Huh? RSIT is hetzelfde als Trend Micro HijackThis ? Dat is wat ik krijg als ik RSIT laat scannen.
——————————————————-
Logje Logfile of random's system information tool 1.09 (written by random/random)
Run by deDeurs at 2013-03-08 16:14:27
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 25 GB (44%) free of 57 GB
Total RAM: 2038 MB (38% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:14:30, on 8-3-2013
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Ask.com\Updater\Updater.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\notepad.exe
C:\ProgramData\HP Photo Creations\MessageCheck.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\deDeurs\Downloads\RSIT.exe
C:\Program Files\trend micro\deDeurs.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nl.msn.com/?ocid=OIE9MSE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, optimized for Bing and MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\19.9.1.14\IPS\IPSBHO.DLL
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll
O4 - HKLM\..\Run: RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: NDSTray.exe
O4 - HKLM\..\Run: c:\Program Files\TOSHIBA\WirelessKeyLogon\TosAutLk.exe -s
O4 - HKLM\..\Run: C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: RtHDVCpl.exe
O4 - HKLM\..\Run: C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: “C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe”
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: “C:\Program Files\Ask.com\Updater\Updater.exe”
O4 - HKLM\..\Run: C:\PROGRA~1\SEARCH~1\Datamngr\DATAMN~1.EXE
O4 - HKLM\..\Run: “C:\Program Files\QuickTime\QTTask.exe” -atboottime
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Java\Java Update\jusched.exe”
O4 - HKLM\..\Run: %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
O4 - HKLM\..\Run: %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKCU\..\Run: TOSCDSPD.EXE
O4 - HKCU\..\Run: C:\Program Files\SmartTweak Software\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ss
O4 - HKCU\..\Run: “C:\Program Files\Google\Chrome\Application\chrome.exe” –type=service
O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-19\..\Run: rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘NETWORK SERVICE’)
O8 - Extra context menu item: &ieSpell Options - res://C:\Program Files\ieSpell\iespell.dll/SPELLOPTION.HTM
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Check &Spelling - res://C:\Program Files\ieSpell\iespell.dll/SPELLCHECK.HTM
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Lookup on Merriam Webster - file://C:\Program Files\ieSpell\Merriam Webster.HTM
O8 - Extra context menu item: Lookup on Wikipedia - file://C:\Program Files\ieSpell\wikipedia.HTM
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra ‘Tools’ menuitem: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra button: (no name) - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra ‘Tools’ menuitem: ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll
O11 - Options group: Accelerated graphics
O20 - AppInit_DLLs: C:\PROGRA~1\SEARCH~1\Datamngr\datamngr.dll C:\PROGRA~1\SEARCH~1\Datamngr\IEBHO.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe
O23 - Service: TOSHIBA vaste-schijfbeveiliging (Thpsrv) - TOSHIBA Corporation - C:\Windows\system32\ThpSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
–
End of file - 9770 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\HP Photo Creations Communicator.job
======Registry dump======
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
Norton Identity Protection - C:\Program Files\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll
Norton Vulnerability Protection - C:\Program Files\Norton Internet Security\Engine\19.9.1.14\IPS\IPSBHO.DLL
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll
“NvSvc”=C:\Windows\system32\nvsvc.dll
“NvCplDaemon”=C:\Windows\system32\NvCpl.dll
“Apoint”=C:\Program Files\Apoint2K\Apoint.exe
“NDSTray.exe”=NDSTray.exe
“TosAutLk”=c:\Program Files\TOSHIBA\WirelessKeyLogon\TosAutLk.exe
“topi”=C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe
“IgfxTray”=C:\Windows\system32\igfxtray.exe
“HotKeysCmds”=C:\Windows\system32\hkcmd.exe
“Persistence”=C:\Windows\system32\igfxpers.exe
“RtHDVCpl”=C:\Windows\RtHDVCpl.exe
“HP Software Update”=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
“”=
“Adobe Reader Speed Launcher”=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
“Adobe ARM”=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
“Toshiba Registration”=C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
“Windows Defender”=C:\Program Files\Windows Defender\MSASCui.exe
“ApnUpdater”=C:\Program Files\Ask.com\Updater\Updater.exe
“DATAMNGR”=C:\PROGRA~1\SEARCH~1\Datamngr\DATAMN~1.EXE
“QuickTime Task”=C:\Program Files\QuickTime\QTTask.exe
“SunJavaUpdateSched”=C:\Program Files\Common Files\Java\Java Update\jusched.exe
“TOSDCR”=C:\Program Files\TOSHIBA\PasswordUtility\TOSDCR.exe
“TPwrMain”=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE
“HSON”=C:\Program Files\TOSHIBA\TBS\HSON.exe
“SmoothView”=C:\Program Files\Toshiba\SmoothView\SmoothView.exe
“00TCrdMain”=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
“toscdspd”=TOSCDSPD.EXE
“UpdateMyDrivers”=C:\Program Files\SmartTweak Software\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ss
“14884A9BDC150A035AA0BBE9A4C1780D0B72BDEC._service_run”=C:\Program Files\Google\Chrome\Application\chrome.exe
“AppInit_DLLs”=“C:\PROGRA~1\SEARCH~1\Datamngr\datamngr.dll C:\PROGRA~1\SEARCH~1\Datamngr\IEBHO.dll”
C:\Windows\system32\igfxdev.dll
C:\Windows\system32\psqlpwd.dll
“notification packages”=scecli
psqlpwd
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“DisableCAD”=1
“EnableUIADesktopToggle”=0
“BindDirectlyToPropertySetStorage”=0
“vidc.mrle”=msrle32.dll
“vidc.msvc”=msvidc32.dll
“msacm.imaadpcm”=imaadp32.acm
“msacm.msg711”=msg711.acm
“msacm.msgsm610”=msgsm32.acm
“msacm.msadpcm”=msadp32.acm
“midimapper”=midimap.dll
“wavemapper”=msacm32.drv
“vidc.uyvy”=msyuv.dll
“vidc.yuy2”=msyuv.dll
“vidc.yvyu”=msyuv.dll
“vidc.iyuv”=iyuv_32.dll
“vidc.i420”=iyuv_32.dll
“vidc.yvu9”=tsbyuv.dll
“msacm.l3acm”=C:\Windows\System32\l3codeca.acm
“vidc.cvid”=iccvid.dll
“wave”=wdmaud.drv
“midi”=wdmaud.drv
“mixer”=wdmaud.drv
“aux”=wdmaud.drv
“wave1”=wdmaud.drv
“midi1”=wdmaud.drv
“mixer1”=wdmaud.drv
“aux1”=wdmaud.drv
“wave2”=wdmaud.drv
“midi2”=wdmaud.drv
“mixer2”=wdmaud.drv
“aux2”=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe “%1” %*
======List of files/folders created in the last 3 months======
2013-03-08 16:04:28 —-D—- C:\rsit
2013-03-08 16:02:38 —-A—- C:\AdwCleaner.txt
2013-03-08 15:59:56 —-A—- C:\AdwCleaner.txt
2013-03-08 15:30:02 —-D—- C:\Users\deDeurs\AppData\Roaming\WinBatch
2013-03-08 11:18:44 —-D—- C:\sh4ldr
2013-03-08 11:18:44 —-D—- C:\Program Files\Enigma Software Group
2013-03-08 11:18:21 —-D—- C:\Windows\0AC0F1B261C74B6EACEF58FCC0B94835.TMP
2013-03-08 11:18:19 —-D—- C:\Program Files\Common Files\Wise Installation Wizard
2013-02-23 12:22:48 —-A—- C:\Windows\system32\javaws.exe
2013-02-23 12:22:29 —-A—- C:\Windows\system32\WindowsAccessBridge.dll
2013-02-13 19:34:36 —-A—- C:\Windows\system32\mshtmled.dll
2013-02-13 19:34:35 —-A—- C:\Windows\system32\vbscript.dll
2013-02-13 19:34:35 —-A—- C:\Windows\system32\jsproxy.dll
2013-02-13 19:34:35 —-A—- C:\Windows\system32\ieUnatt.exe
2013-02-13 19:34:35 —-A—- C:\Windows\system32\ieui.dll
2013-02-13 19:34:34 —-A—- C:\Windows\system32\wininet.dll
2013-02-13 19:34:34 —-A—- C:\Windows\system32\msfeeds.dll
2013-02-13 19:34:34 —-A—- C:\Windows\system32\jscript.dll
2013-02-13 19:34:33 —-A—- C:\Windows\system32\url.dll
2013-02-13 19:34:33 —-A—- C:\Windows\system32\jscript9.dll
2013-02-13 19:34:33 —-A—- C:\Windows\system32\iertutil.dll
2013-02-13 19:34:32 —-A—- C:\Windows\system32\urlmon.dll
2013-02-13 19:34:31 —-A—- C:\Windows\system32\mshtml.dll
2013-02-13 19:34:30 —-A—- C:\Windows\system32\ieframe.dll
2013-02-13 17:10:16 —-A—- C:\Windows\system32\win32k.sys
2013-02-13 17:10:15 —-A—- C:\Windows\system32\quartz.dll
2013-02-13 17:10:14 —-A—- C:\Windows\system32\drivers\tcpipreg.sys
2013-02-13 17:10:14 —-A—- C:\Windows\system32\drivers\tcpip.sys
2013-02-13 17:10:11 —-A—- C:\Windows\system32\ntoskrnl.exe
2013-02-13 17:10:11 —-A—- C:\Windows\system32\ntkrnlpa.exe
2013-02-04 18:30:36 —-A—- C:\Windows\ntbtlog.txt
2013-02-04 16:47:42 —-D—- C:\ProgramData\APN
2013-02-03 16:20:51 —-A—- C:\Windows\system32\javaw.exe
2013-02-03 16:20:51 —-A—- C:\Windows\system32\java.exe
2013-01-09 04:20:50 —-A—- C:\Windows\system32\ncrypt.dll
2013-01-09 04:20:49 —-A—- C:\Windows\system32\shlwapi.dll
2013-01-09 04:20:48 —-A—- C:\Windows\system32\msxml6.dll
2012-12-22 10:24:36 —-A—- C:\Windows\system32\atmlib.dll
2012-12-22 10:24:36 —-A—- C:\Windows\system32\atmfd.dll
2012-12-13 09:52:10 —-A—- C:\Windows\system32\Wdfres.dll
2012-12-13 09:52:08 —-A—- C:\Windows\system32\winusb.dll
2012-12-13 09:52:08 —-A—- C:\Windows\system32\drivers\WUDFRd.sys
2012-12-13 09:52:08 —-A—- C:\Windows\system32\drivers\WUDFPf.sys
2012-12-13 09:52:07 —-A—- C:\Windows\system32\WUDFSvc.dll
2012-12-13 09:52:07 —-A—- C:\Windows\system32\WUDFPlatform.dll
2012-12-13 09:52:06 —-A—- C:\Windows\system32\drivers\WdfLdr.sys
2012-12-13 09:52:06 —-A—- C:\Windows\system32\drivers\Wdf01000.sys
2012-12-13 09:52:05 —-A—- C:\Windows\system32\WUDFx.dll
2012-12-13 09:52:05 —-A—- C:\Windows\system32\WUDFHost.exe
2012-12-13 09:52:05 —-A—- C:\Windows\system32\WUDFCoinstaller.dll
2012-12-12 17:44:41 —-A—- C:\Windows\system32\dpnet.dll
2012-12-12 17:44:40 —-A—- C:\Windows\system32\dpnsvr.exe
2012-12-12 17:44:39 —-A—- C:\Windows\system32\drivers\volsnap.sys
2012-12-12 17:44:38 —-A—- C:\Windows\system32\kernel32.dll
2012-12-12 17:44:33 —-A—- C:\Windows\system32\tzres.dll
======List of files/folders modified in the last 3 months======
2013-03-08 16:14:29 —-D—- C:\Program Files\Trend Micro
2013-03-08 16:14:11 —-D—- C:\Windows\Temp
2013-03-08 15:49:53 —-SHD—- C:\System Volume Information
2013-03-08 15:47:07 —-D—- C:\Windows\system32\FxsTmp
2013-03-08 15:44:56 —-RSD—- C:\Windows\assembly
2013-03-08 15:44:01 —-D—- C:\Users\deDeurs\AppData\Roaming\Toshiba
2013-03-08 15:44:00 —-SHD—- C:\Windows\Installer
2013-03-08 15:43:40 —-D—- C:\Program Files\TOSHIBA
2013-03-08 15:38:27 —-RD—- C:\Program Files
2013-03-08 15:34:03 —-D—- C:\Windows
2013-03-08 15:30:18 —-D—- C:\Windows\system32\drivers
2013-03-08 15:30:17 —-D—- C:\Windows\system32\catroot
2013-03-08 15:30:15 —-D—- C:\Windows\inf
2013-03-08 15:25:10 —-D—- C:\Windows\tracing
2013-03-08 13:41:24 —-HD—- C:\ProgramData
2013-03-08 12:46:10 —-D—- C:\Program Files\Search Results Toolbar
2013-03-08 11:22:26 —-D—- C:\Windows\system32\drivers\etc
2013-03-08 11:18:45 —-D—- C:\Windows\System32
2013-03-08 11:18:34 —-D—- C:\Windows\Prefetch
2013-03-08 11:18:19 —-D—- C:\Program Files\Common Files
2013-03-07 12:26:08 —-A—- C:\Windows\system32\PerfStringBackup.INI
2013-02-27 14:09:17 —-A—- C:\Windows\system32\FlashPlayerApp.exe
2013-02-23 12:23:02 —-D—- C:\Program Files\Common Files\Java
2013-02-23 12:22:18 —-A—- C:\Windows\system32\npdeployJava1.dll
2013-02-23 12:22:18 —-A—- C:\Windows\system32\deployJava1.dll
2013-02-23 12:22:15 —-D—- C:\Program Files\Java
2013-02-13 20:48:51 —-D—- C:\Windows\Microsoft.NET
2013-02-13 19:45:55 —-D—- C:\Windows\system32\migration
2013-02-13 19:45:54 —-D—- C:\Program Files\Internet Explorer
2013-02-13 19:35:58 —-A—- C:\Windows\system32\mrt.exe
2013-02-13 19:35:42 —-D—- C:\Windows\winsxs
2013-02-13 19:35:04 —-D—- C:\Windows\system32\catroot2
2013-02-08 11:04:32 —-D—- C:\Windows\system32\Tasks
2013-02-08 10:59:23 —-D—- C:\Windows\system32\drivers\NIS
2013-02-07 08:56:49 —-D—- C:\Windows\system32\WDI
2013-02-04 04:06:05 —-D—- C:\Windows\Minidump
2013-01-28 05:23:49 —-D—- C:\Windows\Tasks
2013-01-28 05:11:02 —-D—- C:\Program Files\Malwarebytes' Anti-Malware
2013-01-17 01:28:58 —-N—- C:\Windows\system32\MpSigStub.exe
2012-12-20 17:43:42 —-D—- C:\Windows\ModemLogs
2012-12-13 10:34:20 —-D—- C:\Windows\rescache
2012-12-13 10:13:31 —-D—- C:\Windows\system32\nl-NL
2012-12-13 10:13:28 —-D—- C:\Windows\system32\drivers\nl-NL
2012-12-13 10:13:27 —-D—- C:\Windows\system32\wbem
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NIS\1309010.00E\SYMDS.SYS
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NIS\1309010.00E\SYMEFA.SYS
R0 Thpdrv;TOSHIBA HDD Protection Driver; C:\Windows\system32\DRIVERS\thpdrv.sys
R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver; C:\Windows\system32\DRIVERS\Thpevm.SYS
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ.SYS
R1 BHDrvx86;BHDrvx86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20130301.001\BHDrvx86.sys
R1 ccSet_NIS;Norton Internet Security Settings Manager; C:\Windows\system32\drivers\NIS\1309010.00E\ccSetx86.sys
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
R1 IDSVix86;IDSVix86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20130307.001\IDSvix86.sys
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\Windows\system32\drivers\NIS\1309010.00E\SRTSPX.SYS
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NIS\1309010.00E\Ironx86.SYS
R1 SYMTDIv;Symantec Vista Network Dispatch Driver; C:\Windows\System32\Drivers\NIS\1309010.00E\SYMTDIV.SYS
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\Windows\system32\DRIVERS\AGRSM.sys
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
R3 guardian2;guardian2; C:\Windows\System32\Drivers\oz776.sys
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys
R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20130307.033\NAVENG.SYS
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20130307.033\NAVEX15.SYS
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys
R3 SRTSP;Symantec Real Time Storage Protection; C:\Windows\System32\Drivers\NIS\1309010.00E\SRTSP.SYS
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS
R3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys
R3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys
S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys
S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys
S3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2; C:\Windows\system32\DRIVERS\aabed2.sys
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys
S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys
S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys
S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys
S3 NETw4v32;Stuurprogramma voor Intel(R) Wireless WiFi Link Adapter onder Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys
S3 Tosrfcom;Tosrfcom; C:\Windows\system32\drivers\Tosrfcom.sys
S3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys
S3 USBCCID;USB-smartcardlezer; C:\Windows\system32\DRIVERS\usbccid.sys
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys
S4 KR10I;KR10I; C:\Windows\system32\drivers\kr10i.sys
S4 KR10N;KR10N; C:\Windows\system32\drivers\kr10n.sys
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe
R2 NIS;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe
R2 Thpsrv;TOSHIBA vaste-schijfbeveiliging; C:\Windows\system32\ThpSrv.exe
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
—————–EOF—————–
Adw Cleaner log:
Logje adw cleaner
# AdwCleaner v2.114 - Verslag gemaakt op 08/03/2013 om 16:02:38
# Geactualiseerd op 05/03/2013 door Xplode
# Besturingssysteem : Windows Vista (TM) Business Service Pack 2 (32 bits)
# Gebruiker : deDeurs - MINIDEURS
# Opstarten Modus : Normale modus
# Gelanceerd vanaf : C:\Users\deDeurs\Downloads\AdwCleaner (1).exe
# Optie
***** *****
***** *****
File Aanwezig : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\w38kr8la.dedeurs7\searchplugins\Askcom.xml
Map Aanwezig : C:\Program Files\Ask.com
Map Aanwezig : C:\Program Files\Conduit
Map Aanwezig : C:\Program Files\search results toolbar
Map Aanwezig : C:\ProgramData\APN
Map Aanwezig : C:\ProgramData\Babylon
Map Aanwezig : C:\ProgramData\boost_interprocess
Map Aanwezig : C:\Users\deDeurs\AppData\Local\Babylon
Map Aanwezig : C:\Users\deDeurs\AppData\Local\Ilivid
Map Aanwezig : C:\Users\deDeurs\AppData\Local\Temp\{f34c9277-6577-4dff-b2d7-7d58092f272f}
Map Aanwezig : C:\Users\deDeurs\AppData\LocalLow\AskToolbar
Map Aanwezig : C:\Users\deDeurs\AppData\Roaming\Babylon
Map Aanwezig : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\13tq6u2j.default\Conduit
Map Aanwezig : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\13tq6u2j.default\ilividtoolbarguid
Map Aanwezig : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\i6twbhuu.dedeurs7777\ilividtoolbarguid
Map Aanwezig : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\l0ux72hs.dedeurs777\ilividtoolbarguid
Map Aanwezig : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\w38kr8la.dedeurs7\extensions\toolbar@ask.com
Map Aanwezig : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\w38kr8la.dedeurs7\ilividtoolbarguid
Map Aanwezig : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
***** *****
Data Aanwezig : HKLM\..\Windows = C:\PROGRA~1\SEARCH~1\Datamngr\datamngr.dll
Data Aanwezig : HKLM\..\Windows = C:\PROGRA~1\SEARCH~1\Datamngr\IEBHO.dll
Sleutel Aanwezig : HKCU\Software\APN
Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\AskToolbar
Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\Conduit
Sleutel Aanwezig : HKCU\Software\Ask.com
Sleutel Aanwezig : HKCU\Software\DataMngr
Sleutel Aanwezig : HKCU\Software\DataMngr_Toolbar
Sleutel Aanwezig : HKCU\Software\ilivid
Sleutel Aanwezig : HKCU\Software\InstallCore
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DealPly
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Sleutel Aanwezig : HKCU\Software\Softonic
Sleutel Aanwezig : HKLM\Software\APN
Sleutel Aanwezig : HKLM\Software\AskToolbar
Sleutel Aanwezig : HKLM\Software\Babylon
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\iLividIEHelper.DNSGuard
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\iLividIEHelper.DNSGuard.1
Sleutel Aanwezig : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Sleutel Aanwezig : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Prod.cap
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{75E8DA27-44AF-40AE-927C-F2EEC99D65B1}
Sleutel Aanwezig : HKLM\Software\DataMngr
Sleutel Aanwezig : HKLM\Software\iLividSRTB
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Results Toolbar
Sleutel Aanwezig : HKLM\SOFTWARE\Software
Sleutel Aanwezig : HKU\S-1-5-21-2910190127-2693002394-1155432476-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Sleutel Aanwezig : HKU\S-1-5-21-2910190127-2693002394-1155432476-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Sleutel Aanwezig : HKU\S-1-5-21-2910190127-2693002394-1155432476-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Waarde Aanwezig : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
Waarde Aanwezig : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks
Waarde Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
Waarde Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
Waarde Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Waarde Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
***** *****
-\\ Internet Explorer v9.0.8112.16464
Het register bevat geen enkele ongeoorloofde invoer.
-\\ Mozilla Firefox v
File : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\13tq6u2j.default\prefs.js
Aanwezig : user_pref(“browser.search.defaultengine”, “Ask.com”);
Aanwezig : user_pref(“browser.search.defaultenginename”, “Ask.com”);
Aanwezig : user_pref(“browser.search.order.1”, “Ask.com”);
Aanwezig : user_pref(“browser.search.selectedEngine”, “Ask.com”);
Aanwezig : user_pref(“browser.startup.homepage”, “hxxp://nl.ask.com/?l=dis&o=102866&gct=hp”);
Aanwezig : user_pref(“extensions.BabylonToolbar.aflt”, “babsst”);
Aanwezig : user_pref(“extensions.BabylonToolbar.babTrack”, “affID=100474”);
Aanwezig : user_pref(“extensions.BabylonToolbar.bbDpng”, 31);
Aanwezig : user_pref(“extensions.BabylonToolbar.dfltLng”, “en”);
Aanwezig : user_pref(“extensions.BabylonToolbar.dfltSrch”, true);
Aanwezig : user_pref(“extensions.BabylonToolbar.firstRun”, false);
Aanwezig : user_pref(“extensions.BabylonToolbar.hmpg”, true);
Aanwezig : user_pref(“extensions.BabylonToolbar.id”, “c2851f68000000000000001f3b48be7f”);
Aanwezig : user_pref(“extensions.BabylonToolbar.instlDay”, “15215”);
Aanwezig : user_pref(“extensions.BabylonToolbar.instlRef”, “sst”);
Aanwezig : user_pref(“extensions.BabylonToolbar.keyWordUrl”, "hxxp://search.babylon.com/?babsrc=SP_ss&q={search
Aanwezig : user_pref(“extensions.BabylonToolbar.lastDP”, 31);
Aanwezig : user_pref(“extensions.BabylonToolbar.lastVrsnTs”, “1.4.35.1021:57:39”);
Aanwezig : user_pref(“extensions.BabylonToolbar.newTab”, true);
Aanwezig : user_pref(“extensions.BabylonToolbar.newTabUrl”, “hxxp://search.babylon.com/?babsrc=NT_bb”);
Aanwezig : user_pref(“extensions.BabylonToolbar.prdct”, “BabylonToolbar”);
Aanwezig : user_pref(“extensions.BabylonToolbar.prtnrId”, “babylon”);
Aanwezig : user_pref(“extensions.BabylonToolbar.ptch_0717”, true);
Aanwezig : user_pref(“extensions.BabylonToolbar.smplGrp”, “none”);
Aanwezig : user_pref(“extensions.BabylonToolbar.srcExt”, “ss”);
Aanwezig : user_pref(“extensions.BabylonToolbar.srchPrvdr”, “Search the web (Babylon)”);
Aanwezig : user_pref(“extensions.BabylonToolbar.tlbrId”, “tb9”);
Aanwezig : user_pref(“extensions.BabylonToolbar.vrsn”, “1.4.35.10”);
Aanwezig : user_pref(“extensions.BabylonToolbar.vrsnTs”, “1.4.35.1021:57:39”);
Aanwezig : user_pref(“keyword.URL”, "hxxp://search.babylon.com/?babsrc=SP_ss&mntrId=c2851f68000000000000001f3b4
Aanwezig : user_pref(“extensions.asktb.ff-original-keyword-url”, "hxxp://search.babylon.com/?babsrc=SP_ss&mntrI
File : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\i6twbhuu.dedeurs7777\prefs.js
De file bevat geen enkele ongeoorloofde invoer.
File : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\l0ux72hs.dedeurs777\prefs.js
De file bevat geen enkele ongeoorloofde invoer.
File : C:\Users\deDeurs\AppData\Roaming\Mozilla\Firefox\Profiles\w38kr8la.dedeurs7\prefs.js
De file bevat geen enkele ongeoorloofde invoer.
-\\ Google Chrome v25.0.1364.152
File : C:\Users\deDeurs\AppData\Local\Google\Chrome\User Data\Default\Preferences
Aanwezig : urls_to_restore_on_startup =
*************************
AdwCleaner.txt - -
AdwCleaner.txt - -
########## EOF - C:\AdwCleaner.txt - ##########
Doorzoek het forum
Zoeken met Startpagina
Startpagina Thema's
