Ga naar inhoud

Avast antivirusprogramma


nonika

Aanbevolen berichten

sedert vele jaren gebruikt ik op onze pc's Avast als antivirusprogramma, eerst de gratis versie, sedert een aantal jaren via abonnement, telkens per 2 jaar. Ik ben er altijd zeer tevreden van geweest en gebruikte de safezone bij bankverrichtingen en betalingen, steeds zonder problemen. Het huidig abonnement loopt tot 2015 maar sedert de laatste updates is er toch een en ander veranderd en werkt het niet meer zo goed ttz, een heel stuk trager. Bankverrichtingen lukken nog maar waar je vroeger makkelijk verschillende overschrijvingen na mekaar kon invoeren duurt het nu soms 5 min. vooraleer de bewerking gelukt is en je een tweede verrichting kan uitvoeren en eens de safe zone verlaten en avast programma afgesloten moet ik telkens de pc afsluiten en terug opstarten vooraleer ik naar een ander programma kan gaan omdat hij steeds vastloopt. Volgens mij (maar ik ben eigenlijk een leek op dat gebied) heeft het met bep. instellingen te maken en heb ik het gevoel dat er een aantal programma's mekaar tegenwerken maar ik weet er niet genoeg van om te weten wat precies. Kan er iemand mij helpen aub ?

Link naar reactie
Delen op andere sites

Laten we eerst eens kijken of er geen externe factoren de traagheid veroorzaken: malware bvb.

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Bekijk ook de instructievideo.

Link naar reactie
Delen op andere sites

Goeiemorgen, hieronder het gevraagde RSIT bestand

Logfile of random's system information tool 1.10 (written by random/random)

Run by luve at 2014-06-14 11:11:21

Microsoft® Windows Vista™ Home Premium Service Pack 2

System drive C: has 272 GB (58%) free of 466 GB

Total RAM: 3038 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 11:12:42, on 14/06/2014

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16555)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\HP\QuickPlay\QPService.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe

C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

C:\Program Files\Alwil Software\Avast5\avastui.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\IDT\WDM\sttray.exe

C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Windows\ehome\ehmsas.exe

C:\Users\luve\AppData\Local\Google\Update\1.3.24.7\GoogleCrashHandler.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Windows Mail\WinMail.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Alawar Elements\BackgroundHost.exe

C:\Windows\system32\Macromed\Flash\FlashUtil32_14_0_0_125_ActiveX.exe

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\URK2U2MW\RSIT.exe

C:\Program Files\trend micro\luve.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Telenet.be

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Telenet.be

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Telenet Internet

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: (no name) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file)

R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL (file missing)

R3 - URLSearchHook: (no name) - - (no file)

O1 - Hosts: ::1 localhost

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: Zynga - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file)

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5825.1100\swg.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O2 - BHO: Alawar Elements - {E33FF41E-53CB-4D93-885A-FFEFA04CD804} - C:\Program Files\Alawar Elements\ScriptHost.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: (no name) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file)

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"

O4 - HKLM\..\Run: [updateLBPShortCut] "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"

O4 - HKLM\..\Run: [updatePSTShortCut] "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start

O4 - HKLM\..\Run: [updatePDIRShortCut] "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"

O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [sysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/IWONBarInitialSetup1.0.1.1.cab

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_b9d13b43\aestsrv.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\Alwil Software\Avast5\afwServ.exe

O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe

O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files\WildTangent Games\App\GamesAppIntegrationService.exe

O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files\WildTangent Games\App\GamesAppService.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: My Web Search Service (MyWebSearchService) - MyWebSearch.com - C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: Online Games Manager (ogmservice) - RealNetworks, Inc. - C:\Program Files\Online Games Manager\ogmservice.exe

O23 - Service: Recovery Service for Windows - Unknown owner - C:\Program Files\SMINST\BLService.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_b9d13b43\STacSV.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

--

End of file - 12318 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core.job - C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA.job - C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-14 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-05-07 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]

Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-10-27 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]

Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5825.1100\swg.dll [2012-08-25 841880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]

Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-10-27 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804}]

Alawar Elements - C:\Program Files\Alawar Elements\ScriptHost.dll [2013-11-27 442528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-10-27 256112]

{7b13ec3e-999a-4b70-b9cb-2617b8323822}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-12-05 1410344]

"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2008-09-23 468264]

"UpdateLBPShortCut"=C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2008-06-13 210216]

"UpdatePSTShortCut"=C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [2008-12-24 210216]

"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]

"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-10-10 206128]

"UpdatePDIRShortCut"=C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [2008-06-13 210216]

"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09 75008]

"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-12-08 432432]

"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-01-15 13605408]

"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2009-01-15 92704]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2014-06-05 3890208]

"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-02-23 483420]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-06-09 2363392]

"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-10-27 39408]

"TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2013-08-27 248208]

"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]

"MyWebSearch Email Plugin"=C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe []

"Google Update"=C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-12 136176]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe []

"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"MSVideo8"=VfWWDM32.dll

"msacm.l3codecp"=l3codecp.acm

"msacm.siren"=sirenacm.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-06-14 11:11:21 ----D---- C:\rsit

2014-06-14 11:11:21 ----D---- C:\Program Files\trend micro

2014-06-13 21:14:51 ----D---- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition

2014-06-12 12:49:43 ----A---- C:\Windows\system32\usp10.dll

2014-06-12 12:49:42 ----A---- C:\Windows\system32\drivers\tcpip.sys

2014-06-12 12:49:39 ----A---- C:\Windows\system32\msxml6.dll

2014-06-12 12:49:39 ----A---- C:\Windows\system32\msxml3.dll

2014-06-12 12:49:37 ----A---- C:\Windows\system32\urlmon.dll

2014-06-12 12:49:37 ----A---- C:\Windows\system32\mshta.exe

2014-06-12 12:49:37 ----A---- C:\Windows\system32\msfeedssync.exe

2014-06-12 12:49:36 ----A---- C:\Windows\system32\vbscript.dll

2014-06-12 12:49:36 ----A---- C:\Windows\system32\url.dll

2014-06-12 12:49:36 ----A---- C:\Windows\system32\ieUnatt.exe

2014-06-12 12:49:36 ----A---- C:\Windows\system32\iertutil.dll

2014-06-12 12:49:35 ----A---- C:\Windows\system32\msfeedsbs.dll

2014-06-12 12:49:35 ----A---- C:\Windows\system32\jsproxy.dll

2014-06-12 12:49:34 ----A---- C:\Windows\system32\wininet.dll

2014-06-12 12:49:34 ----A---- C:\Windows\system32\jscript9.dll

2014-06-12 12:49:34 ----A---- C:\Windows\system32\jscript.dll

2014-06-12 12:49:33 ----A---- C:\Windows\system32\msfeeds.dll

2014-06-12 12:49:33 ----A---- C:\Windows\system32\dxtmsft.dll

2014-06-12 12:49:29 ----A---- C:\Windows\system32\ieui.dll

2014-06-12 12:49:29 ----A---- C:\Windows\system32\dxtrans.dll

2014-06-12 12:49:28 ----A---- C:\Windows\system32\mshtmled.dll

2014-06-12 12:49:28 ----A---- C:\Windows\system32\ieframe.dll

2014-06-12 12:49:26 ----A---- C:\Windows\system32\mshtml.dll

2014-06-08 12:58:38 ----D---- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition

2014-06-07 12:37:06 ----D---- C:\Program Files\Midnight Castle

2014-06-06 21:48:34 ----D---- C:\Program Files\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition

2014-06-05 19:35:27 ----D---- C:\Users\luve\AppData\Roaming\Koolhaus Games

2014-06-01 12:48:19 ----D---- C:\Program Files\Awakening - The Redleaf Forest Collectors Edition

2014-05-30 13:42:48 ----D---- C:\Program Files\Haunted Hotel - Ancient Bane Collector's Edition

2014-05-20 18:42:34 ----D---- C:\Users\luve\AppData\Roaming\Ambers Tales

2014-05-20 18:42:34 ----D---- C:\ProgramData\Ambers Tales

2014-05-15 16:00:28 ----D---- C:\Program Files\Common Files\DESIGNER

======List of files/folders modified in the last 1 month======

2014-06-14 11:12:20 ----D---- C:\Windows\Temp

2014-06-14 11:11:21 ----D---- C:\Program Files

2014-06-14 11:09:51 ----A---- C:\ProgramData\HPWALog.txt

2014-06-14 11:09:50 ----SHD---- C:\System Volume Information

2014-06-14 10:37:51 ----HD---- C:\ProgramData

2014-06-14 10:37:37 ----A---- C:\ProgramData\hpqp.ini

2014-06-14 00:07:12 ----A---- C:\Windows\system32\FlashPlayerApp.exe

2014-06-13 23:53:22 ----AD---- C:\ProgramData\Temp

2014-06-13 21:16:39 ----D---- C:\Users\luve\AppData\Roaming\Mad Head Games

2014-06-13 21:10:37 ----D---- C:\BigFishCache

2014-06-13 07:40:03 ----D---- C:\Windows\system32\drivers

2014-06-13 07:40:03 ----D---- C:\Windows\System32

2014-06-13 07:40:01 ----D---- C:\Windows\system32\migration

2014-06-13 07:39:52 ----D---- C:\Program Files\Internet Explorer

2014-06-13 07:36:40 ----D---- C:\Windows\winsxs

2014-06-13 07:36:35 ----SHD---- C:\Windows\Installer

2014-06-13 07:36:09 ----D---- C:\ProgramData\Microsoft Help

2014-06-13 07:24:59 ----D---- C:\Windows\system32\MRT

2014-06-13 07:24:53 ----A---- C:\Windows\system32\mrt.exe

2014-06-13 07:09:42 ----D---- C:\Windows\system32\catroot2

2014-06-12 12:49:10 ----D---- C:\Windows\system32\catroot

2014-06-10 20:50:41 ----D---- C:\ProgramData\AlawarGameBox

2014-06-08 22:30:37 ----D---- C:\GameHouse Games

2014-06-08 22:30:33 ----D---- C:\Program Files\RealArcade

2014-06-08 12:59:57 ----D---- C:\Users\luve\AppData\Roaming\Eipix

2014-06-07 13:45:29 ----D---- C:\Zylom Games

2014-06-07 13:35:43 ----D---- C:\Program Files\Common Files\Ahead

2014-06-07 13:35:38 ----D---- C:\Windows\ehome

2014-06-07 13:35:37 ----D---- C:\Windows

2014-06-06 21:59:10 ----D---- C:\Users\luve\AppData\Roaming\ERS Game Studios

2014-06-01 12:52:22 ----D---- C:\Users\luve\AppData\Roaming\Boomzap

2014-05-31 18:21:36 ----D---- C:\Users\luve\AppData\Roaming\Gogii

2014-05-31 18:15:03 ----D---- C:\Windows\Prefetch

2014-05-31 18:00:35 ----D---- C:\Users\luve\AppData\Roaming\Elephant Games

2014-05-29 20:12:52 ----D---- C:\Users\luve\AppData\Roaming\AlawarEntertainment

2014-05-29 20:12:44 ----D---- C:\ProgramData\AlawarWrapper

2014-05-25 15:57:35 ----D---- C:\Users\luve\AppData\Roaming\Top Evidence

2014-05-25 15:57:35 ----D---- C:\ProgramData\Top Evidence

2014-05-19 17:05:05 ----D---- C:\Program Files\Atarata Games

2014-05-18 12:10:39 ----D---- C:\Users\luve\AppData\Roaming\Deep Shadows

2014-05-15 16:26:39 ----D---- C:\Windows\Microsoft.NET

2014-05-15 16:25:30 ----RSD---- C:\Windows\assembly

2014-05-15 16:00:28 ----D---- C:\Program Files\Common Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2010-01-09 12112]

R0 aswNdis2;avast! Firewall NDIS Driver; C:\Windows\system32\drivers\aswNdis2.sys [2014-05-07 252464]

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-05-07 49944]

R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-05-07 180632]

R0 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2014-04-07 26136]

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2014-05-15 54832]

R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 777488]

R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 411680]

R1 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2014-05-07 57672]

R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-05-07 24184]

R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-05-07 67824]

R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-09-30 1184768]

R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2008-09-24 45600]

R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-01-15 7543200]

R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-12-23 138240]

R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt.sys [2009-02-23 394240]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-12-05 204976]

R3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]

R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]

S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]

S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]

S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 39272]

S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]

S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []

S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]

S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]

S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]

S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]

S3 NETw3v32;Intel® PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2008-01-21 2225664]

S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2008-05-02 17536]

S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2008-05-02 20864]

S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]

S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2008-05-02 8064]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]

S3 usbser;Nokia USB Serial Port; C:\Windows\system32\DRIVERS\usbser.sys [2013-08-29 27648]

S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2008-05-02 8064]

S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]

S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]

S3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2006-11-02 194048]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_b9d13b43\aestsrv.exe [2009-02-12 81920]

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-05-07 50344]

R2 avast! Firewall;avast! Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2014-05-07 109048]

R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-10-09 94208]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-06-09 73728]

R2 MyWebSearchService;My Web Search Service; C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe [2010-12-26 28762]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-01-15 203296]

R2 ogmservice;Online Games Manager; C:\Program Files\Online Games Manager\ogmservice.exe [2014-03-27 581568]

R2 Recovery Service for Windows;Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [2008-12-23 365952]

R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2008-11-26 247152]

R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_b9d13b43\STacSV.exe [2009-02-23 254034]

R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]

R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-12-04 222512]

R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-10-23 223232]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]

S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-14 135664]

S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-14 262320]

S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]

S3 Boonty Games;Boonty Games; C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe [2011-06-22 69120]

S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840]

S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-29 227904]

S3 GamesAppService;GamesAppService; C:\Program Files\WildTangent Games\App\GamesAppService.exe [2014-04-29 203344]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-14 135664]

S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-27 182768]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]

S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download 51a612a8b27e2-Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  {7b13ec3e-999a-4b70-b9cb-2617b8323822};c
 {00A6FAF6-072E-44cf-8957-5838F569A31D};c
 C:\Program Files\MyWebSearch;fs
 {E33FF41E-53CB-4D93-885A-FFEFA04CD804};c
 C:\Program Files\Alawar Elements;fs
 MyWebSearch Email Plugin;s
 Boonty Games;s
 BOONTY;s
 C:\Program Files\Common Files\BOONTY Shared;fs
 MyWebSearchService;s
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804}];r
 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r
 "MyWebSearch Email Plugin"=-;r
 C:\Users\luve\AppData\Roaming\AlawarEntertainment;fs
C:\ProgramData\AlawarWrapper;fs
  emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan

  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites

Goeienavond,

hierbij het log na de vorige handelingen. Was er niet helemaal zeker van of het volledig is.

Zoek.exe v5.0.0.0 Updated 02-June-2014

Tool run by luve on za 14/06/2014 at 19:37:52,87.

Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0\zoek.exe [scan all users] [script inserted] [Checkboxes used]

===== Runcheck 19:42:45,79 =====

--- Create Environment Variables 19:42:47,07

--- Create System Restore Point 19:43:03,76

--- Checking Input 19:43:45,28

--- AU AppData Check 19:43:49,18

--- Remove From Windows Installer 19:44:06,84

--- Empty Folders Check 19:45:30,10

--- IE Startpage Check 19:50:46,80

--- Program Files DB Check 19:51:38,33

--- C:\Users\Default\AppData\Roaming DB Check 19:52:28,65

--- C:\Users\Default User\AppData\Roaming DB Check 19:52:28,65

--- C:\Users\luve\AppData\Roaming DB Check 19:52:28,65

--- C:\Windows\system32\config\systemprofile\AppData\Roaming DB Check 19:52:28,65

--- C:\Windows\serviceprofiles\networkservice\AppData\Roaming DB Check 19:52:28,65

--- C:\Windows\serviceprofiles\Localservice\AppData\Roaming DB Check 19:52:28,65

--- C:\Users\luve DB Check 19:54:19,59

--- C:\PROGRA~2 DB Check 19:54:48,89

--- C:\Users\Default\AppData\Local DB Check 19:54:50,63

--- C:\Users\Default User\AppData\Local DB Check 19:54:50,63

--- C:\Users\luve\AppData\Local DB Check 19:54:50,63

--- C:\Windows\system32\config\systemprofile\AppData\Local DB Check 19:54:50,63

--- C:\Windows\serviceprofiles\networkservice\AppData\Local DB Check 19:54:50,63

--- C:\Windows\serviceprofiles\Localservice\AppData\Local DB Check 19:54:50,63

--- C:\ProgramData\Microsoft\Windows\Start Menu\Programs DB Check 19:56:03,76

--- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs DB Check 19:56:12,88

--- Tasks DB Check 19:56:18,32

--- Downloads DB Check 19:56:21,70

--- C:\Users\luve\AppData\LocalLow DB Check 19:56:29,39

--- C:\Windows\system32\config\systemprofile\AppData\LocalLow DB Check 19:56:29,39

--- C:\Windows\serviceprofiles\networkservice\AppData\LocalLow DB Check 19:56:29,39

--- Tasks2 DB Check 19:57:06,98

--- Documents DB Check 19:57:29,05

--- C:\Users\luve\AppData\Roaming\TomTom\HOME\Profiles\i8opfco0.default DB Check 19:57:32,82

--- C:\Users\luve\Desktop DB Check 19:57:36,24

--- Services DB Check 19:57:49,04

--- FF prefs.js DB Check 19:58:11,63

--- Del by CLSID 19:58:43,56

--- Delete Services 19:59:35,33

--- Registry Fix 20:00:06,34

--- Delete files\folders 20:00:06,39

--- Create Backups 20:00:06,45

Link naar reactie
Delen op andere sites

sorry, ik was blijkbaar toch wat te ongeduldig. Ondertussen is alles uitgevoerd en de pc heropgestart. Mag het antivirusprogramma terug 'aan' of moet het uit blijven?

Zoek.exe v5.0.0.0 Updated 02-June-2014

Tool run by luve on za 14/06/2014 at 19:37:52,87.

Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

14/06/2014 19:43:44 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\Age of Enigma - The Secret of the Sixth Ghost deleted successfully

C:\Program Files\Angelica Weaver - Catch Me When You Can deleted successfully

C:\Program Files\Awakening - Moonfell Wood deleted successfully

C:\Program Files\Barn Yarn deleted successfully

C:\Program Files\Behind the Reflection 2 - Witch's Revenge deleted successfully

C:\Program Files\Botanica - Earthbound Collector's Edition deleted successfully

C:\Program Files\Christmas Adventure - Candy Storm deleted successfully

C:\Program Files\Danger Next Door - Miss Teri Tale's Adventure deleted successfully

C:\Program Files\Dark Dimensions - Wax Beauty Collector's Edition deleted successfully

C:\Program Files\Death Upon an Austrian Sonata - A Dana Knightstone Novel Collector's Edition deleted successfully

C:\Program Files\Dracula - Love Kills deleted successfully

C:\Program Files\Drawn - Dark Flight Collector's Edition deleted successfully

C:\Program Files\Dream Chronicles - The Book of Water deleted successfully

C:\Program Files\Dream Day Wedding Bella Italia deleted successfully

C:\Program Files\Enlightenus II - The Timeless Tower deleted successfully

C:\Program Files\Escape the Museum 2 deleted successfully

C:\Program Files\Eternal Journey - New Atlantis deleted successfully

C:\Program Files\Fantastic Creations - House of Brass deleted successfully

C:\Program Files\Fantastic Creations - House of Brass Collector's Edition deleted successfully

C:\Program Files\Flower of Immortality deleted successfully

C:\Program Files\Ghost Whisperer deleted successfully

C:\Program Files\Grim Facade - A Wealth of Betrayal Collectors Edition deleted successfully

C:\Program Files\Grim Facade - Sinister Obsession Collector’s Edition deleted successfully

C:\Program Files\Haunted Halls - Green Hills Sanitarium Collector's Edition deleted successfully

C:\Program Files\Hidden Mysteries - Royal Family Secrets deleted successfully

C:\Program Files\I Spy Spooky Mansion Deluxe deleted successfully

C:\Program Files\Incredible Adventures of my Mom deleted successfully

C:\Program Files\Jigsaw Boom 2 deleted successfully

C:\Program Files\Living Legends - Frozen Beauty Collectors Edition deleted successfully

C:\Program Files\Magic Academy II deleted successfully

C:\Program Files\Magic Heroes - Save Our Park deleted successfully

C:\Program Files\Midnight Macabre - Mystery of the Elephant deleted successfully

C:\Program Files\Million Dollar Quest deleted successfully

C:\Program Files\MSXML 4.0 deleted successfully

C:\Program Files\My Beautiful Vacation deleted successfully

C:\Program Files\Mystery Case Files - Escape from Ravenhearst deleted successfully

C:\Program Files\Mystery Case Files - Shadow Lake Collector's Edition deleted successfully

C:\Program Files\Mystery of the Ancients - Three Guardians deleted successfully

C:\Program Files\Mystery of the Missing Brigantine deleted successfully

C:\Program Files\Mystery Trackers - Raincliff Collector's Edition deleted successfully

C:\Program Files\Mystery Trackers - Silent Hollow Collector's Edition deleted successfully

C:\Program Files\Myths of the World - Chinese Healer Collector's Edition deleted successfully

C:\Program Files\Night In The Opera deleted successfully

C:\Program Files\Odysseus - Long Way Home deleted successfully

C:\Program Files\Order of the Light - The Deathly Artisan deleted successfully

C:\Program Files\Paprikari deleted successfully

C:\Program Files\PlayPond deleted successfully

C:\Program Files\Princess Isabella - Return of the Curse Collector's Edition deleted successfully

C:\Program Files\Redemption Cemetery - Bitter Frost deleted successfully

C:\Program Files\Sacra Terra - Angelic Night Collector's Edition deleted successfully

C:\Program Files\Secrets of the Seas - Flying Dutchman deleted successfully

C:\Program Files\Shiver - Poltergeist Collector's Edition deleted successfully

C:\Program Files\Strange Discoveries - Aurora Peak Collector's Edition deleted successfully

C:\Program Files\Stray Souls - Stolen Memories Collector's Edition deleted successfully

C:\Program Files\The Agency of Anomalies - The Last Performance deleted successfully

C:\Program Files\The Book of Desires deleted successfully

C:\Program Files\The Keepers - Lost Progeny deleted successfully

C:\Program Files\The Keepers - The Order's Last Secret Collector's Edition deleted successfully

C:\Program Files\The Others deleted successfully

C:\Program Files\The Return of Monte Cristo deleted successfully

C:\Program Files\The Saint - Abyss of Despair deleted successfully

C:\Program Files\The Secret Order - Ancient Times Collectors Edition deleted successfully

C:\Program Files\The Snow deleted successfully

C:\Program Files\The Tiny Bang Story deleted successfully

C:\Program Files\TomTom DesktopSuite deleted successfully

C:\Program Files\Trial of the Gods - Ariadnes Journey deleted successfully

C:\Program Files\Undiscovered deleted successfully

C:\Program Files\Vampire Legends - The True Story of Kisilova deleted successfully

C:\Program Files\Vampire Saga - Break Out deleted successfully

C:\Program Files\Web of Deceit - Black Widow deleted successfully

C:\Program Files\Whispers - Revelation deleted successfully

C:\PROGRA~2\Babylon deleted successfully

C:\PROGRA~2\boost_interprocess deleted successfully

C:\PROGRA~2\Oracle deleted successfully

C:\PROGRA~2\Product deleted successfully

C:\Users\luve\AppData\Roaming\BEGINNIN deleted successfully

C:\Users\luve\AppData\Roaming\Fanda Games deleted successfully

C:\Users\luve\AppData\Roaming\iScreensaver deleted successfully

C:\Users\luve\AppData\Roaming\Monkey Barrel Games deleted successfully

C:\Users\luve\AppData\Roaming\Phantasmat_real_ce deleted successfully

C:\Users\luve\AppData\Roaming\WinRAR deleted successfully

C:\Users\luve\AppData\Local\Buried In Time deleted successfully

C:\Users\luve\AppData\Local\STARGAZE_IMAGE_CACHE deleted successfully

C:\Users\luve\AppData\Local\Vast Studios deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4597F846-6EE9-4766-BE06-C8E67F4E91E7} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{684A97FC-5F4D-4F0E-9AD0-95CA48746552} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6CF82D0E-88AD-6205-BC69-EBB0A35C4A0C} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MyWebSearchService deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\MyWebSearchService deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\MyWebSearchService deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\MyWebSearchService deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804}]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"MyWebSearch Email Plugin"=-

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Simajo The Travel Móstery Game not found

C:\Program Files\MyWebSearch deleted

C:\Program Files\Common Files\BOONTY Shared deleted

C:\Users\luve\AppData\Roaming\AlawarEntertainment deleted

C:\ProgramData\AlawarWrapper deleted

C:\Windows\system32\appdata deleted

C:\Program Files\Zynga deleted

C:\Users\luve\AppData\Local\Zynga deleted

C:\Users\luve\appdata\locallow\Zynga deleted

C:\Users\luve\appdata\locallow\MyWebSearch deleted

C:\Program Files\Mozilla Firefox\user.js deleted

C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com deleted

C:\Program Files\Alawar deleted

C:\Program Files\Alawar.co.nl deleted

C:\Program Files\Mystery Case Files - Escape from Ravenhearst Collector's Edition deleted

C:\Program Files\Mystery Case Files - Fates Carnival Collectors Edition deleted

C:\Program Files\Conduit deleted

C:\Program Files\FunWebProducts deleted

C:\Users\luve\AppData\Roaming\quickclick deleted

C:\Users\luve\AppData\Roaming\Alawar deleted

C:\Users\luve\AppData\Roaming\Alawar Entertainment deleted

C:\Users\luve\AppData\Roaming\Alawar Stargaze deleted

C:\Users\luve\AppData\Roaming\Babylon deleted

C:\Users\luve\AppData\Roaming\YoudaGames deleted

C:\Users\luve\AppData\Roaming\iWin deleted

C:\Users\luve\AppData\Roaming\In search of the Lost Temple deleted

C:\PROGRA~2\Ask deleted

C:\PROGRA~2\Alawar deleted

C:\PROGRA~2\Alawar Entertainment deleted

C:\PROGRA~2\Alawar Stargaze deleted

C:\PROGRA~2\AlawarEntertainment deleted

C:\PROGRA~2\AlawarGameBox deleted

C:\PROGRA~2\APN deleted

C:\PROGRA~2\hpqp.txt deleted

C:\PROGRA~2\log.txt deleted

C:\PROGRA~2\InstallMate deleted

C:\PROGRA~2\Premium deleted

C:\PROGRA~2\Trymedia deleted

C:\Users\luve\AppData\Local\Ilivid Player deleted

C:\Users\luve\AppData\Local\APN deleted

C:\Users\luve\AppData\Local\Babylon deleted

C:\Users\luve\AppData\Local\Conduit deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files - Escape from Ravenhearst Collector's Edition deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files - Fates Carnival Collectors Edition deleted

C:\Users\luve\AppData\LocalLow\Conduit deleted

C:\Users\luve\AppData\LocalLow\FunWebProducts deleted

C:\Windows\system32\tasks\RunAsStdUser Task deleted

C:\user.js deleted

C:\Users\Public\Documents\AlawarGameBox deleted

C:\Users\Public\Documents\AlawarWrapper deleted

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YZ0YA81S\TheBookofDesires_10344.exe deleted

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6LYYVE8U\CruelGamesRedRidingHood_10344.exe deleted

"C:\Users\luve\AppData\Local\{4AF93633-A9DE-4148-B27B-AEABC9D79F8F}" deleted

"C:\Program Files\Alawar Elements\AddonsFramework.Typelib.dll" deleted

"C:\Program Files\Alawar Elements\BackgroundHost.exe" deleted

"C:\Program Files\Alawar Elements\ButtonSite.dll" deleted

"C:\Program Files\Alawar Elements\AddonsFramework.Typelib.dll" deleted

"C:\Program Files\Alawar Elements\BackgroundHost.exe" deleted

"C:\Program Files\Alawar Elements\ButtonSite.dll" deleted

"C:\Program Files\Alawar Elements" deleted

"C:\Program Files\Alawar Elements" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\luve\AppData\Local\Temp ====

2014-06-09 21:34:46 3616AB4898E6880F3D1DD128A3FE858C 352496 ----a-w- C:\Users\luve\AppData\Local\Temp\uninstaller-WTA-4ea3a3c4-dce5-408c-80d9-abcc904a99b7\uninstaller.exe

2014-06-09 21:34:24 3616AB4898E6880F3D1DD128A3FE858C 352496 ----a-w- C:\Users\luve\AppData\Local\Temp\uninstaller-WTA-c6059d30-fa51-4868-ac0c-9edd8ba64719\uninstaller.exe

2014-06-09 05:23:41 47239EB4A793EA0DC7C283A71F401493 112352 ----a-w- C:\Users\luve\AppData\Local\Temp\Low\UnityWebPlayer\UnityWebPlayerUpdate.exe

====== Java Cache =====

2014-06-11 21:26:28 527287EBEA8B0B11B6BF15ADDE57B928 21543 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\251ffa0b-304960cf

2014-05-29 20:12:44 E5BA3F731BD58505AA17B8FD2C4DE494 38788 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\5ca9a5cd-2c6ca58a

2014-06-11 21:26:28 20DEDB44C5891181E12B91DFC4A4046A 3719 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\60208350-76fe45e7

2014-06-11 21:26:27 378DBF34C7C585237D6800B401F73972 1142 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\1beead91-3b153825

2014-06-11 21:26:28 24B65BAFF42A5463CD20C8552C61C4BB 4252 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\40b55292-6d8d877d

2014-06-11 21:26:28 11CD5CBA22EE2099129F07C83F14D12E 857 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\1c005d55-65024053

2014-06-11 21:26:28 C7595A34F83AA7C2E904F813B138437E 13717 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\31489656-3995e7fe

2014-06-11 21:26:24 EB5E11FDD5A826E3081D3856A8AE12AF 550796 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\68254157-2a43820d

2014-06-11 21:26:26 9B5E05C5BFDFAC47CD8662EBF672444F 5694 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\26908598-653b9f20

2014-06-11 21:26:27 4811EADC97F83D17EA7B95FF4F224EA5 5088 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\526b698-3e45e334

2014-06-11 21:26:28 C4FCEA123FB7E46D47D00A95C476C5A5 4720 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\7e3d80db-5508bb60

2014-06-11 21:26:30 9587AE807FD773861608B16F75606DAB 291 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\18d8bf5c-234cf65c

2014-06-11 21:26:27 69DA970DBC4A5CB99A72E038B1E054CC 142 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\779d1cc3-1cf876e9

2014-06-11 21:26:30 9566201EBD2648C45407D04F867844B8 4307 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\150b3020-25be6da0

2014-06-11 21:26:27 1BF1E4FBE023BF0477260F3FBF8A4211 14884 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\6970d1e0-2c57336e

2014-06-11 21:26:30 0055834E92CFB8B2B1F1E1D2708811F3 2431 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\11b7a561-3fd07500

2014-06-11 21:26:28 D1016A06D98900D8A15EFA7511D516B8 927 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\3ca56b61-761349a1

2014-05-22 20:11:00 69C84B7EE2D91923A9B24CABB20045B0 93 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\2998e763-98582d4279bdc578572883ea02d5e6a000b6309434ca9abbd2ded69c09745c8c-6.0.lap

2014-06-11 21:26:26 B30747862AEAC7E65DBF4FE3D84EB54C 1757 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\39689e66-4f564c32

2014-06-11 21:26:30 4B11BAF0634D556327EFBA2D5DFA4B00 22392 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\767d712a-4f0e4b70

2014-06-11 21:26:28 485F1EFCDD0997ABC8736119164A5E12 51276 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\714f9b2b-4bf76c60

2014-06-11 21:26:30 FC1E9CCFEA05623306EFCA6B86F6A921 2024 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\625d5aad-4dd1bffe

2014-06-11 21:26:30 B4FE1B2F647E787F0EF3D7CD11F0341E 2209 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\62f49330-5affc188

2014-06-11 21:26:30 B7C15FF56F61F8D20FC3751C19200095 1058 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\46c4d0b1-5c0e4b4b

2014-06-11 21:26:27 C2462EDFC7219E2DFFA3AA5453A8646E 61138 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5cef6372-243adc8e

2014-06-11 21:26:30 04C27D58BA5B1EC9097F695A73C3175A 7868 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\604b335-374c22e3

2014-06-11 21:26:29 0F9DF91B2BE775C455D35E76EA445FD2 810 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\be58c35-32405fe5

2014-06-11 21:26:30 BB1F1AC48AC87EF413FC7B58CC8BC406 468 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\30eb02b6-7bcb7d0d

2014-06-11 21:26:28 5FFA4EF27909D96DAF978BF7159CA391 4863 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\735fe7f7-6c70008b

2014-06-11 21:26:27 9235026D8D6A9BA03AD5652D2F8CE677 41273 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\16a4c078-614a11b9

2014-06-11 21:26:29 832B6E065FDF0FE600727E79DD177851 22065 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\1e2271b8-113163d3

2014-06-11 21:26:29 3BB7C5A99575C23072FACDBB24A03A3C 394 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3045ca38-345641ca

2014-06-11 21:26:28 A231BD19375F9D51CCB6B180B7D8D01D 3724 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\4fe128b8-58ff98d4

2014-06-11 21:26:28 206A17008540D557AD6F271CC9F35059 13570 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\652eef38-58866bed

2014-06-11 21:26:29 4B787AA4AC7CC61E01EFF06C1FA6319E 4751 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\8cfa738-10c01514

2014-06-11 21:26:26 0A5A0F9DE00C8861999CAB0B69DC19BE 500 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\16612d79-1695098f

2014-06-11 21:26:26 0D93DFC7B0162B03D3AB10D9CE4DAFF8 10859 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\52fda3b9-4f8960b1

2014-05-29 20:12:43 893625E0961BCE5DFD36DB6C662D15C4 38 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\23b3ecfd-80f5061de5afba23a34f47785a3f9c68a1742d08eb8888124b9d3d48e7882bb4-6.0.lap

2014-06-11 21:26:27 F60D0C2A404DA4DE7B1FA858FF432FA4 4323 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\70fddbe-6e790640

2014-06-11 21:26:28 2FE75D74A75465A172AF24B60F5EF83C 1514 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\7104edfe-7658cd55

2014-06-11 21:26:29 9B00BC6E4C847228CA075D39B4CDA3BF 829 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\734fb708-7a46ccc6

====== C:\Windows\system32 =====

2014-06-12 10:49:43 FB3E5FD7F74BFC301AD3FB7DE670EDCB 502784 ----a-w- C:\Windows\System32\usp10.dll

2014-06-12 10:49:39 D0D44370770D491E6BA472C855883422 1248768 ----a-w- C:\Windows\System32\msxml3.dll

2014-06-12 10:49:39 1E06779EDB55D035DD3F4A2B7432A291 1401344 ----a-w- C:\Windows\System32\msxml6.dll

2014-06-12 10:49:37 9F5AC4090D7C9F2591060DAC310FD294 1106432 ----a-w- C:\Windows\System32\urlmon.dll

2014-06-12 10:49:37 74DD13DF9DC59CCC5AE5528ECFA29BE9 10752 ----a-w- C:\Windows\System32\msfeedssync.exe

2014-06-12 10:49:37 0D7B6A0829874B057FF9D35F612B44F5 11776 ----a-w- C:\Windows\System32\mshta.exe

2014-06-12 10:49:36 B50E34870FC8F8CA79BCC2DC3183D691 421376 ----a-w- C:\Windows\System32\vbscript.dll

2014-06-12 10:49:36 B2D65154D4D36D6CA22BB586C016C1C1 142848 ----a-w- C:\Windows\System32\ieUnatt.exe

2014-06-12 10:49:36 AA5456C16D7F4B73177FD46AD63A12C4 1796096 ----a-w- C:\Windows\System32\iertutil.dll

2014-06-12 10:49:36 0A3EF805B406103971F27B9597EB98BC 231936 ----a-w- C:\Windows\System32\url.dll

2014-06-12 10:49:35 BA7CC0D3170EB03FA610BA8EA3A01E9D 65536 ----a-w- C:\Windows\System32\jsproxy.dll

2014-06-12 10:49:35 60D2396F470C110B7FAB1CFA4AC0D34B 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl

2014-06-12 10:49:35 4439087A375EFDD297DC470C3214D7D6 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll

2014-06-12 10:49:34 CFD26829131439B71D0109F9D5345573 1129472 ----a-w- C:\Windows\System32\wininet.dll

2014-06-12 10:49:34 947DA106EE001900969D42425FBDA183 717824 ----a-w- C:\Windows\System32\jscript.dll

2014-06-12 10:49:34 23330909BD92B7611815365559860952 1810432 ----a-w- C:\Windows\System32\jscript9.dll

2014-06-12 10:49:33 61F727795CAA98C3FCDB48379B78E370 607744 ----a-w- C:\Windows\System32\msfeeds.dll

2014-06-12 10:49:33 32FE42E13195DEAF78D1E348F51A5AEE 353792 ----a-w- C:\Windows\System32\dxtmsft.dll

2014-06-12 10:49:32 3829D7D8B098F87C454E468DCAAE4912 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2014-06-12 10:49:29 2DCB8AEC38AE1427CB1CFE2432D05107 223232 ----a-w- C:\Windows\System32\dxtrans.dll

2014-06-12 10:49:29 148B2F103FD322A4B8AEB82D7B35D0AF 176640 ----a-w- C:\Windows\System32\ieui.dll

2014-06-12 10:49:28 AD2C67A381CC7148BB98A66BB04DDF5B 9711104 ----a-w- C:\Windows\System32\ieframe.dll

2014-06-12 10:49:28 9000CE8689BD16819AF8AFDB83B94CCE 73216 ----a-w- C:\Windows\System32\mshtmled.dll

2014-06-12 10:49:26 B7363143940197BD9F16FD957B4F8131 12356608 ----a-w- C:\Windows\System32\mshtml.dll

====== C:\Windows\system32\drivers =====

2014-06-12 10:49:42 C7B0746FCD576D7EEBA6A2530B0B2966 905664 ----a-w- C:\Windows\System32\drivers\tcpip.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-06-14 09:11:21 -------- d-----w- C:\Program Files\trend micro

2014-06-13 19:14:51 -------- d-----w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition

2014-06-08 10:58:38 -------- d-----w- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition

2014-06-07 10:37:06 -------- d-----w- C:\Program Files\Midnight Castle

2014-06-06 19:48:34 -------- d-----w- C:\Program Files\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition

2014-06-01 10:48:19 -------- d-----w- C:\Program Files\Awakening - The Redleaf Forest Collectors Edition

2014-05-30 11:42:48 -------- d-----w- C:\Program Files\Haunted Hotel - Ancient Bane Collector's Edition

======= C: =====

====== C:\Users\luve\AppData\Roaming ======

2014-06-13 19:14:51 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rite of Passage - Hide and Seek Collectors Edition

2014-06-08 10:58:38 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Myths of the World - Of Fiends and Fairies Collectors Edition

2014-06-07 10:37:06 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Midnight Castle

2014-06-06 19:48:34 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition

2014-06-05 17:35:27 -------- d-----w- C:\Users\luve\AppData\Roaming\Koolhaus Games

2014-06-01 10:48:19 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Awakening - The Redleaf Forest Collectors Edition

2014-05-30 11:42:48 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haunted Hotel - Ancient Bane Collector's Edition

2014-05-20 16:42:34 -------- d-----w- C:\Users\luve\AppData\Roaming\Ambers Tales

====== C:\Users\luve ======

2014-06-13 19:14:51 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rite of Passage - Hide and Seek Collectors Edition

2014-06-08 10:58:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Myths of the World - Of Fiends and Fairies Collectors Edition

2014-06-07 10:37:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Midnight Castle

2014-06-06 19:48:34 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition

2014-06-01 10:48:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Awakening - The Redleaf Forest Collectors Edition

2014-05-30 11:42:48 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haunted Hotel - Ancient Bane Collector's Edition

2014-05-20 16:42:34 -------- d-----w- C:\ProgramData\Ambers Tales

====== C: exe-files ==

2014-06-14 09:11:22 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\luve.exe

2014-06-13 19:15:11 0062277CC82D370CB6CB8638264A39A1 85179 ----a-w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\Uninstall.exe

2014-06-12 10:49:37 D14CBA888EF2A88C28CB5E6396A295DA 22528 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe

2014-06-12 10:49:35 7BA5B7DEDE25D44F3E664D5BA067E3CD 758000 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2014-06-12 10:49:34 77AEB4008A5E1015599A4DC6AE50C33B 223232 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe

2014-06-12 10:49:32 054E45A74734CDBDDEFB503CBBA0E0DF 469504 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe

2014-06-11 20:44:18 EBB5A7EBB316B48FDD89CED1D296ECFB 5572896 ---h--w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\RiteOfPassage_HideAndSeek_CE.exe

2014-06-11 20:44:16 3A01707E9184C6378B5F09B5A8741F51 2341152 ----a-w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\hwjfqjw.exe

2014-06-08 20:31:07 E9F6D06CAFA19D432AE418F13DC8960A 5923808 ----a-w- C:\GameHouse Games\Tales of the Orient - The Rising Sun\TalesoftheOrient_TheRisingSun.exe

2014-06-08 10:58:55 6CD64E650A2DC27AE493922664A7326B 85716 ----a-w- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition\Uninstall.exe

=== C: other files ==

2014-06-14 17:29:41 441AF5E104D952CBA2646F3A954A0EF7 120602 ----a-w- C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\URK2U2MW\player_xml[2].zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"Google Update"="C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"

"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"

"QPService"="C:\Program Files\HP\QuickPlay\QPService.exe"

"UpdateLBPShortCut"="C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\LabelPrint UpdateWithCreateOnce Software\CyberLink\LabelPrint\2.5"

"UpdatePSTShortCut"="C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\DVD Suite UpdateWithCreateOnce Software\CyberLink\PowerStarter"

"UCam_Menu"="C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\YouCam UpdateWithCreateOnce Software\CyberLink\YouCam\2.0"

"QlbCtrl.exe"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start"

"UpdatePDIRShortCut"="C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerDirector UpdateWithCreateOnce SOFTWARE\CyberLink\PowerDirector\7.0"

"HP Health Check Scheduler"="c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"

"WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"

"NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup"

"NvMediaCenter"="RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit"

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui"

"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

"SysTrayApp"="%ProgramFiles%\IDT\WDM\sttray.exe "

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"Google Update"="C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"

"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14/06/2014 00:07]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [14/01/2010 17:13]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core.job --a------ C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe [12/09/2011 13:10]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA.job --a------ [undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core" [C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA" [C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\HP Health Check" ["c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"]

"C:\Windows\system32\tasks\RealUpgradeLogonTaskS-1-5-21-4172665234-3387394907-3032361431-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\system32\tasks\RealUpgradeScheduledTaskS-1-5-21-4172665234-3387394907-3032361431-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\system32\tasks\User_Feed_Synchronization-{14B924BC-77F3-4260-8C2B-CB5CC06A13CD}" [C:\Windows\system32\msfeedssync.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"m3ffxtbr@mywebsearch.com"="C:\Program Files\MyWebSearch\bar\1.bin" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\luve\AppData\Roaming\TomTom\HOME\Profiles\i8opfco0.default

- Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com

- TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

- Downandsave - %ExtDir%\crossriderapp12331@crossrider.com

ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles

- Downandsave - %ExtDir%\extensions\crossriderapp12331@crossrider.com

ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Extensions

- Downandsave - C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\crossriderapp12331@crossrider.com

==== Firefox Plugins ======================

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

jfmjfhklogoienhpfnppmbcbjfjnkonk - No path found[]

avast Online Security - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

fIRST lOVE - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\lighpcanjnomdcjmfficdanifpdmgmhp

Gamebox - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mibfbmhijjgpkmobcfdlelpccpeafoom

Google Wallet - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chrome Fix ======================

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mywebface.dl.mywebsearch.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mywebface.dl.mywebsearch.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_addictedto.criminalcasegame.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_addictedto.criminalcasegame.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_imabigfanof.criminalcasegame.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_imabigfanof.criminalcasegame.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pioneertrail.gamebonuschecker.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pioneertrail.gamebonuschecker.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamersunite.coolchaser.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamersunite.coolchaser.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_onthenews.net_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_onthenews.net_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_slog.thestranger.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_slog.thestranger.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.addictinggames.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.addictinggames.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gamezebo.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gamezebo.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luvinthemommyhood.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luvinthemommyhood.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.theblaze.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.theblaze.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thepetitionsite.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thepetitionsite.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thesun.co.uk_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thesun.co.uk_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\databases\http_www.beautyoftheweb.com_0 deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page Restore"="http://www.facebook.com/?ref=hp"

"Start Page"="https://www.google.be/"

"Default_Page_URL"="Telenet.be"

"Search Bar"="Bing"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Search"

"Default_Page_URL"="Telenet.be"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Search Bar"="Bing"

"Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!"

"Start Page Restore"="https://www.google.be/"

"Start Page"="https://www.google.be/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!"

"Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{DDB9C78B-2095-41CF-A885-14A2B6A0F24C}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{1B30CBCF-74C8-4AF0-832C-BBD5D5DB3C32} Unknown Url="Not_Found"

{54272A0D-4963-4CA3-8071-124107DC9959} Wikipedia (en) Url="{searchTerms - Search results - Wikipedia, the free encyclopedia}"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

{903926A8-0C7D-4185-A2B4-D9D7171F5F87} Bing Url="{searchTerms} - Bing?}"

{DDB9C78B-2095-41CF-A885-14A2B6A0F24C} Web Search Url="Web - {searchTerms - Gamers Unite!}"

{FC9DCCBC-99B1-4369-A39E-40F720DD8583} AOL Zoeken Url="{searchTerms} - AOL Search resultaten"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{1B30CBCF-74C8-4AF0-832C-BBD5D5DB3C32} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\m3ffxtbr@mywebsearch.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{100B94DD-5DFF-263B-3E8C-309744764A31} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D13B3C-F261-4E0E-9916-78044C0535CC} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2235047F-1B25-EC94-5B2B-B9DB735882F5} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{319C4157-F353-B85D-4043-26A394915D88} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3757637D-5529-DCA1-427D-093D23BDF155} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5312301A-A02F-4E0F-BDFE-EA4A10FCFC5E} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{62660BD7-36BE-1529-E760-E33064C2F033} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{704FE2CA-E988-6360-FC0C-A9613E870FF9} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{842BA723-F4E1-552C-0F6F-5B4305A662ED} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{969E4976-03B8-5FE4-A85C-7D6C579FE40A} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C99A8918-3BD2-88A2-BA7A-A1BE4A13AD61} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Zynga Toolbar deleted successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\luve\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\luve\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0 will be deleted at reboot

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\luve\AppData\Local\Chromium\User Data\Default\Cache emptied successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=39482 folders=2864 3449435733 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\luve\AppData\Local\Temp will be emptied at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\luve\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0" not found

==== EOF on za 14/06/2014 at 20:47:34,87 ======================

- - - Updated - - -

sorry, ik was blijkbaar toch wat te ongeduldig. Ondertussen is alles uitgevoerd en de pc heropgestart. Mag het antivirusprogramma terug 'aan' of moet het uit blijven?

Zoek.exe v5.0.0.0 Updated 02-June-2014

Tool run by luve on za 14/06/2014 at 19:37:52,87.

Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

14/06/2014 19:43:44 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\Age of Enigma - The Secret of the Sixth Ghost deleted successfully

C:\Program Files\Angelica Weaver - Catch Me When You Can deleted successfully

C:\Program Files\Awakening - Moonfell Wood deleted successfully

C:\Program Files\Barn Yarn deleted successfully

C:\Program Files\Behind the Reflection 2 - Witch's Revenge deleted successfully

C:\Program Files\Botanica - Earthbound Collector's Edition deleted successfully

C:\Program Files\Christmas Adventure - Candy Storm deleted successfully

C:\Program Files\Danger Next Door - Miss Teri Tale's Adventure deleted successfully

C:\Program Files\Dark Dimensions - Wax Beauty Collector's Edition deleted successfully

C:\Program Files\Death Upon an Austrian Sonata - A Dana Knightstone Novel Collector's Edition deleted successfully

C:\Program Files\Dracula - Love Kills deleted successfully

C:\Program Files\Drawn - Dark Flight Collector's Edition deleted successfully

C:\Program Files\Dream Chronicles - The Book of Water deleted successfully

C:\Program Files\Dream Day Wedding Bella Italia deleted successfully

C:\Program Files\Enlightenus II - The Timeless Tower deleted successfully

C:\Program Files\Escape the Museum 2 deleted successfully

C:\Program Files\Eternal Journey - New Atlantis deleted successfully

C:\Program Files\Fantastic Creations - House of Brass deleted successfully

C:\Program Files\Fantastic Creations - House of Brass Collector's Edition deleted successfully

C:\Program Files\Flower of Immortality deleted successfully

C:\Program Files\Ghost Whisperer deleted successfully

C:\Program Files\Grim Facade - A Wealth of Betrayal Collectors Edition deleted successfully

C:\Program Files\Grim Facade - Sinister Obsession Collector’s Edition deleted successfully

C:\Program Files\Haunted Halls - Green Hills Sanitarium Collector's Edition deleted successfully

C:\Program Files\Hidden Mysteries - Royal Family Secrets deleted successfully

C:\Program Files\I Spy Spooky Mansion Deluxe deleted successfully

C:\Program Files\Incredible Adventures of my Mom deleted successfully

C:\Program Files\Jigsaw Boom 2 deleted successfully

C:\Program Files\Living Legends - Frozen Beauty Collectors Edition deleted successfully

C:\Program Files\Magic Academy II deleted successfully

C:\Program Files\Magic Heroes - Save Our Park deleted successfully

C:\Program Files\Midnight Macabre - Mystery of the Elephant deleted successfully

C:\Program Files\Million Dollar Quest deleted successfully

C:\Program Files\MSXML 4.0 deleted successfully

C:\Program Files\My Beautiful Vacation deleted successfully

C:\Program Files\Mystery Case Files - Escape from Ravenhearst deleted successfully

C:\Program Files\Mystery Case Files - Shadow Lake Collector's Edition deleted successfully

C:\Program Files\Mystery of the Ancients - Three Guardians deleted successfully

C:\Program Files\Mystery of the Missing Brigantine deleted successfully

C:\Program Files\Mystery Trackers - Raincliff Collector's Edition deleted successfully

C:\Program Files\Mystery Trackers - Silent Hollow Collector's Edition deleted successfully

C:\Program Files\Myths of the World - Chinese Healer Collector's Edition deleted successfully

C:\Program Files\Night In The Opera deleted successfully

C:\Program Files\Odysseus - Long Way Home deleted successfully

C:\Program Files\Order of the Light - The Deathly Artisan deleted successfully

C:\Program Files\Paprikari deleted successfully

C:\Program Files\PlayPond deleted successfully

C:\Program Files\Princess Isabella - Return of the Curse Collector's Edition deleted successfully

C:\Program Files\Redemption Cemetery - Bitter Frost deleted successfully

C:\Program Files\Sacra Terra - Angelic Night Collector's Edition deleted successfully

C:\Program Files\Secrets of the Seas - Flying Dutchman deleted successfully

C:\Program Files\Shiver - Poltergeist Collector's Edition deleted successfully

C:\Program Files\Strange Discoveries - Aurora Peak Collector's Edition deleted successfully

C:\Program Files\Stray Souls - Stolen Memories Collector's Edition deleted successfully

C:\Program Files\The Agency of Anomalies - The Last Performance deleted successfully

C:\Program Files\The Book of Desires deleted successfully

C:\Program Files\The Keepers - Lost Progeny deleted successfully

C:\Program Files\The Keepers - The Order's Last Secret Collector's Edition deleted successfully

C:\Program Files\The Others deleted successfully

C:\Program Files\The Return of Monte Cristo deleted successfully

C:\Program Files\The Saint - Abyss of Despair deleted successfully

C:\Program Files\The Secret Order - Ancient Times Collectors Edition deleted successfully

C:\Program Files\The Snow deleted successfully

C:\Program Files\The Tiny Bang Story deleted successfully

C:\Program Files\TomTom DesktopSuite deleted successfully

C:\Program Files\Trial of the Gods - Ariadnes Journey deleted successfully

C:\Program Files\Undiscovered deleted successfully

C:\Program Files\Vampire Legends - The True Story of Kisilova deleted successfully

C:\Program Files\Vampire Saga - Break Out deleted successfully

C:\Program Files\Web of Deceit - Black Widow deleted successfully

C:\Program Files\Whispers - Revelation deleted successfully

C:\PROGRA~2\Babylon deleted successfully

C:\PROGRA~2\boost_interprocess deleted successfully

C:\PROGRA~2\Oracle deleted successfully

C:\PROGRA~2\Product deleted successfully

C:\Users\luve\AppData\Roaming\BEGINNIN deleted successfully

C:\Users\luve\AppData\Roaming\Fanda Games deleted successfully

C:\Users\luve\AppData\Roaming\iScreensaver deleted successfully

C:\Users\luve\AppData\Roaming\Monkey Barrel Games deleted successfully

C:\Users\luve\AppData\Roaming\Phantasmat_real_ce deleted successfully

C:\Users\luve\AppData\Roaming\WinRAR deleted successfully

C:\Users\luve\AppData\Local\Buried In Time deleted successfully

C:\Users\luve\AppData\Local\STARGAZE_IMAGE_CACHE deleted successfully

C:\Users\luve\AppData\Local\Vast Studios deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4597F846-6EE9-4766-BE06-C8E67F4E91E7} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{684A97FC-5F4D-4F0E-9AD0-95CA48746552} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6CF82D0E-88AD-6205-BC69-EBB0A35C4A0C} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MyWebSearchService deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\MyWebSearchService deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\MyWebSearchService deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\MyWebSearchService deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804}]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"MyWebSearch Email Plugin"=-

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Simajo The Travel Móstery Game not found

C:\Program Files\MyWebSearch deleted

C:\Program Files\Common Files\BOONTY Shared deleted

C:\Users\luve\AppData\Roaming\AlawarEntertainment deleted

C:\ProgramData\AlawarWrapper deleted

C:\Windows\system32\appdata deleted

C:\Program Files\Zynga deleted

C:\Users\luve\AppData\Local\Zynga deleted

C:\Users\luve\appdata\locallow\Zynga deleted

C:\Users\luve\appdata\locallow\MyWebSearch deleted

C:\Program Files\Mozilla Firefox\user.js deleted

C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com deleted

C:\Program Files\Alawar deleted

C:\Program Files\Alawar.co.nl deleted

C:\Program Files\Mystery Case Files - Escape from Ravenhearst Collector's Edition deleted

C:\Program Files\Mystery Case Files - Fates Carnival Collectors Edition deleted

C:\Program Files\Conduit deleted

C:\Program Files\FunWebProducts deleted

C:\Users\luve\AppData\Roaming\quickclick deleted

C:\Users\luve\AppData\Roaming\Alawar deleted

C:\Users\luve\AppData\Roaming\Alawar Entertainment deleted

C:\Users\luve\AppData\Roaming\Alawar Stargaze deleted

C:\Users\luve\AppData\Roaming\Babylon deleted

C:\Users\luve\AppData\Roaming\YoudaGames deleted

C:\Users\luve\AppData\Roaming\iWin deleted

C:\Users\luve\AppData\Roaming\In search of the Lost Temple deleted

C:\PROGRA~2\Ask deleted

C:\PROGRA~2\Alawar deleted

C:\PROGRA~2\Alawar Entertainment deleted

C:\PROGRA~2\Alawar Stargaze deleted

C:\PROGRA~2\AlawarEntertainment deleted

C:\PROGRA~2\AlawarGameBox deleted

C:\PROGRA~2\APN deleted

C:\PROGRA~2\hpqp.txt deleted

C:\PROGRA~2\log.txt deleted

C:\PROGRA~2\InstallMate deleted

C:\PROGRA~2\Premium deleted

C:\PROGRA~2\Trymedia deleted

C:\Users\luve\AppData\Local\Ilivid Player deleted

C:\Users\luve\AppData\Local\APN deleted

C:\Users\luve\AppData\Local\Babylon deleted

C:\Users\luve\AppData\Local\Conduit deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files - Escape from Ravenhearst Collector's Edition deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files - Fates Carnival Collectors Edition deleted

C:\Users\luve\AppData\LocalLow\Conduit deleted

C:\Users\luve\AppData\LocalLow\FunWebProducts deleted

C:\Windows\system32\tasks\RunAsStdUser Task deleted

C:\user.js deleted

C:\Users\Public\Documents\AlawarGameBox deleted

C:\Users\Public\Documents\AlawarWrapper deleted

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YZ0YA81S\TheBookofDesires_10344.exe deleted

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6LYYVE8U\CruelGamesRedRidingHood_10344.exe deleted

"C:\Users\luve\AppData\Local\{4AF93633-A9DE-4148-B27B-AEABC9D79F8F}" deleted

"C:\Program Files\Alawar Elements\AddonsFramework.Typelib.dll" deleted

"C:\Program Files\Alawar Elements\BackgroundHost.exe" deleted

"C:\Program Files\Alawar Elements\ButtonSite.dll" deleted

"C:\Program Files\Alawar Elements\AddonsFramework.Typelib.dll" deleted

"C:\Program Files\Alawar Elements\BackgroundHost.exe" deleted

"C:\Program Files\Alawar Elements\ButtonSite.dll" deleted

"C:\Program Files\Alawar Elements" deleted

"C:\Program Files\Alawar Elements" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\luve\AppData\Local\Temp ====

2014-06-09 21:34:46 3616AB4898E6880F3D1DD128A3FE858C 352496 ----a-w- C:\Users\luve\AppData\Local\Temp\uninstaller-WTA-4ea3a3c4-dce5-408c-80d9-abcc904a99b7\uninstaller.exe

2014-06-09 21:34:24 3616AB4898E6880F3D1DD128A3FE858C 352496 ----a-w- C:\Users\luve\AppData\Local\Temp\uninstaller-WTA-c6059d30-fa51-4868-ac0c-9edd8ba64719\uninstaller.exe

2014-06-09 05:23:41 47239EB4A793EA0DC7C283A71F401493 112352 ----a-w- C:\Users\luve\AppData\Local\Temp\Low\UnityWebPlayer\UnityWebPlayerUpdate.exe

====== Java Cache =====

2014-06-11 21:26:28 527287EBEA8B0B11B6BF15ADDE57B928 21543 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\251ffa0b-304960cf

2014-05-29 20:12:44 E5BA3F731BD58505AA17B8FD2C4DE494 38788 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\5ca9a5cd-2c6ca58a

2014-06-11 21:26:28 20DEDB44C5891181E12B91DFC4A4046A 3719 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\60208350-76fe45e7

2014-06-11 21:26:27 378DBF34C7C585237D6800B401F73972 1142 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\1beead91-3b153825

2014-06-11 21:26:28 24B65BAFF42A5463CD20C8552C61C4BB 4252 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\40b55292-6d8d877d

2014-06-11 21:26:28 11CD5CBA22EE2099129F07C83F14D12E 857 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\1c005d55-65024053

2014-06-11 21:26:28 C7595A34F83AA7C2E904F813B138437E 13717 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\31489656-3995e7fe

2014-06-11 21:26:24 EB5E11FDD5A826E3081D3856A8AE12AF 550796 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\68254157-2a43820d

2014-06-11 21:26:26 9B5E05C5BFDFAC47CD8662EBF672444F 5694 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\26908598-653b9f20

2014-06-11 21:26:27 4811EADC97F83D17EA7B95FF4F224EA5 5088 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\526b698-3e45e334

2014-06-11 21:26:28 C4FCEA123FB7E46D47D00A95C476C5A5 4720 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\7e3d80db-5508bb60

2014-06-11 21:26:30 9587AE807FD773861608B16F75606DAB 291 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\18d8bf5c-234cf65c

2014-06-11 21:26:27 69DA970DBC4A5CB99A72E038B1E054CC 142 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\779d1cc3-1cf876e9

2014-06-11 21:26:30 9566201EBD2648C45407D04F867844B8 4307 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\150b3020-25be6da0

2014-06-11 21:26:27 1BF1E4FBE023BF0477260F3FBF8A4211 14884 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\6970d1e0-2c57336e

2014-06-11 21:26:30 0055834E92CFB8B2B1F1E1D2708811F3 2431 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\11b7a561-3fd07500

2014-06-11 21:26:28 D1016A06D98900D8A15EFA7511D516B8 927 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\3ca56b61-761349a1

2014-05-22 20:11:00 69C84B7EE2D91923A9B24CABB20045B0 93 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\2998e763-98582d4279bdc578572883ea02d5e6a000b6309434ca9abbd2ded69c09745c8c-6.0.lap

2014-06-11 21:26:26 B30747862AEAC7E65DBF4FE3D84EB54C 1757 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\39689e66-4f564c32

2014-06-11 21:26:30 4B11BAF0634D556327EFBA2D5DFA4B00 22392 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\767d712a-4f0e4b70

2014-06-11 21:26:28 485F1EFCDD0997ABC8736119164A5E12 51276 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\714f9b2b-4bf76c60

2014-06-11 21:26:30 FC1E9CCFEA05623306EFCA6B86F6A921 2024 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\625d5aad-4dd1bffe

2014-06-11 21:26:30 B4FE1B2F647E787F0EF3D7CD11F0341E 2209 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\62f49330-5affc188

2014-06-11 21:26:30 B7C15FF56F61F8D20FC3751C19200095 1058 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\46c4d0b1-5c0e4b4b

2014-06-11 21:26:27 C2462EDFC7219E2DFFA3AA5453A8646E 61138 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5cef6372-243adc8e

2014-06-11 21:26:30 04C27D58BA5B1EC9097F695A73C3175A 7868 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\604b335-374c22e3

2014-06-11 21:26:29 0F9DF91B2BE775C455D35E76EA445FD2 810 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\be58c35-32405fe5

2014-06-11 21:26:30 BB1F1AC48AC87EF413FC7B58CC8BC406 468 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\30eb02b6-7bcb7d0d

2014-06-11 21:26:28 5FFA4EF27909D96DAF978BF7159CA391 4863 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\735fe7f7-6c70008b

2014-06-11 21:26:27 9235026D8D6A9BA03AD5652D2F8CE677 41273 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\16a4c078-614a11b9

2014-06-11 21:26:29 832B6E065FDF0FE600727E79DD177851 22065 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\1e2271b8-113163d3

2014-06-11 21:26:29 3BB7C5A99575C23072FACDBB24A03A3C 394 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3045ca38-345641ca

2014-06-11 21:26:28 A231BD19375F9D51CCB6B180B7D8D01D 3724 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\4fe128b8-58ff98d4

2014-06-11 21:26:28 206A17008540D557AD6F271CC9F35059 13570 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\652eef38-58866bed

2014-06-11 21:26:29 4B787AA4AC7CC61E01EFF06C1FA6319E 4751 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\8cfa738-10c01514

2014-06-11 21:26:26 0A5A0F9DE00C8861999CAB0B69DC19BE 500 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\16612d79-1695098f

2014-06-11 21:26:26 0D93DFC7B0162B03D3AB10D9CE4DAFF8 10859 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\52fda3b9-4f8960b1

2014-05-29 20:12:43 893625E0961BCE5DFD36DB6C662D15C4 38 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\23b3ecfd-80f5061de5afba23a34f47785a3f9c68a1742d08eb8888124b9d3d48e7882bb4-6.0.lap

2014-06-11 21:26:27 F60D0C2A404DA4DE7B1FA858FF432FA4 4323 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\70fddbe-6e790640

2014-06-11 21:26:28 2FE75D74A75465A172AF24B60F5EF83C 1514 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\7104edfe-7658cd55

2014-06-11 21:26:29 9B00BC6E4C847228CA075D39B4CDA3BF 829 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\734fb708-7a46ccc6

====== C:\Windows\system32 =====

2014-06-12 10:49:43 FB3E5FD7F74BFC301AD3FB7DE670EDCB 502784 ----a-w- C:\Windows\System32\usp10.dll

2014-06-12 10:49:39 D0D44370770D491E6BA472C855883422 1248768 ----a-w- C:\Windows\System32\msxml3.dll

2014-06-12 10:49:39 1E06779EDB55D035DD3F4A2B7432A291 1401344 ----a-w- C:\Windows\System32\msxml6.dll

2014-06-12 10:49:37 9F5AC4090D7C9F2591060DAC310FD294 1106432 ----a-w- C:\Windows\System32\urlmon.dll

2014-06-12 10:49:37 74DD13DF9DC59CCC5AE5528ECFA29BE9 10752 ----a-w- C:\Windows\System32\msfeedssync.exe

2014-06-12 10:49:37 0D7B6A0829874B057FF9D35F612B44F5 11776 ----a-w- C:\Windows\System32\mshta.exe

2014-06-12 10:49:36 B50E34870FC8F8CA79BCC2DC3183D691 421376 ----a-w- C:\Windows\System32\vbscript.dll

2014-06-12 10:49:36 B2D65154D4D36D6CA22BB586C016C1C1 142848 ----a-w- C:\Windows\System32\ieUnatt.exe

2014-06-12 10:49:36 AA5456C16D7F4B73177FD46AD63A12C4 1796096 ----a-w- C:\Windows\System32\iertutil.dll

2014-06-12 10:49:36 0A3EF805B406103971F27B9597EB98BC 231936 ----a-w- C:\Windows\System32\url.dll

2014-06-12 10:49:35 BA7CC0D3170EB03FA610BA8EA3A01E9D 65536 ----a-w- C:\Windows\System32\jsproxy.dll

2014-06-12 10:49:35 60D2396F470C110B7FAB1CFA4AC0D34B 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl

2014-06-12 10:49:35 4439087A375EFDD297DC470C3214D7D6 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll

2014-06-12 10:49:34 CFD26829131439B71D0109F9D5345573 1129472 ----a-w- C:\Windows\System32\wininet.dll

2014-06-12 10:49:34 947DA106EE001900969D42425FBDA183 717824 ----a-w- C:\Windows\System32\jscript.dll

2014-06-12 10:49:34 23330909BD92B7611815365559860952 1810432 ----a-w- C:\Windows\System32\jscript9.dll

2014-06-12 10:49:33 61F727795CAA98C3FCDB48379B78E370 607744 ----a-w- C:\Windows\System32\msfeeds.dll

2014-06-12 10:49:33 32FE42E13195DEAF78D1E348F51A5AEE 353792 ----a-w- C:\Windows\System32\dxtmsft.dll

2014-06-12 10:49:32 3829D7D8B098F87C454E468DCAAE4912 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2014-06-12 10:49:29 2DCB8AEC38AE1427CB1CFE2432D05107 223232 ----a-w- C:\Windows\System32\dxtrans.dll

2014-06-12 10:49:29 148B2F103FD322A4B8AEB82D7B35D0AF 176640 ----a-w- C:\Windows\System32\ieui.dll

2014-06-12 10:49:28 AD2C67A381CC7148BB98A66BB04DDF5B 9711104 ----a-w- C:\Windows\System32\ieframe.dll

2014-06-12 10:49:28 9000CE8689BD16819AF8AFDB83B94CCE 73216 ----a-w- C:\Windows\System32\mshtmled.dll

2014-06-12 10:49:26 B7363143940197BD9F16FD957B4F8131 12356608 ----a-w- C:\Windows\System32\mshtml.dll

====== C:\Windows\system32\drivers =====

2014-06-12 10:49:42 C7B0746FCD576D7EEBA6A2530B0B2966 905664 ----a-w- C:\Windows\System32\drivers\tcpip.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-06-14 09:11:21 -------- d-----w- C:\Program Files\trend micro

2014-06-13 19:14:51 -------- d-----w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition

2014-06-08 10:58:38 -------- d-----w- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition

2014-06-07 10:37:06 -------- d-----w- C:\Program Files\Midnight Castle

2014-06-06 19:48:34 -------- d-----w- C:\Program Files\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition

2014-06-01 10:48:19 -------- d-----w- C:\Program Files\Awakening - The Redleaf Forest Collectors Edition

2014-05-30 11:42:48 -------- d-----w- C:\Program Files\Haunted Hotel - Ancient Bane Collector's Edition

======= C: =====

====== C:\Users\luve\AppData\Roaming ======

2014-06-13 19:14:51 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rite of Passage - Hide and Seek Collectors Edition

2014-06-08 10:58:38 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Myths of the World - Of Fiends and Fairies Collectors Edition

2014-06-07 10:37:06 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Midnight Castle

2014-06-06 19:48:34 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition

2014-06-05 17:35:27 -------- d-----w- C:\Users\luve\AppData\Roaming\Koolhaus Games

2014-06-01 10:48:19 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Awakening - The Redleaf Forest Collectors Edition

2014-05-30 11:42:48 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haunted Hotel - Ancient Bane Collector's Edition

2014-05-20 16:42:34 -------- d-----w- C:\Users\luve\AppData\Roaming\Ambers Tales

====== C:\Users\luve ======

2014-06-13 19:14:51 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rite of Passage - Hide and Seek Collectors Edition

2014-06-08 10:58:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Myths of the World - Of Fiends and Fairies Collectors Edition

2014-06-07 10:37:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Midnight Castle

2014-06-06 19:48:34 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition

2014-06-01 10:48:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Awakening - The Redleaf Forest Collectors Edition

2014-05-30 11:42:48 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haunted Hotel - Ancient Bane Collector's Edition

2014-05-20 16:42:34 -------- d-----w- C:\ProgramData\Ambers Tales

====== C: exe-files ==

2014-06-14 09:11:22 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\luve.exe

2014-06-13 19:15:11 0062277CC82D370CB6CB8638264A39A1 85179 ----a-w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\Uninstall.exe

2014-06-12 10:49:37 D14CBA888EF2A88C28CB5E6396A295DA 22528 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe

2014-06-12 10:49:35 7BA5B7DEDE25D44F3E664D5BA067E3CD 758000 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2014-06-12 10:49:34 77AEB4008A5E1015599A4DC6AE50C33B 223232 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe

2014-06-12 10:49:32 054E45A74734CDBDDEFB503CBBA0E0DF 469504 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe

2014-06-11 20:44:18 EBB5A7EBB316B48FDD89CED1D296ECFB 5572896 ---h--w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\RiteOfPassage_HideAndSeek_CE.exe

2014-06-11 20:44:16 3A01707E9184C6378B5F09B5A8741F51 2341152 ----a-w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\hwjfqjw.exe

2014-06-08 20:31:07 E9F6D06CAFA19D432AE418F13DC8960A 5923808 ----a-w- C:\GameHouse Games\Tales of the Orient - The Rising Sun\TalesoftheOrient_TheRisingSun.exe

2014-06-08 10:58:55 6CD64E650A2DC27AE493922664A7326B 85716 ----a-w- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition\Uninstall.exe

=== C: other files ==

2014-06-14 17:29:41 441AF5E104D952CBA2646F3A954A0EF7 120602 ----a-w- C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\URK2U2MW\player_xml[2].zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"Google Update"="C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"

"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"

"QPService"="C:\Program Files\HP\QuickPlay\QPService.exe"

"UpdateLBPShortCut"="C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\LabelPrint UpdateWithCreateOnce Software\CyberLink\LabelPrint\2.5"

"UpdatePSTShortCut"="C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\DVD Suite UpdateWithCreateOnce Software\CyberLink\PowerStarter"

"UCam_Menu"="C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\YouCam UpdateWithCreateOnce Software\CyberLink\YouCam\2.0"

"QlbCtrl.exe"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start"

"UpdatePDIRShortCut"="C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerDirector UpdateWithCreateOnce SOFTWARE\CyberLink\PowerDirector\7.0"

"HP Health Check Scheduler"="c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"

"WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"

"NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup"

"NvMediaCenter"="RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit"

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui"

"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

"SysTrayApp"="%ProgramFiles%\IDT\WDM\sttray.exe "

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"Google Update"="C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"

"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14/06/2014 00:07]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [14/01/2010 17:13]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core.job --a------ C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe [12/09/2011 13:10]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA.job --a------ [undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core" [C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA" [C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\HP Health Check" ["c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"]

"C:\Windows\system32\tasks\RealUpgradeLogonTaskS-1-5-21-4172665234-3387394907-3032361431-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\system32\tasks\RealUpgradeScheduledTaskS-1-5-21-4172665234-3387394907-3032361431-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\system32\tasks\User_Feed_Synchronization-{14B924BC-77F3-4260-8C2B-CB5CC06A13CD}" [C:\Windows\system32\msfeedssync.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"m3ffxtbr@mywebsearch.com"="C:\Program Files\MyWebSearch\bar\1.bin" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\luve\AppData\Roaming\TomTom\HOME\Profiles\i8opfco0.default

- Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com

- TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

- Downandsave - %ExtDir%\crossriderapp12331@crossrider.com

ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles

- Downandsave - %ExtDir%\extensions\crossriderapp12331@crossrider.com

ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Extensions

- Downandsave - C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\crossriderapp12331@crossrider.com

==== Firefox Plugins ======================

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

jfmjfhklogoienhpfnppmbcbjfjnkonk - No path found[]

avast Online Security - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

fIRST lOVE - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\lighpcanjnomdcjmfficdanifpdmgmhp

Gamebox - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mibfbmhijjgpkmobcfdlelpccpeafoom

Google Wallet - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chrome Fix ======================

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mywebface.dl.mywebsearch.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mywebface.dl.mywebsearch.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_addictedto.criminalcasegame.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_addictedto.criminalcasegame.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_imabigfanof.criminalcasegame.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_imabigfanof.criminalcasegame.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pioneertrail.gamebonuschecker.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pioneertrail.gamebonuschecker.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamersunite.coolchaser.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamersunite.coolchaser.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_onthenews.net_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_onthenews.net_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_slog.thestranger.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_slog.thestranger.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.addictinggames.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.addictinggames.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gamezebo.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gamezebo.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luvinthemommyhood.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luvinthemommyhood.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.theblaze.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.theblaze.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thepetitionsite.com_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thepetitionsite.com_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thesun.co.uk_0.localstorage deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thesun.co.uk_0.localstorage-journal deleted successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\databases\http_www.beautyoftheweb.com_0 deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page Restore"="http://www.facebook.com/?ref=hp"

"Start Page"="https://www.google.be/"

"Default_Page_URL"="http://www.telenet.be"

"Search Bar"="http://www.bing.com"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://start.alawar.com/"

"Default_Page_URL"="http://www.telenet.be"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Start Page Restore"="https://www.google.be/"

"Start Page"="https://www.google.be/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{DDB9C78B-2095-41CF-A885-14A2B6A0F24C}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{1B30CBCF-74C8-4AF0-832C-BBD5D5DB3C32} Unknown Url="Not_Found"

{54272A0D-4963-4CA3-8071-124107DC9959} Wikipedia (en) Url="http://en.wikipedia.org/w/index.php?title=Special:Search&search={searchTerms}"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

{903926A8-0C7D-4185-A2B4-D9D7171F5F87} Bing Url="http://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}"

{DDB9C78B-2095-41CF-A885-14A2B6A0F24C} Web Search Url="http://ws.infospace.com/gamers_brw/ws/redir?_iceUrl=true&user_id=%userid&tool_id=%toolid&qkw={searchTerms}"

{FC9DCCBC-99B1-4369-A39E-40F720DD8583} AOL Zoeken Url="http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1547&query={searchTerms}&invocationType=tb50hpcnnbie7-nl-be"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{1B30CBCF-74C8-4AF0-832C-BBD5D5DB3C32} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\m3ffxtbr@mywebsearch.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{100B94DD-5DFF-263B-3E8C-309744764A31} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D13B3C-F261-4E0E-9916-78044C0535CC} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2235047F-1B25-EC94-5B2B-B9DB735882F5} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{319C4157-F353-B85D-4043-26A394915D88} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3757637D-5529-DCA1-427D-093D23BDF155} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5312301A-A02F-4E0F-BDFE-EA4A10FCFC5E} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{62660BD7-36BE-1529-E760-E33064C2F033} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{704FE2CA-E988-6360-FC0C-A9613E870FF9} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{842BA723-F4E1-552C-0F6F-5B4305A662ED} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{969E4976-03B8-5FE4-A85C-7D6C579FE40A} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C99A8918-3BD2-88A2-BA7A-A1BE4A13AD61} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Zynga Toolbar deleted successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\luve\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\luve\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0 will be deleted at reboot

C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\luve\AppData\Local\Chromium\User Data\Default\Cache emptied successfully

C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=39482 folders=2864 3449435733 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\luve\AppData\Local\Temp will be emptied at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\luve\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0" not found

==== EOF on za 14/06/2014 at 20:47:34,87 ======================

Link naar reactie
Delen op andere sites

Oeps ... dit heeft al behoorlijk wat rotzooi verwijderd.

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

 
 C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\crossriderapp12331@crossrider.com;fs
 C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\crossriderapp12331@crossrider.com;fs
 C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\crossriderapp12331@crossrider.com;fs
 Jfmjfhklogoienhpfnppmbcbjfjnkonk;chr
 autoclean;

  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites

Prima gelukt ... volgende stap nu:

Download adwcleaner.pngAdwCleaner by Xplode naar het bureaublad.

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op Scan.
  • Klik vervolgens op Clean.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[s0].txt.

Logbestand plaatsen

  • Voeg het logbestand met de naam C:\AdwCleaner\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.