Dankje, mooi nieuws.
Bij deze zoek.exe uitgevoerd in de veilige modus.
Zoek.exe v5.0.0.0 Updated 21-05-2014
Tool run by User on wo 28-05-2014 at 12:11:35,12.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Safe Mode MINIMAL No Internet Access Detected
Launched: C:\Users\User\Desktop\zoek.exe
==== Older Logs ======================
C:\zoek-results2014-05-25-214210.log 2287 bytes
C:\zoek-results2014-05-25-233110.log 10048 bytes
C:\zoek-results2014-05-26-214505.log 35422 bytes
==== Torpig Check ======================
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Running Processes ======================
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Users\User\Desktop\zoek.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
c:\program files\KidLogger not found
==== System Specs ======================
Operating System: Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 32-bits
Manufacturer: System manufacturer - Model: System Product Name
Install Date: 29-12-2010 15:11:04
Last Boot: 28-5-2014 12:09:57
Processor: AMD Athlon™ II X2 250 Processor
Number of Processors: 2
Work Station
Bootmode: Fail-safe boot
Total RAM: 1791 MB (free 1330 MB - 74)
Computername: USER-PC
Domain: WORKGROUP
User: User (Non-Administrator account)
Local Disk: C:\ - NTFS - 195 GB (free 135 GB)
CD \ DVD Drive: D:\
Local Disk: E:\ - NTFS - 270 GB (free 269 GB)
Removable Disk: F:\ - - GB (free GB)
Removable Disk: G:\ - - GB (free GB)
Removable Disk: H:\ - - GB (free GB)
Removable Disk: I:\ - - GB (free GB)
Bootdevice: \Device\HarddiskVolume1
Windows update: 2014-05-26 22:02:42
Country: Nederland
Language: NLD
==== System Specs (Software) ======================
Anti-Virus: AVG Internet Security 2014 On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: AVG Internet Security 2014 disabled (Outdated)
Firewall: AVG Internet Security 2014 disabled
Default Browser: Google Chrome 35.0.1916.114
Internet Explorer Version: 10.0.9200.16899
Mozilla Firefox version: 29.0.1 (x86 nl)
Google Chrome version: 35.0.1916.114
Adobe Reader version: 11.0.07.79
Sun Java version: 1.7.0_55 (32-bit)
Flash Player version: 13.0.0.214
Shockwave Player version: 12.1.1r151
==== Files Recently Created / Modified ======================
====== C:\Windows ====
====== C:\Users\User\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\system32 =====
2014-05-26 22:01:26 ED62B3E8207C19D6F7898F211ADE8B60 80384 —-a-w- C:\Windows\System32\mshtmled.dll
2014-05-26 22:01:25 F2E912C438B0BB201391B831DA63BE06 14367232 —-a-w- C:\Windows\System32\mshtml.dll
2014-05-26 22:01:25 CCDFE595668082AED67C7161DB88E6EE 2706432 —-a-w- C:\Windows\System32\mshtml.tlb
2014-05-26 22:00:40 B8BF98AB4F9408C0C0AC5504E8BF4BBA 523776 —-a-w- C:\Windows\System32\vbscript.dll
2014-05-17 17:15:19 2E9FBDDD540771EE63B35BFCF3812AD3 39936 —-a-w- C:\Windows\System32\jsproxy.dll
2014-05-17 17:15:19 27D82E3354169051C5FBE629E43CFFB3 690688 —-a-w- C:\Windows\System32\jscript.dll
2014-05-17 17:15:18 76300EB5AE6C5C82ADB42932093B977B 1140736 —-a-w- C:\Windows\System32\urlmon.dll
2014-05-17 17:15:17 E3CDE294DB1DBD63C4CBA9C36B196208 1766400 —-a-w- C:\Windows\System32\wininet.dll
2014-05-17 17:15:17 93138E61C45BBEA2062C01E9FEA851B8 493056 —-a-w- C:\Windows\System32\msfeeds.dll
2014-05-17 17:15:17 07B42AD182029A8FAA92962A6C57A033 61440 —-a-w- C:\Windows\System32\iesetup.dll
2014-05-17 17:15:16 E596493E5811E5906331A09DDF4C1575 13761024 —-a-w- C:\Windows\System32\ieframe.dll
2014-05-17 17:15:14 F6CF3767D996EC33B09826F6C26A4A46 163840 —-a-w- C:\Windows\System32\msrating.dll
2014-05-17 17:15:14 78A00F8B4F5B9E6C16FE2EC899A26BA3 2877952 —-a-w- C:\Windows\System32\jscript9.dll
2014-05-17 17:15:10 DECB01C61DCECDCD3EEBEB126CB4F223 2049536 —-a-w- C:\Windows\System32\iertutil.dll
2014-05-17 17:15:09 479A2A67C6699FA4604AFEBA63B75C77 391168 —-a-w- C:\Windows\System32\ieui.dll
2014-05-17 17:15:05 9FB3D73BE268084BBF8DCD8A183695D9 71680 —-a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2014-05-17 17:15:05 7D101DE915376029879624AB131325E4 33280 —-a-w- C:\Windows\System32\iernonce.dll
2014-05-17 17:15:05 5F10BF0D8C87577BCD199B2242498F9E 109056 —-a-w- C:\Windows\System32\iesysprep.dll
2014-05-17 17:15:05 59ACDDD5D4C85765F5463AF4C6CF5159 42496 —-a-w- C:\Windows\System32\ie4uinit.exe
2014-05-17 10:58:36 0A3685441A318FDBD7BB52BA9557F675 36152 —-a-w- C:\Windows\System32\TURegOpt.exe
2014-05-17 10:58:34 6CA253ECF94FCF26D174DBC149756AD3 25400 —-a-w- C:\Windows\System32\authuitu.dll
2014-05-14 22:24:38 94CDF4D11590ABC56BD6EAD81A1017E9 302592 —-a-w- C:\Windows\System32\aeinv.dll
2014-05-14 22:24:38 1DA49BFA5B76D128851C9474C1A69B21 369664 —-a-w- C:\Windows\System32\aepdu.dll
2014-05-14 22:24:33 9DE19EA21DF99AF15BA5A947E5317F9E 550912 —-a-w- C:\Windows\System32\kerberos.dll
2014-05-14 22:24:33 4D59F470985D08139E42D15842816C47 3969984 —-a-w- C:\Windows\System32\ntkrnlpa.exe
2014-05-14 22:24:33 31FA2485DFC773F1E718A4D19F443FA9 3914176 —-a-w- C:\Windows\System32\ntoskrnl.exe
2014-05-14 22:24:32 FD25B74DC1A18C56BF1A879BF086555A 293376 —-a-w- C:\Windows\System32\KernelBase.dll
2014-05-14 22:24:32 FBC78B5D12A4F5A62D9C91E0E0E46D46 49664 —-a-w- C:\Windows\System32\adprovider.dll
2014-05-14 22:24:32 ED195AC76E10F17F6DD60C49666F2A83 259584 —-a-w- C:\Windows\System32\msv1_0.dll
2014-05-14 22:24:32 DD17E1573651293D4ED31053795B3471 22528 —-a-w- C:\Windows\System32\lsass.exe
2014-05-14 22:24:32 CAA3039FFA0CDF8C2A9845C1609CDE00 100352 —-a-w- C:\Windows\System32\sspicli.dll
2014-05-14 22:24:32 C94CE65AE7701E9FDBA889045543E27C 22016 —-a-w- C:\Windows\System32\secur32.dll
2014-05-14 22:24:32 995B39A08421C7725D1DF8DACEBBFC89 538112 —-a-w- C:\Windows\System32\objsel.dll
2014-05-14 22:24:32 834A859BB331B0B2CCAE25BB1986F80D 47616 —-a-w- C:\Windows\System32\dpapiprovider.dll
2014-05-14 22:24:32 828185688FDAAE6C7959B884ABED1766 247808 —-a-w- C:\Windows\System32\schannel.dll
2014-05-14 22:24:32 62C0798CC68EBF42F29C92E6CD6DC3D6 36864 —-a-w- C:\Windows\System32\dimsroam.dll
2014-05-14 22:24:32 61BC8ACDEC57469B22EC519B22FB3642 15872 —-a-w- C:\Windows\System32\sspisrv.dll
2014-05-14 22:24:32 5E11C55CC4D9330E55CCB22B1F20BB33 35328 —-a-w- C:\Windows\System32\wincredprovider.dll
2014-05-14 22:24:32 541BB9B4C899ADCC5D3DB89208C1F409 65536 —-a-w- C:\Windows\System32\TSpkg.dll
2014-05-14 22:24:32 4D50D7654EB38B8385FA9EF3DA14D4BE 1059840 —-a-w- C:\Windows\System32\lsasrv.dll
2014-05-14 22:24:32 3A1ABE045A3E30799576E83A2D012B43 172032 —-a-w- C:\Windows\System32\wdigest.dll
2014-05-14 22:24:32 38A30B8E4216BE24D30F766EF3BAC2C7 48128 —-a-w- C:\Windows\System32\capiprovider.dll
2014-05-14 22:24:32 335FA669FC952BC4888CEDBDB42607E2 51200 —-a-w- C:\Windows\System32\cngprovider.dll
2014-05-14 22:24:32 2A86C18CE6869C77FCEB62F3B47D4D5B 17408 —-a-w- C:\Windows\System32\credssp.dll
2014-05-14 22:24:04 E9D88493FBDB36D4B65C6F2F7F122C95 12874240 —-a-w- C:\Windows\System32\shell32.dll
====== C:\Windows\system32\drivers =====
2014-05-15 19:15:54 BD27D97297934FD4217A37FD28A7ABC7 51928 —-a-w- C:\Windows\System32\drivers\mwac.sys
2014-05-15 19:15:54 8683C1B450F4B3872839308D836E0F92 23256 —-a-w- C:\Windows\System32\drivers\mbam.sys
2014-05-15 19:15:54 1AA835E8A0B8EDF3D676B4ED4BF5EF07 74456 —-a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-05-14 22:24:32 D3964885F0A11ACF51DA3AAA776973B2 136640 —-a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-05-14 22:24:32 4120DA10AA42A9996F4575DB9E3E6E6E 67520 —-a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-05-13 12:19:14 B295472342FCD8E0D15FC099552BA89D 192280 —-a-w- C:\Windows\System32\drivers\avgldx86.sys
2014-05-13 12:17:22 383D7AEC7F1A44B81F2069DB9EE5F313 122136 —-a-w- C:\Windows\System32\drivers\avgdiskx.sys
2014-05-13 12:17:22 16EDEFD8D99936B2410D082A494D2E3F 210200 —-a-w- C:\Windows\System32\drivers\avgtdix.sys
2014-05-13 12:17:20 A7A3E71F9E4F6F93AEAE2B1A88A12FCB 107288 —-a-w- C:\Windows\System32\drivers\avgmfx86.sys
2014-05-13 12:17:20 486A27CBB8314577A92BEFF025D52345 149784 —-a-w- C:\Windows\System32\drivers\avgidshx.sys
2014-05-13 12:09:12 E76F8CDCC1BF9952D165CA5D90025730 198936 —-a-w- C:\Windows\System32\drivers\avgidsdriverx.sys
2014-05-13 12:04:36 F2C626DD5CF3F2FACBBA053F465563EB 27416 —-a-w- C:\Windows\System32\drivers\avgrkx86.sys
2014-05-13 12:04:34 B650C4774CAB608AAC9C650312DA2CBB 21272 —-a-w- C:\Windows\System32\drivers\avgidsshimx.sys
2014-05-03 17:28:33 2C71F7AFB1DA599E87F3C4FF15188EBE 184192 —-a-w- C:\Windows\System32\drivers\ssudmdm.sys
2014-05-03 17:28:33 1D93C52AF82D68CFF028B51AA8E024C6 89856 —-a-w- C:\Windows\System32\drivers\ssudbus.sys
====== C:\Windows\Tasks ======
2014-05-18 08:47:36 7AF288FE0349A1045C5BE98508430BB6 2750 —-a-w- C:\Windows\system32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-05-12 11:51:24 2EAFA34AB265E0FDFF330F5C2142FF4F 2990 —-a-w- C:\Windows\system32\Tasks\{0F68AE5F-5782-40F1-9855-1DB23B74DDF9}
2014-05-08 18:54:57 99E8E4D1DA43FE132652D30448303AE8 3950 —-a-w- C:\Windows\system32\Tasks\User_Feed_Synchronization-{2FA6C6D1-7476-48E9-9517-86B9576798D9}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-05-17 17:15:47 ——– d—–w- C:\Program Files\trend micro
2014-05-15 01:05:52 ——– d—–w- C:\Program Files\Common Files\DESIGNER
2014-05-12 17:12:10 ——– d—–w- C:\Program Files\Common Files\Java
2014-05-12 01:32:06 ——– d—–w- C:\Program Files\Versalsoft
2014-05-12 01:32:02 ——– d—–w- C:\Program Files\Universal
2014-05-11 16:22:30 ——– d—–w- C:\Program Files\AVG
2014-05-03 17:15:57 ——– d—–w- C:\Program Files\Samsung
======= C: =====
2014-05-16 19:00:59 B19F70CC10EC543CF379D6556DC8BA69 1693 —-a-w- C:\DelFix.txt
====== C:\Users\User\AppData\Roaming ======
2014-05-26 21:37:26 ——– d—–w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2014-05-26 21:37:26 ——– d—–w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2014-05-26 21:37:26 ——– d—–w- C:\Users\User\AppData\Local\Temp
2014-05-26 21:37:26 ——– d—–w- C:\Users\UpdatusUser\AppData\Local\temp
2014-05-26 21:37:26 ——– d—–w- C:\Users\Ron\AppData\Local\temp
2014-05-26 21:37:26 ——– d—–w- C:\Users\Public\AppData\Local\temp
2014-05-26 21:37:26 ——– d—–w- C:\Users\Gast\AppData\Local\temp
2014-05-26 21:37:26 ——– d—–w- C:\Users\Default\AppData\Local\temp
2014-05-26 21:37:26 ——– d—–w- C:\Users\Default User\AppData\Local\temp
2014-05-20 07:46:11 ——– d—–w- C:\Users\Default\AppData\Roaming\TuneUp Software
2014-05-20 07:46:11 ——– d—–w- C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-05-18 11:53:26 ——– d—–w- C:\Windows\system32\config\systemprofile\AppData\Local\AVG
2014-05-17 10:58:12 ——– d—–w- C:\Users\User\AppData\Local\AVG
2014-05-17 10:15:30 ——– d-sh–w- C:\Users\User\AppData\Locallow\EmieUserList
2014-05-17 10:15:24 ——– d-sh–w- C:\Users\User\AppData\Local\EmieUserList
2014-05-17 10:15:24 ——– d-sh–w- C:\Users\User\AppData\Local\EmieSiteList
2014-05-17 10:15:21 ——– d-sh–w- C:\Users\User\AppData\Locallow\EmieSiteList
2014-05-12 01:32:12 ——– d—–w- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Versalsoft Internet Download
2014-05-12 01:32:03 ——– d—–w- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UniversalSoft
2014-05-11 16:24:16 ——– d—–w- C:\Users\User\AppData\Roaming\AVG2014
2014-05-11 16:23:18 ——– d—–w- C:\Windows\system32\config\systemprofile\AppData\Roaming\AVG2014
2014-05-11 16:22:31 ——– d—–w- C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014
2014-05-11 16:21:00 ——– d—–w- C:\Users\User\AppData\Local\Avg2014
2014-05-03 17:19:42 ——– d—–w- C:\Users\User\AppData\Roaming\Samsung
====== C:\Users\User ======
2014-05-28 09:26:41 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\User\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-26 10:04:37 DEDB5F9E28EE2C9363E83A2A94BA83B9 139264 —-a-w- C:\Users\User\Downloads\SystemLook.exe
2014-05-22 15:15:58 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-17 20:17:14 69CA82A7482A00D8EE063D2B97FC4338 781383 —-a-w- C:\Users\User\Downloads\RSIT(1).exe
2014-05-17 17:05:25 69CA82A7482A00D8EE063D2B97FC4338 781383 —-a-w- C:\Users\User\Downloads\RSIT.exe
2014-05-17 10:58:25 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014
2014-05-15 19:19:13 32A7154F9934CF3AA5D945D02D069D1F 17523384 —-a-w- C:\Users\User\Downloads\mbam-setup-2.0.0.1000(1).exe
2014-05-15 19:13:31 32A7154F9934CF3AA5D945D02D069D1F 17523384 —-a-w- C:\Users\User\Downloads\mbam-setup-2.0.0.1000.exe
2014-05-12 17:11:54 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-12 01:32:03 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UniversalSoft
2014-05-11 16:22:56 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-05-11 16:22:40 ——– d—–w- C:\ProgramData\AVG2014
2014-05-10 18:56:31 ——– d—–w- C:\Users\User\Nieuwe map
2014-05-03 17:15:56 ——– d—–w- C:\ProgramData\Samsung
====== C: exe-files ==
2014-05-28 09:26:41 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\User\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-26 10:04:37 DEDB5F9E28EE2C9363E83A2A94BA83B9 139264 —-a-w- C:\Users\User\Downloads\SystemLook.exe
2014-05-22 15:15:27 3AF5806AAB54D86CDA7AAA034FD2C35E 38382160 —-a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\35.0.1916.114\35.0.1916.114_chrome_installer.exe
=== C: other files ==
==== Startup Registry Enabled ======================
“AVG_UI”=“C:\Program Files\AVG\AVG2014\avgui.exe /TRAYONLY”
==== Startup Registry Disabled ======================
“Google Update”=“\”C:\\Users\\User\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\“ /c”
“Adobe ARM”=“\”C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\“”
“SunJavaUpdateSched”=“\”C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\“”
==== Startup Folders ======================
2011-02-27 17:12:24 1280 —-a-w- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
==== Task Scheduler Jobs ======================
C:\Windows\tasks\Adobe Flash Player Updater.job –a—— C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job –a—— C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job –a——
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1645957192-1769033386-1595641286-1000Core.job –a—— C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1645957192-1769033386-1595641286-1000UA.job –a—— C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
==== Other Scheduled Tasks ======================
“C:\Windows\system32\tasks\Ad-Aware Update (Weekly)”
“C:\Windows\system32\tasks\Adobe Flash Player Updater”
“C:\Windows\system32\tasks\Adobe-online actualiseringsprogramma”
“C:\Windows\system32\tasks\ASC4_PerformanceMonitor”
“C:\Windows\system32\tasks\CreateChoiceProcessTask”
“C:\Windows\system32\tasks\Google Updater and Installer”
“C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore”
“C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA”
“C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1645957192-1769033386-1595641286-1000Core”
“C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1645957192-1769033386-1595641286-1000UA”
“C:\Windows\system32\tasks\Java Update Scheduler”
“C:\Windows\system32\tasks\Online update Backweb”
“C:\Windows\system32\tasks\Run RoboForm TaskBar Icon”
“C:\Windows\system32\tasks\SidebarExecute”
“C:\Windows\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013”
“C:\Windows\system32\tasks\Update- en informatiemanager”
“C:\Windows\system32\tasks\User_Feed_Synchronization-{2FA6C6D1-7476-48E9-9517-86B9576798D9}”
“C:\Windows\system32\tasks\{0F68AE5F-5782-40F1-9855-1DB23B74DDF9}”
“C:\Windows\system32\tasks\{ED69C6D6-E4FD-4C4B-B153-4C0777772995}”
==== Folders in C:\PROGRA~2 0-6 Months Old ======================
2014-04-20 23:14:27 ——– d—–w- C:\PROGRA~2\RealHideIP
2014-05-03 17:15:56 ——– d—–w- C:\PROGRA~2\Samsung
2014-05-11 16:22:40 ——– d—–w- C:\PROGRA~2\AVG2014
==== Firefox Extensions ======================
ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\fqrehnml.default
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\fqrehnml.default
A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash
C10124951491578DDFDF44B33CA41C6F - C:\Users\User\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer
CE936F5D5A19A82627DBC3381658CD2F - C:\Users\User\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin
025BBEF5A248B09BDC6684747F6EB5BC - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U55
290A0130C74ADCD4546BC6900D1665D9 - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.550.14
785105A23650755A8F7A72405EB0D923 - C:\Users\User\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll - Google Update
785105A23650755A8F7A72405EB0D923 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll - Google Update
14365399E83D7BC15760E8676E890C87 - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
14365399E83D7BC15760E8676E890C87 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat
E37EAD09D28AE19D8A39B6A95F47513A - C:\Windows\system32\Adobe\Director\np32dsw_1211151.dll - Shockwave for Director / Shockwave for Director
5FDB2FD0DA5D57A4BFB7CDF8604A2783 - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa
01D93217A9EE48DD37072B671378CC9C - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll - Silverlight Plug-In
CE252B04FB9F4F773A7DB5338BFEEA5B - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL - CANON iMAGE GATEWAY Album Plugin Utility
28986F0A2342A033345EF9E70D395E4F - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrlui.dll - Microsoft® Silverlight
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
apdfllckaahabafndbhieahigkjlhalf - C:\Users\User\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx
Google Docs - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Skype Click to Call - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Google Wallet - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
“Start Page”=“http://www.google.com”
New Values:
“Start Page”=“http://www.google.com”
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
“DefaultScope”=“{6A1806CD-94D4-4689-BA73-E35EA1EA9990}”
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url=“http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR”
{3E601824-2893-474E-B443-7B2D2D18C57E} Google Url=“https://www.google.com/search?q={searchTerms}”
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url=“http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}”
==== HijackThis Entries ======================
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: E-Zsoft VideoDownloaderToolBar - {4322A444-92F8-4C3E-BD4C-013BA51E2871} - C:\Program Files\Versalsoft\InternetDownload\VDTB.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: E-Zsoft VideoDownloaderToolBar - {4322A444-92F8-4C3E-BD4C-013BA51E2871} - C:\Program Files\Versalsoft\InternetDownload\VDTB.dll
O4 - HKLM\..\Run: “C:\Program Files\AVG\AVG2014\avgui.exe” /TRAYONLY
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Download by Versalsoft Internet Download - C:\Program Files\Versalsoft\InternetDownload\adddownload.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - (no file)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - (no file)
O9 - Extra ‘Tools’ menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - (no file)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra ‘Tools’ menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - (no file)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
==== Empty IE Cache ======================
C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\User\AppData\Local\Mozilla\Firefox\Profiles\fqrehnml.default\Cache emptied successfully
==== Empty Chrome Cache ======================
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=408 folders=49 222846605 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Gast\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Users\Ron\AppData\Local\temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\temp emptied successfully
C:\Users\User\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\User\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on wo 28-05-2014 at 12:25:34,91 ======================
Doorzoek het forum
Zoeken met Startpagina
Startpagina Thema's
