Trage laptop

Antonovi

10-08-2013 16:31

Heb last van een trage laptop. Volgens de instructies heb ik de diverse scans uitgevoerd. Bij deze post ik dan mijn logbestanden. Wie is zo vriendelijk hier naar te kijken? Alvast bedankt voor jullie tijd.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Linda at 2013-08-10 16:18:29
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 423 MB (1%) free of 58 GB
Total RAM: 2038 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:19:03, on 10-08-2013
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16496)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Users\Linda\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Users\Linda\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\Linda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Users\Linda\AppData\Roaming\Spotify\spotify.exe
C:\Users\Linda\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Users\Linda\AppData\Local\Akamai\netsession_win.exe
C:\Windows\system32\igfxsrvc.exe
C:\Users\Linda\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Linda\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Linda\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Linda\Desktop\RSIT.exe
C:\Program Files\trend micro\Linda.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: “C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe”
O4 - HKLM\..\Run: “C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe”
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe”
O4 - HKLM\..\Run: “C:\Program Files\QuickTime\QTTask.exe” -atboottime
O4 - HKLM\..\Run: “C:\Program Files\AVG\AVG2013\avgui.exe” /TRAYONLY
O4 - HKLM\..\Run: “C:\Program Files\iTunes\iTunesHelper.exe”
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Java\Java Update\jusched.exe”
O4 - HKCU\..\Run: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: “C:\Users\Linda\AppData\Local\Google\Update\GoogleUpdate.exe” /c
O4 - HKCU\..\Run: “C:\Users\Linda\AppData\Local\Akamai\netsession_win.exe”
O4 - HKCU\..\Run: C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: “C:\Users\Linda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
O4 - HKCU\..\Run: “C:\Users\Linda\AppData\Roaming\Spotify\Spotify.exe” /uri spotify:autostart
O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-19\..\Run: rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘NETWORK SERVICE’)
O4 - Startup: Dropbox.lnk = C:\Users\Linda\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Waarschuwen.lnk = C:\Program Files\Sureplus\Care\Waarschuwen.exe
O4 - Global Startup: Bluetooth Monitor.lnk = ?
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
–
End of file - 7292 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1510788046-593148464-897797110-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1510788046-593148464-897797110-1000UA.job
C:\Windows\tasks\ROC_REG_JAN_DELETE.job
C:\Windows\tasks\schedule!1507535609.job
C:\Windows\tasks\User_Feed_Synchronization-{FF9F60FD-087E-468D-9273-CC936A755F42}.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Linda\AppData\Roaming\Mozilla\Firefox\Profiles\s8l03dcf.default
“{20a82645-c095-46ed-80e3-08825760534b}”=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
“Description”=Adobe® Flash® Player 11.7.700.224 Plugin
“Path”=C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll
“Description”=Adobe Shockwave Player
“Path”=C:\Windows\system32\Adobe\Director\np32dsw.dll
“Description”=
“Path”=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
“Description”=Google Earth in your browser
“Path”=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
“Description”=Java™ Deployment Toolkit
“Path”=C:\Windows\system32\npDeployJava1.dll
“Description”=Oracle® Next Generation Java™ Plug-In
“Path”=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
“Description”=Ag Player Plugin
“Path”=C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
“Description”=Windows Presentation Foundation plug-in for Mozilla browsers
“Path”=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
“Description”=TSHelper
“Path”=C:\Program Files\Common Files\ThreeShips Shared\Dll\\npTSHelper.dll
“Description”=Google Update
“Path”=C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
“Description”=Google Update
“Path”=C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
“Description”=VLC Multimedia Plugin
“Path”=C:\Program Files\VideoLAN\VLC\npvlc.dll
“Description”=Handles PDFs in-place in Firefox
“Path”=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt
C:\Program Files\Mozilla Firefox\searchplugins\
bing.xml
bolcom-nl.xml
google.xml
marktplaats-nl.xml
wikipedia-nl.xml
C:\Users\Linda\AppData\Roaming\Mozilla\Firefox\Profiles\s8l03dcf.default\extensions\
{5384767E-00D9-40E9-B72F-9CC39D655D6F}
======Registry dump======
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll
“Windows Defender”=C:\Program Files\Windows Defender\MSASCui.exe
“IgfxTray”=C:\Windows\system32\igfxtray.exe
“HotKeysCmds”=C:\Windows\system32\hkcmd.exe
“Persistence”=C:\Windows\system32\igfxpers.exe
“Camera Assistant Software”=C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
“Adobe Reader Speed Launcher”=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
“Adobe ARM”=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
“Aimersoft Helper Compact.exe”=C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
“APSDaemon”=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
“QuickTime Task”=C:\Program Files\QuickTime\QTTask.exe
“AVG_UI”=C:\Program Files\AVG\AVG2013\avgui.exe
“iTunesHelper”=C:\Program Files\iTunes\iTunesHelper.exe
“SunJavaUpdateSched”=C:\Program Files\Common Files\Java\Java Update\jusched.exe
“Sidebar”=C:\Program Files\Windows Sidebar\sidebar.exe
“TOSCDSPD”=C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
“Google Update”=C:\Users\Linda\AppData\Local\Google\Update\GoogleUpdate.exe
“Akamai NetSession Interface”=C:\Users\Linda\AppData\Local\Akamai\netsession_win.exe
“WMPNSCFG”=C:\Program Files\Windows Media Player\WMPNSCFG.exe
“Spotify Web Helper”=C:\Users\Linda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
“Spotify”=C:\Users\Linda\AppData\Roaming\Spotify\Spotify.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Monitor.lnk - C:\Program Files\TOSHIBA\Bluetooth Monitor\BtMon2.exe
C:\Users\Linda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Linda\AppData\Roaming\Dropbox\bin\Dropbox.exe
Waarschuwen.lnk - C:\Program Files\Sureplus\Care\Waarschuwen.exe
C:\Windows\system32\igfxdev.dll
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“EnableUIADesktopToggle”=0
“BindDirectlyToPropertySetStorage”=0
“vidc.mrle”=msrle32.dll
“vidc.msvc”=msvidc32.dll
“msacm.imaadpcm”=imaadp32.acm
“msacm.msg711”=msg711.acm
“msacm.msgsm610”=msgsm32.acm
“msacm.msadpcm”=msadp32.acm
“midimapper”=midimap.dll
“wavemapper”=msacm32.drv
“VIDC.UYVY”=msyuv.dll
“VIDC.YUY2”=msyuv.dll
“VIDC.YVYU”=msyuv.dll
“VIDC.IYUV”=iyuv_32.dll
“vidc.i420”=iyuv_32.dll
“VIDC.YVU9”=tsbyuv.dll
“msacm.l3acm”=l3codecp.acm
“vidc.cvid”=iccvid.dll
“MSVideo8”=VfWWDM32.dll
“wave”=wdmaud.drv
“midi”=wdmaud.drv
“mixer”=wdmaud.drv
“aux”=wdmaud.drv
“VIDC.X264”=x264vfw.dll
“VIDC.HFYU”=huffyuv.dll
“VIDC.FFDS”=ff_vfw.dll
“VIDC.LAGS”=lagarith.dll
“VIDC.XVID”=xvidvfw.dll
“msacm.ac3acm”=ac3acm.acm
“msacm.lameacm”=lameACM.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe “%1” %*
======List of files/folders created in the last 3 months======
2013-08-10 16:18:29 —-D—- C:\rsit
2013-08-10 16:18:29 —-D—- C:\Program Files\trend micro
2013-08-10 15:43:00 —-A—- C:\Windows\system32\javaws.exe
2013-08-10 15:42:46 —-A—- C:\Windows\system32\WindowsAccessBridge.dll
2013-08-10 15:42:46 —-A—- C:\Windows\system32\javaw.exe
2013-08-10 15:42:45 —-A—- C:\Windows\system32\java.exe
2013-08-10 13:16:25 —-A—- C:\Windows\system32\drivers\mbamswissarmy.sys
2013-08-10 13:16:18 —-D—- C:\Users\Linda\AppData\Roaming\Malwarebytes
2013-08-10 13:15:22 —-D—- C:\ProgramData\Malwarebytes
2013-08-10 13:15:21 —-D—- C:\Program Files\Malwarebytes' Anti-Malware
2013-08-10 13:15:21 —-A—- C:\Windows\system32\drivers\mbam.sys
2013-08-10 13:04:47 —-A—- C:\Windows\DeleteOnReboot.bat
2013-08-10 13:04:42 —-A—- C:\AdwCleaner.txt
2013-07-10 03:13:03 —-A—- C:\Windows\system32\mshtmled.dll
2013-07-10 03:13:02 —-A—- C:\Windows\system32\vbscript.dll
2013-07-10 03:13:02 —-A—- C:\Windows\system32\ieui.dll
2013-07-10 03:13:01 —-A—- C:\Windows\system32\msfeeds.dll
2013-07-10 03:13:01 —-A—- C:\Windows\system32\jsproxy.dll
2013-07-10 03:13:01 —-A—- C:\Windows\system32\ieUnatt.exe
2013-07-10 03:13:00 —-A—- C:\Windows\system32\wininet.dll
2013-07-10 03:13:00 —-A—- C:\Windows\system32\jscript.dll
2013-07-10 03:12:59 —-A—- C:\Windows\system32\url.dll
2013-07-10 03:12:59 —-A—- C:\Windows\system32\jscript9.dll
2013-07-10 03:12:58 —-A—- C:\Windows\system32\urlmon.dll
2013-07-10 03:12:58 —-A—- C:\Windows\system32\iertutil.dll
2013-07-10 03:12:56 —-A—- C:\Windows\system32\mshtml.dll
2013-07-10 03:12:56 —-A—- C:\Windows\system32\ieframe.dll
2013-07-10 02:39:05 —-A—- C:\Windows\system32\win32k.sys
2013-07-10 02:38:46 —-A—- C:\Windows\system32\FntCache.dll
2013-07-10 02:38:46 —-A—- C:\Windows\system32\DWrite.dll
2013-07-10 02:38:45 —-A—- C:\Windows\system32\d3d10warp.dll
2013-07-10 02:38:45 —-A—- C:\Windows\system32\d3d10level9.dll
2013-07-10 02:38:45 —-A—- C:\Windows\system32\d3d10core.dll
2013-07-10 02:38:45 —-A—- C:\Windows\system32\d3d10_1core.dll
2013-07-10 02:38:45 —-A—- C:\Windows\system32\d3d10.dll
2013-07-10 02:38:44 —-A—- C:\Windows\system32\d3d10_1.dll
2013-07-10 02:38:44 —-A—- C:\Windows\system32\d2d1.dll
2013-07-10 02:38:43 —-A—- C:\Windows\system32\qedit.dll
2013-07-10 02:38:41 —-A—- C:\Windows\system32\WMVDECOD.DLL
2013-06-12 09:17:42 —-A—- C:\Windows\system32\drivers\tcpip.sys
2013-06-12 09:17:39 —-A—- C:\Windows\system32\win32spl.dll
2013-06-12 09:17:39 —-A—- C:\Windows\system32\printcom.dll
2013-06-12 09:17:35 —-A—- C:\Windows\system32\certutil.exe
2013-06-12 09:17:33 —-A—- C:\Windows\system32\cryptsvc.dll
2013-06-12 09:17:33 —-A—- C:\Windows\system32\cryptnet.dll
2013-06-12 09:17:33 —-A—- C:\Windows\system32\crypt32.dll
2013-06-12 09:17:33 —-A—- C:\Windows\system32\certenc.dll
2013-06-12 09:17:18 —-A—- C:\Windows\system32\ntkrnlpa.exe
2013-06-12 09:17:15 —-A—- C:\Windows\system32\ntoskrnl.exe
2013-06-12 09:17:03 —-A—- C:\Windows\system32\cryptdlg.dll
2013-05-23 21:28:46 —-D—- C:\Program Files\Common Files\Java
2013-05-22 16:39:56 —-A—- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-22 16:39:55 —-A—- C:\Windows\system32\cdd.dll
2013-05-14 13:02:41 —-A—- C:\Windows\system32\drivers\ntfs.sys
======List of files/folders modified in the last 3 months======
2013-08-10 16:18:41 —-D—- C:\Windows\Prefetch
2013-08-10 16:18:29 —-RD—- C:\Program Files
2013-08-10 16:18:08 —-D—- C:\Windows\Temp
2013-08-10 15:43:16 —-SHD—- C:\Windows\Installer
2013-08-10 15:43:14 —-D—- C:\Users\Linda\AppData\Roaming\Spotify
2013-08-10 15:43:10 —-SHD—- C:\Config.Msi
2013-08-10 15:43:00 —-D—- C:\Windows\System32
2013-08-10 15:42:29 —-A—- C:\Windows\system32\npDeployJava1.dll
2013-08-10 15:42:28 —-A—- C:\Windows\system32\deployJava1.dll
2013-08-10 15:41:20 —-SHD—- C:\System Volume Information
2013-08-10 15:33:46 —-D—- C:\Users\Linda\AppData\Roaming\Dropbox
2013-08-10 15:31:08 —-D—- C:\Windows\system32\drivers
2013-08-10 15:31:08 —-D—- C:\Windows\IME
2013-08-10 13:15:22 —-HD—- C:\ProgramData
2013-08-10 13:04:47 —-D—- C:\Windows
2013-08-10 13:00:00 —-D—- C:\ProgramData\MFAData
2013-08-08 18:37:24 —-D—- C:\Program Files\Google
2013-08-08 18:04:08 —-D—- C:\Program Files\BrowseToSave
2013-07-10 07:58:09 —-D—- C:\Windows\Microsoft.NET
2013-07-10 07:57:55 —-RSD—- C:\Windows\assembly
2013-07-10 07:36:15 —-D—- C:\Program Files\Microsoft Silverlight
2013-07-10 03:46:54 —-D—- C:\Windows\system32\XPSViewer
2013-07-10 03:46:51 —-D—- C:\Windows\system32\migration
2013-07-10 03:46:46 —-D—- C:\Program Files\Internet Explorer
2013-07-10 03:27:43 —-A—- C:\Windows\system32\PerfStringBackup.INI
2013-07-10 03:27:41 —-D—- C:\Windows\inf
2013-07-10 03:25:02 —-D—- C:\Windows\winsxs
2013-07-10 03:23:37 —-D—- C:\ProgramData\Microsoft Help
2013-07-10 03:17:26 —-A—- C:\Windows\system32\mrt.exe
2013-07-10 03:13:46 —-D—- C:\Windows\system32\catroot
2013-07-10 03:13:44 —-D—- C:\Windows\system32\catroot2
2013-07-10 03:01:02 —-D—- C:\Program Files\Windows Journal
2013-06-12 14:53:46 —-D—- C:\Windows\rescache
2013-06-12 14:34:26 —-D—- C:\Windows\system32\nl-NL
2013-06-12 10:04:39 —-A—- C:\Windows\system32\FlashPlayerApp.exe
2013-05-23 21:28:46 —-D—- C:\Program Files\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\Windows\system32\DRIVERS\AGRSM.sys
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys
R3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys
R3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
R3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys
R3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys
R3 usbvideo;Chicony USB 2.0 Camera; C:\Windows\System32\Drivers\usbvideo.sys
R3 UVCFTR;UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys
S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys
S3 dot4;Microsoft IEEE-1284.4-stuurprogramma; C:\Windows\system32\DRIVERS\Dot4.sys
S3 Dot4Print;Stuurprogramma voor printerklasse voor IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys
S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys
S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver; C:\Windows\system32\DRIVERS\MijXfilt.sys
S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys
S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys
S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl.sys
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe
R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe
R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
—————–EOF—————–
# AdwCleaner v2.306 - Verslag gemaakt op 10/08/2013 om 13:04:42
# Geactualiseerd op 19/07/2013 door Xplode
# Besturingssysteem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Gebruiker : Linda - PC_VAN_LINDA
# Opstarten Modus : Normale modus
# Gelanceerd vanaf : C:\Users\Linda\Desktop\adwcleaner.exe
# Optie
***** *****
***** *****
File Verwijderd : C:\Users\Linda\AppData\Roaming\Mozilla\Firefox\Profiles\s8l03dcf.default\searchplugins\WebSearch.xml
File Verwijderd : C:\Users\Linda\Desktop\Optimizer Pro.lnk
Map Verwijderd : C:\Program Files\optimizer pro
Map Verwijderd : C:\Program Files\WebSearch
Map Verwijderd : C:\ProgramData\BrrooWsse2usave
Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BrrooWsse2usave
Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro
Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SSEarcuh–NewaTab
Map Verwijderd : C:\ProgramData\SoftSafe
Map Verwijderd : C:\ProgramData\SSEarcuh–NewaTab
Map Verwijderd : C:\Users\Linda\AppData\LocalLow\BrrooWsse2usave
Map Verwijderd : C:\Users\Linda\AppData\LocalLow\SSEarcuh–NewaTab
Map Verwijderd : C:\Users\Linda\AppData\Roaming\Mozilla\Firefox\Profiles\s8l03dcf.default\extensions\staged
Map Verwijderd : C:\Users\Linda\AppData\Roaming\optimizer pro
Verwijderd bij het opstarten : C:\ProgramData\BetterSoft
***** *****
Data Verwijderd : HKLM\..\Windows = c:\progra~1\browse~1\sprote~1.dll
Data Verwijderd : HKLM\..\Windows = c:\progra~1\websea~1\sprote~1.dll
Sleutel Verwijderd : HKCU\Software\AppDataLow\SProtector
Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C3F3165C-74D3-6FDB-3274-14FDA8698CFA}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Optimizer Pro_is1
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1E897599-B2CC-3C4C-50F4-83FDABB8C5CD}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E6E3B3B1-E673-CE22-A219-A1C43381A6C9}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1E897599-B2CC-3C4C-50F4-83FDABB8C5CD}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E6E3B3B1-E673-CE22-A219-A1C43381A6C9}
Sleutel Verwijderd : HKCU\Software\Optimizer Pro
Sleutel Verwijderd : HKCU\Software\Softonic
Sleutel Verwijderd : HKLM\Software\AVG Secure Search
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{1E897599-B2CC-3C4C-50F4-83FDABB8C5CD}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{E6E3B3B1-E673-CE22-A219-A1C43381A6C9}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1E897599-B2CC-3C4C-50F4-83FDABB8C5CD}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E6E3B3B1-E673-CE22-A219-A1C43381A6C9}
Sleutel Verwijderd : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C3F3165C-74D3-6FDB-3274-14FDA8698CFA}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Sleutel Verwijderd : HKLM\Software\SP Global
Sleutel Verwijderd : HKLM\Software\SProtector
Waarde Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Run
***** *****
-\\ Internet Explorer v9.0.8112.16496
Vervangen : = hxxp://websearch.pu-results.info/?pid=95&r=2013/03/03&hid=2004187613&lg=EN&cc=NL –> hxxp://www.google.com
Vervangen : = hxxp://websearch.pu-results.info/?pid=95&r=2013/03/03&hid=2004187613&lg=EN&cc=NL –> hxxp://www.google.com
-\\ Mozilla Firefox v16.0.2 (nl)
File : C:\Users\Linda\AppData\Roaming\Mozilla\Firefox\Profiles\s8l03dcf.default\prefs.js
Verwijderd : user_pref(“browser.startup.homepage”, "hxxp://websearch.pu-results.info/?pid=95&r=2013/03/03&hid=200
Verwijderd : user_pref(“browser.search.order.1”, “WebSearch”);
Verwijderd : user_pref(“browser.search.defaultenginename”, “WebSearch”);
Verwijderd : user_pref(“browser.search.selectedEngine”, “WebSearch”);
Verwijderd : user_pref(“browser.search.defaulturl”, "hxxp://websearch.pu-results.info/?pid=95&r=2013/03/03&hid=20
Verwijderd : user_pref(“browser.search.order.1,S”, “WebSearch”);
Verwijderd : user_pref(“browser.search.defaultenginename,S”, “WebSearch”);
Verwijderd : user_pref(“browser.search.selectedEngine,S”, “WebSearch”);
Verwijderd : user_pref(“keyword.URL”, "hxxp://websearch.pu-results.info/?pid=95&r=2013/03/03&hid=2004187613&lg=EN
-\\ Google Chrome v28.0.1500.95
File : C:\Users\Linda\AppData\Local\Google\Chrome\User Data\Default\Preferences
De file bevat geen enkele ongeoorloofde invoer.
*************************
AdwCleaner.txt - -
########## EOF - C:\AdwCleaner.txt - ##########
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Databaseversie: v2013.08.09.07
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Linda :: PC_VAN_LINDA
10-08-2013 13:17:19
mbam-log-2013-08-10 (13-17-19).txt
Scan type: Snelle scan
Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scan opties: P2P
Objecten gescand: 212112
Verstreken tijd: 17 minuut/minuten, 2 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 4
C:\Users\Linda\Downloads\installer_xilisoft_dvd_to_mp4_converter.exe (PUP.BundleInstaller.BT) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Linda\Downloads\Media_Player_Classic_Setup.exe (PUP.Bundle.Installer.OI) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Linda\Downloads\ReFX_Nexus_v2.exe (PUP.BundleInstaller.DW) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Linda\Downloads\SoftonicDownloader_voor_avg-remover.exe (PUP.Optional.Softonic) -> Succesvol in quarantaine geplaatst en verwijderd.
(einde)
Jos H

10-08-2013 17:04

Hallo, begin met je profiel aan te passen zodat je mailadres niet zichtbaar is .
Zeer onverstandig om openlijk je mailadres op een openbaar medium te zetten.
Wacht verder op instructie m.b.t hulp.
Antonovi

10-08-2013 17:06

Thx. Gelijk maar gedaan
Grt, Anton
Ben

10-08-2013 17:38

Hallo,
Download zoek.exe naar het bureaublad.
Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
(hier of hier) kan je lezen hoe je dat doet.
* Dubbelklik op Zoek.exe om de tool te starten.
* Kopieer nu het onderstaande vet gedrukte code en plak die in het grote invulvenster:
* Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.
firefoxlook;
chromelook;
resetIEproxy;
standardsearch;
filesrcm;
autoclean;
startupall;
*Klik nu op de knop "Run script".
* Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
* Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
* Post nu de inhoud van het geopende logje in het volgende bericht.
Gr.Ben
Antonovi

10-08-2013 19:44

Hallo Ben,
Zoek.exe genereert geen log, Ook niet na een herstart. Is er iets dat ik verkeerd doe?
Grt, Anton
Ben

10-08-2013 19:46

Hallo,
dit is terug te vinden als: C:\zoek-results.log
Gr.Ben
Antonovi

10-08-2013 19:55

Check! zie onderstaand:
Zoek.exe Version 4.0.0.4 Updated 10-August-2013
Tool run by Linda on 10-08-2013 at 17:53:27,90.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Linda\Desktop\zoek.exe
==== System Restore Info ======================
10-08-2013 17:54:33 Zoek.exe System Restore Point Created Succesfully.
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Running Processes ======================
C:\Windows\System32\smss.exe
C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
C:\Program Files\AVG\AVG2013\avgcsrvx.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\agrsmsvc.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVG\AVG2013\avgidsagent.exe
C:\Program Files\AVG\AVG2013\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\taskeng.exe
C:\ProgramData\BetterSoft\OptimizerPro Updater\OptimizerPro Updater.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\AVG\AVG2013\avgnsx.exe
C:\Program Files\AVG\AVG2013\avgemcx.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Users\Linda\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\Linda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Users\Linda\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Users\Linda\AppData\Local\Akamai\netsession_win.exe
C:\Users\Linda\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Linda\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Linda\Desktop\zoek.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k swprv
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
“C:\ProgramData\BetterSoft\OptimizerPro Updater\OptimizerPro Updater.exe” deleted
“C:\Program Files\BrowseToSave” deleted
“C:\ProgramData\BetterSoft” not deleted
“C:\ProgramData\InstallMate” deleted
“C:\ProgramData\BetterSoft\OptimizerPro Updater” not deleted
==== System Specs ======================
Windows: Windows Vista Home Premium Edition Service Pack 2 (Build 6002)
Memory (RAM): 2038 MB
CPU Info: Intel(R) Pentium(R) Dual CPU T2310 @ 1.46GHz
CPU Speed: 1461,8 MHz
Sound Card: Luidsprekers (High Definition A |
Display Adapters: Mobile Intel(R) 965 Express Chipset Family | Mobile Intel(R) 965 Express Chipset Family | RDPDD Chained DD | RDP Encoder Mirror Driver
Monitors: 1x; Algemeen PnP-beeldscherm |
Screen Resolution: 1280 X 800 - 32 bit
Network: Network Present
Network Adapters: Bluetooth-apparaat (Personal Area Network) | Atheros AR5007EG Wireless Network Adapter | Realtek RTL8101 Family PCI-E Fast Ethernet NIC (NDIS 6.0)
CD / DVD Drives: 1x (E: | ) E: HL-DT-STDVDRAM GSA-U10N
Ports: COM3 | COM6 LPT Port NOT Present.
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C: 56,4GB | D: 53,9GB
Hard Disks - Free: C: 2,8GB | D: 14,4GB
Manufacturer *: TOSHIBA
BIOS Info: AT/AT COMPATIBLE | 08/30/07 | TOSQCI - 6040000
Time Zone: West-Europa (standaardtijd)
Motherboard *: TOSHIBA Satellite U300
Internet Explorer Version: 9.0.8112.16421
Sun Java version: 1.7.0_25
Country: Nederland
Language: NLD
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2013-08-10 11:04:47 A6258A01F25915179D716F1BAF79AD42 93 —-a-w- C:\Windows\DeleteOnReboot.bat
====== C:\Users\Linda\AppData\Local\Temp ====
====== C:\Windows\system32 =====
2013-08-10 13:42:46 1D9B3568CFDB55316985A053D6D96030 94632 —-a-w- C:\Windows\System32\WindowsAccessBridge.dll
====== C:\Windows\system32\drivers =====
2013-08-10 11:15:21 4470E3C1E0C3378E4CAB137893C12C3A 22856 —-a-w- C:\Windows\System32\drivers\mbam.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-08-10 14:18:29 ——– d—–w- C:\Program Files\trend micro
======= C: =====
2013-08-10 11:04:42 CF6C244DC9A762674816D2A554A0A511 6570 —-a-w- C:\AdwCleaner.txt
====== C:\Users\Linda\AppData\Roaming ======
====== C:\Users\Linda ======
2013-08-10 13:29:05 69CA82A7482A00D8EE063D2B97FC4338 781383 —-a-w- C:\Users\Linda\Desktop\RSIT.exe
2013-08-10 13:28:44 69CA82A7482A00D8EE063D2B97FC4338 781383 —-a-w- C:\Users\Linda\Downloads\RSIT.exe
2013-08-10 11:36:17 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 —-a-w- C:\Users\Linda\Downloads\esetsmartinstaller_enu.exe
2013-08-10 11:13:23 683FDD3D773C58B262DC07CD0C6CE938 10285040 —-a-w- C:\Users\Linda\Downloads\mbam-setup-1.75.0.1300.exe
2013-08-10 11:03:31 4C47469F47FD9F8437B62A86F6E0874F 666633 —-a-w- C:\Users\Linda\Desktop\adwcleaner.exe
2013-08-10 11:03:10 4C47469F47FD9F8437B62A86F6E0874F 666633 —-a-w- C:\Users\Linda\Downloads\adwcleaner.exe
2013-08-08 16:37:48 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
====== C: exe-files ==
2013-08-10 14:18:30 9A2347903D6EDB84C10F288BC0578C1C 388608 —-a-w- C:\Program Files\trend micro\Linda.exe
2013-08-10 13:29:05 69CA82A7482A00D8EE063D2B97FC4338 781383 —-a-w- C:\Users\Linda\Desktop\RSIT.exe
2013-08-10 13:28:44 69CA82A7482A00D8EE063D2B97FC4338 781383 —-a-w- C:\Users\Linda\Downloads\RSIT.exe
2013-08-10 11:36:17 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 —-a-w- C:\Users\Linda\Downloads\esetsmartinstaller_enu.exe
2013-08-10 11:13:23 683FDD3D773C58B262DC07CD0C6CE938 10285040 —-a-w- C:\Users\Linda\Downloads\mbam-setup-1.75.0.1300.exe
2013-08-10 11:03:31 4C47469F47FD9F8437B62A86F6E0874F 666633 —-a-w- C:\Users\Linda\Desktop\adwcleaner.exe
2013-08-10 11:03:10 4C47469F47FD9F8437B62A86F6E0874F 666633 —-a-w- C:\Users\Linda\Downloads\adwcleaner.exe
2013-08-08 16:36:01 31196287A199231A4636D217C963206D 208384 —-a-w- C:\Windows\Temp\._msigeplugin61\program files\Google\Google Earth\plugin\geplugin.exe
2013-08-08 16:36:01 06FD4C483AA63120680A7A7EB9A14200 1207296 —-a-w- C:\Windows\Temp\._msigeplugin61\GoogleEarth.exe
2013-08-08 16:35:54 9B08AED7CC7F96ED6CF7D933D143FC27 21708328 —-a-w- C:\Program Files\Google\Update\Download\{2BF2CA35-CCAF-4E58-BAB7-4163BFA03B88}\7.1.1.1888\GoogleEarth-Win-Plugin-7.1.1.1888.exe
2013-08-08 16:30:22 EB43F540338470C8FE4AAE8378780CAA 784224 —-a-w- C:\Users\Linda\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\28.0.1500.95\28.0.1500.95_28.0.1500.72_chrome_updater.exe
=== C: other files ==
2013-08-10 11:15:21 4470E3C1E0C3378E4CAB137893C12C3A 22856 —-a-w- C:\Windows\System32\drivers\mbam.sys
2013-08-10 11:04:47 A6258A01F25915179D716F1BAF79AD42 93 —-a-w- C:\Windows\DeleteOnReboot.bat
==== Startup Registry Enabled ======================
“WindowsWelcomeCenter”=“rundll32.exe oobefldr.dll,ShowWelcomeCenter”
“Sidebar”=“%ProgramFiles%\Windows\Sidebar.exe /detectMem”
“WindowsWelcomeCenter”=“rundll32.exe oobefldr.dll,ShowWelcomeCenter”
“Sidebar”=“%ProgramFiles%\Windows\Sidebar.exe /detectMem”
“Sidebar”=“C:\Program Files\Windows Sidebar\sidebar.exe /autoRun”
“TOSCDSPD”=“C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe”
“Google Update”=“C:\Users\Linda\AppData\Local\Google\Update\GoogleUpdate.exe /c”
“Akamai NetSession Interface”=“C:\Users\Linda\AppData\Local\Akamai\netsession_win.exe”
“WMPNSCFG”=“C:\Program Files\Windows Media Player\WMPNSCFG.exe”
“Spotify Web Helper”=“C:\Users\Linda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
“Spotify”=“C:\Users\Linda\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart”
“IgfxTray”=“C:\Windows\system32\igfxtray.exe”
“HotKeysCmds”=“C:\Windows\system32\hkcmd.exe”
“Persistence”=“C:\Windows\system32\igfxpers.exe”
“Camera Assistant Software”=“C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe”
“Adobe Reader Speed Launcher”=“C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe”
“Adobe ARM”=“C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
“Aimersoft Helper Compact.exe”=“C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe”
“APSDaemon”=“C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe”
“QuickTime Task”=“C:\Program Files\QuickTime\QTTask.exe -atboottime”
“AVG_UI”=“C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY”
“iTunesHelper”=“C:\Program Files\iTunes\iTunesHelper.exe”
“SunJavaUpdateSched”=“C:\Program Files\Common Files\Java\Java Update\jusched.exe”
“Windows Defender”=“%ProgramFiles%\Windows Defender\MSASCui.exe -hide”
“Sidebar”=“C:\Program Files\Windows Sidebar\sidebar.exe /autoRun”
“TOSCDSPD”=“C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe”
“Google Update”=“C:\Users\Linda\AppData\Local\Google\Update\GoogleUpdate.exe /c”
“Akamai NetSession Interface”=“C:\Users\Linda\AppData\Local\Akamai\netsession_win.exe”
“WMPNSCFG”=“C:\Program Files\Windows Media Player\WMPNSCFG.exe”
“Spotify Web Helper”=“C:\Users\Linda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
“Spotify”=“C:\Users\Linda\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart”
==== Startup Folders ======================
2012-05-17 14:33:08 951 —-a-w- C:\users\Linda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
2010-02-24 16:48:59 970 —-a-w- C:\users\Linda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Waarschuwen.lnk
2010-02-12 14:24:01 767 —-a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Monitor.lnk
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job –a—— C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1510788046-593148464-897797110-1000Core.job –a—— C:\Users\Linda\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Windows\tasks\ROC_REG_JAN_DELETE.job –a—— C:\ProgramData\AVG January 2013 Campaign\ROC.exe
C:\Windows\tasks\schedule\Undetermined Task.exe
==== Firefox Extensions ======================
ProfilePath: C:\Users\Linda\AppData\Roaming\Mozilla\Firefox\Profiles\s8l03dcf.default
- EPUBReader - %ProfilePath%\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\Linda\AppData\Roaming\Mozilla\Firefox\Profiles\s8l03dcf.default
AE84791D996D1F05A2446B0C447D937A - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
A843FC35574ECFD9E7A41C5505A9921B - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
AF87C7A3D391F5F5534167546D7DDE30 - C:\Program Files\QuickTime\Plugins\npqtplugin7.dll - QuickTime Plug-in 7.7.3
2034E977759F4EB2226914BFC58F2758 - C:\Program Files\QuickTime\Plugins\npqtplugin6.dll - QuickTime Plug-in 7.7.3
B14417814FCA3A5D4AB170E1823D5484 - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.3
3EFF190EC0E333DFBD2F5499858044B6 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.3
C4EB1B18B39BD2F76A64F75D01DEAB61 - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.3
45CC6EFE643FCB97D986BBE2D21E2491 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.3
9FCA15CC38F2E2C6F5E722ED0E1A9E7A - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7.3
3FCF47BD73094FA62D81373515F46110 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector
ABCB4A6EAB701C629378255ABCB308E5 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U25
D7324EB1EDCB8990F8522DE0311359E9 - C:\Windows\system32\npDeployJava1.dll - Java Deployment Toolkit 7.0.250.17
54D677E608D11FF8D3E43282BFEF6B6C - C:\Program Files\Common Files\ThreeShips Shared\Dll\npTSHelper.dll - Three Ships Plugin
3D3CAF586124C4E8102764C8B3063BB6 - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director
AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
AE84791D996D1F05A2446B0C447D937A - C:\Program Files\Adobe\Reader 9.0\Reader\browser\nppdf32.dll - Adobe Acrobat
DFCAB29E8FD38F95650CC1E203E8D318 - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System
==== Set IE to Default ======================
Old Values:
“Start Page”=“http://www.google.com”
“Start Page”=“http://www.google.com”
No DefaultScope Set For HKCU
New Values:
“Start Page”=“http://www.google.com”
“Start Page”=“http://go.microsoft.com/fwlink/?LinkId=69157”
“DefaultScope”=“{6A1806CD-94D4-4689-BA73-E35EA1EA9990}”
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url=“http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC”
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url=“http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}”
==== Reset IE Proxy ======================
Value(s) before fix:
“ProxyOverride”=“127.0.0.1:9421;;*.local”
“ProxyEnable”=dword:00000000
Value(s) after fix:
“ProxyEnable”=dword:00000000
==== HijackThis Entries ======================
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: “C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe”
O4 - HKLM\..\Run: “C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe”
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe”
O4 - HKLM\..\Run: “C:\Program Files\QuickTime\QTTask.exe” -atboottime
O4 - HKLM\..\Run: “C:\Program Files\AVG\AVG2013\avgui.exe” /TRAYONLY
O4 - HKLM\..\Run: “C:\Program Files\iTunes\iTunesHelper.exe”
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Java\Java Update\jusched.exe”
O4 - HKCU\..\Run: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: “C:\Users\Linda\AppData\Local\Google\Update\GoogleUpdate.exe” /c
O4 - HKCU\..\Run: “C:\Users\Linda\AppData\Local\Akamai\netsession_win.exe”
O4 - HKCU\..\Run: C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: “C:\Users\Linda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
O4 - HKCU\..\Run: “C:\Users\Linda\AppData\Roaming\Spotify\Spotify.exe” /uri spotify:autostart
O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-19\..\Run: rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘NETWORK SERVICE’)
O4 - Startup: Dropbox.lnk = C:\Users\Linda\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Waarschuwen.lnk = C:\Program Files\Sureplus\Care\Waarschuwen.exe
O4 - Global Startup: Bluetooth Monitor.lnk = ?
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
==== Empty IE Cache ======================
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Linda\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Linda\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
C:\users\Linda\AppData\Local\Mozilla\Firefox\Profiles\s8l03dcf.default\Cache emptied successfully
==== Empty Chrome Cache ======================
C:\users\Linda\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
Ben

10-08-2013 23:24

Hallo,
Download de
Junkware Removal Tool by Thisisu naar je bureaublad.
Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met JRT
(hier of hier) kan je lezen hoe je de gebruikte beveiligingssoftware kunt uitschakelen.
Dubbelklik op JRT.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
De tool zal vervolgens het systeem scannen.
De scan kan afhankelijk van je systeemspecificaties soms vrij lang duren, wacht geduldig af.
Als de scan gereed is zal er een logje (JRT.txt) op het bureaublad opgeslagen worden en automatisch worden geopend.
Post de inhoud van deze log in je volgende bericht.
Gr.Ben
Antonovi

11-08-2013 09:08

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.4.1 (08.10.2013:1)
OS: Windows Vista (TM) Home Premium x86
Ran by Linda on 11-08-2013 at 9:03:21,49
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11-08-2013 at 9:06:14,76
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Ben

11-08-2013 09:22

Hallo,
Dat ziet er netjes uit, hoe gaat het hierna?
Gr.Ben

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

Trage laptop

Antonovi

Jos H

Antonovi

Ben

Antonovi

Ben

Antonovi

Ben

Antonovi

Ben