Ga naar inhoud

users appdata roaming newnext.me nengine.dll

tomtom700

Door tomtom700
in Archief Windows Algemeen

 Delen

Aanbevolen berichten

kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Bekijk ook de instructievideo.

Link naar reactie
Delen op andere sites
tomtom700 Meewerkend lid

tomtom700

Geplaatst:
  • Auteur
Geplaatst:

Logfile of random's system information tool 1.09 (written by random/random)

Run by ( at 2014-02-11 11:19:08

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 226 GB (24%) free of 940 GB

Total RAM: 8151 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 11:19:13, on 11/02/2014

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe

C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe

C:\Program Files\BitDefender\Bitdefender\antispam32\bdapppassmgr.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe

C:\Program Files (x86)\Internet Download Manager\IDMan.exe

C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe

C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Internet Explorer\IELowutil.exe

C:\Program Files\trend micro\(.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll

O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKCU\..\Run: [Google Update] "C:\Users\(\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"

O4 - HKCU\..\Run: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

O4 - HKCU\..\Run: [bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard

O4 - HKCU\..\Run: [bitdefender Agent Wallet-toepassing] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\(\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'Default user')

O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files (x86)\FlashGet\jc_all.htm

O8 - Extra context menu item: &Download with FlashGet - C:\Program Files (x86)\FlashGet\jc_link.htm

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: Download alle links met IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm

O8 - Extra context menu item: Download met IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL

O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe

O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) - WIBU-SYSTEMS AG - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe

O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - c:\program files (x86)\sony ericsson\sony ericsson pc suite\supserv.exe

O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: SafeBox - Bitdefender - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe

O23 - Service: UPnPService - Magix AG - C:\Program Files (x86)\Common Files\MAGIX Shared\UPnPService\UPnPService.exe

O23 - Service: UsbGlcsService - Unknown owner - C:\Program Files (x86)\Multifunctional Wireless Mouse Driver\UsbglcsSrv.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 17025 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

"C:\Program Files\Bitdefender\Bitdefender\vsserv.exe" /service

"C:\Windows\system32\nvvsvc.exe"

"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

"C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe"

"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"

C:\Windows\system32\nvvsvc.exe -session -first

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"taskhost.exe"

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

"C:\Program Files\Bonjour\mDNSResponder.exe"

C:\Windows\SysWOW64\ezSharedSvcHost.exe

taskeng.exe {8E902DCA-5237-481C-AD6E-ED42E9F9E2C8}

C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt

"C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe"

"C:\Program Files\BitDefender\Bitdefender\bdagent.exe"

"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"

"C:\Program Files\BitDefender\Bitdefender\pmbxag.exe"

"C:\Program Files\BitDefender\Bitdefender\antispam32\bdapppassmgr.exe"

"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1

"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

"C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"

"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"

C:\Windows\System32\svchost.exe -k HPZ12

"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"

"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"

"c:\program files (x86)\sony ericsson\sony ericsson pc suite\supserv.exe"

"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl

"C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"

C:\Windows\System32\svchost.exe -k HPZ12

"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"

"C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe" /service

"C:\Program Files (x86)\Multifunctional Wireless Mouse Driver\UsbglcsSrv.exe"

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

WLIDSvcM.exe 3536

"C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"

"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"

"C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe"

C:\Windows\system32\wbem\unsecapp.exe -Embedding

C:\Windows\system32\svchost.exe -k HPService

C:\Windows\system32\SearchIndexer.exe /Embedding

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp

\??\C:\Windows\system32\conhost.exe "19791671131701418029180135883321342738-9378490587117605301767379035768875178

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-6acba61b-621c-4af4-bde8-c0f333f909c9 -SystemEventPortName:HostProcess-8f742e11-b5de-4019-af9a-bd484757eecc -IoCancelEventPortName:HostProcess-200f8668-10f5-4646-a7a6-348432794752 -NonStateChangingEventPortName:HostProcess-887f310c-aed0-4282-8ffc-62e79e930116 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c4e2a9af-2080-41dc-92cd-1b68ccd7e99b -DeviceGroupId:WpdFsGroup

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

"C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe"

"C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe" /DisableUI

"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"

"C:\Program Files (x86)\Nero\Update\NASvc.exe"

C:\Windows\System32\svchost.exe -k secsvcs

"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" -Embedding

"C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe"

"C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe" -Embedding

taskeng.exe {B1C91D53-80E2-4CF8-A7AE-45B38AB75AE0}

"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "http://www.pc-helpforum.be/"

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding

"C:\Users\(\Downloads\Programs\RSITx64_2.exe"

C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001Core.job

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001UA.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001Core.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001UA.job

C:\Windows\tasks\HP Photo Creations Communicator.job

C:\Windows\tasks\HPCeeScheduleFor(.job

C:\Windows\tasks\ParetoLogic Registration3.job

C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job

C:\Windows\tasks\ParetoLogic Update Version3.job

C:\Windows\tasks\PCDRScheduledMaintenance.job

C:\Windows\tasks\RegCure Pro.job

=========Mozilla firefox=========

ProfilePath - C:\Users\(\AppData\Roaming\Mozilla\Firefox\Profiles\18mq6zal.default-1370327011862

prefs.js - "browser.search.useDBForOrder" - "false"

prefs.js - "browser.startup.homepage" - "hln.be"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 12.0.0.44 Plugin

"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]

"Description"=Adobe Shockwave Player

"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]

"Description"=iTunes Detector Plug-in

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]

"Description"=

"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Bitdefender.com/PasswordManager;version=17.8]

"Description"=Bitdefender Wallet

"Path"=C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxnp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]

"Description"=Google Earth in your browser

"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]

"Description"=Picasa3 plugin

"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]

"Description"=NVIDIA stereo images plugin for Mozilla browsers

"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]

"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers

"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5]

"Description"=A component of your photo software powered by RocketLife

"Path"=C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0]

"Description"=

"Path"=C:\Program Files (x86)\Sony\Media Go\npmediago.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@zylom.com/ZylomGamesPlayer]

"Description"=Zylom Games Player 1.00

"Path"=C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 12.0.0.43 Plugin

"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]

IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-03-16 376672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}]

Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2013-12-10 173392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]

IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-03-16 226736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]

HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}]

Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll [2013-12-10 140944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]

FGCatchUrl - C:\Program Files (x86)\FlashGet\jccatch.dll [2007-09-11 94308]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]

Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2011-05-13 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]

FlashGet GetFlash Class - C:\Program Files (x86)\FlashGet\getflash.dll [2007-09-11 163840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]

HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Bdagent"=C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [2013-12-10 1734848]

"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2013-12-10 2279712]

"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2013-12-10 1100248]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Google Update"=C:\Users\(\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-10 136176]

"TomTomHOME.exe"=C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [2013-08-27 248208]

"Bitdefender Wallet Agent"=C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [2013-12-10 560648]

"Bitdefender Wallet"=C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [2013-12-10 1000488]

"Bitdefender Agent Wallet-toepassing"=C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [2013-12-10 612696]

"NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]

C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]

C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [2010-06-28 75048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\beid]

C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ContactKeeper Birthday reminder]

C:\Program Files (x86)\ContactKeeper\ContactKeeper.exe [2011-11-11 921600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]

C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Easybits Recovery]

C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2010-01-25 61112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Eraser]

C:\PROGRA~1\Eraser\Eraser.exe [2010-11-04 980368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]

C:\Users\(\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-25 138096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flashget]

C:\Program Files (x86)\FlashGet\FlashGet.exe [2007-09-25 2007088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

C:\Users\(\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-10 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]

C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPAdvisorDock]

C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-09-28 1715768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]

c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Jing]

C:\Program Files (x86)\TechSmith\Jing\Jing.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchHPOSIAPP]

C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe [2009-04-04 385024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monitor]

C:\Windows\PixArt\PAC207\Monitor.exe [2006-11-03 319488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSN Toolbar]

C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\mswinext.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]

C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-02-22 1226024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NortonOnlineBackupReminder]

C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe UNATTENDED []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMBVolumeWatcher]

C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2013-04-24 740888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Realtime Audio Engine]

mmrtkrnl.exe /i []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10]

C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2010-02-03 87336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]

C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]

C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\sepcsuite.exe [2011-06-17 466944]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]

C:\Users\(\AppData\Roaming\Spotify\spotify.exe [2013-04-30 4555776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]

C:\Users\(\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2013-04-30 1105408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]

C:\Program Files (x86)\Steam\Steam.exe [2014-01-27 1815976]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]

C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [2013-08-27 248208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrayServer]

C:\PROGRA~2\MAGIX\VIDEO_~2\TrayServer.exe [2007-07-04 90112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader]

C:\Program Files\VDownloader\VDownloader.exe [2012-12-20 879104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wireless Mouse]

C:\Program Files (x86)\Multifunctional Wireless Mouse Driver\StartMonitor.exe [2011-05-13 219792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]

C:\PROGRA~2\Hp\DIGITA~1\bin\hpqtra08.exe [2009-09-20 270336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^(^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Schermopname en Snel starten.lnk]

C:\PROGRA~2\MICROS~4\Office12\ONENOTEM.EXE [2009-02-26 97680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^(^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^simplicheck.lnk]

C:\PROGRA~2\SIMPLI~1\SIMPLI~1\SIMPLI~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2010-01-15 284696]

"PMBVolumeWatcher"=C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2013-04-24 740888]

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-07-17 52920]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"PromptOnSecureDesktop"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"MSVideo8"=VfWWDM32.dll

"wave"=wdmaud.drv

"wave1"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave2"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave3"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"aux2"=wdmaud.drv

"wave4"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

"aux3"=wdmaud.drv

"wave5"=wdmaud.drv

"midi4"=wdmaud.drv

"mixer4"=wdmaud.drv

"aux4"=wdmaud.drv

"wave6"=wdmaud.drv

"midi5"=wdmaud.drv

"mixer5"=wdmaud.drv

"aux5"=wdmaud.drv

"wave7"=wdmaud.drv

"midi6"=wdmaud.drv

"mixer6"=wdmaud.drv

"aux6"=wdmaud.drv

"wave8"=wdmaud.drv

"midi7"=wdmaud.drv

"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-02-11 11:19:08 ----D---- C:\rsit

2014-02-11 09:25:28 ----D---- C:\Users\(\AppData\Roaming\ParetoLogic

2014-02-11 09:25:28 ----D---- C:\Users\(\AppData\Roaming\DriverCure

2014-02-11 09:25:18 ----D---- C:\ProgramData\ParetoLogic

2014-02-11 09:25:18 ----D---- C:\Program Files (x86)\ParetoLogic

2014-02-08 16:11:21 ----D---- C:\ProgramData\Uniblue

2014-02-08 16:11:18 ----D---- C:\Users\(\AppData\Roaming\Uniblue

2014-02-08 16:11:09 ----D---- C:\Users\(\AppData\Roaming\newnext.me

2014-02-08 16:11:07 ----D---- C:\Program Files (x86)\Uniblue

2014-02-08 13:11:50 ----D---- C:\Users\(\AppData\Roaming\multilizer

2014-02-08 13:11:50 ----D---- C:\ProgramData\multilizer

2014-02-08 13:11:50 ----D---- C:\Program Files (x86)\Multilizer

2014-02-08 06:23:20 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll

2014-02-08 06:23:20 ----A---- C:\Windows\system32\d3dx11_43.dll

2014-02-08 06:23:19 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll

2014-02-08 06:23:19 ----A---- C:\Windows\system32\d3dx10_43.dll

2014-02-08 06:23:18 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll

2014-02-08 06:23:18 ----A---- C:\Windows\system32\D3DX9_43.dll

2014-02-08 06:22:34 ----A---- C:\Windows\SYSWOW64\nvspcap.dll

2014-02-08 06:22:34 ----A---- C:\Windows\system32\nvspcap64.dll

2014-02-08 06:22:09 ----D---- C:\Program Files (x86)\AGEIA Technologies

2014-02-08 06:20:44 ----D---- C:\temp

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\nvopencl.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\NvIFR.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\NvFBC.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\nvcuda.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll

2014-02-08 06:19:46 ----A---- C:\Windows\SYSWOW64\nvapi.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvopencl.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvoglv64.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\NvIFR64.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\NvFBC64.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvdispgenco6433221.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvdispco6433221.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvd3dumx.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvcuvid.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvcuvenc.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvcuda.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvcompiler.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\nvaudcap64v.dll

2014-02-08 06:19:46 ----A---- C:\Windows\system32\drivers\nvvad64v.sys

2014-02-08 06:19:46 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys

2014-02-06 11:02:19 ----D---- C:\Program Files (x86)\Mozilla Firefox

2014-02-04 03:56:29 ----N---- C:\Windows\system32\MpSigStub.exe

2014-01-30 08:38:35 ----D---- C:\Program Files (x86)\GUMCD9C.tmp

2014-01-26 06:13:53 ----D---- C:\ProgramData\firebird

2014-01-24 08:03:05 ----D---- C:\Users\(\AppData\Roaming\Big Eagle Software

2014-01-23 16:38:04 ----D---- C:\Users\(\AppData\Roaming\ArcSoft

2014-01-23 16:28:08 ----A---- C:\Windows\PCDLIB32.DLL

2014-01-23 16:28:07 ----D---- C:\Program Files (x86)\ArcSoft

2014-01-21 22:50:24 ----D---- C:\ProgramData\IDM

2014-01-21 22:50:08 ----D---- C:\Program Files (x86)\Internet Download Manager

2014-01-21 16:34:56 ----A---- C:\DelFix.txt

2014-01-21 00:13:48 ----A---- C:\Windows\zoek-delete.exe

2014-01-21 00:07:20 ----D---- C:\Users\(\AppData\Roaming\net1-wipe

2014-01-21 00:00:00 ----D---- C:\zoek_backup

2014-01-20 21:42:37 ----D---- C:\Program Files\trend micro

2014-01-19 21:07:50 ----D---- C:\Program Files\GIMP 2

2014-01-18 19:00:08 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service

2014-01-18 00:54:43 ----A---- C:\Windows\SYSWOW64\javaws.exe

2014-01-18 00:54:37 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll

2014-01-15 14:24:25 ----A---- C:\Windows\system32\drivers\usbehci.sys

2014-01-15 14:24:24 ----A---- C:\Windows\system32\win32k.sys

2014-01-15 14:24:24 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2014-01-15 14:24:24 ----A---- C:\Windows\system32\drivers\usbport.sys

2014-01-15 14:24:24 ----A---- C:\Windows\system32\drivers\usbohci.sys

2014-01-15 14:24:24 ----A---- C:\Windows\system32\drivers\usbhub.sys

2014-01-15 14:24:24 ----A---- C:\Windows\system32\drivers\usbd.sys

2014-01-15 14:24:24 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2014-01-15 14:24:23 ----A---- C:\Windows\system32\drivers\netio.sys

======List of files/folders modified in the last 1 month======

2014-02-11 11:19:13 ----D---- C:\Windows\Prefetch

2014-02-11 11:19:09 ----D---- C:\Windows\Temp

2014-02-11 11:18:26 ----D---- C:\Windows\system32\drivers\etc

2014-02-11 10:49:09 ----D---- C:\Users\(\AppData\Roaming\IDM

2014-02-11 10:07:35 ----D---- C:\Windows\tracing

2014-02-11 09:34:59 ----D---- C:\Windows\system32\config

2014-02-11 09:25:37 ----D---- C:\Windows\Tasks

2014-02-11 09:25:37 ----D---- C:\Windows\system32\Tasks

2014-02-11 09:25:21 ----D---- C:\Program Files (x86)\Common Files

2014-02-11 09:25:18 ----RD---- C:\Program Files (x86)

2014-02-11 09:25:18 ----HD---- C:\ProgramData

2014-02-11 09:17:01 ----D---- C:\ProgramData\NVIDIA

2014-02-11 02:49:14 ----A---- C:\bdlog.txt

2014-02-10 20:07:06 ----SHD---- C:\System Volume Information

2014-02-10 18:50:09 ----D---- C:\Windows\system32\wbem

2014-02-10 18:50:09 ----AD---- C:\Windows

2014-02-10 18:49:09 ----SHD---- C:\Windows\Installer

2014-02-10 18:49:09 ----D---- C:\Windows\system32\DriverStore

2014-02-10 18:49:09 ----D---- C:\Windows\system32\catroot2

2014-02-10 18:49:09 ----D---- C:\Windows\System32

2014-02-10 18:49:09 ----D---- C:\Windows\registration

2014-02-10 18:49:09 ----D---- C:\Windows\inf

2014-02-10 18:49:09 ----AD---- C:\Windows\SysWOW64

2014-02-10 16:00:14 ----D---- C:\Users\(\AppData\Roaming\Skype

2014-02-10 12:18:34 ----D---- C:\Users\(\AppData\Roaming\DMCache

2014-02-09 18:37:34 ----HD---- C:\Config.Msi

2014-02-09 18:37:33 ----D---- C:\Users\(\AppData\Roaming\Mozilla

2014-02-09 17:12:39 ----A---- C:\Windows\system32\PerfStringBackup.INI

2014-02-09 13:04:46 ----D---- C:\Program Files (x86)\Steam

2014-02-08 16:12:55 ----D---- C:\drivers

2014-02-08 12:28:57 ----RSD---- C:\Windows\assembly

2014-02-08 12:28:57 ----D---- C:\Windows\Microsoft.NET

2014-02-08 06:24:36 ----D---- C:\ProgramData\NVIDIA Corporation

2014-02-08 06:22:34 ----D---- C:\Program Files\NVIDIA Corporation

2014-02-08 06:22:34 ----D---- C:\Program Files (x86)\NVIDIA Corporation

2014-02-08 06:22:04 ----D---- C:\Windows\system32\drivers

2014-02-08 06:22:03 ----D---- C:\Windows\system32\catroot

2014-02-08 06:19:50 ----RD---- C:\Users

2014-02-06 12:53:34 ----D---- C:\Users\(\AppData\Roaming\Vso

2014-02-05 15:06:21 ----D---- C:\Windows\rescache

2014-02-05 05:15:04 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

2014-02-01 17:38:35 ----D---- C:\ProgramData\Adres 2000

2014-02-01 17:38:35 ----D---- C:\Program Files (x86)\Adres 2000

2014-01-31 11:55:28 ----D---- C:\Program Files (x86)\Adobe

2014-01-30 14:00:21 ----D---- C:\Windows\system32\wfp

2014-01-30 14:00:20 ----D---- C:\Windows\SYSWOW64\Macromed

2014-01-30 14:00:19 ----D---- C:\Windows\SYSWOW64\Adobe

2014-01-30 14:00:18 ----D---- C:\Windows\system32\Macromed

2014-01-30 13:59:50 ----D---- C:\ProgramData\Adobe

2014-01-30 13:59:49 ----D---- C:\Program Files (x86)\Google

2014-01-23 16:34:11 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2014-01-21 22:42:54 ----D---- C:\Downloads

2014-01-21 22:36:52 ----D---- C:\ProgramData\Sony Corporation

2014-01-21 22:36:52 ----D---- C:\Program Files (x86)\Sony

2014-01-21 08:48:34 ----D---- C:\Program Files

2014-01-19 08:45:38 ----D---- C:\Users\(\AppData\Roaming\uTorrent

2014-01-19 08:45:36 ----D---- C:\Windows\Minidump

2014-01-18 00:54:37 ----D---- C:\Program Files (x86)\Java

2014-01-16 08:44:03 ----D---- C:\Windows\winsxs

2014-01-16 01:09:53 ----D---- C:\ProgramData\Microsoft Help

2014-01-16 01:09:22 ----D---- C:\Windows\system32\MRT

2014-01-16 01:06:25 ----A---- C:\Windows\system32\MRT.exe

2014-01-15 09:51:15 ----D---- C:\Program Files (x86)\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys [2013-07-19 727592]

R0 gzflt;gzflt; C:\Windows\system32\DRIVERS\gzflt.sys [2013-11-13 150256]

R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-01-15 538136]

R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys [2011-08-18 69376]

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-04-26 513080]

R0 trufos;trufos; C:\Windows\system32\DRIVERS\trufos.sys [2013-11-14 389240]

R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2013-02-22 93600]

R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]

R1 BDVEDISK;BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [2012-04-17 76944]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-05-01 254528]

R1 Uim_IM;Universal Image Mounter Plugin; C:\Windows\System32\Drivers\Uim_IMx64.sys [2012-06-04 633296]

R1 Uim_VIM;UIM Virtual Image Plugin; C:\Windows\System32\Drivers\uim_vimx64.sys [2012-06-04 389968]

R1 UimBus;Universal Image Mounter Controller; C:\Windows\system32\DRIVERS\uimx64.sys [2012-06-04 90960]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2012-02-08 149640]

R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]

R3 avchv;avchv Function Driver; C:\Windows\system32\DRIVERS\avchv.sys [2012-11-02 261056]

R3 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys [2013-07-19 601360]

R3 AVER_H193;AVerMedia H193 Video Capture; C:\Windows\system32\drivers\AVer888RC_64.sys [2009-11-14 543616]

R3 CXCIR;AVerMedia Consumer Infrared Receiver; C:\Windows\system32\DRIVERS\AVer888RCIR_64.sys [2009-11-14 39936]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-09-07 2484072]

R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys [2011-10-18 17152]

R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2012-12-06 2350176]

R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-05 39200]

R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680]

R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2008-01-09 34032]

R3 usbglcs1100101;usbglcs1100101 service ; C:\Windows\system32\drivers\usbglcs1100101.sys [2011-05-03 25600]

R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]

S1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys []

S3 61883;61883-eenheidsapparaat; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]

S3 A38CCID;CCID USB Smart Card Reader; C:\Windows\system32\DRIVERS\a38ccid.sys [2013-10-03 47488]

S3 ACSSCR;ACR38 Smart Card Reader; C:\Windows\system32\DRIVERS\a38usb.sys [2009-12-15 44928]

S3 Avc;AVC-apparaat; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]

S3 bdfwfpf_pc;bdfwfpf_pc; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-11-13 121928]

S3 BDSandBox;BDSandBox; \??\C:\Windows\system32\drivers\bdsandbox.sys [2013-12-10 82824]

S3 cpuz132;cpuz132; \??\C:\Users\(\AppData\Local\Temp\cpuz132\cpuz132_x64.sys []

S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]

S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]

S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]

S3 DxVGrb;DxVGrb; C:\Windows\system32\drivers\DxVGrb.sys [2012-06-22 222464]

S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2011-05-13 48488]

S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]

S3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2007-08-31 20392]

S3 PAC207;SoC PC-Camera; C:\Windows\system32\DRIVERS\PFC027.SYS [2006-12-05 572416]

S3 PCDSRVC{F36B3A4C-F95654BD-06000000}_0;PCDSRVC{F36B3A4C-F95654BD-06000000}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\program files\pc-doctor for windows\pcdsrvc_x64.pkms []

S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2011-01-08 82816]

S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []

S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]

S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]

S3 USB28xxBGA;USB 2861 Device; C:\Windows\system32\DRIVERS\emBDA64.sys [2010-08-20 654720]

S3 USB28xxOEM;USB 28xx OEM Filter; C:\Windows\system32\DRIVERS\emOEM64.sys [2010-08-20 943872]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

R2 CodeMeter.exe;CodeMeter Runtime Server; C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2012-12-03 2571704]

R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-01-25 514232]

R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-01-23 1858048]

R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]

R2 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-01-15 13336]

R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2011-10-27 2152152]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]

R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]

R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]

R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-10 15129376]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-12-19 922912]

R2 OMSI download service;Sony Ericsson OMSI download service; c:\program files (x86)\sony ericsson\sony ericsson pc suite\supserv.exe [2009-04-30 90112]

R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2013-04-24 483864]

R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-06-22 386344]

R2 SafeBox;SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [2013-07-08 94624]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-12-19 411936]

R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072]

R2 UPDATESRV;Bitdefender Desktop Update Service; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [2013-12-10 67320]

R2 UsbGlcsService;UsbGlcsService; C:\Program Files (x86)\Multifunctional Wireless Mouse Driver\UsbglcsSrv.exe [2011-02-23 1105920]

R2 VSSERV;Bitdefender Virus Shield; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [2013-12-10 1507248]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]

S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-10 136176]

S2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2013-12-17 46904]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05 257928]

S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]

S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-05-13 1492840]

S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-09-30 246520]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-10 136176]

S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]

S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]

S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352]

S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-02-06 118896]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-01-27 571816]

S3 UPnPService;UPnPService; C:\Program Files (x86)\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [2007-10-23 548864]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-10-11 1255736]

S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]

S4 BdDesktopParental;Bitdefender Desktop Parental Control; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [2013-12-10 77632]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download 51a612a8b27e2-Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  {0055C089-8582-441B-A0BF-17B458C2A3A8};c
 C:\Program Files (x86)\Internet Download Manager;fs
 NextLive;s
 C:\Users\(\AppData\Roaming\newnext.me;fs
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}];r64
 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r64
 "NextLive"=-;r64
 C:\Users\(\AppData\Roaming\newnext.me;fs
 C:\Program Files (x86)\GUMCD9C.tmp;f
 C:\ProgramData\IDM;fs
 C:\DelFix.txt;f
 C:\Windows\zoek-delete.exe;f
 C:\Users\(\AppData\Roaming\net1-wipe;fs
 C:\zoek_backup;fs
 C:\Users\(\AppData\Roaming\IDM;fs
  emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan

  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
tomtom700 Meewerkend lid

tomtom700

Geplaatst:
  • Auteur
Geplaatst:

Zoek.exe v5.0.0.0 Updated 10-February-2014

Tool run by ( on di 11/02/2014 at 11:49:32.44.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\(\Downloads\Programs\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

11/02/2014 11:54:33 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully

C:\PROGRA~2\GUMCD9C.tmp deleted successfully

C:\ProgramData\firebird deleted successfully

C:\ProgramData\IDM deleted successfully

C:\Users\(\AppData\Local\cache deleted successfully

C:\Users\(\AppData\Local\FluxSoftware deleted successfully

C:\Users\(\AppData\Local\genienext deleted successfully

C:\Users\(\AppData\Local\HP MediaSmart Video deleted successfully

C:\Users\(\AppData\Local\Mobogenie deleted successfully

==== Creating Sample_20141102_1201.zip ======================

Process firefox.exe killed

Copied file C:\Users\(\vsoConvertXtoDVD5_setup.exe to sample\vsoConvertXtoDVD5_setup.exe

Copied file C:\Users\(\WebInstaller.exe to sample\WebInstaller.exe

sample\vsoConvertXtoDVD5_setup.exe renamed to 621CB3C241C42FCBC37C6498A9BBA244

sample\WebInstaller.exe renamed to 4EF3D067591AAD9E273C333517FB0DC5

C:\Users\Public\Desktop\sample_20141102_1201.zip created successfully

==== Deleting CLSID Registry Keys ======================

HKEY_CLASSES_ROOT\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"NextLive"=-

==== Deleting Files \ Folders ======================

C:\ProgramData\IDM not found

"C:\Program Files (x86)\GUMCD9C.tmp" not found

"C:\Windows\zoek-delete.exe" not found

C:\Users\(\AppData\Roaming\newnext.me deleted

C:\Users\(\AppData\Roaming\net1-wipe deleted

C:\zoek_backup deleted

C:\Users\(\daemonprocess.txt deleted

C:\Users\(\.android deleted

C:\PROGRA~2\ParetoLogic deleted

C:\PROGRA~2\COMMON~1\ParetoLogic deleted

C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted

C:\PROGRA~2\Wondershare deleted

C:\Users\(\AppData\Roaming\Uniblue deleted

C:\Users\(\AppData\Roaming\bdfvconp.ini deleted

C:\Users\(\AppData\Roaming\Alawar deleted

C:\Users\(\AppData\Roaming\Alawar Entertainment deleted

C:\Users\(\AppData\Roaming\AlawarEntertainment deleted

C:\Users\(\AppData\Roaming\ParetoLogic deleted

C:\Users\(\AppData\Roaming\DriverCure deleted

C:\Users\(\AppData\Roaming\YoudaGames deleted

C:\Users\(\AppData\Roaming\GetRightToGo deleted

C:\ProgramData\log.txt deleted

C:\ProgramData\hpeBDA7.dll deleted

C:\ProgramData\hpeF431.dll deleted

C:\ProgramData\ParetoLogic deleted

C:\ProgramData\Uniblue\DriverScanner deleted

C:\ProgramData\InstallMate deleted

C:\ProgramData\YTD Video Downloader deleted

C:\ProgramData\Package Cache deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted

C:\Users\(\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager deleted

C:\Users\(\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic deleted

C:\Users\(\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted

C:\Users\(\Downloads\SoftonicDownloader_voor_gimp.exe deleted

C:\Users\(\AppData\LocalLow\IncrediMail_MediaBar_Nederlands_2 deleted

C:\Users\(\AppData\LocalLow\smartdownloader deleted

C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\Application Updater deleted

C:\Windows\wininit.ini deleted

C:\Windows\tasks\ParetoLogic Registration3.job deleted

C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job deleted

C:\Windows\tasks\ParetoLogic Update Version3.job deleted

C:\windows\SysNative\tasks\Plus-HD-4.9-chromeinstaller deleted

C:\windows\SysNative\tasks\Plus-HD-4.9-codedownloader deleted

C:\windows\SysNative\tasks\Plus-HD-4.9-enabler deleted

C:\windows\SysNative\tasks\Plus-HD-4.9-firefoxinstaller deleted

C:\windows\SysNative\tasks\Plus-HD-4.9-updater deleted

C:\windows\SysNative\tasks\SK.Enabler-S-1495795506 deleted

C:\Windows\SysWow64\AI_RecycleBin deleted

C:\Users\(\Documents\Mobogenie deleted

C:\Users\Public\Documents\AlawarWrapper deleted

C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D} deleted

C:\Users\(\vsoConvertXtoDVD5_setup.exe deleted

C:\Users\(\WebInstaller.exe deleted

"C:\DelFix.txt" deleted

"C:\ProgramData\cm-lock" not deleted

"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" deleted

"C:\Program Files (x86)\Internet Download Manager\IDMNetMon64.dll" deleted

"C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll" deleted

"C:\PROGRA~2\Internet Download Manager\IDMan.exe" deleted

"C:\PROGRA~2\Internet Download Manager\IDMNetMon64.dll" deleted

"C:\PROGRA~2\Internet Download Manager\IDMShellExt64.dll" deleted

"C:\Program Files (x86)\Internet Download Manager" not deleted

"C:\Users\(\AppData\Roaming\IDM" deleted

"C:\PROGRA~2\Uniblue\DriverScanner" deleted

"C:\PROGRA~2\Internet Download Manager" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2014-01-23 15:28:08 7ED438C44B90AF7B01609A942C7E7196 212480 ----a-w- C:\Windows\PCDLIB32.DLL

====== C:\Users\(\AppData\Local\Temp ====

2014-02-11 10:45:37 B4FEC4E889C49693E5A1568E021C2E11 3080088 ----a-w- C:\Users\(\AppData\Local\Temp\Update.exe

====== Java Cache =====

====== C:\Windows\SysWOW64 =====

2014-02-08 05:23:20 8E0BB968FF41D80E5F2C747C04DB79AE 248672 ----a-w- C:\Windows\SysWOW64\d3dx11_43.dll

2014-02-08 05:23:19 20C835843FCEC4DEDFCD7BFFA3B91641 470880 ----a-w- C:\Windows\SysWOW64\d3dx10_43.dll

2014-02-08 05:23:18 86E39E9161C3D930D93822F1563C280D 1998168 ----a-w- C:\Windows\SysWOW64\D3DX9_43.dll

2014-02-08 05:22:34 7AEF57D74CD96F3C456199057DE636CA 982232 ----a-w- C:\Windows\SysWOW64\nvspcap.dll

2014-02-08 05:19:46 D18F9D53B844B5E6FE614FEE8FBF186F 852768 ----a-w- C:\Windows\SysWOW64\NvIFR.dll

2014-02-08 05:19:46 C1E3CC280E6CB4F3C1BA9F9EC50683E2 2747680 ----a-w- C:\Windows\SysWOW64\nvcuvenc.dll

2014-02-08 05:19:46 BDC32E3B7E5297EC0B4E0AEA2E2E55E0 9657464 ----a-w- C:\Windows\SysWOW64\nvopencl.dll

2014-02-08 05:19:46 ABA754CB11D3C3D7C9C3A75449D2A96D 2698272 ----a-w- C:\Windows\SysWOW64\nvapi.dll

2014-02-08 05:19:46 A403088619D575D43AA0C46AD56BB203 22960416 ----a-w- C:\Windows\SysWOW64\nvoglv32.dll

2014-02-08 05:19:46 9C1FBE3D3CBFCF88DCDFCB21D38307A3 2947872 ----a-w- C:\Windows\SysWOW64\nvcuvid.dll

2014-02-08 05:19:46 5F67586FFD23EBEF5C074296AA1E0F76 17560352 ----a-w- C:\Windows\SysWOW64\nvcompiler.dll

2014-02-08 05:19:46 5F0E3FBF97F9AABBC6B7227B77F7E958 15230352 ----a-w- C:\Windows\SysWOW64\nvd3dum.dll

2014-02-08 05:19:46 5B9DF8156153C839A0E6449294030519 847648 ----a-w- C:\Windows\SysWOW64\NvFBC.dll

2014-02-08 05:19:46 39BD6D4EF0FDBC92D0B1CD86A4D0BFF0 9700224 ----a-w- C:\Windows\SysWOW64\nvcuda.dll

2014-02-08 05:19:46 28AC0BD3E6712C07B663A48F2E5CE3AC 32544 ----a-w- C:\Windows\SysWOW64\nvaudcap32v.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2014-02-08 05:23:20 9D6429F410597750B2DC2579B2347303 276832 ----a-w- C:\Windows\Sysnative\d3dx11_43.dll

2014-02-08 05:23:19 AD7FA9485059F4DC53C98B49CAB13F0B 511328 ----a-w- C:\Windows\Sysnative\d3dx10_43.dll

2014-02-08 05:23:18 7160FC226391C0B50C85571FA1A546E5 2401112 ----a-w- C:\Windows\Sysnative\D3DX9_43.dll

2014-02-08 05:22:34 E2A16B931CD79259D568842FD1A8952E 1100248 ----a-w- C:\Windows\Sysnative\nvspcap64.dll

2014-02-08 05:19:46 F952F3E89CF6741A5547409B613C8015 35104 ----a-w- C:\Windows\Sysnative\nvaudcap64v.dll

2014-02-08 05:19:46 D22521804E3CB0DFB4FCB11A0E2A0CFF 879392 ----a-w- C:\Windows\Sysnative\NvFBC64.dll

2014-02-08 05:19:46 CD4EC143C035E069B40775197336DD1A 25257248 ----a-w- C:\Windows\Sysnative\nvcompiler.dll

2014-02-08 05:19:46 CBF3BF5CFA0AB6D77AB59272605F625B 1884448 ----a-w- C:\Windows\Sysnative\nvdispco6433221.dll

2014-02-08 05:19:46 C5E80F5C39CD1FC4221CB20AD6710EFF 18222008 ----a-w- C:\Windows\Sysnative\nvd3dumx.dll

2014-02-08 05:19:46 96E23AC6B6E6007CC2B42C9FE2BD4E69 3132704 ----a-w- C:\Windows\Sysnative\nvcuvid.dll

2014-02-08 05:19:46 8C0E8871D4E2FFAB20319FB4162FDA00 11554264 ----a-w- C:\Windows\Sysnative\nvopencl.dll

2014-02-08 05:19:46 55DFCF0031E7257E3DE83E219DC49E8B 882464 ----a-w- C:\Windows\Sysnative\NvIFR64.dll

2014-02-08 05:19:46 334ECC4245D7E8A648D338E325E11C57 3125024 ----a-w- C:\Windows\Sysnative\nvcuvenc.dll

2014-02-08 05:19:46 328D7B3C63E21B9B0D557484F99C177F 1511712 ----a-w- C:\Windows\Sysnative\nvdispgenco6433221.dll

2014-02-08 05:19:46 10A5FF3ACDBA9289381772C5535CB55C 11605752 ----a-w- C:\Windows\Sysnative\nvcuda.dll

2014-02-08 05:19:46 006A27B58271126AD1D58302666F1471 30372640 ----a-w- C:\Windows\Sysnative\nvoglv64.dll

2014-02-04 02:56:29 6FB598E8DE02D879D17B35F144A1B3BC 270496 ------w- C:\Windows\Sysnative\MpSigStub.exe

====== C:\Windows\Sysnative\drivers =====

2014-02-08 05:19:46 09216A70CC364D0974F606F6F2109210 39200 ----a-w- C:\Windows\Sysnative\drivers\nvvad64v.sys

2014-02-08 05:19:46 0218E1CE8F7B5D404980192B9112D03A 12645664 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys

2014-02-05 11:33:19 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_NuidFltr_01005.Wdf

2014-01-15 13:24:25 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys

2014-01-15 13:24:24 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys

2014-01-15 13:24:24 DD253AFC3BC6CBA412342DE60C3647F3 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys

2014-01-15 13:24:24 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys

2014-01-15 13:24:24 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys

2014-01-15 13:24:24 765A92D428A8DB88B960DA5A8D6089DC 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys

2014-01-15 13:24:24 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys

2014-01-15 13:24:23 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\Sysnative\drivers\netio.sys

====== C:\Windows\Tasks ======

2014-02-11 08:25:22 A330D6E0A2A372B53F724ABE38396C18 3312 ----a-w- C:\Windows\Sysnative\Tasks\RegCure Pro

2014-02-11 08:25:22 98D2AD8F0239627907BD125E3704632F 402 ----a-w- C:\Windows\Tasks\RegCure Pro.job

2014-01-21 21:40:54 32E96421B6CE70B990F88358BDC1AEA9 3256 ----a-w- C:\Windows\Sysnative\Tasks\{8ED61012-6B9F-43E9-BEBB-95EF403DF2A0}

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-01-20 20:42:37 -------- d-----w- C:\Program Files\trend micro

2014-01-19 20:07:50 -------- d-----w- C:\Program Files\GIMP 2

======= C:\PROGRA~2 =====

2014-02-08 15:11:07 -------- d-----w- C:\PROGRA~2\Uniblue

2014-02-08 12:11:50 -------- d-----w- C:\PROGRA~2\Multilizer

2014-02-08 12:11:50 -------- d-----w- C:\PROGRA~2\COMMON~1\Multilizer

2014-01-23 15:28:07 -------- d-----w- C:\PROGRA~2\ArcSoft

2014-01-21 21:50:08 -------- d-----w- C:\PROGRA~2\Internet Download Manager

2014-01-18 18:00:08 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service

======= C: =====

====== C:\Users\(\AppData\Roaming ======

2014-02-08 12:11:50 -------- d-----w- C:\Users\(\AppData\Roaming\multilizer

2014-02-08 05:24:36 -------- d-----w- C:\Users\(\AppData\Local\NVIDIA Corporation

2014-02-08 05:22:32 -------- d-----w- C:\Users\(\AppData\Local\NVIDIA

2014-01-24 07:03:05 -------- d-----w- C:\Users\(\AppData\Roaming\Big Eagle Software

2014-01-23 15:38:04 -------- d-----w- C:\Users\(\AppData\Roaming\ArcSoft

2014-01-19 20:55:52 2C4AE84E71077EB7C3CA5AD02776B5EE 3315 ----a-w- C:\Users\(\AppData\Local\recently-used.xbel

2014-01-19 20:16:02 -------- d-----w- C:\Users\(\AppData\Local\webkit

2014-01-19 20:13:07 -------- d-----w- C:\Users\(\AppData\Local\fontconfig

2014-01-19 20:13:05 -------- d-----w- C:\Users\(\AppData\Local\gegl-0.2

====== C:\Users\( ======

2014-02-11 10:45:45 !HASH: COULD NOT OPEN FILE !!!!! 0 ----a-w- C:\ProgramData\cm-lock

2014-02-08 15:11:21 -------- d-----w- C:\ProgramData\Uniblue

2014-02-08 12:11:50 -------- d-----w- C:\ProgramData\multilizer

2014-02-02 17:34:03 -------- d-----w- C:\Users\(\telenet

2014-02-02 17:34:03 -------- d-----w- C:\Users\(\Nieuwe map (2)

2014-01-23 15:28:07 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft PhotoStudio 5.5

2014-01-21 22:06:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager

2014-01-19 21:45:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wipe

2014-01-19 20:35:40 -------- d-----w- C:\Users\(\.thumbnails

2014-01-19 20:13:06 -------- d-----w- C:\Users\(\.gimp-2.8

2014-01-18 13:56:57 57292DB4265A5DBE9F37DC05AA0066F5 1083 ----a-w- C:\Users\(\Documenten - Snelkoppeling.lnk

====== C: exe-files ==

2014-02-08 11:33:30 5FFDA96330357A914A69D79BE1988A38 571816 ----a-w- C:\Program Files (x86)\Common Files\Steam\SteamServiceTmp.exe

2014-02-08 05:22:34 B942824E4901D50834EEB441BE98AB9A 1785120 ----a-w- C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe

2014-02-08 05:22:10 6AA2CC058B79B3C73ECB0C008F867DB0 636232 ----a-w- C:\Program Files\NVIDIA Corporation\NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe

2014-02-08 05:22:10 68DE8D996D8FF628AB6B3D422035F862 15129376 ----a-w- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

2014-02-08 05:22:10 1F899DC290F02F7F0482F610C2873D61 194888 ----a-w- C:\Program Files\NVIDIA Corporation\Update Core\WLMerger.exe

2014-02-08 05:22:10 0CD3924E6EA85D62E4883796275C21FB 3960096 ----a-w- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

2014-02-08 05:20:52 B7973C405247C5A44BA46B12A4B7AEEA 922912 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{B67E4560-A20C-4035-8CD3-A724780BDDB8}\nvvsvc.exe

2014-02-08 05:20:52 900B47792F30734A2805395EBEBB705E 1194784 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{B67E4560-A20C-4035-8CD3-A724780BDDB8}\nvxdsync.exe

2014-02-08 05:20:52 8E3B16C9BADBEAC35F92F4553E38B171 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{B67E4560-A20C-4035-8CD3-A724780BDDB8}\nvSmartMaxapp64.exe

2014-02-08 05:20:52 556A74975E52F0853FCE02C05F83F9FF 2448160 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{B67E4560-A20C-4035-8CD3-A724780BDDB8}\NvTray.exe

2014-02-08 05:20:52 3C7224A0D1F629EB9B2BC2A79D86CAAE 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{B67E4560-A20C-4035-8CD3-A724780BDDB8}\nvSmartMaxapp.exe

2014-02-08 05:20:52 1E00A0A539E7C30DD418E774428BA35B 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{B67E4560-A20C-4035-8CD3-A724780BDDB8}\setup.exe

2014-02-08 05:20:52 0FCBAB692485A4B867AC5EF896A2ED55 6866208 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{B67E4560-A20C-4035-8CD3-A724780BDDB8}\nvcplui.exe

2014-02-08 05:20:51 1E00A0A539E7C30DD418E774428BA35B 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{E72974BA-C3AB-4DB0-981E-533D3362B790}\setup.exe

2014-02-08 05:19:47 B942824E4901D50834EEB441BE98AB9A 1785120 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{CF2161CB-9DC9-4A87-9DF0-E4BF556CC815}\nvspcaps64.exe

2014-02-08 05:19:47 94397226B4D18C9E62DC943A9CF6A487 1475360 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{CF2161CB-9DC9-4A87-9DF0-E4BF556CC815}\nvspcaps.exe

2014-02-08 05:19:47 4A8B43D324521AEFCA813434B8AED3C2 127264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.LEDVisualizer.{C56E8BEB-EEA2-4D72-9852-81DD18CE92EA}\NvLedVisualizer.exe

2014-02-08 05:19:47 336DF94267FC40D147FC3AC8798DFA73 87328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.LEDVisualizer.{C56E8BEB-EEA2-4D72-9852-81DD18CE92EA}\NvLedServiceHost.exe

2014-02-08 05:19:47 041DADF180B8175D06CBB6C442F4D960 540448 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{CF2161CB-9DC9-4A87-9DF0-E4BF556CC815}\DXSETUP.exe

2014-02-08 05:19:46 AA24F8E20A16B9D9DFFC44A8158A2D6A 250144 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{71771CD8-3A1C-4732-9D74-8C8DB2D06EF0}\dbInstaller.exe

2014-02-08 05:19:46 AA24F8E20A16B9D9DFFC44A8158A2D6A 250144 ----a-w- C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe

2014-02-08 05:19:46 A0012C1D9B8648C20C00202418B9D02F 2279712 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Update.Core.{4542FA45-3068-4E03-B259-A00BBA5F31A2}\NvBackend.exe

2014-02-08 05:19:46 903A40C958D471F9D30D29FA6D2800A4 1494304 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Network.Service.{0EEF0D45-2C16-40E5-99DA-036F6A0D26F4}\NVNetworkService.exe

2014-02-08 05:19:46 82397849C695A1D86DE86AEE488BC9DA 23639304 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.3DVision.{C295EBFA-38DD-4508-B61B-0EFB25ADB2E6}\3DVision_332.21.exe

2014-02-08 05:19:46 6AA2CC058B79B3C73ECB0C008F867DB0 636232 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{A067914D-188A-4DAE-ABFB-10FB9EB6D7A9}\SteamLauncher\NVIDIA.SteamLauncher.exe

2014-02-08 05:19:46 68DE8D996D8FF628AB6B3D422035F862 15129376 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{A067914D-188A-4DAE-ABFB-10FB9EB6D7A9}\amd64\server\nvstreamsvc.exe

2014-02-08 05:19:46 62FE81A76C39AE1E37B9B1369B0B22CB 1015584 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{EE449423-5494-4B76-9FA5-419A0AAE7844}\GFExperience.exe

2014-02-08 05:19:46 3C447C228DEAC197E5D245474C404DB3 3063072 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{A067914D-188A-4DAE-ABFB-10FB9EB6D7A9}\x86\server\nvstreamer.exe

2014-02-08 05:19:46 1F899DC290F02F7F0482F610C2873D61 194888 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Update.Core.{4542FA45-3068-4E03-B259-A00BBA5F31A2}\WLMerger.exe

2014-02-08 05:19:46 1ED211177754B06F6A1B923B52516FA6 74267360 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{71771CD8-3A1C-4732-9D74-8C8DB2D06EF0}\NvCplSetupInt.exe

2014-02-08 05:19:46 0F4FE8097C56739DA9A8BD71DF868981 14658848 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{A067914D-188A-4DAE-ABFB-10FB9EB6D7A9}\x86\server\nvstreamsvc.exe

2014-02-08 05:19:46 0CD3924E6EA85D62E4883796275C21FB 3960096 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{A067914D-188A-4DAE-ABFB-10FB9EB6D7A9}\amd64\server\nvstreamer.exe

2014-02-08 05:19:46 031A21DE7D208C6A2BAF75BE1B51426C 596768 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{EE449423-5494-4B76-9FA5-419A0AAE7844}\7z.exe

2014-02-08 05:19:18 7495C8A57D0494D4371CD06A496B54CD 412960 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{204B805E-E841-44CD-8090-F2D74422DCCF}\setup.exe

=== C: other files ==

2014-02-08 05:19:46 DAC9726D9C90631D6A1C0ECAA0226021 34080 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{95F6170A-5841-468E-B3A3-E46745C434C8}\nvvad32v.sys

2014-02-08 05:19:46 C7C75E4D199802EFCE0BEC2F6F823E31 451872 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.NVIRUSB.{D82F9705-9252-4575-9404-A864EC22AD42}\nvstusb64.sys

2014-02-08 05:19:46 09216A70CC364D0974F606F6F2109210 39200 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{95F6170A-5841-468E-B3A3-E46745C434C8}\nvvad64v.sys

2014-02-08 05:19:46 0819597CF50E316819493C7A832EDAEC 435232 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.NVIRUSB.{D82F9705-9252-4575-9404-A864EC22AD42}\nvstusb32.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard"

"Bitdefender Agent Wallet-toepassing"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2780795746-2943123703-1752905818-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"Google Update"="C:\Users\(\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard"

"Bitdefender Agent Wallet-toepassing"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard"

"Bitdefender Agent Wallet-toepassing"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

"PMBVolumeWatcher"="C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Google Update"="C:\Users\(\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"

"Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"

"Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard"

"Bitdefender Agent Wallet-toepassing"="C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Bdagent"="C:\Program Files\Bitdefender\Bitdefender\bdagent.exe"

"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Adobe ARM"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Adobe Reader Speed Launcher"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="APSDaemon"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BDRegion]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="BDRegion"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Cyberlink\\Shared files\\brs.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\beid]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="beid"

"hkey"="HKCU"

"command"="C:\\Program Files (x86)\\Belgium Identity Card\\beid35gui.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ContactKeeper Birthday reminder]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="ContactKeeper Birthday reminder"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\ContactKeeper\\ContactKeeper.exe\" /Reminder"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="DAEMON Tools Lite"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Easybits Recovery]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Easybits Recovery"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\EasyBits For Kids\\ezRecover.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Eraser]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Eraser"

"hkey"="HKLM"

"command"="\"C:\\PROGRA~1\\Eraser\\Eraser.exe\" --atRestart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Facebook Update]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Facebook Update"

"hkey"="HKCU"

"command"="\"C:\\Users\\(\\AppData\\Local\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Flashget]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Flashget"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\FlashGet\\FlashGet.exe /min"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Google Update"

"hkey"="HKCU"

"command"="\"C:\\Users\\(\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GrooveMonitor]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="GrooveMonitor"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office12\\GrooveMonitor.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HPAdvisorDock]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="HPAdvisorDock"

"hkey"="HKCU"

"command"="C:\\Program Files (x86)\\Hewlett-Packard\\HP Advisor\\Dock\\HPAdvisorDock.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\hpqSRMon]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="hpqSRMon"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\HP\\Digital Imaging\\bin\\hpqSRMon.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\hpsysdrv]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="hpsysdrv"

"hkey"="HKLM"

"command"="c:\\program files (x86)\\hewlett-packard\\HP odometer\\hpsysdrv.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="iTunesHelper"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Jing]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Jing"

"hkey"="HKCU"

"command"="C:\\Program Files (x86)\\TechSmith\\Jing\\Jing.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LaunchHPOSIAPP]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="LaunchHPOSIAPP"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Hewlett-Packard\\HP MAINSTREAM KEYBOARD\\LaunchApp.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Monitor]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Monitor"

"hkey"="HKLM"

"command"="C:\\Windows\\PixArt\\PAC207\\Monitor.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSN Toolbar]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="MSN Toolbar"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\MSN Toolbar\\Platform\\4.0.0369.0\\mswinext.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NBAgent]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="NBAgent"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Nero\\Nero 10\\Nero BackItUp\\NBAgent.exe\" /WinStart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NortonOnlineBackupReminder]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="NortonOnlineBackupReminder"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Symantec\\Norton Online Backup\\Activation\\NOBuActivation.exe\" UNATTENDED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PMBVolumeWatcher]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="PMBVolumeWatcher"

"hkey"="HKLM"

"command"="C:\\Program Files (x86)\\Sony\\PlayMemories Home\\PMBVolumeWatcher.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="QuickTime Task"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Realtime Audio Engine]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Realtime Audio Engine"

"hkey"="HKLM"

"command"="\"mmrtkrnl.exe\" /i"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RemoteControl10]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="RemoteControl10"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\CyberLink\\PowerDVD10\\PDVD10Serv.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sidebar]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Sidebar"

"hkey"="HKCU"

"command"="C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sony Ericsson PC Suite]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Sony Ericsson PC Suite"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\Sony Ericsson\\Sony Ericsson PC Suite\\sepcsuite.exe\" /systray /nologon"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Spotify"

"hkey"="HKCU"

"command"="\"C:\\Users\\(\\AppData\\Roaming\\Spotify\\spotify.exe\" /uri spotify:autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Spotify Web Helper"

"hkey"="HKCU"

"command"="\"C:\\Users\\(\\AppData\\Roaming\\Spotify\\Data\\SpotifyWebHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Steam]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Steam"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\Steam\\Steam.exe\" -silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\swg]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="swg"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TomTomHOME.exe]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="TomTomHOME.exe"

"hkey"="HKCU"

"command"="\"C:\\Program Files (x86)\\TomTom HOME 2\\TomTomHOMERunner.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TrayServer]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="TrayServer"

"hkey"="HKLM"

"command"="C:\\PROGRA~2\\MAGIX\\VIDEO_~2\\TrayServer.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\VDownloader]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="VDownloader"

"hkey"="HKLM"

"command"="C:\\Program Files\\VDownloader\\VDownloader.exe /silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Wireless Mouse]

"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="Wireless Mouse"

"hkey"="HKLM"

"command"="\"C:\\Program Files (x86)\\Multifunctional Wireless Mouse Driver\\StartMonitor.exe\" KMProcess.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]

"item"="HP Digital Imaging Monitor"

"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\HP Digital Imaging Monitor.lnk"

"backup"="C:\\Windows\\pss\\HP Digital Imaging Monitor.lnk.CommonStartup"

"backupExtension"=".CommonStartup"

"command"="C:\\PROGRA~2\\Hp\\DIGITA~1\\bin\\hpqtra08.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^(^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Schermopname en Snel starten.lnk]

"item"="OneNote 2007 Schermopname en Snel starten"

"path"="C:\\Users\\(\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OneNote 2007 Schermopname en Snel starten.lnk"

"backup"="C:\\Windows\\pss\\OneNote 2007 Schermopname en Snel starten.lnk.Startup"

"backupExtension"=".Startup"

"command"="C:\\PROGRA~2\\MICROS~4\\Office12\\ONENOTEM.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^(^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^simplicheck.lnk]

"item"="simplicheck"

"path"="C:\\Users\\(\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\simplicheck.lnk"

"backup"="C:\\Windows\\pss\\simplicheck.lnk.Startup"

"backupExtension"=".Startup"

"command"="C:\\PROGRA~2\\SIMPLI~1\\SIMPLI~1\\SIMPLI~1.EXE"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [05/02/2014 05:15]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001Core.job --a------ C:\Users\\AppData\LoC:al\FaC:ebook\Update\FaC:ebookUpdate.exe []

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001UA.job --a------ C:\Users\\AppData\LoC:al\FaC:ebook\Update\FaC:ebookUpdate.exe []

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10/10/2010 09:27]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:6C:\ProgramC:FilesC:x86\Google\Update\GoogleUpdate.exe []

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001Core.job --a------ C:\Users\\AppData\Local\Google\Update\GoogleUpdate.exe []

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001UA.job --a------ C:\Users\\AppData\Local\Google\Update\GoogleUpdate.exe []

C:\Windows\tasks\HP Photo Creations Communicator.job --a------ C:\ProgramData\HP Photo Creations\Communicator.exe [30/03/2013 00:49]

C:\Windows\tasks\HPCeeScheduleFor(.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [05/01/2010 11:53]

C:\Windows\tasks\PCDRScheduledMaintenance.job --a------ C:\Program Files\PC-Doctor for Windows\pcdrcui.exe []

C:\Windows\tasks\RegCure Pro.job --a------ C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\( NBAgent 5 4" ["C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe"]

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files (x86)\CCleaner\CCleaner.exe"]

"C:\Windows\SysNative\tasks\CLMLSvc" [c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe]

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\SysNative\tasks\DVDAgent" [c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe]

"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001Core" [C:\Users\(\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001UA" [C:\Users\(\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001Core" [C:\Users\(\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2780795746-2943123703-1752905818-1001UA" [C:\Users\(\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\HP Photo Creations Communicator" [C:\ProgramData\HP Photo Creations\Communicator.exe]

"C:\Windows\SysNative\tasks\HPCeeScheduleFor(" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]

"C:\Windows\SysNative\tasks\HPOSIAPP64" ["%ProgramFiles(x86)%\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe"]

"C:\Windows\SysNative\tasks\PCDRScheduledMaintenance" [C:\Program Files\PC-Doctor for Windows\pcdrcui.exe]

"C:\Windows\SysNative\tasks\RecoveryCDWin7" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]

"C:\Windows\SysNative\tasks\RegCure Pro" [C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe]

"C:\Windows\SysNative\tasks\Registration" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]

"C:\Windows\SysNative\tasks\ServicePlan" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]

"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]

"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"ffpwdman@bitdefender.com"="C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman" [04/09/2013 16:59]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"mozilla_cc@internetdownloadmanager.com"="C:\Users\(\AppData\Roaming\IDM\idmmzcc5" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\(\AppData\Roaming\Mozilla\Firefox\Profiles\18mq6zal.default-1370327011862

- Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman

- Belgium eID - %ProfilePath%\extensions\belgiumeid@eid.belgium.be.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\(\AppData\Roaming\Mozilla\Firefox\Profiles\18mq6zal.default-1370327011862

FD6ACD9D85177259D442A0C4AC15F7B8 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll - Shockwave Flash

66640A55AEFF3819C94E0A8D40D7E0AD - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll - Shockwave for Director / Shockwave for Director

9CB55B7CF03EE55E2E77AD5A8827148F - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll - RocketLife Secure Plug-In Layer

CE3D390F8BC1FECF847ABAA6E887931E - C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll - Zylom Plugin

BAD62EC082FBC9BF6D54FAB91E53A35A - C:\Program Files\Bitdefender\Bitdefender\Antispam32\npcomm.dll - BitDefender 16

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

ccahoghmggldkcdjiebjkidpfongdfbl - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx[10/12/2013 13:20]

Google Docs - (\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - (\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - (\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Bitdefender Wallet - (\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl

Google Search - (\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Wallet - (\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - (\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Search Bar"="http://www.google.com"

"Use Search Asst"="yes"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]

"Default"="http://www.google.com"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]

"Default"="http://www.google.com"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]

@="http://www.google.com/search?q=%s"

"Default"="http://www.google.com"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"SearchAssistant"="http://www.google.com"

"Default_Search_URL"="http://www.google.com"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

No DefaultScope Set For HKCU

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Use Search Asst"="no"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="http://search.msn.com/results.asp?q=%s"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="http://search.msn.com/results.asp?q=%s"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="http://search.msn.com/results.asp?q=%s"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"

"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2780795746-2943123703-1752905818-1001\Software\Mozilla\Firefox\Extensions\mozilla_cc@internetdownloadmanager.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D6103714-6135-6B92-0A4C-DAA1E67D437E} deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{10AA51CC-87A5-0D35-CB35-1B1242195F5A} deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BB466E25-4F15-FCE7-BFA4-C31A8AF9605F} deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Internet Download Manager deleted successfully

HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\80AE7C8487104A547B9D31A76E11464E deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\beid deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Jing deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSN Toolbar deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NortonOnlineBackupReminder deleted successfully

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\(\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\(\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\(\AppData\Local\Mozilla\Firefox\Profiles\18mq6zal.default-1370327011862\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\(\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\(\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\(\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\ProgramData\cm-lock" not deleted

"C:\Program Files (x86)\Internet Download Manager" not found

"C:\PROGRA~2\Internet Download Manager" not found

==== EOF on di 11/02/2014 at 12:15:08.38 ======================

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:
na het herstarten van hetlogje kreeeg ik de melding niet meer, maar nog een vraagje. zou ik ad-ware scanner er nie berter afgooien want die gaat me steeds melden dat die nengine een bedreiging is
Neen ... die melding zal volledig verdwenen zijn, omdat we de besmetting van je computer hebben verwijderd. Geen scanner is dan geen oplossing, je moet de oorzaak wegnemen.

Doe nog even dit:

Download 52147fb3b2536-AdwCleaner_99_3_16x16x32.pngAdwCleaner by Xplode naar het bureaublad.

AdwCleaner uitvoeren

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik vervolgens op de knop Scan.
  • Wanneer de scan gereed is Klikt u vervolgens op de knop Clean.
  • Als dit gereed is wordt er gevraagd om de computer opnieuw op te starten, klik hier op OK.
  • Nadat de computer opnieuw is opgestart wordt het logbestand automatisch geopend.
  • Plaats dit logbestand in het volgende bericht.

Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.