AEFA103D421EA4A40E31409B4756 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-10-06 16:05:53 600A65F922CCDCBB2D11467914241556 2284544 ----a-w- C:\Windows\System32\msmpeg2vdec.dll

2013-10-06 16:05:53 589CBC4989F750E1DA35625AB481CF43 4096 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-10-06 16:05:53 545F1BAAADD0BF1F4FE4586293FCA07D 417792 ----a-w- C:\Windows\System32\WMPhoto.dll

2013-10-06 16:05:53 4FF3EC04CD47DD62181894B71B004E40 604160 ----a-w- C:\Windows\System32\d3d10level9.dll

2013-10-06 16:05:53 49ACA548B2423F1C67898E6AC719A9A6 3584 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-10-06 16:05:53 4277F5164DE9B7C665BB928B9145BEE0 1247744 ----a-w- C:\Windows\System32\DWrite.dll

2013-10-06 16:05:53 3C1936A12C62254F914A01BBC6A8DC69 161792 ----a-w- C:\Windows\System32\d3d10_1.dll

2013-10-06 16:05:53 3BE0D923AA45A4DBE091C2D84F0B4FE7 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll

2013-10-06 16:05:53 3BCECD87AB4E6743BFB45B352AD1A529 1230336 ----a-w- C:\Windows\System32\WindowsCodecs.dll

2013-10-06 16:05:53 2E33DFD10F28F86C3FC40EE123CC3904 2560 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-10-06 16:05:53 1C60E09CA1C3A045BC4D367F67C915B7 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-10-06 16:05:53 007863E45F25AA47A4C30D0930BBFD85 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-10-06 16:03:36 6DE66FE7C526637E74CD066461C7C871 1505280 ----a-w- C:\Windows\System32\d3d11.dll

2013-10-06 12:22:24 C6A44FC3CF2F5801561804272217B14D 1892184 ----a-w- C:\Windows\System32\D3DX9_42.dll

2013-10-06 12:22:22 797E24743937D67D69F28F2CF5052EE8 2414360 ----a-w- C:\Windows\System32\d3dx9_31.dll

2013-10-06 12:07:14 E9B05DF6E6E8F01AB8EC3036F7770396 692616 ----a-w- C:\Windows\System32\FlashPlayerApp.exe

2013-10-06 12:07:14 733AB625B4398BA223A9664EE6473051 71048 ----a-w- C:\Windows\System32\FlashPlayerCPLApp.cpl

2013-10-06 11:59:10 B7230010D97787AF3D25E4C82F2B06B9 626688 ----a-w- C:\Windows\System32\usp10.dll

2013-10-06 11:59:09 5A043BDA3BFADD5B4C16F3BDE5EC4312 652800 ----a-w- C:\Windows\System32\rpcrt4.dll

2013-10-06 11:59:07 AE8EB083B050E17A7D6EB5E28AECDDD6 1166848 ----a-w- C:\Windows\System32\crypt32.dll

2013-10-06 11:59:07 68EAAEDF0365168B804E8728368FA946 175104 ----a-w- C:\Windows\System32\wintrust.dll

2013-10-06 11:59:06 7CA1BECEA5DE2643ADDAD32670E7A4C9 140288 ----a-w- C:\Windows\System32\cryptsvc.dll

2013-10-06 11:59:06 7B851A8018B1EA00A69707A390004884 103936 ----a-w- C:\Windows\System32\cryptnet.dll

2013-10-06 11:58:29 310F6F492A3B4B1020ED9BF9CCBBE6B6 376832 ----a-w- C:\Windows\System32\dpnet.dll

2013-10-06 11:58:11 DA8AAF7E56F698608A89542131F74818 40960 ----a-w- C:\Windows\System32\wwanprotdim.dll

2013-10-06 11:58:11 3C5E51C05BE9B56EAFF4E388C3AB25E4 186368 ----a-w- C:\Windows\System32\wwansvc.dll

2013-10-06 11:57:59 9FA7BF625122CCAC90FCD307174D8CF3 3913664 ----a-w- C:\Windows\System32\ntoskrnl.exe

2013-10-06 11:57:58 DE91DCC7BC55E940979097E98F743205 69632 ----a-w- C:\Windows\System32\smss.exe

2013-10-06 11:57:58 DD5F17D44E9966E7EA447AE8C4D12D6C 3968960 ----a-w- C:\Windows\System32\ntkrnlpa.exe

2013-10-06 11:57:58 23AB7E36551C6BA5370EF7F05142F0EB 38912 ----a-w- C:\Windows\System32\csrsrv.dll

2013-10-06 11:57:58 113B224CA1F55673C410A91D986D2276 1289096 ----a-w- C:\Windows\System32\ntdll.dll

2013-10-06 11:57:53 45FBAFFA68CBC29AC2563985CEE72B9C 24576 ----a-w- C:\Windows\System32\cryptdlg.dll

2013-10-06 11:57:38 FC415B303B1ECF80B5F130A1F7203D02 492544 ----a-w- C:\Windows\System32\win32spl.dll

2013-10-06 11:57:37 EAADD6E47ED2A7003ACE1793B98CF63F 1389568 ----a-w- C:\Windows\System32\msxml6.dll

2013-10-06 11:57:26 1153AC6E133AA849853DFD407B086B80 420064 ----a-w- C:\Windows\System32\locale.nls

2013-10-06 11:57:15 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\System32\certutil.exe

2013-10-06 11:57:14 CC917AC4D3F8756FF13174980B474791 43008 ----a-w- C:\Windows\System32\certenc.dll

2013-10-06 11:57:07 674EB817CF6E43B7DF3EC26E06E98D98 509440 ----a-w- C:\Windows\System32\qedit.dll

2013-10-06 11:57:03 0805487A6036A9F9C4E7AF7FEF835529 1620992 ----a-w- C:\Windows\System32\WMVDECOD.DLL

2013-10-06 11:56:56 ED59143843560B5EDB543C2A48CB9E4B 45568 ----a-w- C:\Windows\System32\oflc-nz.rs

2013-10-06 11:56:56 A704E750245D5D4EE4A23E99A00F27D5 46592 ----a-w- C:\Windows\System32\fpb.rs

2013-10-06 11:56:56 A067A19A91C2AA0198F9BD01A5CEF5C6 21504 ----a-w- C:\Windows\System32\grb.rs

2013-10-06 11:56:56 9EDCFA23CC081E38C86CA309D0F7E3DC 30720 ----a-w- C:\Windows\System32\usk.rs

2013-10-06 11:56:56 9B7D7F4D1F79E8B7D727BE94B1630D59 44544 ----a-w- C:\Windows\System32\pegibbfc.rs

2013-10-06 11:56:56 6EC618588447B82EA8D88719EE46F725 43520 ----a-w- C:\Windows\System32\csrr.rs

2013-10-06 11:56:56 41CE7975CAD7BCF92538D2C452239523 40960 ----a-w- C:\Windows\System32\cob-au.rs

2013-10-06 11:56:56 27828AAA24AA46F11036954ADE355C1C 15360 ----a-w- C:\Windows\System32\djctq.rs

2013-10-06 11:56:55 64E211E0FDFCE4D186DF58BB7D0503BC 2576384 ----a-w- C:\Windows\System32\gameux.dll

2013-10-06 11:56:55 5109C45498BC709C8A7E016D5FFCCAC2 20480 ----a-w- C:\Windows\System32\pegi.rs

2013-10-06 11:56:55 4F5C56DBF076D5BBB1D22B37BF281396 20480 ----a-w- C:\Windows\System32\pegi-pt.rs

2013-10-06 11:56:55 43C9CF6825CEA58F1815B7C3DBBB385C 308736 ----a-w- C:\Windows\System32\Wpc.dll

2013-10-06 11:56:53 DDD1C4AB9A9DAE6D4092C4C95E714650 51712 ----a-w- C:\Windows\System32\esrb.rs

2013-10-06 11:56:53 CBC69A055EF410CBD65593E4808B6DB4 23552 ----a-w- C:\Windows\System32\oflc.rs

2013-10-06 11:56:53 7752619457598CF057C4CC02A0867029 55296 ----a-w- C:\Windows\System32\cero.rs

2013-10-06 11:56:53 72035C97983745E742D71E9A8EF70BBB 20480 ----a-w- C:\Windows\System32\pegi-fi.rs

2013-10-06 11:56:24 BF6D6ED5FADCEEE885BD0144ECF1BA27 220160 ----a-w- C:\Windows\System32\ncrypt.dll

2013-10-06 11:56:18 E02781D4871844DCD30DF1D69A650F78 12872704 ----a-w- C:\Windows\System32\shell32.dll

2013-10-06 11:56:17 2C4A87CA8C00E98EFDCFA2E8EC9A3503 180224 ----a-w- C:\Windows\System32\shdocvw.dll

2013-10-06 11:56:13 ED880065BBB2C5F57B74F30812A65F4F 2348544 ----a-w- C:\Windows\System32\win32k.sys

2013-10-06 11:56:04 D5E18BA95F9E7D787D25EF07AC68603E 2048 ----a-w- C:\Windows\System32\tzres.dll

2013-10-06 11:55:54 6933E2AFF444A7A95D5C67E98449163E 868352 ----a-w- C:\Windows\System32\kernel32.dll

2013-10-06 11:55:54 51BB04243DF6196C06E125898127E397 169984 ----a-w- C:\Windows\System32\winsrv.dll

2013-10-06 11:55:54 2DE16A63F71D10B42ACE01E759078600 271360 ----a-w- C:\Windows\System32\conhost.exe

2013-10-06 11:55:54 1E65CF7B26D02750544EFDD73C8118FA 293376 ----a-w- C:\Windows\System32\KernelBase.dll

2013-10-06 11:50:45 E904178851A6A44BFA97E064EF779E9D 1796096 ----a-w- C:\Windows\System32\authui.dll

2013-10-06 11:50:45 B0BC447C758FF055D53FC6831FDB0344 101720 ----a-w- C:\Windows\System32\consent.exe

2013-10-06 11:50:44 EACFDF31921F51C097629F1F3C9129B4 47104 ----a-w- C:\Windows\System32\appinfo.dll

====== C:\Windows\system32\drivers =====

2013-10-06 14:29:28 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf

2013-10-06 12:46:38 8F72C4916A288485812745DC5AF873FC 147472 ----a-w- C:\Windows\System32\drivers\HipShieldK.sys

2013-10-06 11:59:11 5E43D2B0EE64123D4880DFA6626DEFDE 1211752 ----a-w- C:\Windows\System32\drivers\ntfs.sys

2013-10-06 11:58:38 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys

2013-10-06 11:58:12 E306A24D9694C724FA2491278BF50FDB 196328 ----a-w- C:\Windows\System32\drivers\fvevol.sys

2013-10-06 11:57:09 AAB149EE616952BB84308C28E75ED20D 187752 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS

2013-10-06 11:57:09 4E8B9BE71B807B3BAEDB7F4243F85E3C 1293760 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2013-10-06 11:56:22 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\drivers\ataport.sys

2013-10-06 11:56:14 E405328A0E38BF823E2361C413283F6D 218984 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys

2013-10-06 11:56:14 16498EBC04AE9DD07049A8884B205C05 728424 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2013-10-06 11:55:53 B37B08F2E5EEB1A37E448E09BACE1101 31232 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys

====== C:\Windows\Tasks ======

2013-10-06 12:07:18 4CFE131EA586C9AA47C297234BB33F40 3878 ----a-w- C:\Windows\system32\Tasks\Adobe Flash Player Updater

2013-10-06 12:07:17 DDFE0B6D559AAD5747075D63AD13ECD5 940 ----a-w- C:\Windows\Tasks\Adobe Flash Player Updater.job

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-10-07 07:37:07 -------- d-----w- C:\Program Files\WinZip

2013-10-06 14:10:10 -------- d-----w- C:\Program Files\trend micro

2013-10-06 12:21:21 -------- d-----w- C:\Program Files\Winamp Detect

2013-10-06 12:09:23 -------- d-----w- C:\Program Files\Common Files\PX Storage Engine

2013-09-23 15:05:07 -------- d-----w- C:\Program Files\KPN

======= C: =====

2013-10-06 13:00:32 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\MSDOS.SYS

2013-10-06 13:00:32 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\IO.SYS

====== C:\Users\drago\AppData\Roaming ======

2013-10-07 07:38:06 -------- d-----w- C:\Users\drago\AppData\Local\WinZip

2013-10-06 13:05:06 -------- d-----w- C:\Users\drago\AppData\Local\avgchrome

2013-10-06 12:21:21 -------- d-----w- C:\Users\drago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Applicatie Detect

2013-10-05 15:25:57 -------- d-----w- C:\Users\drago\AppData\Roaming\Chilirec

2013-10-05 15:17:02 -------- d-----w- C:\Users\drago\AppData\Roaming\ProgSense

2013-10-05 15:13:28 -------- d-----w- C:\Users\drago\AppData\Roaming\Orbit

2013-10-04 08:46:24 -------- d-----w- C:\Users\drago\AppData\Roaming\NCH Software

2013-09-23 15:06:05 -------- d-----w- C:\Users\drago\AppData\Local\mquadr.at

====== C:\Users\drago ======

2013-10-07 07:37:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip

2013-10-07 07:35:38 6ED6AF019F8B96EB268A174241358A90 424336 ----a-w- C:\Users\drago\Downloads\WinZip175.exe

2013-10-07 07:15:10 5611140E8CC5927D371C27EA1F9E71A6 1045226 ----a-w- C:\Users\drago\Desktop\adwcleaner.exe

2013-10-06 14:08:32 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\drago\Downloads\RSIT.exe

2013-10-06 12:57:07 B06712BF5643BB55600A040F210DC218 20586496 ----a-w- C:\Users\drago\Downloads\SkypeSetup [1].exe

2013-10-06 12:38:13 40F6C2BD9EB61CA366331054B93EC6EA 1003056 ----a-w- C:\Users\drago\Downloads\wpsetup.exe

2013-10-06 12:37:32 3ABB013DC48172F2E3F0C02E3421C7C4 841808 ----a-w- C:\Users\drago\Downloads\stsetup.exe

2013-10-06 12:09:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp

2013-10-05 15:16:28 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orbit

2013-09-23 15:05:42 -------- d-----w- C:\ProgramData\mquadr.at

2013-09-23 15:05:23 -------- dc----w- C:\ProgramData\{956A2848-3D1D-4838-BC7C-02757D5398E2}

====== C: exe-files ==

2013-10-07 07:35:38 6ED6AF019F8B96EB268A174241358A90 424336 ----a-w- C:\Users\drago\Downloads\WinZip175.exe

2013-10-07 07:15:10 5611140E8CC5927D371C27EA1F9E71A6 1045226 ----a-w- C:\Users\drago\Desktop\adwcleaner.exe

2013-10-07 07:11:51 2AAF0EFF497DD0885346BE3D6A25C0C8 833616 ----a-w- C:\Windows\Temp\0016611381129911mcinst.exe

2013-10-06 16:07:10 F627F4D4223F3F7D104294575E9E6F9D 327680 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe

2013-10-06 16:07:10 7FE153D71E85332B870A6C9A3BA04F03 137216 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-10-06 16:07:10 6DF2C6438CFF6EFCBBB88AEE01795501 73728 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe

2013-10-06 16:07:10 56E51C26745FF7413514EA4DDF33BC6C 11776 ----a-w- C:\Windows\System32\msfeedssync.exe

2013-10-06 16:07:10 54C06D9684F3D0AD7E87502E57CC4655 42496 ----a-w- C:\Windows\System32\ie4uinit.exe

2013-10-06 16:07:10 5397E32E882C0148CEC13D9EACFB7157 222208 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe

2013-10-06 16:07:10 52A7D73D5570F757D865DDECD087FB41 138752 ----a-w- C:\Windows\System32\wextract.exe

2013-10-06 16:07:10 4417377CEDABD9BD161FA7EDEDA175D4 745472 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe

2013-10-06 16:07:10 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2013-10-06 16:07:10 3AB2A38F7EA9E62D176A78FB58761E24 12800 ----a-w- C:\Windows\System32\mshta.exe

2013-10-06 16:07:10 37287D98A1BF5D56AA729CEB9B27C6B1 770648 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2013-10-06 16:07:10 3090B888E263E56744F8BFEF3A36D67D 467456 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe

2013-10-06 16:07:10 15CCEAC53648FF7C17AE98923BCD3D75 24576 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe

2013-10-06 16:07:10 038F76279EC64878A072D988DE13C7B2 150528 ----a-w- C:\Windows\System32\iexpress.exe

2013-10-06 16:06:26 72E953215CADE1A726C04AAFDF6B463D 49152 ----a-w- C:\Windows\System32\taskhost.exe

2013-10-06 14:10:11 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\drago.exe

2013-10-06 14:08:32 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\drago\Downloads\RSIT.exe

2013-10-06 13:05:36 25E5512A65B55D216C58769E29C016BA 341360 ----a-w- C:\Users\drago\AppData\Local\Temp\uninst1.exe

2013-10-06 12:59:22 BA3CE22896E7C045FBFC8893682D703D 851560 ----a-w- C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RQMM0SEW\Setup[1].exe

2013-10-06 12:57:07 B06712BF5643BB55600A040F210DC218 20586496 ----a-w- C:\Users\drago\Downloads\SkypeSetup [1].exe

2013-10-06 12:55:48 5F6F02B799F2D8921217FA75D4CB2675 679728 ----a-w- C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RQMM0SEW\SkypeSetup.exe

2013-10-06 12:38:13 40F6C2BD9EB61CA366331054B93EC6EA 1003056 ----a-w- C:\Users\drago\Downloads\wpsetup.exe

2013-10-06 12:37:32 3ABB013DC48172F2E3F0C02E3421C7C4 841808 ----a-w- C:\Users\drago\Downloads\stsetup.exe

2013-10-06 12:09:41 1BDB4B4CBD383EE852C6B95DCC6CF0E6 140844 ----a-w- C:\Program Files\Winamp\UninstWA.exe

2013-10-06 12:09:23 B36F01A58631341310C6D4116F2EDF5F 66032 ------w- C:\Program Files\Common Files\PX Storage Engine\pxinsa64.exe

2013-10-06 12:09:23 51598A4CD5BFC25C8D4FB1A740A43583 72176 ------w- C:\Program Files\Common Files\PX Storage Engine\pxhpinst.exe

2013-10-06 12:09:23 09132A1DA77EF78D06421C871B3B92C5 66544 ------w- C:\Program Files\Common Files\PX Storage Engine\pxcpya64.exe

2013-10-06 12:07:14 E9B05DF6E6E8F01AB8EC3036F7770396 692616 ----a-w- C:\Windows\System32\FlashPlayerApp.exe

2013-10-06 11:57:59 9FA7BF625122CCAC90FCD307174D8CF3 3913664 ----a-w- C:\Windows\System32\ntoskrnl.exe

2013-10-06 11:57:58 DE91DCC7BC55E940979097E98F743205 69632 ----a-w- C:\Windows\System32\smss.exe

2013-10-06 11:57:58 DD5F17D44E9966E7EA447AE8C4D12D6C 3968960 ----a-w- C:\Windows\System32\ntkrnlpa.exe

2013-10-06 11:57:15 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\Windows\System32\certutil.exe

2013-10-06 11:55:54 2DE16A63F71D10B42ACE01E759078600 271360 ----a-w- C:\Windows\System32\conhost.exe

2013-10-06 11:50:45 B0BC447C758FF055D53FC6831FDB0344 101720 ----a-w- C:\Windows\System32\consent.exe

2013-10-05 14:39:09 FA09E920E9CDBC5E8AA4F839B5DEFE71 834664 ----a-w- C:\Windows\Temp\0165301380983949mcinst.exe

2013-10-05 14:10:50 BC7A53287874167DA30DB2E0F02EB0DA 834664 ----a-w- C:\Windows\Temp\0109821380982250mcinst.exe

=== C: other files ==

2013-10-06 14:41:34 680B3ECCEAEA0916DC9C5E79C21814C1 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1987154144-2504670919-2467418806-1000\$IRRF8T1.zip

2013-10-06 14:39:59 A64614C3B77E0DA92EB2E52EC6993C64 1894913 ----a-w- C:\$Recycle.Bin\S-1-5-21-1987154144-2504670919-2467418806-1000\$RRRF8T1.zip

2013-10-06 13:00:32 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\MSDOS.SYS

2013-10-06 13:00:32 D41D8CD98F00B204E9800998ECF8427E 0 --sha-r- C:\IO.SYS

2013-10-06 12:46:38 8F72C4916A288485812745DC5AF873FC 147472 ----a-w- C:\Windows\System32\drivers\HipShieldK.sys

2013-10-06 11:59:11 5E43D2B0EE64123D4880DFA6626DEFDE 1211752 ----a-w- C:\Windows\System32\drivers\ntfs.sys

2013-10-06 11:58:38 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys

2013-10-06 11:58:38 BE444D443F424E3146534BA98978D68A 15872 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\usb80236.sys

2013-10-06 11:58:38 AF77716205C97E902E6C5B78DECE2CCA 15872 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\usb8023x.sys

2013-10-06 11:58:12 E306A24D9694C724FA2491278BF50FDB 196328 ----a-w- C:\Windows\System32\drivers\fvevol.sys

2013-10-06 11:57:09 AAB149EE616952BB84308C28E75ED20D 187752 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS

2013-10-06 11:57:09 4E8B9BE71B807B3BAEDB7F4243F85E3C 1293760 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2013-10-06 11:56:22 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\ataport.sys

2013-10-06 11:56:22 DDCE686D76C2B4DB435A3AF5BD0E691D 133056 ----a-w- C:\Windows\System32\drivers\ataport.sys

2013-10-06 11:56:14 E405328A0E38BF823E2361C413283F6D 218984 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys

2013-10-06 11:56:14 16498EBC04AE9DD07049A8884B205C05 728424 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

2013-10-06 11:56:13 ED880065BBB2C5F57B74F30812A65F4F 2348544 ----a-w- C:\Windows\System32\win32k.sys

2013-10-06 11:55:53 B37B08F2E5EEB1A37E448E09BACE1101 31232 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys

2013-10-05 15:17:05 5E5F90B22F6C7F88DF26F050B3FBC80A 354 ----a-w- C:\Users\drago\AppData\Roaming\Orbit\AdConfig\TipsAd.zip

2013-10-05 15:17:04 BA443643BF377CCAA7645E8C863B8FFA 355 ----a-w- C:\Users\drago\AppData\Roaming\Orbit\AdConfig\LeftAd.zip

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx[22-05-2013 10:24]

Google Search - drago - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

SiteAdvisor - drago - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho

BonanzaDeals - drago - Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj

Chrome In-App Payments service - drago - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - drago - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj deleted successfully

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ieadcoanfjloocmfafkebdnfefmohngj_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

"Default_Page_URL"="Google"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!"

"Start Page"="Google"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

==== Reset Google Chrome ======================

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\drago\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\drago\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\drago\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ma 07-10-2013 at 10:05:34,20 ======================

Link naar reactie
Delen op andere sites


Nou ik heb niet allen daar gezocht maar overal en vond ik niets. Wat is mijn ook opgevallen met openen van internet verschenen (voor deze opruim actie) in browser volgens mijn QWO6 of zo iets, maar nu is weg. Hebben ze die bonanza en QWO6 iets mee te maken?

Link naar reactie
Delen op andere sites

Gedaan.

Zoek.exe Version 4.0.0.4 Updated 07-October-2013

Tool run by drago on di 08-10-2013 at 20:38:55,37.

Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\drago\AppData\Local\Temp\wze369\zoek.exe [script inserted]

==== Older Logs ======================

C:\zoek-results2013-10-07-080534.log 31307 bytes

==== Empty Folders Check ======================

C:\Program Files\MSXML 4.0

C:\Program Files\Uninstall Information

C:\ProgramData\Application Data

C:\ProgramData\Bureaublad

C:\ProgramData\Desktop

C:\ProgramData\Documenten

C:\ProgramData\Documents

C:\ProgramData\Favorieten

C:\ProgramData\Favorites

C:\ProgramData\Menu Start

C:\ProgramData\MyHeritage

C:\ProgramData\Sjablonen

C:\ProgramData\Start Menu

C:\ProgramData\TEMP

C:\ProgramData\Templates

C:\ProgramData\WinZipEC

C:\Users\Default\AppData\Roaming\Media Center Programs

C:\Users\Default User\AppData\Roaming\Media Center Programs

C:\Users\drago\AppData\Roaming\Media Center Programs

C:\Users\drago\AppData\Roaming\Mozilla

C:\Users\drago\AppData\Roaming\MyHeritage

C:\Users\Default\AppData\Local\Application Data

C:\Users\Default\AppData\Local\Geschiedenis

C:\Users\Default\AppData\Local\History

C:\Users\Default\AppData\Local\Temp

C:\Users\Default\AppData\Local\Temporary Internet Files

C:\Users\Default User\AppData\Local\Application Data

C:\Users\Default User\AppData\Local\Geschiedenis

C:\Users\Default User\AppData\Local\History

C:\Users\Default User\AppData\Local\Temp

C:\Users\Default User\AppData\Local\Temporary Internet Files

C:\Users\drago\AppData\Local\Application Data

C:\Users\drago\AppData\Local\Deployment

C:\Users\drago\AppData\Local\Geschiedenis

C:\Users\drago\AppData\Local\Temporary Internet Files

C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update diamondata deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update diamondata deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Update diamondata deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Update diamondata deleted successfully

==== Deleting Files \ Folders ======================

"C:\Program Files\diamondata\updatediamondata.exe" deleted

"C:\Program Files\diamondata\updatediamondata.exe" deleted

"C:\Program Files\diamondata" not deleted

"C:\Program Files\diamondata" not deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx[02-10-2013 14:05]

hendmekoldfacfhlojkjcnbjegkahclb - C:\Program Files\diamondata\hendmekoldfacfhlojkjcnbjegkahclb.crx[]

SiteAdvisor - drago - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho

diamondata - drago - Default\Extensions\hendmekoldfacfhlojkjcnbjegkahclb

Chrome In-App Payments service - drago - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chrome Fix ======================

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Extensions\hendmekoldfacfhlojkjcnbjegkahclb deleted successfully

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_hendmekoldfacfhlojkjcnbjegkahclb_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.com"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} EazelBar Search Url="http://en.eazel.com/results.php?oid=3&cat=web&co=&lg=en&q={searchTerms}&id=033D24F0E810498A8F1D799DF29ED1F1"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1987154144-2504670919-2467418806-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{055AF109-DE93-4160-BCFC-7DA70ECAA020} deleted successfully

HKEY_USERS\S-1-5-21-1987154144-2504670919-2467418806-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{055AF109-DE93-4160-BCFC-7DA70ECAA020} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{055AF109-DE93-4160-BCFC-7DA70ECAA020} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055AF109-DE93-4160-BCFC-7DA70ECAA020} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\hendmekoldfacfhlojkjcnbjegkahclb deleted successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\drago\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\drago\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\drago\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files\diamondata" not found

"C:\Program Files\diamondata" not found

==== EOF on di 08-10-2013 at 20:57:15,45 ======================

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen

×
×
  • Nieuwe aanmaken...