fout melding : 0xc0000142

Status
Niet open voor verdere reacties.
Egidius_1

Egidius_1

hoi
ik krijg nu al sinds enkele weken de fout melding : 0xc0000142 heb al eens op internet gezocht maar gezien mijn leeftijd (bijna 70)is dit soort van uitleg die ik daar vind voor mij vaak onbegrijpelijk Is er iemand die mij in "normaal mensentaal" hiermee kan helpen om dit te verwijderen c.q. op te lossen of te "repareren"
b.v.d. m.v.g. Gied
de laptop werkt verder (na mijn in ziens) verder goed/normaal
 
eerlijk gezegd nooit opgelet maar meestal start ik altijd outlook 2013 als eerste op en daarna internet security en tijdens (naar ik dacht 1 van deze 2) komt de melding al
 
dan heb je 9/10 te maken met een besmetting !
de internet security dient immers als 1 van de eerste op te starten zonder dat je deze zelf dient te starten !

**mijn advies is om het stappenplan op te volgen en enkel datgene te doen wat er je gevraagd word door de Medewerker " Zer0Day " of een andere medewerker !
 
hoi
ja mijn computer is up to date
op de vraag wanneer ik de melding krijg nu heb ik goed opgelet ik heb eerst outlook 2013 opgestart - daarna internet security toen ik daarna face book opende kwam de melding !!
v.w.b. het stappenplan dit heb ik uitgevoerd deze vond behoorlijk veel fouten deze heb ik uiteraard allemaal verwijderd alleen qtex vraagt dit in mijn reactie te plaatsen ze staan op mijn comp maar hoe krijg ik deze in dit bericht ? kopiëren / plakken werkt niet
 
vanaf nu ga je hier dus verder met je probleem ...
jij kunt enkel je berichten plaatsen en de medewerkers ...gezien dus dat je vermelde dat er veel besmettingen werden gevonden door malewarebijtes , dien je dus nu het log te plaatsen hier in je volgende bericht !
ook het Rsit log plaats je hier neer !

**om het Malwarebijtes log te plaatsen doe je het volgende ..

open Malewarebijtes en ga naar " Historie " en klik op " programma logboeken .
*selecteer de regel van de laatste scanlogboeken ( datum van vandaag ) en klik op " bekijk "
*klik verder op "Exporteer " en kies als " txt "
-kies er tevens voor om deze naar je buraublad te plaatsen !
-geef deze de naam " Mbam Scanlog " bevestig met ok ( je vind het log nu terug op je buraeublad )
*voeg deze nu toe aan je volgende bericht als bijlage of door middel van kopieren en plakken !
-voeg je het toe als bijlage dien je op de tap "meer opties" te klikken en vervolgens selecteer je de " paperclib "
-voeg je het toe door middel van kopieren en plakken dien je het log te openen in "kladblok " en zodoende kun je deze dan kopieren !
 
Laatst bewerkt:
hopelijk heb ik het nu goed gedaan

Malwarebytes Anti-Malware
Malwarebytes | Free Anti-Malware & Internet Security Software

Scan Date: 18-5-2014
Scan Time: 8:15:08
Logfile: mbam scanlog.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.05.18.02
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: LT Fam. Smal

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 293356
Time Elapsed: 19 min, 7 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 69
PUP.Optional.Conduit.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CltMngSvc, , [3b9f1042a6d595a136bb6ab30af707f9],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440544134490}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550555135590}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660566136690}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550555135590}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660566136690}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440544134490}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0051390.BHO.1, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0051390.BHO, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0051390.BHO, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0051390.BHO.1, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{22222222-2222-2222-2222-220522132290}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0051390.Sandbox.1, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0051390.Sandbox, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0051390.Sandbox, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0051390.Sandbox.1, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CLSID\{22222222-2222-2222-2222-220522132290}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110511131190}\INPROCSERVER32, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\CLSID\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\CLSID\{1A42EA66-2898-4e93-8128-D9A450B27D1D}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{1A42EA66-2898-4E93-8128-D9A450B27D1D}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\BearShareIEHelper.DNSGuard, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\BearShareIEHelper.DNSGuard.1, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BearShareIEHelper.DNSGuard, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BearShareIEHelper.DNSGuard.1, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{F0CF944C-F160-4F65-8F0A-2773322FF357}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B8921CEC-8837-404A-B4C8-4DA63EF33C06}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B8921CEC-8837-404A-B4C8-4DA63EF33C06}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{F0CF944C-F160-4F65-8F0A-2773322FF357}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.ValueApps.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{93DBF2BB-A2B3-4683-A92E-57E60751F346}, , [a535be94502b03334e11bc6e4ab843bd],
PUP.Optional.ValueApps.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{93DBF2BB-A2B3-4683-A92E-57E60751F346}, , [a535be94502b03334e11bc6e4ab843bd],
PUP.Optional.SearchProtect.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchProtect, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\3874, , [479355fddba0c96d6325b7d9847e1ee2],
PUP.Optional.CouponDropDown.A, HKLM\SOFTWARE\WOW6432NODE\CouponDropDown Plugin, , [20bab9990378cc6a0025731034ce857b],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\Torntv V9.0, , [95453121f586d95d956fbce3d42e1ce4],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLEDBROWSEREXTENSIONS\3874, , [e5f5f959156651e528606d2332d030d0],
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, , [04d65df59fdc77bf95ee5d57ea19d12f],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr, , [6575a0b2accf37ff49bd219206fdd927],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [5b7fc191e29969cdfeac16b1d92a46ba],
PUP.Optional.TornTV.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V9.0, , [1cbe015198e358de118a0f88af537e82],
PUP.Optional.ValueApps.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\ValueApps, , [b82293bfb5c6b482850e0e8f9c6601ff],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\3874, , [94467bd77605ad895039efa136cc7987],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\installdaddy, , [bd1d044ee8936acca27311a322e14bb5],
PUP.Optional.Softonic.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, , [11c93f1317642610c4ebacdf61a1f808],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B939CF93-F2CB-443d-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\CLSID\{B939CF93-F2CB-443D-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\CLSID\{B939CF93-F2CB-443D-956C-DC523D85C9DB}\INPROCSERVER32, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{64064B80-4463-49c0-8FD5-8F19E3150445}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{64064B80-4463-49c0-8FD5-8F19E3150445}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\BrowserConnection.Loader.1, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\BrowserConnection.Loader, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BrowserConnection.Loader, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B939CF93-F2CB-443D-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BrowserConnection.Loader.1, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{B939CF93-F2CB-443D-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{B939CF93-F2CB-443D-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.SearchResults.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{6e47d688-85ec-465a-9946-ec58220f14fc}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],
PUP.Optional.SearchResults.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{6E47D688-85EC-465A-9946-EC58220F14FC}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],
PUP.Optional.SearchResults.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{6E47D688-85EC-465A-9946-EC58220F14FC}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],
PUP.Optional.SearchResults.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{6E47D688-85EC-465A-9946-EC58220F14FC}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],
PUP.Optional.SearchResults.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6E47D688-85EC-465A-9946-EC58220F14FC}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],

Registry Values: 0
(No malicious items detected)

Registry Data: 2
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\datamngr.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\IEBHO.dll , Good: (), Bad: (D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\IEBHO.dll),,[7e5cc68cc9b2ae88ccd0c29d020049b7]
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\x64\datamngr.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\x64\IEBHO.dll , Good: (), Bad: (D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\x64\IEBHO.dll),,[7e5cc68cc9b2ae88ccd0c29d020049b7]

Folders: 25
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\Logs, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\rep, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\rep, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\bin, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\rep, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.OpenCandy, C:\Users\LT Fam. Smal\AppData\Roaming\OpenCandy, , [508aba98ef8cdf57a3d9e889679b07f9],
PUP.Optional.OpenCandy, C:\Users\LT Fam. Smal\AppData\Roaming\OpenCandy\88B6B5F9E87D4A508A697E2188DB0117, , [508aba98ef8cdf57a3d9e889679b07f9],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.ValueAppsplugin.A, C:\Program Files\Conduit\ValueApps, , [f8e297bbdd9ed264bfaf6d06c63cb64a],
PUP.Optional.ValueAppsplugin.A, C:\Program Files (x86)\Conduit\ValueApps, , [a03af85ab9c21a1c94da383b3ec4837d],
PUP.Optional.ValueAppsplugin.A, C:\Users\LT Fam. Smal\AppData\Local\Conduit\ValueApps, , [459595bdee8df1459ad6d59e669c6997],

Files: 86
PUP.Optional.Conduit.A, C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe, , [3b9f1042a6d595a136bb6ab30af707f9],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho64.dll, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho.dll, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.BearshareTB.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\x64\IEBHO.dll, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\IEBHO.dll, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.Conduit.A, C:\Users\LT Fam. Smal\AppData\Roaming\OpenCandy\88B6B5F9E87D4A508A697E2188DB0117\SSStub_SearchProtect_p1v0.exe, , [e4f6c88a3843c67048e5e438fd04b34d],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\EULA.txt, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\rep\SystemRepository.dat, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\style.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-default.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-onclick.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-Rollover.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-with-logo.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgNotif.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgSettings.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgUninstall.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnBlue.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnClose.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnSilver.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_checked.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_def.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-def.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-over-click.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\gray-bg.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-def.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-selected.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\icon-win.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\info-icon.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-rollover.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-selected.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-def.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-selected.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button2.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Settings-icon.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\text-field.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\v.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\x.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\dialogUtils.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\jquery.1.7.1.min.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\json2.min.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\main.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\SPDialogAPI.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\background.html, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Installer.log, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bg.exe, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-buttonutil.dll, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-buttonutil.exe, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-buttonutil64.dll, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-buttonutil64.exe, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0.ico, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.DataMngr.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\x64\BrowserConnection.dll, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\BrowserConnection.dll, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.SearchResults.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],

Physical Sectors: 0
(No malicious items detected)


(end)
 
bij deze

Malwarebytes Anti-Malware
Malwarebytes | Free Anti-Malware & Internet Security Software

Scan Date: 18-5-2014
Scan Time: 8:15:08
Logfile: mbam scanlog.txt 2.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.05.18.02
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: LT Fam. Smal

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 293356
Time Elapsed: 19 min, 7 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 69
PUP.Optional.Conduit.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CltMngSvc, , [3b9f1042a6d595a136bb6ab30af707f9],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440544134490}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550555135590}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660566136690}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550555135590}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660566136690}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440544134490}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0051390.BHO.1, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0051390.BHO, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0051390.BHO, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0051390.BHO.1, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{11111111-1111-1111-1111-110511131190}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{22222222-2222-2222-2222-220522132290}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0051390.Sandbox.1, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0051390.Sandbox, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0051390.Sandbox, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0051390.Sandbox.1, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CLSID\{22222222-2222-2222-2222-220522132290}, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110511131190}\INPROCSERVER32, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\CLSID\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\CLSID\{1A42EA66-2898-4e93-8128-D9A450B27D1D}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{1A42EA66-2898-4E93-8128-D9A450B27D1D}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\BearShareIEHelper.DNSGuard, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\BearShareIEHelper.DNSGuard.1, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BearShareIEHelper.DNSGuard, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BearShareIEHelper.DNSGuard.1, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{F0CF944C-F160-4F65-8F0A-2773322FF357}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B8921CEC-8837-404A-B4C8-4DA63EF33C06}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B8921CEC-8837-404A-B4C8-4DA63EF33C06}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{F0CF944C-F160-4F65-8F0A-2773322FF357}, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.ValueApps.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{93DBF2BB-A2B3-4683-A92E-57E60751F346}, , [a535be94502b03334e11bc6e4ab843bd],
PUP.Optional.ValueApps.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{93DBF2BB-A2B3-4683-A92E-57E60751F346}, , [a535be94502b03334e11bc6e4ab843bd],
PUP.Optional.SearchProtect.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchProtect, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\3874, , [479355fddba0c96d6325b7d9847e1ee2],
PUP.Optional.CouponDropDown.A, HKLM\SOFTWARE\WOW6432NODE\CouponDropDown Plugin, , [20bab9990378cc6a0025731034ce857b],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\Torntv V9.0, , [95453121f586d95d956fbce3d42e1ce4],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLEDBROWSEREXTENSIONS\3874, , [e5f5f959156651e528606d2332d030d0],
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, , [04d65df59fdc77bf95ee5d57ea19d12f],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr, , [6575a0b2accf37ff49bd219206fdd927],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [5b7fc191e29969cdfeac16b1d92a46ba],
PUP.Optional.TornTV.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V9.0, , [1cbe015198e358de118a0f88af537e82],
PUP.Optional.ValueApps.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\ValueApps, , [b82293bfb5c6b482850e0e8f9c6601ff],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\3874, , [94467bd77605ad895039efa136cc7987],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\installdaddy, , [bd1d044ee8936acca27311a322e14bb5],
PUP.Optional.Softonic.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, , [11c93f1317642610c4ebacdf61a1f808],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B939CF93-F2CB-443d-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\CLSID\{B939CF93-F2CB-443D-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\CLSID\{B939CF93-F2CB-443D-956C-DC523D85C9DB}\INPROCSERVER32, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{64064B80-4463-49c0-8FD5-8F19E3150445}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{64064B80-4463-49c0-8FD5-8F19E3150445}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\BrowserConnection.Loader.1, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\CLASSES\BrowserConnection.Loader, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BrowserConnection.Loader, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B939CF93-F2CB-443D-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BrowserConnection.Loader.1, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{B939CF93-F2CB-443D-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{B939CF93-F2CB-443D-956C-DC523D85C9DB}, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.SearchResults.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{6e47d688-85ec-465a-9946-ec58220f14fc}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],
PUP.Optional.SearchResults.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{6E47D688-85EC-465A-9946-EC58220F14FC}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],
PUP.Optional.SearchResults.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{6E47D688-85EC-465A-9946-EC58220F14FC}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],
PUP.Optional.SearchResults.A, HKU\S-1-5-21-1993295259-3396684233-3005707026-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{6E47D688-85EC-465A-9946-EC58220F14FC}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],
PUP.Optional.SearchResults.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6E47D688-85EC-465A-9946-EC58220F14FC}, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],

Registry Values: 0
(No malicious items detected)

Registry Data: 2
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\datamngr.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\IEBHO.dll , Good: (), Bad: (D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\IEBHO.dll),,[7e5cc68cc9b2ae88ccd0c29d020049b7]
PUP.Optional.BearshareTB.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\x64\datamngr.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\x64\IEBHO.dll , Good: (), Bad: (D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\x64\IEBHO.dll),,[7e5cc68cc9b2ae88ccd0c29d020049b7]

Folders: 25
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\Logs, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\rep, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\rep, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\bin, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\rep, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.OpenCandy, C:\Users\LT Fam. Smal\AppData\Roaming\OpenCandy, , [508aba98ef8cdf57a3d9e889679b07f9],
PUP.Optional.OpenCandy, C:\Users\LT Fam. Smal\AppData\Roaming\OpenCandy\88B6B5F9E87D4A508A697E2188DB0117, , [508aba98ef8cdf57a3d9e889679b07f9],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.ValueAppsplugin.A, C:\Program Files\Conduit\ValueApps, , [f8e297bbdd9ed264bfaf6d06c63cb64a],
PUP.Optional.ValueAppsplugin.A, C:\Program Files (x86)\Conduit\ValueApps, , [a03af85ab9c21a1c94da383b3ec4837d],
PUP.Optional.ValueAppsplugin.A, C:\Users\LT Fam. Smal\AppData\Local\Conduit\ValueApps, , [459595bdee8df1459ad6d59e669c6997],

Files: 86
PUP.Optional.Conduit.A, C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe, , [3b9f1042a6d595a136bb6ab30af707f9],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho64.dll, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho.dll, , [7961ea68e39857df498e55e6dc25a15f],
PUP.Optional.BearshareTB.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\x64\IEBHO.dll, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.BearshareTB.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\IEBHO.dll, , [7e5cc68cc9b2ae88ccd0c29d020049b7],
PUP.Optional.Conduit.A, C:\Users\LT Fam. Smal\AppData\Roaming\OpenCandy\88B6B5F9E87D4A508A697E2188DB0117\SSStub_SearchProtect_p1v0.exe, , [e4f6c88a3843c67048e5e438fd04b34d],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\EULA.txt, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\rep\SystemRepository.dat, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\style.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-default.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-onclick.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-Rollover.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-with-logo.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgNotif.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgSettings.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgUninstall.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnBlue.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnClose.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnSilver.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_checked.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_def.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-def.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-over-click.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\gray-bg.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-def.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-selected.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\icon-win.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\info-icon.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-rollover.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-selected.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-def.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-selected.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button2.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Settings-icon.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\text-field.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\v.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\x.png, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\dialogUtils.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\jquery.1.7.1.min.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\json2.min.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\main.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\SPDialogAPI.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\defaults.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.css, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.html, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.js, , [7c5e68ea2556290d72e2803d9370ef11],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\background.html, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Installer.log, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bg.exe, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-buttonutil.dll, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-buttonutil.exe, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-buttonutil64.dll, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-buttonutil64.exe, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V9.0\Torntv V9.0.ico, , [409a242ee09b1c1a07178fe4dc2635cb],
PUP.Optional.DataMngr.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\x64\BrowserConnection.dll, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.DataMngr.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\BrowserConnection.dll, , [e7f3a3af7a011a1c7bbdd37ebf458878],
PUP.Optional.SearchResults.A, D:\Mijn Muziek\Muziek van Bearshare\BearShare Applications\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll, , [38a2dd75c3b8ba7cfa5ac48cd52f847c],

Physical Sectors: 0
(No malicious items detected)


(end)
 
Bij deze (als het goed gaat)
maar even ter info --> na het draaien van malewarebites heb ik de melding "niet" meer gehad ???? hopelijk blijft dit zo
nu rsit
Logfile of random's system information tool 1.09 (written by random/random)
Run by LT Fam. Smal at 2014-05-19 11:55:16
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 22 GB (32%) free of 70 GB
Total RAM: 3070 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:55:22, on 19-5-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
D:\Apps\Touchpad Blocker\TouchpadBlocker.exe
D:\Apps\IE New Window Maximizer\iemaximizer.exe
C:\Program Files (x86)\Portable\EaseUS CleanGenius Pro 3.0.6\CleanGeniusTray.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\LT Fam. Smal.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Object moved
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Symbaloo | Je persoonlijke Startpagina
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Object moved
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Object moved
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Object moved
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Object moved
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [KMS] C:\Windows\kmsonboot\autoact.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files (x86)\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [TouchpadBlocker.exe] "D:\Apps\Touchpad Blocker\TouchpadBlocker.exe"
O4 - HKCU\..\Run: [IE New Window Maximizer] D:\Apps\IE New Window Maximizer\iemaximizer.exe
O4 - HKCU\..\Run: [CleanGeniusTray] "C:\Program Files (x86)\Portable\EaseUS CleanGenius Pro 3.0.6\CleanGeniusTray.exe" -startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h20364.www2.hp.com/CSMWeb/Customer/cabs/HPISDataManager.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\datamngr.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HEU_KMS_Service - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - D:\Apps\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - D:\Apps\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Unknown owner - C:\Windows\system32\DRIVERS\xaudio64.exe (file missing)

--
End of file - 13138 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
crypserv.exe
C:\Windows\SysWOW64\srvany.exe
C:\Windows\HEU_KMS_Service.exe DefaultPort RandomKMSPID 43200 43200 KillProcessOnPort
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
\??\C:\Windows\system32\conhost.exe "-689725649-1380630704-611614864-1808911097-1089165782-749893422151404440-950880729
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
"C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe"
"D:\Apps\Touchpad Blocker\TouchpadBlocker.exe"
"D:\Apps\IE New Window Maximizer\iemaximizer.exe"
"C:\Program Files (x86)\Portable\EaseUS CleanGenius Pro 3.0.6\CleanGeniusTray.exe" -startup
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
"C:\Program Files (x86)\Acronis\TrueImageHome\TimounterMonitor.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\system32\DRIVERS\xaudio64.exe
WLIDSvcM.exe 2396
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
"C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2700
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Photosmart C6300 series#1363866731" -Startup
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
taskeng.exe {F86B1A35-ED41-4C46-9501-40303A376B15}
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files\Internet Explorer\iexplore.exe" http://www.pctuts.be/f514/fout-melding-0xc0000142-46483-new/
"C:\Program Files\Internet Explorer\iexplore.exe" http://www.pctuts.be/f514/fout-melding-0xc0000142-46483-new/
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2832 CREDAT:267521 /prefetch:2
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2748 CREDAT:267521 /prefetch:2
C:\Windows\system32\Macromed\Flash\FlashUtil64_13_0_0_214_ActiveX.exe -Embedding
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2748 CREDAT:791830 /prefetch:2
C:\Windows\system32\sppsvc.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1993295259-3396684233-3005707026-10016_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1993295259-3396684233-3005707026-10016 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 820 824 832 65536 828
"D:\Apps\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-04-25 218784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-09 551840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office15\URLREDIR.DLL [2014-01-23 881880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2014-04-08 2333400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-09 209824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-04-25 153248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2014-01-22 707800]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2014-04-08 1728216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Acronis Scheduler2 Service"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2007-10-11 140568]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25 1275608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TouchpadBlocker.exe"=D:\Apps\Touchpad Blocker\TouchpadBlocker.exe [2012-02-07 880640]
"IE New Window Maximizer"=D:\Apps\IE New Window Maximizer\iemaximizer.exe [2005-02-09 356352]
"CleanGeniusTray"=C:\Program Files (x86)\Portable\EaseUS CleanGenius Pro 3.0.6\CleanGeniusTray.exe [2012-11-05 505768]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"KMS"=C:\Windows\kmsonboot\autoact.exe [2013-07-29 750225]
"TrueImageMonitor.exe"=C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2007-10-11 2617448]
"AcronisTimounterMonitor"=C:\Program Files (x86)\Acronis\TrueImageHome\TimounterMonitor.exe [2007-10-11 905000]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll D:\MIJNMU~1\MUZIEK~3\BEARSH~1\Mediabar\Datamngr\x64\datamngr.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MSIServer]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-05-19 11:55:16 ----D---- C:\rsit
2014-05-19 11:55:16 ----D---- C:\Program Files\trend micro
2014-05-19 08:44:12 ----A---- C:\Windows\system32\drivers\sfi.dat
2014-05-19 08:42:50 ----SD---- C:\ProgramData\Shared Space
2014-05-19 08:42:41 ----D---- C:\Program Files\COMODO
2014-05-19 08:42:31 ----D---- C:\ProgramData\Comodo Downloader
2014-05-19 08:39:49 ----D---- C:\ProgramData\Comodo
2014-05-18 10:14:01 ----A---- C:\Windows\system32\sdnclean64.exe
2014-05-18 10:07:16 ----A---- C:\Windows\wininit.ini
2014-05-18 09:16:42 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-05-18 07:53:38 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-05-18 07:53:04 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-05-18 07:53:04 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-05-18 07:53:04 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-05-18 07:53:03 ----D---- C:\ProgramData\Malwarebytes
2014-05-14 10:09:21 ----D---- C:\Program Files\Microsoft.NET
2014-05-14 09:35:42 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-14 09:35:42 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-14 09:35:42 ----A---- C:\Windows\system32\mshtml.dll
2014-05-14 09:35:40 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-14 09:08:56 ----A---- C:\Windows\system32\aepdu.dll
2014-05-14 09:08:52 ----A---- C:\Windows\system32\aeinv.dll
2014-05-14 09:08:49 ----A---- C:\Windows\system32\shell32.dll
2014-05-14 09:08:47 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-14 09:08:16 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-14 09:08:16 ----A---- C:\Windows\system32\kerberos.dll
2014-05-14 09:08:15 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-14 09:08:15 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-14 09:08:15 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-14 09:08:15 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-14 09:08:15 ----A---- C:\Windows\system32\winlogon.exe
2014-05-14 09:08:15 ----A---- C:\Windows\system32\objsel.dll
2014-05-14 09:08:15 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-14 09:08:15 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-14 09:08:14 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-14 09:08:14 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-14 09:08:13 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-14 09:08:13 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-14 09:08:13 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-14 09:08:13 ----A---- C:\Windows\system32\wdigest.dll
2014-05-14 09:08:13 ----A---- C:\Windows\system32\schannel.dll
2014-05-14 09:08:13 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-14 09:08:13 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-14 09:08:12 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-14 09:08:12 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-14 09:08:12 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-14 09:08:12 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-14 09:08:12 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-14 09:08:12 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-14 09:08:12 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-14 09:08:12 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-14 09:08:12 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-14 09:08:12 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-14 09:08:12 ----A---- C:\Windows\system32\sspicli.dll
2014-05-14 09:08:12 ----A---- C:\Windows\system32\lsass.exe
2014-05-14 09:08:12 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-14 09:08:12 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-14 09:08:12 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-14 09:08:12 ----A---- C:\Windows\system32\credssp.dll
2014-05-14 09:08:12 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-14 09:08:12 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-14 09:08:12 ----A---- C:\Windows\system32\adprovider.dll
2014-05-14 09:08:11 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-14 09:08:11 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-14 09:08:11 ----A---- C:\Windows\system32\secur32.dll
2014-05-14 07:58:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-05-13 14:00:32 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-12 11:38:22 ----A---- C:\Windows\system32\relog_ap.dll
2014-05-12 11:38:19 ----A---- C:\Windows\system32\drivers\snapman.sys
2014-05-12 11:37:59 ----D---- C:\Program Files (x86)\Acronis
2014-05-12 11:12:45 ----D---- C:\Windows\kmsonboot
2014-05-12 11:12:35 ----A---- C:\Windows\HEU_KMS_Service.exe
2014-05-12 11:01:37 ----D---- C:\Program Files\Common Files\DESIGNER
2014-05-12 11:00:11 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2014-05-12 10:59:16 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-05-12 10:58:02 ----D---- C:\Program Files\Microsoft SQL Server
2014-05-12 10:52:31 ----D---- C:\Program Files\Microsoft Analysis Services
2014-05-12 10:52:31 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2014-05-12 10:51:27 ----RHD---- C:\MSOCache
2014-05-12 07:58:55 ----D---- C:\Users\LT Fam. Smal\AppData\Roaming\ParetoLogic
2014-05-12 07:58:37 ----D---- C:\ProgramData\ParetoLogic
2014-05-11 11:44:54 ----D---- C:\translations
2014-05-11 11:44:54 ----A---- C:\7za.dll
2014-05-11 11:44:53 ----D---- C:\cis
2014-05-02 08:22:42 ----SD---- C:\Windows\system32\CompatTel
2014-04-28 12:47:12 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-04-28 12:47:01 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-04-28 12:47:01 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-04-28 12:47:01 ----A---- C:\Windows\SYSWOW64\java.exe

======List of files/folders modified in the last 1 month======

2014-05-19 11:55:16 ----RD---- C:\Program Files
2014-05-19 11:53:22 ----D---- C:\Windows\Temp
2014-05-19 11:26:00 ----D---- C:\Windows\system32\config
2014-05-19 10:02:07 ----SHD---- C:\Windows\Installer
2014-05-19 10:02:07 ----HD---- C:\Config.Msi
2014-05-19 10:01:06 ----D---- C:\Windows\SysWOW64
2014-05-19 08:58:02 ----HD---- C:\ProgramData
2014-05-19 08:44:21 ----D---- C:\Windows\system32\Tasks
2014-05-19 08:44:12 ----D---- C:\Windows\system32\drivers
2014-05-19 08:44:06 ----D---- C:\Windows\inf
2014-05-19 08:43:55 ----D---- C:\Windows\system32\DriverStore
2014-05-19 08:43:54 ----SHD---- C:\System Volume Information
2014-05-19 08:42:42 ----D---- C:\Windows\System32
2014-05-19 07:59:28 ----D---- C:\Windows\system32\catroot2
2014-05-19 07:49:04 ----D---- C:\Windows
2014-05-18 10:14:07 ----SD---- C:\ProgramData\Microsoft
2014-05-18 10:13:59 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-05-18 09:16:42 ----RD---- C:\Program Files (x86)
2014-05-18 08:17:05 ----D---- C:\Windows\Globalization
2014-05-18 08:17:02 ----D---- C:\Program Files\Conduit
2014-05-18 08:17:02 ----D---- C:\Program Files (x86)\Conduit
2014-05-17 08:34:45 ----D---- C:\Windows\Tasks
2014-05-17 08:34:42 ----D---- C:\Program Files (x86)\Common Files
2014-05-17 07:48:10 ----D---- C:\Windows\debug
2014-05-14 10:52:38 ----D---- C:\Windows\rescache
2014-05-14 10:30:49 ----D---- C:\Windows\Microsoft.NET
2014-05-14 10:29:10 ----RSD---- C:\Windows\assembly
2014-05-14 10:15:44 ----D---- C:\ProgramData\Microsoft Help
2014-05-14 10:15:19 ----A---- C:\Windows\win.ini
2014-05-14 10:15:18 ----D---- C:\Program Files\Common Files\System
2014-05-14 10:09:21 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-05-14 10:09:17 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-05-14 09:48:39 ----D---- C:\Windows\winsxs
2014-05-14 09:45:29 ----D---- C:\Windows\system32\nl-NL
2014-05-14 09:35:48 ----D---- C:\Windows\system32\catroot
2014-05-14 09:25:37 ----D---- C:\Windows\system32\MRT
2014-05-14 09:20:44 ----A---- C:\Windows\system32\MRT.exe
2014-05-14 07:58:53 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-12 11:02:33 ----RSD---- C:\Windows\Fonts
2014-05-12 11:02:02 ----D---- C:\Windows\ShellNew
2014-05-12 11:01:37 ----D---- C:\Program Files\Common Files
2014-05-12 10:58:02 ----D---- C:\Program Files\Microsoft Office
2014-05-12 10:52:15 ----D---- C:\Program Files (x86)\Microsoft Office
2014-05-11 13:13:29 ----D---- C:\Windows\system32\NDF
2014-05-11 12:07:53 ----D---- C:\Windows\system32\wfp
2014-05-11 12:07:50 ----D---- C:\Windows\system32\wbem
2014-05-11 12:06:41 ----D---- C:\Windows\system32\CodeIntegrity
2014-05-11 12:06:31 ----D---- C:\ProgramData\HP
2014-05-11 12:06:25 ----D---- C:\Program Files (x86)\AVG
2014-05-11 12:06:11 ----D---- C:\Windows\registration
2014-04-28 12:47:24 ----D---- C:\ProgramData\Oracle
2014-04-28 12:47:01 ----D---- C:\Program Files (x86)\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 NBVol;Nero Backup Volume Filter Driver; C:\Windows\system32\DRIVERS\NBVol.sys [2011-12-01 72240]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\Windows\system32\DRIVERS\NBVolUp.sys [2011-12-01 15920]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2014-05-12 229408]
R0 tdrpman;Acronis Try&Decide and Restore Points filter; C:\Windows\system32\DRIVERS\tdrpman.sys [2014-05-12 593952]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2014-05-12 711712]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 26968]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2014-04-16 23168]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2014-04-16 738472]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-04-16 48360]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2014-04-16 105552]
R1 NetworkX;NetworkX; C:\Windows\syswow64\ckldrv.sys []
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 17024]
R2 tifsfilter;Acronis True Image FS Filter; C:\Windows\system32\DRIVERS\tifsfilt.sys [2014-05-12 81952]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio64.sys [2007-08-07 10240]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
R3 CAXHWAZL;CAXHWAZL; C:\Windows\system32\DRIVERS\CAXHWAZL.sys [2007-08-03 293376]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\CAX_DPV.sys [2007-08-03 1481216]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-04-03 25816]
R3 netw5v64;Stuurprogramma voor Intel(R) Wireless WiFi Link 5000 Series-adapter voor 64-bits Windows Vista; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
R3 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2mdx64.sys [2008-03-04 58456]
R3 O2SDRDR;O2SDRDR; C:\Windows\system32\DRIVERS\o2sdx64.sys [2008-03-03 51672]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2013-09-18 14112]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\CAX_CNXT.sys [2007-08-03 740352]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-03-03 96768]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 epmntdrv;epmntdrv; \??\C:\Windows\syswow64\epmntdrv.sys [2012-12-21 14920]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\syswow64\EuGdiDrv.sys [2012-12-21 9160]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-11-04 117120]
S3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys []
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-04-03 63192]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 rcmirror;HP RC Mirror Driver; C:\Windows\system32\DRIVERS\rcmirror64.sys [2012-08-13 13120]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\drivers\serscan.sys [2009-07-14 12288]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2013-03-02 16152]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usb_rndisx;USB RNDIS-adapter; C:\Windows\system32\drivers\usb8023x.sys [2013-02-12 19968]
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;WinUsb-stuurprogramma; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2007-10-11 599320]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 6817544]
R2 Crypkey License;Crypkey License; C:\Windows\system32\crypserv.exe [2008-05-08 122880]
R2 HEU_KMS_Service;HEU_KMS_Service; C:\Windows\syswow64\srvany.exe [2003-04-18 8192]
R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-04 687400]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 o2flash;O2Micro Flash Memory Card Service; C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe [2007-02-12 65536]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-11 193824]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 TryAndDecideService;Acronis Try And Decide Service; C:\Program Files (x86)\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe [2007-10-12 493192]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2014-04-15 2185528]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 VMCService;Vodafone Mobile Connect Service; C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-11-16 9216]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 MBAMScheduler;MBAMScheduler; D:\Apps\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-04-03 1809720]
S2 MBAMService;MBAMService; D:\Apps\Malwarebytes Anti-Malware\mbamservice.exe [2014-04-03 857912]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14 257712]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 2264280]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-01 1255736]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------
 
Het grootste deel is inderdaad al door Malwarebytes verwijderd. Er zijn wel nog wat zaken die de tool gemist heeft.
Voer onderstaande tool eens uit om die laatste besmettingen te verwijderen:

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe!

Download Zoek.exe naar het bureaublad (niet de .zip- of .rar-versie).
  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
Code: 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
"AppInit_DLLs"=-;r64
C:\Program Files\Conduit;fs
C:\Program Files (x86)\Conduit;fs
autoclean;
emptyclsid;
emptyfolderscheck;delete
startupall; 
filesrcm;
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.
 
bij deze (als het goed gegaan is)

Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by LT Fam. Smal on ma 19-05-2014 at 15:36:35,07.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: D:\Apps\zoek.exe [Scan all users] [Quick Scan] [Auto Clean]

===== Runcheck 15:38:25,14 =====

--- Create Environment Variables 15:38:35,19
--- Create System Restore Point 15:39:16,40
--- Checking Input 15:40:10,88
--- AU AppData Check 15:40:51,80
--- Remove From Windows Installer 15:41:32,20
--- Empty Folders Check 15:56:26,05
--- IE Startpage Check 15:57:35,70
--- Program Files DB Check 16:03:07,37
--- C:\Users\Administrator\AppData\Roaming DB Check 16:06:45,79
--- C:\Users\Default\AppData\Roaming DB Check 16:06:45,79
--- C:\Users\Default User\AppData\Roaming DB Check 16:06:45,79
--- C:\Users\LT Fam. Smal\AppData\Roaming DB Check 16:06:45,79
--- C:\Users\LTFAM~1.SMA\AppData\Roaming DB Check 16:06:45,79
--- C:\Windows\SysNative\config\systemprofile\AppData\Roaming DB Check 16:06:45,79
--- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming DB Check 16:06:45,79
--- C:\Windows\serviceprofiles\networkservice\AppData\Roaming DB Check 16:06:45,79
--- C:\Windows\serviceprofiles\Localservice\AppData\Roaming DB Check 16:06:45,79
--- C:\Users\LT Fam. Smal DB Check 16:18:53,77
--- C:\PROGRA~3 DB Check 16:20:07,21
--- C:\Users\Default\AppData\Local DB Check 16:20:12,59
--- C:\Users\Default User\AppData\Local DB Check 16:20:12,59
--- C:\Users\LT Fam. Smal\AppData\Local DB Check 16:20:12,59
--- C:\Users\LTFAM~1~SMA\AppData\Local DB Check 16:20:12,59
--- C:\Users\LTFAM~1.SMA\AppData\Local DB Check 16:20:12,59
--- C:\Windows\SysNative\config\systemprofile\AppData\Local DB Check 16:20:12,59
--- C:\Windows\sysWoW64\config\systemprofile\AppData\Local DB Check 16:20:12,59
--- C:\Windows\serviceprofiles\networkservice\AppData\Local DB Check 16:20:12,59
--- C:\Windows\serviceprofiles\Localservice\AppData\Local DB Check 16:20:12,59
--- C:\ProgramData\Microsoft\Windows\Start Menu\Programs DB Check 16:28:23,31
--- C:\Users\LT Fam. Smal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs DB Check 16:29:03,10
--- Tasks DB Check 16:29:25,32
--- Downloads DB Check 16:29:40,71
--- C:\Users\LT Fam. Smal\AppData\LocalLow DB Check 16:30:03,24
--- C:\Users\LTFAM~1.SMA\AppData\LocalLow DB Check 16:30:03,24
 
Nee dat is niet het log, dat is de voortgang van de tool.
Het log verschijnt in een kladblokbestand nadat de computer opnieuw is opgestart.

Kijk anders eens onder je C-schijf. Daar kan je het log ook terugvinden.
 
Status
Niet open voor verdere reacties.
Terug
Bovenaan Onderaan