Gesloten
1
Beste mensen
Ik word besmet met delta search, hier onder komt:
AdwCleaner[R1].txt
En
DDS. txt
…………..
# AdwCleaner v2.112 - Verslag gemaakt op 12/02/2013 om 23:23:03
# Geactualiseerd op 10/02/2013 door Xplode
# Besturingssysteem : Microsoft Windows XP Service Pack 3 (32 bits)
# Gebruiker : hp - HP-82D1C0315650
# Opstarten Modus : Normale modus
# Gelanceerd vanaf : C:\Documents and Settings\hp\Bureaublad\adwcleaner0.exe
# Optie [Zoeken]


***** [Diensten] *****


***** [Files / Mappen] *****

File Aanwezig : C:\END
File Aanwezig : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
File Aanwezig : C:\user.js
Map Aanwezig : C:\Documents and Settings\All Users\Application Data\Tarma Installer
Map Aanwezig : C:\Documents and Settings\hp\Application Data\PriceGong
Map Aanwezig : C:\Documents and Settings\hp\Local Settings\Application Data\Conduit
Map Aanwezig : C:\Documents and Settings\hp\Local Settings\Application Data\Giant Savings Extension
Map Aanwezig : C:\Program Files\Conduit

***** [Register] *****

Sleutel Aanwezig : HKCU\Software\1ClickDownload
Sleutel Aanwezig : HKCU\Software\Conduit
Sleutel Aanwezig : HKCU\Software\Cr_Installer
Sleutel Aanwezig : HKCU\Software\DataMngr
Sleutel Aanwezig : HKCU\Software\DataMngr_Toolbar
Sleutel Aanwezig : HKCU\Software\e55d8d0bc3cba49
Sleutel Aanwezig : HKCU\Software\InstallCore
Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Sleutel Aanwezig : HKCU\Software\PriceGong
Sleutel Aanwezig : HKCU\Software\SmartBar
Sleutel Aanwezig : HKCU\Software\Softonic
Sleutel Aanwezig : HKLM\Software\Babylon
Sleutel Aanwezig : HKLM\Software\BabylonToolbar
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Prod.cap
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Sleutel Aanwezig : HKLM\Software\Conduit
Sleutel Aanwezig : HKLM\Software\DataMngr
Sleutel Aanwezig : HKLM\SOFTWARE\e55d8d0bc3cba49
Sleutel Aanwezig : HKLM\Software\Iminent
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Sleutel Aanwezig : HKLM\Software\Tarma Installer
Sleutel Aanwezig : HKLM\Software\TENCENT
Sleutel Aanwezig : HKU\S-1-5-21-854245398-2111687655-1606980848-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}

***** [Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Het register bevat geen enkele ongeoorloofde invoer.

-\\ Mozilla Firefox v19.0 (en-US)

File : C:\Documents and Settings\hp\Application Data\Mozilla\Firefox\Profiles\jbfktmq5.default-1356470248953\prefs.js

Aanwezig : user_pref("browser.newtab.url", "hxxp://www.delta-search.com/?affID=119370&babs ... trId=ec698[...]
Aanwezig : user_pref("extensions.BabylonToolbar_i.newTab", true);
Aanwezig : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://www.delta-search.com/?affID=119370&babsrc[...]

*************************

AdwCleaner[R1].txt - [4735 octets] - [12/02/2013 23:23:03]

########## EOF - C:\AdwCleaner[R1].txt - [4795 octets] ##########
2
n Whitelisting is disabled.
Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1015.407 [GMT 1:00]
.
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\hp\Bureaublad\adwcleaner0.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://klachtenoverdealliantie.blogspot.nl/" onclick="window.open(this.href);return false;
uLocal Page = c:\windows\system32\blank.htm
uSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896" onclick="window.open(this.href);return false;
mStart Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157" onclick="window.open(this.href);return false;
mLocal Page = c:\windows\system32\blank.htm
mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896" onclick="window.open(this.href);return false;
mDefault_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157" onclick="window.open(this.href);return false;
mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896" onclick="window.open(this.href);return false;
uProxyOverride = *.local
uURLSearchHooks: Microsoft Url Search Hook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - c:\windows\system32\ieframe.dll
mWinlogon: Shell = Explorer.exe
mWinlogon: Userinit = c:\windows\system32\userinit.exe,
mWinlogon: SFCDisable = dword:0
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\ie\rndlbrowserrecordplugin.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Windows Live Aanmelden - Help: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
EB: File Search Explorer Band: {C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1} - c:\windows\system32\shell32.dll
EB: Explorer-band: {EFA24E64-B078-11D0-89E4-00C04FC9E26E} - c:\windows\system32\shdocvw.dll
EB: &Tip van de dag: {4D5C8C25-D075-11d0-B416-00C04FB90376} - c:\windows\system32\shdocvw.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoInstrumentation = 1
uPolicies-Explorer: NoLowDiskSpaceChecks = dword:0
mPolicies-Explorer: HonorAutoRunSetting = dword:1
mPolicies-System: dontdisplaylastusername = dword:0
mPolicies-System: shutdownwithoutlogon = dword:1
mPolicies-System: undockwithoutlogon = dword:1
mPolicies-System: DisableStatusMessages = dword:1
mPolicies-System: VerboseStatus = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xporteren naar Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000
IE: Verzenden naar &Bluetooth-apparaat... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
LSP: %SystemRoot%\system32\mswsock.dll
LSP: %SystemRoot%\system32\rsvpsp.dll
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab" onclick="window.open(this.href);return false;
DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} - hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1353685257984" onclick="window.open(this.href);return false;
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdat ... 5041364281" onclick="window.open(this.href);return false;
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab" onclick="window.open(this.href);return false;
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab" onclick="window.open(this.href);return false;
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab" onclick="window.open(this.href);return false;
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab" onclick="window.open(this.href);return false;
TCP: NameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{33C5A834-21D7-427A-B76B-7F86DDA32AAF} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{B3B99C66-C794-451D-8AD0-5183C9E557BC} : DHCPNameServer = 192.168.1.1 192.168.1.1
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - c:\windows\system32\urlmon.dll
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - c:\windows\system32\urlmon.dll
Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - c:\windows\system32\shell32.dll
Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office12\MSOXMLMF.DLL
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - c:\windows\system32\urlmon.dll
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - c:\windows\system32\msvidctl.dll
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: ipp - <Clsid value has no data>
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - c:\windows\system32\itss.dll
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - c:\program files\windows live\messenger\msgrapp.14.0.8117.0416.dll
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - c:\windows\system32\inetcomm.dll
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - c:\program files\common files\microsoft shared\help\hxds.dll
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - c:\windows\system32\itss.dll
Handler: msdaipp - <Clsid value has no data>
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - c:\program files\windows live\messenger\msgrapp.14.0.8117.0416.dll
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - c:\windows\system32\msvidctl.dll
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - c:\windows\system32\wiascr.dll
Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - c:\windows\system32\itss.dll
Notify: crypt32chain - crypt32.dll
Notify: cryptnet - cryptnet.dll
Notify: cscdll - cscdll.dll
Notify: dimsntfy - c:\windows\system32\dimsntfy.dll
Notify: igfxcui - igfxdev.dll
Notify: ScCertProp - wlnotify.dll
Notify: Schedule - wlnotify.dll
Notify: sclgntfy - sclgntfy.dll
Notify: SensLogn - WlNotify.dll
Notify: termsrv - wlnotify.dll
Notify: WgaLogon - WgaLogon.dll
Notify: wlballoon - wlnotify.dll
AppInit_DLLs= c:\docume~1\alluse~1\applic~1\browserprotect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\browserprotect.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - c:\windows\system32\webcheck.dll
SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - c:\windows\system32\SHELL32.dll
SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - c:\windows\system32\SHELL32.dll
SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - c:\windows\system32\stobject.dll
STS: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - c:\windows\system32\browseui.dll
STS: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - c:\windows\system32\browseui.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SecurityProviders: SecurityProviders = schannel.dll, digest.dll
LSA: Authentication Packages = msv1_0
LSA: Notification Packages = scecli
LSA: Security Packages = kerberos msv1_0 schannel wdigest
SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 winsrv:ConServerDllInitialization,2
mASetup: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - c:\windows\system32\ieudinit.exe
mASetup: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - c:\windows\inf\unregmp2.exe /ShowWMP
mASetup: >{26923b43-4d38-484f-9b9e-de460746276c} - c:\windows\system32\ie4uinit.exe -UserIconConfig
mASetup: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
mASetup: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - c:\windows\system32\shmgrate.exe OCInstallUserConfigOE
mASetup: {12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - c:\windows\system32\ieudinit.exe
mASetup: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - rundll32.exe advpack.dll,LaunchINFSection c:\windows\inf\mswmp.inf,PerUserStub
mASetup: {26923b43-4d38-484f-9b9e-de460746276c} - c:\windows\system32\ie4uinit.exe -UserIconConfig
mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - c:\windows\system32\regsvr32.exe /s /n /i:/userinstall c:\windows\system32\themeui.dll
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "c:\program files\outlook express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
mASetup: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection c:\windows\inf\msnetmtg.inf,NetMtg.Install.PerUser.NT
mASetup: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection c:\windows\inf\msmsgs.inf,BLC.QuietInstall.PerUser
mASetup: {60B49E34-C7CC-11D0-8953-00A0C90347FF} - "c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
mASetup: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - rundll32.exe advpack.dll,LaunchINFSection c:\windows\inf\wmp.inf,PerUserStub
mASetup: {7790769C-0471-11d2-AF11-00C04FA35D02} - "c:\program files\outlook express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
mASetup: {89820200-ECBD-11cf-8B85-00AA005B4383} - c:\windows\system32\ie4uinit.exe -BaseSettings
mASetup: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\windows\system32\rundll32.exe c:\windows\system32\mscories.dll,Install
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - c:\windows\system32\browseui.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\hp\application data\mozilla\firefox\profiles\jbfktmq5.default-1356470248953\
FF - prefs.js: browser.startup.homepage - hxxp://klachtenoverdealliantie.blogspot.nl/" onclick="window.open(this.href);return false;
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlhtml5videoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlpepperflashvideoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\npdlplugin.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\browser\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: c:\program files\itunes\mozilla plugins\npitunes.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrl.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPOFF12.DLL
FF - plugin: c:\program files\mozilla firefox\plugins\nppdf32.dll
FF - plugin: c:\program files\mozilla firefox\plugins\nppl3260.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npqtplugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npqtplugin2.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npqtplugin3.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npqtplugin4.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npqtplugin5.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npqtplugin6.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npqtplugin7.dll
FF - plugin: c:\program files\mozilla firefox\plugins\nprpplugin.dll
FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin2.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin3.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin4.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin5.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin6.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin7.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nppl3260.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\program files\videolan\vlc\npvlc.dll
FF - plugin: c:\program files\windows media player\npdrmv2.dll
FF - plugin: c:\program files\windows media player\npdsplay.dll
FF - plugin: c:\program files\windows media player\npwmsdrm.dll
FF - plugin: c:\program files\yahoo!\shared\npYState.dll
FF - plugin: c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\NPWPF.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1168638.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_149.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - ExtSQL: 2012-05-16 16:05; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - ExtSQL: 2012-11-19 16:52; wrc@avast.com; c:\program files\avast software\avast\webrep\FF
FF - ExtSQL: 2012-12-06 20:34; {972ce4c6-7e08-4474-a285-3208198ce6fd}; c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - ExtSQL: 2013-01-29 14:27; nl-NL@dictionaries.addons.mozilla.org; c:\documents and settings\hp\application data\mozilla\firefox\profiles\jbfktmq5.default-1356470248953\extensions\nl-NL@dictionaries.addons.mozilla.org
FF - ExtSQL: 2013-01-31 23:50; testpilot@labs.mozilla.com; c:\documents and settings\hp\application data\mozilla\firefox\profiles\jbfktmq5.default-1356470248953\extensions\testpilot@labs.mozilla.com.xpi
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.delta.tlbrSrchUrl -
FF - user.js: extensions.delta.id - ec6980f80000000000000010c6f94752
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15746
FF - user.js: extensions.delta.vrsn - 1.8.10.0
FF - user.js: extensions.delta.vrsni - 1.8.10.0
FF - user.js: extensions.delta.vrsnTs - 1.8.10.010:15:27
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - en
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
.
============= SERVICES / DRIVERS ===============
.
R0 ACPI;Microsoft ACPI-stuurprogramma;c:\windows\system32\drivers\acpi.sys [2008-4-15 188544]
R0 ACPIEC;Microsoft Embedded Controller-stuurprogramma;c:\windows\system32\drivers\acpiec.sys [2008-4-15 12032]
R0 atapi;Standaard IDE/ESDI-vasteschijfcontroller;c:\windows\system32\drivers\atapi.sys [2008-4-15 96512]
R0 Compbatt;Microsoft Composite Battery-stuurprogramma;c:\windows\system32\drivers\compbatt.sys [2012-5-14 10240]
R0 Disk;Stuurprogramma voor schijfstations;c:\windows\system32\drivers\disk.sys [2008-5-7 36352]
R0 dmio;Stuurprogramma voor Schijfbeheer;c:\windows\system32\drivers\dmio.sys [2008-4-15 153856]
R0 dmload;dmload;c:\windows\system32\drivers\dmload.sys [2008-4-15 5888]
R0 FltMgr;FltMgr;c:\windows\system32\drivers\fltMgr.sys [2012-5-14 129792]
R0 Ftdisk;Stuurprogramma voor Volumebeheer;c:\windows\system32\drivers\ftdisk.sys [2008-4-15 125696]
R0 IntelIde;IntelIde;c:\windows\system32\drivers\intelide.sys [2012-5-14 5504]
R0 isapnp;PnP ISA/EISA Bus-stuurprogramma;c:\windows\system32\drivers\isapnp.sys [2008-4-15 37760]
R0 KSecDD;KSecDD;c:\windows\system32\drivers\ksecdd.sys [2009-6-24 92928]
R0 MountMgr;MountMgr;c:\windows\system32\drivers\mountmgr.sys [2008-4-15 42368]
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2012-3-20 193552]
R0 Mup;Mup;c:\windows\system32\drivers\mup.sys [2011-4-21 105472]
R0 mv61xxmm;mv61xxmm;c:\windows\system32\drivers\mv61xxmm.sys [2012-4-4 13616]
R0 mv64xxmm;mv64xxmm;c:\windows\system32\drivers\mv64xxmm.sys [2012-4-4 5632]
R0 mvxxmm;mvxxmm;c:\windows\system32\drivers\mvxxmm.sys [2012-4-4 13616]
R0 NDIS;NDIS-systeemstuurprogramma;c:\windows\system32\drivers\ndis.sys [2008-4-15 182656]
R0 ohci1394;Texas Instruments OHCI Compliant IEEE 1394 Host Controller;c:\windows\system32\drivers\ohci1394.sys [2008-6-19 61696]
R0 PartMgr;PartMgr;c:\windows\system32\drivers\partmgr.sys [2008-4-15 19712]
R0 PCI;PCI Bus-stuurprogramma;c:\windows\system32\drivers\pci.sys [2008-4-15 68224]
R0 PCIIde;PCIIde;c:\windows\system32\drivers\pciide.sys [2008-4-15 3328]
R0 Pcmcia;Pcmcia;c:\windows\system32\drivers\pcmcia.sys [2008-4-15 120448]
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R0 sr;Stuurprogramma voor systeemherstelfilter;c:\windows\system32\drivers\sr.sys [2012-5-14 73472]
R0 VolSnap;VolSnap;c:\windows\system32\drivers\volsnap.sys [2008-4-15 53504]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver;c:\windows\system32\drivers\wudfpf.sys [2007-2-5 77568]
R1 Aavmker4;avast! Asynchronous Virus Monitor;c:\windows\system32\drivers\aavmker4.sys [2012-5-16 25256]
R1 AFD;AFD;c:\windows\system32\drivers\afd.sys [2011-8-17 138496]
R1 AswRdr;aswRdr;c:\windows\system32\drivers\aswRdr.sys [2012-5-16 35928]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-5-16 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-5-16 361032]
R1 aswTdi;avast! Network Shield Support;c:\windows\system32\drivers\aswTdi.sys [2012-5-16 54232]
R1 Beep;Beep;c:\windows\system32\drivers\beep.sys [2008-4-15 4224]
R1 Cdrom;Cd-rom-stuurprogramma;c:\windows\system32\drivers\cdrom.sys [2007-4-25 62592]
R1 Fips;Fips;c:\windows\system32\drivers\fips.sys [2008-4-15 44672]
R1 i8042prt;Stuurprogramma voor i8042-toetsenbord en PS/2-muispoort;c:\windows\system32\drivers\i8042prt.sys [2008-4-15 53504]
R1 Imapi;Filterstuurprogramma voor het branden van cd's;c:\windows\system32\drivers\imapi.sys [2008-4-15 42112]
R1 intelppm;Intel GV3-processorstuurprogramma;c:\windows\system32\drivers\intelppm.sys [2008-4-15 40448]
R1 IPSec;IPSEC-stuurprogramma;c:\windows\system32\drivers\ipsec.sys [2008-4-15 75264]
R1 Kbdclass;Stuurprogramma voor verschillende toetsenbordtypen;c:\windows\system32\drivers\kbdclass.sys [2008-4-15 25088]
R1 kbdhid;Stuurprogramma voor toetsenbord-HID;c:\windows\system32\drivers\kbdhid.sys [2012-5-16 14720]
R1 mnmdd;mnmdd;c:\windows\system32\drivers\mnmdd.sys [2008-4-15 4224]
R1 Mouclass;Stuurprogramma voor muistypen;c:\windows\system32\drivers\mouclass.sys [2008-4-14 23552]
R1 MRxSmb;MRXSMB;c:\windows\system32\drivers\mrxsmb.sys [2011-7-15 457856]
R1 Msfs;Msfs;c:\windows\system32\drivers\msfs.sys [2008-4-15 19072]
R1 NetBIOS;NetBIOS-interface;c:\windows\system32\drivers\netbios.sys [2008-4-15 34688]
R1 NetBT;NetBios over Tcpip;c:\windows\system32\drivers\netbt.sys [2008-4-15 162816]
R1 Npfs;Npfs;c:\windows\system32\drivers\npfs.sys [2008-4-15 30848]
R1 Null;Null;c:\windows\system32\drivers\null.sys [2008-4-15 2944]
R1 RasAcd;Stuurprogramma voor Automatische verbinding voor RAS;c:\windows\system32\drivers\rasacd.sys [2008-4-15 8832]
R1 Rdbss;Rdbss;c:\windows\system32\drivers\rdbss.sys [2008-4-22 174848]
R1 RDPCDD;RDPCDD;c:\windows\system32\drivers\rdpcdd.sys [2008-4-15 4224]
R1 redbook;Stuurprogramma voor afspeelfilter van digitale cd-audio;c:\windows\system32\drivers\redbook.sys [2012-5-14 58112]
R1 Serial;Stuurprogramma voor seriële poort;c:\windows\system32\drivers\serial.sys [2008-4-15 65536]
R1 Tcpip;Stuurprogramma voor TCP/IP-protocol;c:\windows\system32\drivers\tcpip.sys [2008-6-20 361600]
R1 TermDD;Stuurprogramma voor terminal-apparaat;c:\windows\system32\drivers\termdd.sys [2012-5-14 40840]
R1 VgaSave;VgaSave;c:\windows\system32\drivers\vga.sys [2008-4-15 20992]
R1 WmiAcpi;Microsoft Windows Beheerinterface voor ACPI;c:\windows\system32\drivers\wmiacpi.sys [2012-5-14 8832]
R2 Apple Mobile Device;Apple Mobile Device;c:\program files\common files\apple\mobile device support\AppleMobileDeviceService.exe [2012-8-11 55184]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-5-16 21256]
R2 aswMon2;avast! Standard Shield Support;c:\windows\system32\drivers\aswmon2.sys [2012-5-16 97608]
R2 AudioSrv;Windows Audio;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-5-16 44808]
R2 Bonjour Service;Bonjour-service;c:\program files\bonjour\mDNSResponder.exe [2011-8-30 390504]
R2 btwdins;Bluetooth Service;c:\program files\widcomm\bluetooth software\bin\btwdins.exe [2007-2-6 266295]
R2 CryptSvc;Services voor cryptografie;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 DcomLaunch;DCOM Server Process Launcher;c:\windows\system32\svchost -k dcomlaunch --> c:\windows\system32\svchost -k DcomLaunch [?]
R2 Dhcp;DHCP Client;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 dmserver;Logical Disk Manager;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 Dnscache;DNS Client;c:\windows\system32\svchost.exe -k NetworkService [2008-4-15 14336]
R2 ERSvc;Service voor het rapporteren van fouten;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 Eventlog;Event Log;c:\windows\system32\services.exe [2009-2-9 111104]
R2 FlipShare Service;FlipShare Service;c:\program files\flip video\flipshare\FlipShareService.exe [2010-10-11 460144]
R2 helpsvc;Help en ondersteuning;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 HidServ;HID Input Service;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 irda;IrDA Protocol;c:\windows\system32\drivers\irda.sys [2012-5-14 88192]
R2 Irmon;Infraroodmonitor;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 JavaQuickStarterService;Java Quick Starter;c:\program files\oracle\javafx 2.1 runtime\bin\jqs.exe [2012-7-5 161704]
R2 LanmanServer;Server;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 lanmanworkstation;Workstation;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 LVPrcSrv;Process Monitor;c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe [2007-2-6 109344]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-11-23 399432]
R2 ParVdm;ParVdm;c:\windows\system32\drivers\parvdm.sys [2008-4-15 6912]
R2 PlugPlay;Plug and Play;c:\windows\system32\services.exe [2009-2-9 111104]
R2 PolicyAgent;IPSEC-services;c:\windows\system32\lsass.exe [2008-4-15 13312]
R2 ProtectedStorage;Protected Storage;c:\windows\system32\lsass.exe [2008-4-15 13312]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2012-11-29 38608]
R2 RemoteRegistry;Remote Registry;c:\windows\system32\svchost.exe -k LocalService [2008-4-15 14336]
R2 RpcSs;Remote Procedure Call (RPC);c:\windows\system32\svchost -k rpcss --> c:\windows\system32\svchost -k rpcss [?]
R2 rspndr;Link-Layer Topology Discovery Responder;c:\windows\system32\drivers\rspndr.sys [2008-5-29 62848]
R2 SamSs;Security Accounts Manager;c:\windows\system32\lsass.exe [2008-4-15 13312]
R2 SCardSvr;Smart Card;c:\windows\system32\scardsvr.exe [2008-4-15 98304]
R2 Schedule;Task Scheduler;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 seclogon;Secondary Logon;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 SENS;System Event Notification;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 SharedAccess;Windows Firewall (WF) / Internet-verbinding delen (ICS);c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 Spooler;Print Spooler;c:\windows\system32\spoolsv.exe [2010-8-17 58880]
R2 srservice;System Restore-service;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 stisvc;Windows Image Acquisition (WIA);c:\windows\system32\svchost.exe -k imgsvc [2008-4-15 14336]
R2 Themes;Thema's;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 TrkWks;Distributed Link Tracking Client;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 W32Time;Windows Time;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 WebClient;WebClient;c:\windows\system32\svchost.exe -k LocalService [2008-4-15 14336]
R2 winmgmt;Windows Management Instrumentation;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 wscsvc;Security Center;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 wuauserv;Automatic Updates;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework;c:\windows\system32\svchost.exe -k WudfServiceGroup [2008-4-15 14336]
R2 WZCSVC;Wireless Zero Configuration-service;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R3 aeaudio;aeaudio;c:\windows\system32\drivers\aeaudio.sys [2012-5-15 127744]
R3 AgereSoftModem;Agere Systems Soft Modem;c:\windows\system32\drivers\AGRSM.sys [2005-11-16 1066278]
R3 ALG;Application Layer Gateway-service;c:\windows\system32\alg.exe [2008-4-15 44544]
R3 Arp1394;1394 ARP-clientprotocol;c:\windows\system32\drivers\arp1394.sys [2008-4-14 60800]
R3 audstub;Audiostub-stuurprogramma;c:\windows\system32\drivers\audstub.sys [2012-5-14 3072]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet;c:\windows\system32\drivers\b57xp32.sys [2010-2-4 163328]
R3 btaudio;Bluetooth-audioapparaat;c:\windows\system32\drivers\btaudio.sys [2012-5-15 530861]
R3 BTDriver;Bluetooth virtuele-communicatiestuurprogramma;c:\windows\system32\drivers\btport.sys [2012-5-15 30459]
R3 BTKRNL;Bluetooth bus-enumerator;c:\windows\system32\drivers\btkrnl.sys [2012-5-15 868298]
R3 BTWDNDIS;Bluetooth LAN Access Server;c:\windows\system32\drivers\btwdndis.sys [2012-5-15 149123]
R3 btwmodem;Bluetooth-modem;c:\windows\system32\drivers\btwmodem.sys [2012-5-15 30285]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver;c:\windows\system32\drivers\btwusb.sys [2012-5-15 67960]
R3 CmBatt;Stuurprogramma voor Microsoft ACPI-besturingsmethode-accu;c:\windows\system32\drivers\CmBatt.sys [2012-5-14 13952]
R3 EventSystem;COM+-gebeurtenissysteem;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R3 Gpc;Algemene pakketclassificeerder;c:\windows\system32\drivers\msgpc.sys [2008-4-15 35072]
R3 GTIPCI21;GTIPCI21;c:\windows\system32\drivers\gtipci21.sys [2012-5-15 88192]
R3 HidUsb;Microsoft HID Class-stuurprogramma;c:\windows\system32\drivers\hidusb.sys [2012-5-16 10368]
R3 HpqKbFiltr;HpqKbFilter Driver;c:\windows\system32\drivers\HpqKbFiltr.sys [2012-5-15 16768]
R3 HTTP;HTTP;c:\windows\system32\drivers\http.sys [2009-10-20 265728]
R3 ialm;ialm;c:\windows\system32\drivers\ialmnt5.sys [2007-6-19 1169980]
R3 IpNat;IP Network Address Translator;c:\windows\system32\drivers\ipnat.sys [2008-4-15 152832]
R3 IRENUM;IR Enumerator-service;c:\windows\system32\drivers\irenum.sys [2012-5-14 11264]
R3 kmixer;Microsoft Kernel Wave-audiomixer;c:\windows\system32\drivers\kmixer.sys [2012-5-15 172416]
R3 LVPr2Mon;Logitech LVPr2Mon Driver;c:\windows\system32\drivers\LVPr2Mon.sys [2007-2-6 25632]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-5-15 22856]
R3 Modem;Modem;c:\windows\system32\drivers\modem.sys [2008-4-14 30336]
R3 mouhid;Stuurprogramma voor muis-HID;c:\windows\system32\drivers\mouhid.sys [2012-5-16 12288]
R3 MRxDAV;WebDav-client-redirector;c:\windows\system32\drivers\mrxdav.sys [2010-6-30 180096]
R3 mssmbios;BIOS-stuurprogramma voor Microsoft Systeembeheer;c:\windows\system32\drivers\mssmbios.sys [2008-4-14 15488]
R3 NdisTapi;RAS NDIS TAPI-stuurprogramma;c:\windows\system32\drivers\ndistapi.sys [2011-7-8 10496]
R3 Ndisuio;I/O-protocol van NDIS-gebruikermodus;c:\windows\system32\drivers\ndisuio.sys [2008-4-14 14592]
R3 NdisWan;RAS NDIS WAN-stuurprogramma;c:\windows\system32\drivers\ndiswan.sys [2008-4-15 91520]
R3 NDProxy;NDIS-proxy;c:\windows\system32\drivers\ndproxy.sys [2010-11-3 40960]
R3 Netman;Network Connections;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R3 NIC1394;1394-stuurprogramma;c:\windows\system32\drivers\nic1394.sys [2008-4-14 61824]
R3 Nla;Network Location Awareness (NLA);c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R3 Parport;Stuurprogramma voor parallelle poort;c:\windows\system32\drivers\parport.sys [2008-4-14 80256]
R3 PptpMiniport;WAN-minipoort (PPTP);c:\windows\system32\drivers\raspptp.sys [2008-4-15 48384]
R3 PSched;QoS-pakketplanner;c:\windows\system32\drivers\psched.sys [2009-7-18 70272]
R3 Ptilink;Stuurprogramma voor Directe parallelle verbinding;c:\windows\system32\drivers\ptilink.sys [2008-4-15 17792]
R3 Rasirda;WAN-minipoort (IrDA);c:\windows\system32\drivers\rasirda.sys [2012-5-14 19584]
R3 Rasl2tp;WAN-minipoort (L2TP);c:\windows\system32\drivers\rasl2tp.sys [2008-4-15 51328]
R3 RasMan;Verbindingsbeheer voor RAS;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R3 RasPppoe;PPPOE-RAS-stuurprogramma;c:\windows\system32\drivers\raspppoe.sys [2008-4-15 41472]
R3 Raspti;Direct Parallel;c:\windows\system32\drivers\raspti.sys [2008-4-15 16512]
R3 rdpdr;Stuurprogramma voor Terminal-serverapparaatredirector;c:\windows\system32\drivers\rdpdr.sys [2012-5-14 195712]
R3 sdbus;sdbus;c:\windows\system32\drivers\sdbus.sys [2008-4-15 79232]
R3 serenum;Serenum Filter-stuurprogramma;c:\windows\system32\drivers\serenum.sys [2008-4-15 15744]
R3 ShellHWDetection;Shell Hardware Detection;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R3 SMCIRDA;SMC IrCC: miniport-apparaatstuurprogramma;c:\windows\system32\drivers\smcirda.sys [2012-5-14 36425]
R3 smwdm;smwdm;c:\windows\system32\drivers\smwdm.sys [2012-5-15 259840]
R3 Srv;SRV;c:\windows\system32\drivers\srv.sys [2011-2-17 357888]
R3 SSDPSRV;SSDP Discovery-service;c:\windows\system32\svchost.exe -k LocalService [2008-4-15 14336]
R3 swenum;Software Bus-stuurprogramma;c:\windows\system32\drivers\swenum.sys [2008-4-14 4352]
R3 sysaudio;Microsoft Kernel-systeemaudioapparaat;c:\windows\system32\drivers\sysaudio.sys [2012-5-15 60800]
R3 TapiSrv;Telephony;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R3 TermService;Terminal Services;c:\windows\system32\svchost -k dcomlaunch --> c:\windows\system32\svchost -k DComLaunch [?]
R3 tifm21;tifm21;c:\windows\system32\drivers\tifm21.sys [2012-5-15 168448]
R3 Update;Microcode Update-stuurprogramma;c:\windows\system32\drivers\update.sys [2008-4-15 384768]
R3 usbccgp;Microsoft generiek hoofd-USB-stuurprogramma;c:\windows\system32\drivers\usbccgp.sys [2012-5-16 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver;c:\windows\system32\drivers\usbehci.sys [2009-6-8 30464]
R3 usbhub;USB2 Enabled Hub;c:\windows\system32\drivers\usbhub.sys [2008-4-15 59520]
R3 usbstor;Stuurprogramma voor USB-massaopslag;c:\windows\system32\drivers\usbstor.sys [2008-4-15 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver;c:\windows\system32\drivers\usbuhci.sys [2008-4-15 20608]
R3 w29n51;Stuurprogramma voor Intel(R) PRO/Wireless 2200BG-netwerkverbinding onder Windows XP;c:\windows\system32\drivers\w29n51.sys [2010-2-4 2210048]
R3 Wanarp;RAS IP ARP-stuurprogramma;c:\windows\system32\drivers\wanarp.sys [2008-4-15 34560]
R3 Wdf01000;Wdf01000;c:\windows\system32\drivers\wdf01000.sys [2006-11-2 492000]
R3 wdmaud;Stuurprogramma voor Microsoft WINMM WDM-audiocompatibiliteit;c:\windows\system32\drivers\wdmaud.sys [2012-5-15 83072]
R4 Cdfs;Cdfs;c:\windows\system32\drivers\cdfs.sys [2008-4-15 63744]
R4 Ntfs;Ntfs;c:\windows\system32\drivers\ntfs.sys [2008-4-22 576384]
S1 Cdaudio;Cdaudio;c:\windows\system32\drivers\cdaudio.sys [2001-8-17 18688]
S1 Changer;Changer; [x]
S1 Fdc;Fdc;c:\windows\system32\drivers\fdc.sys [2008-4-15 27392]
S1 Flpydisk;Flpydisk;c:\windows\system32\drivers\flpydisk.sys [2008-4-15 20480]
S1 i2omgmt;i2omgmt; [x]
S1 lbrtfdc;lbrtfdc; [x]
S1 PCIDump;PCIDump; [x]
S1 Sfloppy;Sfloppy;c:\windows\system32\drivers\sfloppy.sys [2008-4-15 11392]
S2 Browser;Computer Browser;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S2 gupdate;Google Update-service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-5-20 116648]
S2 LVSrvLauncher;LVSrvLauncher;c:\program files\common files\logishrd\srvlnch\SrvLnch.exe [2007-2-6 105248]
S2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-5-15 676936]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-5-15 251248]
S3 aec;Microsoft Kernel akoestische echo-opheffing;c:\windows\system32\drivers\aec.sys [2012-5-15 142592]
S3 AppMgmt;Application Management;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S3 aspnet_state;ASP.NET-statusservice;c:\windows\microsoft.net\framework\v2.0.50727\aspnet_state.exe [2008-7-25 34312]
S3 AsyncMac;Stuurprogramma voor RAS asyncrone media;c:\windows\system32\drivers\asyncmac.sys [2008-4-15 14336]
S3 Atmarpc;ATM ARP-client-protocol;c:\windows\system32\drivers\atmarpc.sys [2008-4-15 59904]
S3 BITS;Intelligente achtergrondsoverdrachtservice;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S3 CamDrL;Logitech QuickCam Pro 3000(CamDrl);c:\windows\system32\drivers\Camdrl.sys [2012-5-26 1075360]
S3 CCDECODE;Closed Caption-decoder;c:\windows\system32\drivers\CCDECODE.sys [2012-5-27 17024]
S3 CiSvc;Indexing-service;c:\windows\system32\cisvc.exe [2008-4-15 5632]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86;c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe [2008-7-25 69632]
S3 COMSysApp;COM+-systeemtoepassing;c:\windows\system32\dllhost.exe [2008-4-15 5120]
S3 dmadmin;Logical Disk Manager Administrative-service;c:\windows\system32\dmadmin.exe [2008-4-15 225280]
S3 DMusic;Microsoft Kernel DLS-synthesizer;c:\windows\system32\drivers\DMusic.sys [2012-5-15 52864]
S3 Dot3svc;Wired AutoConfig;c:\windows\system32\svchost.exe -k dot3svc [2008-4-15 14336]
S3 drmkaud;Microsoft Kernel DRM-audiodecoder;c:\windows\system32\drivers\drmkaud.sys [2012-5-15 2944]
S3 EapHost;Extensible Authentication Protocol-service;c:\windows\system32\svchost.exe -k eapsvcs [2008-4-15 14336]
S3 FastUserSwitchingCompatibility;Compatibiliteit voor Snelle gebruikerswisseling;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0;c:\windows\microsoft.net\framework\v3.0\wpf\PresentationFontCache.exe [2008-7-29 46104]
S3 GEARAspiWDM;GEAR ASPI Filter Driver;c:\windows\system32\drivers\GEARAspiWDM.sys [2012-6-5 26840]
S3 gupdatem;Google Update-service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-5-20 116648]
S3 gusvc;Google Updater Service;c:\program files\google\common\google updater\GoogleUpdaterService.exe [2012-6-17 136120]
S3 hkmsvc;Health Key and Certificate Management-service;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S3 HTTPFilter;HTTP SSL;c:\windows\system32\svchost.exe -k HTTPFilter [2008-4-15 14336]
S3 IDriverT;InstallDriver Table Manager;c:\program files\common files\installshield\driver\1150\intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace;c:\windows\microsoft.net\framework\v3.0\windows communication foundation\infocard.exe [2008-7-29 881664]
S3 ImapiService;COM-service voor IMAPI cd-branders;c:\windows\system32\imapi.exe [2008-4-15 150528]
S3 Ip6Fw;IPv6 Windows Firewall Driver;c:\windows\system32\drivers\ip6fw.sys [2008-4-15 36608]
S3 IpFilterDriver;IP Traffic Filter Driver;c:\windows\system32\drivers\ipfltdrv.sys [2008-4-15 32896]
S3 IpInIp;IP in IP Tunnel Driver;c:\windows\system32\drivers\ipinip.sys [2008-4-15 20864]
S3 iPod Service;iPod-service;c:\program files\ipod\bin\iPodService.exe [2012-11-29 552848]
S3 LmHosts;TCP/IP NetBIOS Helper;c:\windows\system32\svchost.exe -k LocalService [2008-4-15 14336]
S3 LVcKap;Logitech AEC Driver;c:\windows\system32\drivers\Lvckap.sys [2007-2-6 1691808]
S3 LVMVDrv;Logitech Machine Vision Engine Loader;c:\windows\system32\drivers\LVMVdrv.sys [2007-2-6 1964064]
S3 LVUSBSta;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBSta.sys [2012-5-26 41504]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service;c:\program files\microsoft office\office12\GrooveAuditService.exe [2009-2-26 64856]
S3 mnmsrvc;Delen van Extern bureaublad met NetMeeting;c:\windows\system32\mnmsrvc.exe [2012-5-14 32768]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-8-30 115608]
S3 MSDTC;Distributed Transaction Coordinator;c:\windows\system32\msdtc.exe [2012-5-14 6144]
S3 MSIServer;Windows Installer;c:\windows\system32\msiexec.exe [2008-5-19 95744]
S3 MSKSSRV;Microsoft Streaming Service-proxy;c:\windows\system32\drivers\MSKSSRV.sys [2012-5-15 7552]
S3 MSPCLOCK;Microsoft Streaming Clock-proxy;c:\windows\system32\drivers\MSPCLOCK.sys [2012-5-15 5376]
S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy;c:\windows\system32\drivers\MSPQM.sys [2012-5-15 4992]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma;c:\windows\system32\drivers\MSTEE.sys [2012-5-27 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec;c:\windows\system32\drivers\NABTSFEC.sys [2012-5-27 85248]
S3 napagent;NAP-agent (Network Access Protection);c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S3 NdisIP;Microsoft TV/Video-verbinding;c:\windows\system32\drivers\NdisIP.sys [2012-5-27 10880]
S3 Netlogon;Net Logon;c:\windows\system32\lsass.exe [2008-4-15 13312]
S3 NtLmSsp;NT LM Security Support Provider;c:\windows\system32\lsass.exe [2008-4-15 13312]
S3 NtmsSvc;Verwisselbare opslag;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S3 NwlnkFlt;IPX Traffic Filter Driver;c:\windows\system32\drivers\nwlnkflt.sys [2008-4-15 12416]
S3 NwlnkFwd;IPX Traffic Forwarder Driver;c:\windows\system32\drivers\nwlnkfwd.sys [2008-4-15 32512]
S3 odserv;Microsoft Office Diagnostics Service;c:\program files\common files\microsoft shared\office12\ODSERV.EXE [2011-7-20 440696]
S3 ose;Office Source Engine;c:\program files\common files\microsoft shared\source engine\OSE.EXE [2006-10-26 145184]
S3 PDCOMP;PDCOMP; [x]
S3 PDFRAME;PDFRAME; [x]
S3 PDRELI;PDRELI; [x]
S3 PDRFRAME;PDRFRAME; [x]
S3 PSEXESVC;PsExec;c:\windows\PSEXESVC.EXE [2012-11-28 181064]
S3 RasAuto;Remote Access Auto Connection Manager;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S3 RDPWD;RDPWD;c:\windows\system32\drivers\rdpwd.sys [2012-5-14 139784]
S3 RDSessMgr;Helpsessiebeheer voor Extern bureaublad;c:\windows\system32\sessmgr.exe [2012-5-14 142336]
S3 RpcLocator;Remote Procedure Call (RPC) Locator;c:\windows\system32\locator.exe [2008-4-15 75264]
S3 RSVP;QoS RSVP;c:\windows\system32\rsvp.exe [2008-4-15 132608]
S3 Secdrv;Secdrv;c:\windows\system32\drivers\secdrv.sys [2008-4-15 20480]
S3 SLIP;BDA Slip De-Framer;c:\windows\system32\drivers\SLIP.sys [2012-5-27 11136]
S3 splitter;Microsoft Kernel-audiosplitsing;c:\windows\system32\drivers\splitter.sys [2012-5-15 6272]
S3 streamip;BDA IPSink;c:\windows\system32\drivers\StreamIP.sys [2012-5-27 15232]
S3 swmidi;Microsoft Kernel GS Wavetable-synthesizer;c:\windows\system32\drivers\swmidi.sys [2012-5-15 56576]
S3 SwPrv;MS Software Shadow Copy Provider;c:\windows\system32\dllhost.exe [2008-4-15 5120]
S3 SysmonLog;Performance Logs and Alerts;c:\windows\system32\smlogsvc.exe [2008-4-15 91648]
S3 TDPIPE;TDPIPE;c:\windows\system32\drivers\tdpipe.sys [2012-5-14 12040]
S3 TDTCP;TDTCP;c:\windows\system32\drivers\tdtcp.sys [2012-5-14 22024]
S3 upnphost;Universele Plug en Play-apparaathost;c:\windows\system32\svchost.exe -k LocalService [2008-4-15 14336]
S3 UPS;Uninterruptible Power Supply;c:\windows\system32\ups.exe [2008-4-15 18432]
S3 USBAAPL;Apple Mobile USB Driver;c:\windows\system32\drivers\usbaapl.sys [2012-6-5 44544]
S3 usbaudio;Stuurprogramma voor USB-audio (WDM);c:\windows\system32\drivers\USBAUDIO.sys [2012-5-26 60032]
S3 usbprint;Microsoft USB PRINTER Class;c:\windows\system32\drivers\usbprint.sys [2012-5-22 25856]
S3 usbscan;Stuurprogramma voor USB-scanner;c:\windows\system32\drivers\usbscan.sys [2012-5-21 15104]
S3 VSS;Volume Shadow Copy;c:\windows\system32\vssvc.exe [2008-4-15 292864]
S3 WDICA;WDICA; [x]
S3 WmdmPmSN;Portable Media Serial Number Service;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S3 Wmi;Uitbreidingen van het stuurprogramma voor Windows Management Instrumentation;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S3 WmiApSrv;WMI-prestatieadapter;c:\windows\system32\wbem\wmiapsrv.exe [2012-5-14 126464]
S3 WMPNetworkSvc;Windows Media Player Network Sharing-service;c:\program files\windows media player\wmpnetwk.exe [2012-5-14 917504]
S3 WpdUsb;WpdUsb;c:\windows\system32\drivers\wpdusb.sys [2007-2-5 38528]
S3 WSTCODEC;World Standard Teletext-codec;c:\windows\system32\drivers\WSTCODEC.SYS [2012-5-27 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector;c:\windows\system32\drivers\wudfrd.sys [2007-2-5 82944]
S3 xmlprov;Network Provisioning Service;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S4 Abiosdsk;Abiosdsk; [x]
S4 abp480n5;abp480n5; [x]
S4 adpu160m;adpu160m; [x]
S4 Aha154x;Aha154x; [x]
S4 aic78u2;aic78u2; [x]
S4 aic78xx;aic78xx; [x]
S4 Alerter;Alerter;c:\windows\system32\svchost.exe -k LocalService [2008-4-15 14336]
S4 AliIde;AliIde; [x]
S4 amsint;amsint; [x]
S4 asc;asc; [x]
S4 asc3350p;asc3350p; [x]
S4 asc3550;asc3550; [x]
S4 Atdisk;Atdisk; [x]
S4 cbidf2k;cbidf2k;c:\windows\system32\drivers\cbidf2k.sys [2008-4-15 13952]
S4 cd20xrnt;cd20xrnt; [x]
S4 ClipSrv;ClipBook;c:\windows\system32\clipsrv.exe [2008-4-15 33280]
S4 CmdIde;CmdIde; [x]
S4 Cpqarray;Cpqarray; [x]
S4 dac960nt;dac960nt; [x]
S4 dmboot;dmboot;c:\windows\system32\drivers\dmboot.sys [2008-4-15 800000]
S4 dpti2o;dpti2o; [x]
S4 exFat;exFat;c:\windows\system32\drivers\exfat.sys [2008-9-29 133632]
S4 Fastfat;Fastfat;c:\windows\system32\drivers\fastfat.sys [2008-4-15 143744]
S4 hpn;hpn; [x]
S4 hpqwmiex;hpqwmiex;c:\program files\hewlett-packard\shared\hpqwmiex.exe [2012-5-15 135168]
S4 i2omp;i2omp; [x]
S4 ini910u;ini910u; [x]
S4 mraid35x;mraid35x; [x]
S4 MsMpSvc;Microsoft Antimalware Service;c:\program files\microsoft security client\MsMpEng.exe [2012-9-12 20472]
S4 NetDDE;Network DDE;c:\windows\system32\netdde.exe [2008-4-15 113664]
S4 NetDDEdsdm;Network DDE DSDM;c:\windows\system32\netdde.exe [2008-4-15 113664]
S4 NetTcpPortSharing;Net.Tcp service voor het delen van poorten;c:\windows\microsoft.net\framework\v3.0\windows communication foundation\SMSvcHost.exe [2008-7-29 132096]
S4 perc2;perc2; [x]
S4 perc2hib;perc2hib; [x]
S4 ql1080;ql1080; [x]
S4 Ql10wnt;Ql10wnt; [x]
S4 ql12160;ql12160; [x]
S4 ql1240;ql1240; [x]
S4 ql1280;ql1280; [x]
S4 RemoteAccess;Routing and Remote Access;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
S4 Simbad;Simbad; [x]
S4 SoundMAX Agent Service (default);SoundMAX Agent Service;c:\program files\analog devices\soundmax\SMAgent.exe [2012-5-15 45056]
S4 Sparrow;Sparrow; [x]
S4 sym_hi;sym_hi; [x]
S4 sym_u3;sym_u3; [x]
S4 symc810;symc810; [x]
S4 symc8xx;symc8xx; [x]
S4 TlntSvr;Telnet;c:\windows\system32\tlntsvr.exe [2008-4-15 74752]
S4 TosIde;TosIde; [x]
S4 Udfs;Udfs;c:\windows\system32\drivers\udfs.sys [2008-4-15 66048]
S4 ultra;ultra; [x]
S4 ViaIde;ViaIde; [x]
3
=============== File Associations ===============
.
FileExt: .bat: batfile="%1" %*
FileExt: .cmd: cmdfile="%1" %*
FileExt: .com: comfile="%1" %*
FileExt: .exe: exefile="%1" %*
FileExt: .pif: piffile="%1" %*
FileExt: .scr: scrfile="%1" /S
FileExt: .reg: regfile=regedit.exe "%1"
FileExt: .txt: txtfile=c:\windows\system32\NOTEPAD.EXE %1
FileExt: .chm: chm.file="c:\windows\hh.exe" %1
FileExt: .ini: inifile=c:\windows\system32\NOTEPAD.EXE %1
FileExt: .inf: inffile=c:\windows\system32\NOTEPAD.EXE %1
ShellExec: 7zFM.exe: open="c:\program files\7-zip\7zFM.exe" "%1"
ShellExec: AcroRD32.exe: Read="c:\program files\adobe\reader 11.0\reader\AcroRd32.exe" "%1"
ShellExec: Azureus.exe: open="c:\program files\vuze\Azureus.exe" "%1"
ShellExec: EXCEL.EXE: Open="c:\program files\microsoft office\office12\EXCEL.EXE" /e
ShellExec: EXCEL.EXE: Print="c:\program files\microsoft office\office12\EXCEL.EXE" /e
ShellExec: firefox.exe: open="c:\program files\mozilla firefox\firefox.exe" -osint -url "%1"
ShellExec: ieframe.dll: Open="c:\windows\system32\rundll32.exe" "c:\windows\system32\ieframe.dll",OpenURL %l
ShellExec: iexplore.exe: open="c:\program files\internet explorer\IEXPLORE.EXE" %1
ShellExec: iTunes.exe: open="c:\program files\itunes\iTunes.exe" /open "%L"
ShellExec: iTunes.exe: play="c:\program files\itunes\iTunes.exe" /play "%L"
ShellExec: javaws.exe: Open="c:\program files\oracle\javafx 2.1 runtime\bin\javaws.exe" "%1"
ShellExec: MSOXMLED.EXE: edit="c:\program files\common files\microsoft shared\office12\MSOXMLED.EXE" /verb edit "%1"
ShellExec: MSOXMLED.EXE: open="c:\program files\common files\microsoft shared\office12\MSOXMLED.EXE" /verb open "%1"
ShellExec: mspaint.exe: edit="c:\windows\system32\mspaint.exe" "%1"
ShellExec: notepad.exe: edit=c:\windows\system32\NOTEPAD.EXE %1
ShellExec: notepad.exe: open=c:\windows\system32\NOTEPAD.EXE %1
ShellExec: ois.exe: Edit=c:\progra~1\micros~4\office12\OIS.EXE /shellEdit "%1"
ShellExec: ois.exe: Open=c:\progra~1\micros~4\office12\OIS.EXE /shellOpen "%1"
ShellExec: ois.exe: Preview=c:\progra~1\micros~4\office12\OIS.EXE /shellPreview "%1"
ShellExec: ONENOTE.EXE: Edit="c:\program files\microsoft office\office12\ONENOTE.EXE" "%1"
ShellExec: ONENOTE.EXE: New="c:\program files\microsoft office\office12\ONENOTE.EXE" /new "%1"
ShellExec: ONENOTE.EXE: Open="c:\program files\microsoft office\office12\ONENOTE.EXE" "%1"
ShellExec: ONENOTE.EXE: OpenAsReadOnly="c:\program files\microsoft office\office12\ONENOTE.EXE" "%1"
ShellExec: ONENOTE.EXE: Print="c:\program files\microsoft office\office12\ONENOTE.EXE" /print "%1"
ShellExec: PicasaPhotoViewer.exe: Open="c:\program files\google\picasa3\PicasaPhotoViewer.exe" "%1"
ShellExec: PicasaPhotoViewer.exe: Preview="c:\program files\google\picasa3\PicasaPhotoViewer.exe" "%1"
ShellExec: PictureViewer.exe: open=c:\program files\quicktime\PictureViewer.exe "%1"
ShellExec: POWERPNT.EXE: New="c:\program files\microsoft office\office12\POWERPNT.EXE" /n "%1"
ShellExec: POWERPNT.EXE: Open="c:\program files\microsoft office\office12\POWERPNT.EXE" "%1"
ShellExec: POWERPNT.EXE: Print="c:\program files\microsoft office\office12\POWERPNT.EXE" /p "%1"
ShellExec: POWERPNT.EXE: PrintTo="c:\program files\microsoft office\office12\POWERPNT.EXE" /pt "%2" "%3" "%4" "%1"
ShellExec: POWERPNT.EXE: Show="c:\program files\microsoft office\office12\POWERPNT.EXE" /s "%1"
ShellExec: QuickTimePlayer.exe: open=c:\program files\quicktime\QuickTimePlayer.exe "%1"
ShellExec: RealPlay.exe: open="c:\program files\real\realplayer\realplay.exe" "%1"
ShellExec: shimgvw.dll: open=rundll32.exe c:\windows\system32\shimgvw.dll,ImageView_Fullscreen %1
ShellExec: shimgvw.dll: print=rundll32.exe c:\windows\system32\shimgvw.dll,ImageView_Fullscreen %1
ShellExec: swriter.exe: open="c:\program files\openoffice.org 3\program\swriter.exe" -o "%1"
ShellExec: vlc.exe: Open="c:\program files\videolan\vlc\vlc.exe" --started-from-file "%1"
ShellExec: winfxdocobj.exe: open=c:\windows\system32\winfxdocobj.exe %1
ShellExec: Winword.exe: edit="c:\program files\microsoft office\office12\WINWORD.EXE" /n /dde
ShellExec: wmplayer.exe: open=c:\program files\windows media player\wmplayer.exe /Open "%L"
ShellExec: wmplayer.exe: play=c:\program files\windows media player\wmplayer.exe /Play "%L"
ShellExec: wordpad.exe: open="c:\program files\windows nt\bureau-accessoires\WORDPAD.EXE" "%1"
ShellExec: XPSViewer.exe: open="c:\windows\system32\xpsviewer\XPSViewer.exe" "%1" %*
.
=============== Created Last 60 ================
.
2013-02-10 09:15:13 -------- d-----w- c:\documents and settings\hp\local settings\application data\Giant Savings Extension
2013-02-10 09:14:31 466008 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-02-08 09:35:55 17879960 ----a-w- c:\program files\mozilla firefox\xul.dll
2013-02-08 09:35:54 96664 ----a-w- c:\program files\mozilla firefox\webapprt-stub.exe
2013-02-08 09:35:54 272280 ----a-w- c:\program files\mozilla firefox\updater.exe
2013-02-08 09:35:54 19352 ----a-w- c:\program files\mozilla firefox\xpcom.dll
2013-02-08 09:35:54 170232 ----a-w- c:\program files\mozilla firefox\webapp-uninstaller.exe
2013-02-08 09:35:53 92056 ----a-w- c:\program files\mozilla firefox\smime3.dll
2013-02-08 09:35:53 865704 ----a-w- c:\program files\mozilla firefox\uninstall\helper.exe
2013-02-08 09:35:53 155544 ----a-w- c:\program files\mozilla firefox\ssl3.dll
2013-02-08 09:35:53 151960 ----a-w- c:\program files\mozilla firefox\softokn3.dll
2013-02-08 09:35:52 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin7.dll
2013-02-08 09:35:52 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin6.dll
2013-02-08 09:35:52 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin5.dll
2013-02-08 09:35:52 124056 ----a-w- c:\program files\mozilla firefox\plugins\nprpplugin.dll
2013-02-08 09:35:51 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin4.dll
2013-02-08 09:35:51 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin3.dll
2013-02-08 09:35:51 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin2.dll
2013-02-08 09:35:50 209112 ----a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll
2013-02-08 09:35:50 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin.dll
2013-02-08 09:35:50 153296 ----a-w- c:\program files\mozilla firefox\plugins\nppl3260.dll
2013-02-08 09:35:49 21400 ----a-w- c:\program files\mozilla firefox\plds4.dll
2013-02-08 09:35:49 17304 ----a-w- c:\program files\mozilla firefox\plugin-container.exe
2013-02-08 09:35:49 16192 ----a-w- c:\program files\mozilla firefox\plugins\NPOFF12.DLL
2013-02-08 09:35:48 21912 ----a-w- c:\program files\mozilla firefox\plc4.dll
2013-02-08 09:35:47 91544 ----a-w- c:\program files\mozilla firefox\nssdbm3.dll
2013-02-08 09:35:47 641944 ----a-w- c:\program files\mozilla firefox\nss3.dll
2013-02-08 09:35:47 375192 ----a-w- c:\program files\mozilla firefox\nssckbi.dll
2013-02-08 09:35:47 104344 ----a-w- c:\program files\mozilla firefox\nssutil3.dll
2013-02-08 09:35:46 770384 ----a-w- c:\program files\mozilla firefox\msvcr100.dll
2013-02-08 09:35:46 421200 ----a-w- c:\program files\mozilla firefox\msvcp100.dll
2013-02-08 09:35:46 172440 ----a-w- c:\program files\mozilla firefox\nspr4.dll
2013-02-08 09:35:45 812440 ----a-w- c:\program files\mozilla firefox\mozsqlite3.dll
2013-02-08 09:35:45 3066776 ----a-w- c:\program files\mozilla firefox\mozjs.dll
2013-02-08 09:35:44 16280 ----a-w- c:\program files\mozilla firefox\mozalloc.dll
2013-02-08 09:35:44 134040 ----a-w- c:\program files\mozilla firefox\mozglue.dll
2013-02-08 09:35:43 59288 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2013-02-08 09:35:43 478104 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll
2013-02-08 09:35:43 193576 ----a-w- c:\program files\mozilla firefox\maintenanceservice_installer.exe
2013-02-08 09:35:43 115608 ----a-w- c:\program files\mozilla firefox\maintenanceservice.exe
2013-02-08 09:35:42 2953624 ----a-w- c:\program files\mozilla firefox\gkmedias.dll
2013-02-08 09:35:40 917400 ----a-w- c:\program files\mozilla firefox\firefox.exe
2013-02-08 09:35:40 277400 ----a-w- c:\program files\mozilla firefox\freebl3.dll
2013-02-08 09:35:38 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll
2013-02-08 09:35:38 1998168 ----a-w- c:\program files\mozilla firefox\d3dx9_43.dll
2013-02-08 09:35:37 116120 ----a-w- c:\program files\mozilla firefox\crashreporter.exe
2013-02-08 09:35:36 263064 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2013-02-08 09:35:35 74136 ----a-w- c:\program files\mozilla firefox\breakpadinjector.dll
2013-02-08 09:35:35 19352 ----a-w- c:\program files\mozilla firefox\AccessibleMarshal.dll
2013-02-08 09:35:35 -------- d-----w- c:\program files\Mozilla Firefox
2013-01-31 23:00:07 -------- d-----w- c:\documents and settings\all users\application data\Spybot - Search & Destroy
2013-01-31 22:58:50 -------- d-----w- c:\program files\Spybot - Search & Destroy 2
2013-01-30 11:56:12 -------- d-----w- c:\windows\WBEM
2013-01-30 11:51:22 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2013-01-28 08:05:17 -------- d-----w- c:\documents and settings\hp\local settings\application data\Threat Expert
2013-01-28 08:03:34 -------- d--h--r- c:\documents and settings\hp\Onlangs geopend
2013-01-27 22:29:50 202280 ----a-w- c:\windows\system32\drivers\PCTSD.sys
2013-01-27 22:29:04 -------- d-----w- c:\documents and settings\hp\application data\TestApp
2013-01-26 21:23:22 261024 ----a-w- c:\windows\system32\javaws.exe
2013-01-26 21:23:10 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-01-26 21:23:09 174496 ----a-w- c:\windows\system32\javaw.exe
2013-01-26 21:23:09 174496 ----a-w- c:\windows\system32\java.exe
2013-01-17 14:07:09 -------- d-----w- c:\program files\Dropbox
2013-01-05 21:19:56 -------- d-----w- c:\documents and settings\hp\application data\RealNetworks
2013-01-05 21:18:58 -------- d-----w- c:\program files\RealNetworks
2013-01-05 21:18:54 -------- d-----w- c:\documents and settings\all users\application data\RealNetworks
2013-01-05 21:18:26 -------- d-----w- c:\program files\common files\xing shared
2013-01-05 21:18:09 201424 ----a-w- c:\windows\system32\rmoc3260.dll
2013-01-05 21:17:51 6656 ----a-w- c:\windows\system32\pndx5016.dll
2013-01-05 21:17:51 5632 ----a-w- c:\windows\system32\pndx5032.dll
2013-01-05 21:17:50 272896 ----a-w- c:\windows\system32\pncrt.dll
2012-12-19 15:51:51 -------- d-----w- c:\documents and settings\hp\application data\PriceGong
2012-12-18 19:43:48 -------- d-----w- c:\documents and settings\hp\application data\Registry Mechanic
2012-12-18 19:34:14 -------- d-----w- c:\program files\common files\PC Tools
2012-12-18 19:34:11 -------- d-----w- c:\program files\PC Tools
2012-12-18 19:33:46 -------- d-----w- c:\documents and settings\all users\application data\PC Tools
2012-12-18 19:33:44 -------- d-----w- c:\documents and settings\hp\application data\Product_RM
2012-12-18 19:08:32 209112 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll
.
==================== Find6M ====================
.
2013-02-09 18:58:29 74096 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-02-09 18:58:29 697712 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-01-26 21:22:37 143872 ----a-w- c:\windows\system32\javacpl.cpl
2013-01-26 21:22:36 859552 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-01-26 21:22:35 780192 ----a-w- c:\windows\system32\deployJava1.dll
2013-01-09 07:49:13 65273848 ----a-w- c:\windows\system32\mrt.exe
2013-01-06 05:32:27 6011392 ----a-w- c:\windows\system32\mshtml.dll
2013-01-05 21:17:44 499712 ----a-w- c:\windows\system32\msvcp71.dll
2013-01-05 21:17:44 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-12-16 12:31:02 290560 ----a-w- c:\windows\system32\atmfd.dll
2012-12-10 23:10:59 791 ----a-w- C:\temp963.bat
2012-12-10 23:10:52 1144 ----a-w- C:\temp588.bat
2012-12-10 23:10:21 181064 ----a-w- c:\windows\PSEXESVC.EXE
2012-11-28 11:14:32 791 ----a-w- C:\temp711.bat
2012-11-28 11:14:23 1144 ----a-w- C:\temp743.bat
2012-11-13 11:56:18 1875584 ----a-w- c:\windows\system32\win32k.sys
2012-11-10 00:39:07 46080 ----a-w- c:\windows\system32\tzchange.exe
2012-11-08 10:29:12 1402312 ----a-w- c:\windows\system32\msxml4.dll
2012-11-06 02:00:13 1446912 ----a-w- c:\windows\system32\msxml6.dll
2012-11-02 02:03:57 375296 ----a-w- c:\windows\system32\dpnet.dll
2012-10-31 23:41:26 385024 ----a-w- c:\windows\system32\html.iec
2012-10-31 23:41:26 174080 ----a-w- c:\windows\system32\ie4uinit.exe
2012-10-30 22:51:58 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-10-30 22:51:58 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-10-30 22:51:58 361032 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-10-30 22:51:58 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-10-30 22:51:57 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-10-30 22:51:57 89752 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-10-30 22:51:56 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-10-30 22:51:56 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-10-30 22:51:07 41224 ----a-w- c:\windows\avastSS.scr
2012-10-30 22:50:59 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-10-25 02:12:26 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2012-10-25 02:12:26 69632 ----a-w- c:\windows\system32\QuickTime.qts
2012-10-03 04:57:27 1032704 ----a-w- c:\windows\system32\kernel32.dll
2012-10-02 18:04:35 58368 ----a-w- c:\windows\system32\synceng.dll
2012-09-29 18:54:26 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-28 09:32:56 5989776 ----a-w- c:\windows\system32\usbaaplrc.dll
2012-09-28 09:32:56 44544 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2012-08-30 20:03:50 193552 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-08-27 18:47:16 4608 ----a-w- c:\windows\system32\w95inf32.dll
2012-08-27 18:47:16 2272 ----a-w- c:\windows\system32\w95inf16.dll
2012-08-24 13:53:07 178176 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 09:56:24 2073984 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-23 06:26:22 2197376 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-21 12:01:22 106928 ----a-w- c:\windows\system32\GEARAspi.dll
2012-08-21 11:01:22 26840 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
.
============= FINISH: 23:26:50,17 ===============
4
Hoi,

Kennelijk is er bij het uitvoeren van DDS iets fout gegaan waardoor de whitelisting niet gewerkt heeft en daardoor is je log enorm lang geworden ;)

Probeer dit eens:

Download zoek.exe naar het bureaublad.
Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
(hier of hier) kan je lezen hoe je dat doet.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.

    Code: Selecteer alles

    emptyclsid;
    resetchrome;
    autoclean;
    startupall;
    filesrcm;
    
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.
Groeten smeenk :)
5
Zoek.exe Version 4.0.0.2 Beta Updated 18-02-2013
Tool run by hp on wo 20-02-2013 at 7:31:18,29.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-854245398-2111687655-1606980848-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully
HKEY_USERS\S-1-5-21-854245398-2111687655-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{472734EA-242A-422B-ADF8-83D1E48CC825} deleted successfully
HKEY_USERS\S-1-5-21-854245398-2111687655-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{472734EA-242A-422B-ADF8-83D1E48CC825} deleted successfully
HKEY_USERS\S-1-5-21-854245398-2111687655-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-854245398-2111687655-1606980848-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{472734EA-242A-422B-ADF8-83D1E48CC825} deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Documents and Settings\hp\Application Data\Mozilla\Firefox\Profiles\jbfktmq5.default-1356470248953

---- Lines BabylonToolbar removed from prefs.js ----

user_pref("extensions.BabylonToolbar_i.newTab", true);
user_pref("extensions.BabylonToolbar_i.newTabUrl", "http://www.delta-search.com/?affID=1193 ... 10c6f94752");

---- Lines BabylonToolbar modified from prefs.js ----


---- Lines BabylonToolbar removed from user.js ----


---- Lines delta removed from prefs.js ----

user_pref("browser.newtab.url", "http://www.delta-search.com/?affID=1193 ... 10c6f94752");
user_pref("browser.search.order.1", "Delta Search");
user_pref("extensions.delta.admin", false);
user_pref("extensions.delta.aflt", "babsst");
user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
user_pref("extensions.delta.autoRvrt", "false");
user_pref("extensions.delta.dfltLng", "en");
user_pref("extensions.delta.excTlbr", false);
user_pref("extensions.delta.id", "ec6980f80000000000000010c6f94752");
user_pref("extensions.delta.instlDay", "15746");
user_pref("extensions.delta.instlRef", "sst");
user_pref("extensions.delta.newTab", false);
user_pref("extensions.delta.prdct", "delta");
user_pref("extensions.delta.prtnrId", "delta");
user_pref("extensions.delta.rvrt", "false");
user_pref("extensions.delta.smplGrp", "none");
user_pref("extensions.delta.tlbrId", "base");
user_pref("extensions.delta.tlbrSrchUrl", "");
user_pref("extensions.delta.vrsn", "1.8.10.0");
user_pref("extensions.delta.vrsni", "1.8.10.0");
user_pref("extensions.delta.vrsnTs", "1.8.10.010:15:27");

---- Lines delta modified from prefs.js ----


---- Lines delta removed from user.js ----

user_pref("extensions.delta.tlbrSrchUrl", "");
user_pref("extensions.delta.id", "ec6980f80000000000000010c6f94752");
user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
user_pref("extensions.delta.instlDay", "15746");
user_pref("extensions.delta.vrsn", "1.8.10.0");
user_pref("extensions.delta.vrsni", "1.8.10.0");
user_pref("extensions.delta.vrsnTs", "1.8.10.010:15:27");
user_pref("extensions.delta.prtnrId", "delta");
user_pref("extensions.delta.prdct", "delta");
user_pref("extensions.delta.aflt", "babsst");
user_pref("extensions.delta.smplGrp", "none");
user_pref("extensions.delta.tlbrId", "base");
user_pref("extensions.delta.instlRef", "sst");
user_pref("extensions.delta.dfltLng", "en");
user_pref("extensions.delta.excTlbr", false);
user_pref("extensions.delta.admin", false);
user_pref("extensions.delta.autoRvrt", "false");
user_pref("extensions.delta.rvrt", "false");
user_pref("extensions.delta.newTab", false);

---- Lines search.com removed from prefs.js ----


---- Lines search.com modified from prefs.js ----


---- Lines Customized removed from prefs.js ----

user_pref("extensions.testpilot.alreadyCustomizedToolbar", true);

---- Lines Customized modified from prefs.js ----


---- Lines crossrider removed from prefs.js ----

user_pref("extensions.crossrider.bic", "13cc38e33e94d5aa903b6fd6f2f65492");

---- Lines crossrider modified from prefs.js ----


---- FireFox user.js and prefs.js backups ----

user_20-02-2013_0736_.backup
prefs_20-02-2013_0736_.backup

==== Deleting Files \ Folders ======================

"C:\user.js" deleted
"C:\Program Files\TornTV.com\torn11.crx" deleted
"C:\Program Files\TornTV.com\torntemp.xpi" deleted
"C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml" deleted
"C:\user.js" deleted
"C:\END" deleted
"C:\Program Files\Babylon Client Removal Tool" deleted
"C:\Program Files\Conduit" deleted
"C:\Documents and Settings\hp\Application Data\PriceGong" deleted
"C:\Documents and Settings\All Users\Application Data\Tarma Installer" deleted
"C:\Documents and Settings\hp\Local Settings\Application Data\CRE" deleted
"C:\Documents and Settings\hp\Local Settings\Application Data\Giant Savings Extension" deleted
"C:\Documents and Settings\hp\Local Settings\Application Data\Conduit" deleted
"C:\Documents and Settings\hp\Local Settings\Application Data\CRE" deleted

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2013-01-30 11:56:48 5E61E53F57C31641C1A6D982C2DA55D3 1374 ----a-w- C:\WINDOWS\imsins.BAK
====== C:\DOCUME~1\hp\LOCALS~1\Temp ====
2013-02-10 10:00:24 3AE0F11F3D91179443113CAB0F94F944 372736 ----a-w- C:\DOCUME~1\hp\LOCALS~1\Temp\uninst1.exe
====== C:\WINDOWS\system32 =====
====== C:\WINDOWS\system32\drivers =====
2013-02-10 09:14:31 68103A2B441BBF3908EBB587F0704D6C 466008 ----a-w- C:\WINDOWS\System32\drivers\sptd.sys
2013-01-27 22:30:11 DC92042ED4FE4BC61648AF9F91FE12C4 588430 ----a-w- C:\WINDOWS\System32\drivers\Cat.DB
2013-01-27 22:29:50 9A073A09F22C63247964B946F04CB8A4 202280 ----a-w- C:\WINDOWS\System32\drivers\PCTSD.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2013-02-18 21:21:35 -------- d-----w- C:\Program Files\Foxit Software
2013-02-18 20:24:58 -------- d-----w- C:\Program Files\SCICT
======= C: =====
2013-02-12 22:23:03 A30B52693DDBEB996850866AF2740348 4864 ----a-w- C:\AdwCleaner[R1].txt
====== C:\Documents and Settings\hp\Application Data ======
2013-02-18 21:47:23 -------- d-----w- C:\Documents and Settings\hp\Local Settings\Application Data\Microsoft_Corporation
2013-02-18 21:43:22 -------- d-----w- C:\Documents and Settings\All Users\Application Data\ABBYY
2013-02-18 21:26:47 -------- d-----w- C:\Documents and Settings\hp\Application Data\Foxit Software
2013-02-18 21:26:08 -------- d-----w- C:\Documents and Settings\NetworkService\Application Data\Foxit Software
2013-02-18 20:25:02 -------- d-----w- C:\Documents and Settings\hp\Application Data\Virastyar
2013-02-18 20:24:58 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Virastyar
2013-01-31 23:00:07 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2013-01-28 15:51:34 8845B51F436A94BCC27A435C3FAC10B4 94824 ----a-w- C:\Documents and Settings\hp\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2013-01-28 08:05:17 -------- d-----w- C:\Documents and Settings\hp\Local Settings\Application Data\Threat Expert
2013-01-27 22:29:04 -------- d-----w- C:\Documents and Settings\hp\Application Data\TestApp
====== C:\Documents and Settings\hp ======
2013-01-28 08:03:34 -------- d--h--r- C:\Documents and Settings\hp\Onlangs geopend

====== C: exe-files ==
2013-02-19 15:37:58 984CC93BB0EF86A0B4825269D8379D81 774424 ----a-w- C:\Program Files\Google\Update\1.3.21.135\GoogleUpdateSetup.exe
2013-02-19 15:37:58 74E337FFEB2B34043F8499D2F3DE03A8 59784 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleUpdateOnDemand.exe
2013-02-19 15:37:58 376ECCCE33C2C232112DE830E3C81763 59784 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleUpdateBroker.exe
2013-02-19 15:37:57 BECDDA0990DEBD72A30096533521AD73 213384 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe
2013-02-19 15:37:57 B676429E44F2F8ACC3BAE7C89F46B212 281480 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
2013-02-19 15:37:56 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files\Google\Update\1.3.21.135\GoogleUpdate.exe
2013-02-19 15:37:49 984CC93BB0EF86A0B4825269D8379D81 774424 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.135\GoogleUpdateSetup.exe
2013-02-18 21:25:54 6006FF597C0965F39E958BC6F1F75016 38392 ----a-w- C:\WINDOWS\system32\spool\drivers\w32x86\3\FXC_ProxyProcess.exe
2013-02-13 06:54:18 2BF1A08F7CB7752AF697EE228514497F 234872 -c----w- C:\WINDOWS\ie8updates\KB2797052-IE8\spuninst\spuninst.exe
2013-02-13 06:51:27 2BF1A08F7CB7752AF697EE228514497F 234872 -c----w- C:\WINDOWS\ie8updates\KB2792100-IE8\spuninst\spuninst.exe
2013-02-13 06:51:22 232663BA76280C456327FD8331832C34 174080 -c----w- C:\WINDOWS\ie8updates\KB2792100-IE8\ie4uinit.exe
=== C: other files ==
2013-02-19 15:37:58 EA1848EFE8F3B60C687D003977945289 28040 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_th.dll
2013-02-19 15:37:58 E534BB37BF5C43826E748E1D89910253 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sk.dll
2013-02-19 15:37:58 E0FF893763BA82BAABB869A351F0C455 572808 ----atw- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
2013-02-19 15:37:58 DF1FAEC09D59CF8CDBC30D3455648F8C 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_uk.dll
2013-02-19 15:37:58 C56DE8185672B9F17F127EA282DD5E07 160136 ----atw- C:\Program Files\Google\Update\1.3.21.135\psmachine.dll
2013-02-19 15:37:58 A613AEA586B0ADF6902A59F39C547DA6 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_tr.dll
2013-02-19 15:37:58 956C7CFAE0FCA13AE6592A72E681325A 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_pt-BR.dll
2013-02-19 15:37:58 787B22D1B3551214EA18A438EB497BC2 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sr.dll
2013-02-19 15:37:58 6D9CDB9FE405DB672187CA1F85B148FA 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_pt-PT.dll
2013-02-19 15:37:58 6B3640EFF0DD461E27C36AD7EB469D44 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ro.dll
2013-02-19 15:37:58 6A2929FC5F24464DBDC0577DB6766DC1 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ru.dll
2013-02-19 15:37:58 59CBFB54ECC5FE93C74ECB2E4A1FF9A2 22408 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_zh-TW.dll
2013-02-19 15:37:58 51B96D72840AB9232225521102AB4962 22408 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_zh-CN.dll
2013-02-19 15:37:58 3ABFB1E60F232142271FAB79253786F4 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sl.dll
2013-02-19 15:37:58 326DC32156A3587395B6858C10D34B0E 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sw.dll
2013-02-19 15:37:58 2A0309B546700308E7DF9ED9302E8E94 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_te.dll
2013-02-19 15:37:58 1C074E661B522E7F40D3534089FC225E 160136 ----atw- C:\Program Files\Google\Update\1.3.21.135\psuser.dll
2013-02-19 15:37:58 17EBF25727C05C7273AD72BADF1F7058 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ur.dll
2013-02-19 15:37:58 1359046E906BFC1147702E78442ADB1E 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ta.dll
2013-02-19 15:37:58 0B09837C01231654CEA36BAD94F88994 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_sv.dll
2013-02-19 15:37:58 0A6FD6C1F1E21A54CDC342616E8E4F82 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_vi.dll
2013-02-19 15:37:57 FC5D9F5CBC46B3662DE958C682611296 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_en-GB.dll
2013-02-19 15:37:57 F7C88FA49453C948D52D5350F16720D5 31624 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_es.dll
2013-02-19 15:37:57 F7281230459DA9BF21EC099CA833CA03 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_id.dll
2013-02-19 15:37:57 F1B3D5D1D7A332FD6E24C4EB4844C7D5 23944 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ko.dll
2013-02-19 15:37:57 EC724DAA39BEB13862324594100C1052 27016 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ar.dll
2013-02-19 15:37:57 E849D447E038462CBE0B79655865CBB8 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_mr.dll
2013-02-19 15:37:57 DE939A1A8F7EA3C0E41E46F87A4F6EF5 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_fil.dll
2013-02-19 15:37:57 DB9BE127989AF7386234BE8D746CE65D 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_da.dll
2013-02-19 15:37:57 D87B79DF28588640F027686FD1209DD4 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_fi.dll
2013-02-19 15:37:57 C164FE32626724656C77362A88156684 28040 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_fa.dll
2013-02-19 15:37:57 AD7C821EDB54639DD23D745173938ED4 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_is.dll
2013-02-19 15:37:57 A8D817072D08DB41F0BB193F234F43BB 31624 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_de.dll
2013-02-19 15:37:57 98A4DF0939A0ECB3A1A7C7F9C3AA318F 25480 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_am.dll
2013-02-19 15:37:57 93545A29801793646159E248D69D337E 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_kn.dll
2013-02-19 15:37:57 8F1E180AF2F5B9AF234196DAFAB07E11 31112 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_el.dll
2013-02-19 15:37:57 8D70A5894C60E412B4DF74B4EC049F13 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_et.dll
2013-02-19 15:37:57 8B572945FF7BED636A05A219DD78EC95 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_bg.dll
2013-02-19 15:37:57 8ABBEF4327C86834E25E979CEEB19605 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_cs.dll
2013-02-19 15:37:57 8AAFF4EE2151DC1DBE13B1B42189A9A4 32136 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ml.dll
2013-02-19 15:37:57 73CF46B4F2B54AF8D0BF940B12DF10A5 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_hr.dll
2013-02-19 15:37:57 6E67575379F7CE795FF77CEC74F6D769 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_lv.dll
2013-02-19 15:37:57 6D8879BF56B5875E70508A6A20812BB1 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ms.dll
2013-02-19 15:37:57 648544BA93B4DD273DF243F9E72948EF 31112 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_it.dll
2013-02-19 15:37:57 52E4EDF65BA65BEC4BA56D0B6E326F9E 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_no.dll
2013-02-19 15:37:57 4CB3C4616DA0DDF3D03829D8B18C640E 24968 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ja.dll
2013-02-19 15:37:57 43BC38087C79995F7BEDEF8648D5B790 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_bn.dll
2013-02-19 15:37:57 3CC2D1834C1292A11C963FD9523CC4EF 26504 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_iw.dll
2013-02-19 15:37:57 3781763F294C34D9F8A993B384A88FA2 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_ca.dll
2013-02-19 15:37:57 35DB83C4DE9FA3889E937125D115EAA0 28040 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_en.dll
2013-02-19 15:37:57 2E5672EEA419A4DC9DACD714632E1DC3 835464 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdate.dll
2013-02-19 15:37:57 2E1685D3B946B8D4D199494AF700CD2E 29064 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_gu.dll
2013-02-19 15:37:57 2D39FA2E03FCCBB4D76A33FA03C76FE9 30088 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_hu.dll
2013-02-19 15:37:57 2C42FE9ACCA5654AEA2D0C7734531DDA 31112 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_fr.dll
2013-02-19 15:37:57 172724B5A3F3988A7FA0F038A92FF11E 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_nl.dll
2013-02-19 15:37:57 0ABF233C089FB7E8191D29DA2C6AC0AF 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_es-419.dll
2013-02-19 15:37:57 0A119E73AB9ABCB87107B816B0FA74F9 28552 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_lt.dll
2013-02-19 15:37:57 050448DEA40A5CED634C914DBE6336DE 29576 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_hi.dll
2013-02-19 15:37:57 00F8FEEFD4AE00EC5065B937BE00C595 30600 ----atw- C:\Program Files\Google\Update\1.3.21.135\goopdateres_pl.dll
2013-02-18 21:47:37 E01399C6A167424DA10AAB57291F9302 11011 ----a-w- C:\Documents and Settings\All Users\Application Data\Virastyar\en2fa-vit.zip
2013-02-18 21:47:37 D07BF6C6C552958E0E36C91F32785136 70114 ----a-w- C:\Documents and Settings\All Users\Application Data\Virastyar\fa2en-vit.zip
2013-02-18 20:56:49 4A427477C900850850AA71A3D8EBED58 228304910 ----a-w- C:\Documents and Settings\hp\Mijn documenten\Downloads\Virastyar.v1.3.1.x86_www.AsanDownload.com.zip
2013-02-18 20:34:18 06D0CAC25D9F943CD2BD3186A04EA99A 205694890 ----a-w- C:\Documents and Settings\hp\Mijn documenten\Downloads\Foxit.PhantomPDF.Business.Edition.v5.5.4.0121_www.AsanDownload.com.zip
2013-02-18 20:14:37 42208D79903E10CE9E525CB4B217A063 14614189 ----a-w- C:\Documents and Settings\hp\Mijn documenten\Downloads\Virastyar.v2.5.x86_www.AsanDownload.com.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-21-854245398-2111687655-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"_nltide_3"="rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"_nltide_3"="rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"_nltide_3"="rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"_nltide_3"="rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui"
"HPDJ Taskbar Utility"="C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe"
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe"
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe"
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe"
"TkBellExe"="C:\program files\real\realplayer\update\realsched.exe -osboot"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Synchronizer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeCollabSync"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Adobe\\Reader 11.0\\Reader\\AdobeCollabSync.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AGRSMMSG]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AGRSMMSG"
"hkey"="HKLM"
"command"="AGRSMMSG.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AppleSyncNotifier]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AppleSyncNotifier"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleSyncNotifier.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]
"key"="Software\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="APSDaemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ccleaner]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CCleaner"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\CCleaner\\CCleaner.exe\" /AUTO"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ctfmon.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ctfmon"
"hkey"="HKCU"
"command"="C:\\WINDOWS\\system32\\ctfmon.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GoogleUpdate"
"hkey"="HKCU"
"command"="\"C:\\Documents and Settings\\hp\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GrooveMonitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GrooveMonitor"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="Software\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LogitechCommunicationsManager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Communications_Helper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\LogiShrd\\LComMgr\\Communications_Helper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LogitechQuickCamRibbon]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickCam10"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Logitech\\QuickCam10\\QuickCam10.exe\" /hide"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Messenger (Yahoo!)]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="YahooMessenger"
"hkey"="HKCU"
"command"="\"C:\\PROGRA~1\\Yahoo!\\MESSEN~1\\YahooMessenger.exe\" -quiet"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSC]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msseces"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Microsoft Security Client\\msseces.exe\" -hide -runkey"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msnmsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QlbCtrl.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QlbCtrl"
"hkey"="HKLM"
"command"="C:\\Program Files\\Hewlett-Packard\\HP Quick Launch Buttons\\QlbCtrl.exe /Start"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="qttask"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SDTray]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SDTray"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SoundMAX]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Smax4"
"hkey"="HKLM"
"command"="C:\\Program Files\\Analog Devices\\SoundMAX\\Smax4.exe /tray"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SoundMAXPnP]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SMax4PNP"
"hkey"="HKLM"
"command"="C:\\Program Files\\Analog Devices\\SoundMAX\\SMax4PNP.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="jusched"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SynTPEnh"
"hkey"="HKLM"
"command"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^BTTray.lnk]
"path"="C:\\Documents and Settings\\All Users\\Menu Start\\Programma's\\Opstarten\\BTTray.lnk"
"backup"="C:\\WINDOWS\\pss\\BTTray.lnkCommon Startup"
"command"="C:\\PROGRA~1\\WIDCOMM\\BLUETO~1\\BTTray.exe "
"item"="BTTray"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^hp^Menu Start^Programma's^Opstarten^OneNote 2007 Schermopname en Snel starten.lnk]
"path"="C:\\Documents and Settings\\hp\\Menu Start\\Programma's\\Opstarten\\OneNote 2007 Schermopname en Snel starten.lnk"
"backup"="C:\\WINDOWS\\pss\\OneNote 2007 Schermopname en Snel starten.lnkStartup"
"command"="C:\\PROGRA~1\\MICROS~4\\Office12\\ONENOTEM.EXE /tsr"
"item"="OneNote 2007 Schermopname en Snel starten"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]


==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [18-02-2013 08:15]
C:\WINDOWS\tasks\GlaryInitialize.job --a------ C:\Program Files\Glary Utilities\initialize.exe [13-05-2012 17:59]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [20-05-2012 19:53]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [20-05-2012 19:53]
C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job --ah----- C:\Program Files\Microsoft Security Client\MpCmdRun.exe [12-09-2012 16:25]
C:\WINDOWS\tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-854245398-2111687655-1606980848-1003.job --a------ C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe [29-11-2012 20:33]
C:\WINDOWS\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-854245398-2111687655-1606980848-1003.job --a------ C:=C:=C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe []
C:\WINDOWS\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-854245398-2111687655-1606980848-1003.job --a------ C:=C:=C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe []
C:\WINDOWS\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-854245398-2111687655-1606980848-1003.job --a------ C:\Program Files\Real\RealUpgrade\realupgrade.exe [30-11-2012 15:30]
C:\WINDOWS\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-854245398-2111687655-1606980848-1003.job --a------ C:\Program Files\Real\RealUpgrade\realupgrade.exe [30-11-2012 15:30]
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-854245398-2111687655-1606980848-1003.job --a------ C:\Program Files\Real\RealUpgrade\realupgrade.exe [30-11-2012 15:30]
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-854245398-2111687655-1606980848-1003.job --a------ C:\Program Files\Real\RealUpgrade\realupgrade.exe [30-11-2012 15:30]

==== Firefox Extensions ======================

ProfilePath: C:\Documents and Settings\hp\Application Data\Mozilla\Firefox\Profiles\jbfktmq5.default-1356470248953
- avast WebRep - C:\Program Files\AVAST Software\Avast\WebRep\FF
- Woordenboek Nederlands - %ProfilePath%\extensions\nl-NL@dictionaries.addons.mozilla.org
- Instrument Test - %ProfilePath%\extensions\testpilot@labs.mozilla.com.xpi

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\hp\Application Data\Mozilla\Firefox\Profiles\jbfktmq5.default-1356470248953
E0FF893763BA82BAABB869A351F0C455 - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll - Google Update
7D2C149C21BA955CFFE39C08466BA31B - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_168.dll - Shockwave Flash
053E986A84F5EE271D38896B8079157D - C:\WINDOWS\system32\npDeployJava1.dll - Java Deployment Toolkit 7.0.110.21
83949CA2E938F744F6D344A90A5C2EC3 - C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll - Foxit PhantomPDF Plugin for Mozilla
E18B5B26F41D8C37CCAA7256F29F6A15 - c:\program files\real\realplayer\Netscape6\nppl3260.dll - RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)
E18B5B26F41D8C37CCAA7256F29F6A15 - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll - RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)
EBEEC9B1FB8BC809C719713A36640966 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll - RealPlayer Download Plugin
EBEEC9B1FB8BC809C719713A36640966 - C:\Program Files\Mozilla Firefox\plugins\nprpplugin.dll - RealPlayer Download Plugin
89AC2634B447B7917CC8CF99127CF50D - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
6F4F3E329FCD6CD3FE5D899C902F5611 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat
6F4F3E329FCD6CD3FE5D899C902F5611 - C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll - Adobe Acrobat
FEF9ECECFA177AEC0F7564A08394D2C8 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit)
0ABF093757E9C827E30EC652868E5FAC - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit)
06E140A567B8DC7900173197FD059EE5 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit)
558270B968CB82196CB8D045D13B0FF6 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin
AF87C7A3D391F5F5534167546D7DDE30 - C:\Program Files\QuickTime\Plugins\npqtplugin7.dll - QuickTime Plug-in 7.7.3
AF87C7A3D391F5F5534167546D7DDE30 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll - QuickTime Plug-in 7.7.3
2034E977759F4EB2226914BFC58F2758 - C:\Program Files\QuickTime\Plugins\npqtplugin6.dll - QuickTime Plug-in 7.7.3
2034E977759F4EB2226914BFC58F2758 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll - QuickTime Plug-in 7.7.3
B14417814FCA3A5D4AB170E1823D5484 - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.3
B14417814FCA3A5D4AB170E1823D5484 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.3
3EFF190EC0E333DFBD2F5499858044B6 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.3
3EFF190EC0E333DFBD2F5499858044B6 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.3
C4EB1B18B39BD2F76A64F75D01DEAB61 - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.3
C4EB1B18B39BD2F76A64F75D01DEAB61 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.3
45CC6EFE643FCB97D986BBE2D21E2491 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.3
45CC6EFE643FCB97D986BBE2D21E2491 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.3
9FCA15CC38F2E2C6F5E722ED0E1A9E7A - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7.3
9FCA15CC38F2E2C6F5E722ED0E1A9E7A - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll - QuickTime Plug-in 7.7.3
3FCF47BD73094FA62D81373515F46110 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector
6846D2CA7E1D5937AEE3F99BB7F5464B - C:\WINDOWS\system32\Adobe\Director\np32dsw_1168638.dll - Shockwave for Director / Shockwave for Director
EECB8A8C7932B5940A091B590400BDF0 - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa
555E65306A5D3A5978BE74E1DD62CDD9 - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll - RealNetworks(tm) Chrome Background Extension Plug-In (32-bit)
E32771B0AE3F18CEFFC12D682025238A - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll - RealPlayer(tm) HTML5VideoShim Plug-In (32-bit)
AEA69AF0E4F27AABA1A4DF66B43179A3 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
18C6A57B569F088C2BD7B828A211AC06 - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U5
3D3CAF586124C4E8102764C8B3063BB6 - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director
B78F4C2C592C87DF54E8E0C6AAEF3874 - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin
9013599B12923A45C029C34E8D2211AC - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll - Silverlight Plug-In
AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
901DF887DBDF87FA3C659239F68F3228 - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
0F9DEA5814D22F83FED5F427E263DED0 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
F89E6BBD6A080D8C714DFB6F30678288 - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
9A6101F29E2E9D41B99CBCC8F106E8FE - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL - 2007 Microsoft Office system
3EA079023D32054BFD73D08E77C72609 - C:\WINDOWS\system32\npptools.dll - Besturingssysteem Microsoft® Windows®
BF2AD333C79072EEBE5AE0D72670E64E - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrlui.dll - Microsoft® Silverlight


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
icmlaeflemplmjndnaapfdbbnpncnbda - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[30-10-2012 23:48]
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[29-11-2012 20:35]
jbpkiefagocgkmemidfngdkamloieekf - C:\Program Files\TornTV.com\torn11.crx[]
ojpijjmpahflnipadmlpgbjmagmjchkk - C:\Documents and Settings\hp\Local Settings\Application Data\CRE\ojpijjmpahflnipadmlpgbjmagmjchkk.crx[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://klachtenoverdealliantie.blogspot.nl/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6B528F7B-1290-4F85-BA27-8515B393FF4B}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://klachtenoverdealliantie.blogspot.nl/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{6B528F7B-1290-4F85-BA27-8515B393FF4B} Unknown Url="Not_Found"
{6BA4BBC5-3A34-465E-A7AD-CA216AD72022} Unknown Url="Not_Found"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-854245398-2111687655-1606980848-1003\Software\Microsoft\Internet Explorer\SearchScopes\{6B528F7B-1290-4F85-BA27-8515B393FF4B} deleted successfully
HKEY_USERS\S-1-5-21-854245398-2111687655-1606980848-1003\Software\Microsoft\Internet Explorer\SearchScopes\{6BA4BBC5-3A34-465E-A7AD-CA216AD72022} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ojpijjmpahflnipadmlpgbjmagmjchkk deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\hp\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\hp\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Documents and Settings\hp\Local Settings\Application Data\Mozilla\Firefox\Profiles\jbfktmq5.default-1356470248953\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome Cache found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

After Reboot

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\hp\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\hp\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
6
Het ziet er eigenlijk wel behoorlijk schoon uit :good:

Draai Adwarecleaner nog een keer en druk op "Verwijderen".
Post daarna het logje dat je krijgt.
Vertel meteen even of je nog problemen ondervindt? :)
7
Ik heb nog steeds probleem


# AdwCleaner v2.112 - Verslag gemaakt op 20/02/2013 om 23:15:14
# Geactualiseerd op 10/02/2013 door Xplode
# Besturingssysteem : Microsoft Windows XP Service Pack 3 (32 bits)
# Gebruiker : hp - HP-82D1C0315650
# Opstarten Modus : Normale modus
# Gelanceerd vanaf : C:\Documents and Settings\hp\Bureaublad\adwcleaner0.exe
# Optie [Zoeken]


***** [Diensten] *****


***** [Files / Mappen] *****


***** [Register] *****

Sleutel Aanwezig : HKCU\Software\1ClickDownload
Sleutel Aanwezig : HKCU\Software\Conduit
Sleutel Aanwezig : HKCU\Software\Cr_Installer
Sleutel Aanwezig : HKCU\Software\DataMngr
Sleutel Aanwezig : HKCU\Software\DataMngr_Toolbar
Sleutel Aanwezig : HKCU\Software\e55d8d0bc3cba49
Sleutel Aanwezig : HKCU\Software\InstallCore
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Sleutel Aanwezig : HKCU\Software\PriceGong
Sleutel Aanwezig : HKCU\Software\SmartBar
Sleutel Aanwezig : HKCU\Software\Softonic
Sleutel Aanwezig : HKLM\Software\Babylon
Sleutel Aanwezig : HKLM\Software\BabylonToolbar
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Prod.cap
Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Sleutel Aanwezig : HKLM\Software\Conduit
Sleutel Aanwezig : HKLM\Software\DataMngr
Sleutel Aanwezig : HKLM\SOFTWARE\e55d8d0bc3cba49
Sleutel Aanwezig : HKLM\Software\Iminent
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Sleutel Aanwezig : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Sleutel Aanwezig : HKLM\Software\Tarma Installer
Sleutel Aanwezig : HKLM\Software\TENCENT

***** [Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Het register bevat geen enkele ongeoorloofde invoer.

-\\ Mozilla Firefox v19.0 (en-US)

File : C:\Documents and Settings\hp\Application Data\Mozilla\Firefox\Profiles\jbfktmq5.default-1356470248953\prefs.js

[OK] De file bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[R1].txt - [4864 octets] - [12/02/2013 23:23:03]
AdwCleaner[R2].txt - [3761 octets] - [20/02/2013 23:15:14]

########## EOF - C:\AdwCleaner[R2].txt - [3821 octets] ##########
10
Graag gedaan hoor :D


Doe nog even de volgende stappen:

Download Ccleaner

Bij het installeren van de nieuwste Ccleaner wordt nu ook Google Chrome (automatisch) mee geinstalleerd.
Wil je dit voorkomen, dan moet je tijdens het installeren een vinkje weg halen, zodat Google Chrome niet geinstalleerd wordt.

Start CCleaner op.
• Klik in de linkse kolom op Cleaner.
• Klik achtereenvolgens op Analyseren en Opschonen.
• Klik vervolgens in de linkse kolom op Register en klik op Scan naar problemen.
• Als er fouten gevonden worden klik je op Herstel geselecteerde problemen en OK.
• Dan krijg je de vraag om een back-up te maken, klik op JA en kies dan Herstel alle geselecteerde fouten.
• Sluit hierna CCleaner af.


Je mag alle gebruikte tools + de bijbehorende logjes verwijderen.

Verwijder nog even alle oude systeemherstelpunten want daar kunnen nog besmettingen in zitten.
Windows systeemherstelpunten verwijderen klik hier.
Let op: ga geen systeemherstel doen, maar laat alle oude systeemherstelpunten verwijderen.


Om herbesmetting te vermijden, kan je deze tips eens nalezen: Hoe voorkom ik een nieuwe infectie?.

Groeten smeenk :))
11
Dit topic wordt verplaatst naar de "Opgeloste logs".
Het topic kan alleen op verzoek van de topicstarter heropend worden als deze aangeeft dat de problemen niet opgelost zijn.
Bij nieuwe problemen of problemen betreffende een andere computer dan dient er een nieuw eigen topic gestart te worden.

Groeten smeenk :)
Gesloten

Terug naar “Hulp bij malware problemen, adware, ongewenste software en een trage computer”