nelski

HIERBIJ HET LOGBESTANDJE AdwCleanerR1.txt AdwCleanerR1.txt

Iemand.....die mij wil helpen?? zoek-results.txt

Oei , zie 3 logjes heb ze alle drie maar geplaatst. Kape alvast hartelijk dank voor je hulp, ik ben er blij mee. log1.txt

Ook wil ik graag weten hoe ? ik advanced systeem care kan verwijderen van mn pc.

Beste Lezer, Sinds kort doet mijn pc raar,ik vermoed een virus maar Eset pikt deze er niet uit. ook heb ik CCleaner gebruikt en alles verwijderd. Helaas helpt dit ook niet. Heb een logje bijgesloten. Wie kan en wil mij helpen aljeblieft. Groet Nelleke infolog.txt

Super bedankt voor het oplossen ! Groet Nelski

Het lijkt erop dat het virus nu verwijderd is..ik kijk het nog even aan. Verder...........Iedereen hartelijk dank voor de hulp ik ben er zeer blij mee Mvg Nelski

Super bedankt voor alle moeite ! AdwCleanerS0.txt

Java is nu bijgewerkt ! Super bedankt voor al je hulp!zoek-results2.txt

zoek-results.txt

Alvast hartelijk bedankt voor je hulp log.txt

toevoeging....via configuratie /programmas lukt het niet.

Beste lezers, Ik heb een virus op de pc.. webssearches en yourfile downloader. Wie kan me helpen deze te verwijderen. Alvast bedankt en groet Nelski

Via Itunes streamen is ook de bedoeling. Maar het streamen lukt dus niet - - - Updated - - - Hoe kom ik achter het IP adres airplayer extreme als ik deze niet op de pc kan terugzien

Beste allemaal, Ik heb een probleem met mn nieuwe Apple TV. De Pc herkent de Airplayer Extreem niet , volgens mij zit daar het probleem. Ik heb een window PC alles staat op delen. Wie kan mij helpen? Groet en alvast bedankt Nelski

Hoi Falstring, Ja het gaat om filmpjes op internet De internet verbinding is prima Er zitten geen andere op mn aansluiting Pc heeft downloads lopen....maar als ik deze uitzet laden de filmpjes nog steeds niet goed in buffer Help het is zo irritant Dank je voor je reactie Grtz Nelleke

Hallo allemaal, Wie kan me helpen , filmpjes laden niet goed, deze blijven hangen en na een seconde of 30 gaan ze verder om vervolgens weer te stoppen. Het gebeurt zowel bij programma gemist of de telegraaf . Dank voor jullie hulpxD Grtz Nelleke

Hartelijk bedankt voor alle hulp, ik ben er zeer blij mee!

Hartelijk bedankt voor het oplossen ! Ben er zeer blij mee. Gr. Nelski

Zoek.exe v5.0.0.0 Updated 16-December-2013 Tool run by Nelleke on ma 16-12-2013 at 9:25:09,21. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Nelleke\Desktop\zoek.scr [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2013-12-15-185020.log 79548 bytes C:\zoek-results2013-12-15-191506.log 43099 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} deleted C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F} deleted C:\Users\Nelleke\AppData\LocalLow\ADSRemoval deleted "C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack.xpi" deleted ==== Firefox Extensions ====================== ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\b6hp15ti.default - Undetermined - %ProfilePath%\extensions\compatibility@addons.mozilla.org ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005 - Undetermined - C:\Program Files (x86)\IObit Apps Toolbar\FF - United States English Spellchecker - %ProfilePath%\extensions\en-US@dictionaries.addons.mozilla.org - YouTube Video and Audio Downloader - %ProfilePath%\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi - Kalp Tuu - %ProfilePath%\extensions\ffextension@weheartit.com.xpi ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\mwdbv0eh.default - WOT - %ProfilePath%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} AppDir: C:\Program Files (x86)\Mozilla Firefox - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005 F891089A6AB9E12FEDEBCC5EC0F40D66 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll - Shockwave Flash 0B31B0F8FA99CFD009C8FBEA9E20C9DE - C:\Users\Nelleke\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page Restore"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page Restore"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {D1221A34-81CE-4B3D-81E4-7AED338CCC73} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\erik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Nelleke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\erik\AppData\Local\Mozilla\Firefox\Profiles\is1p0ty0.default\Cache emptied successfully C:\Users\Nelleke\AppData\Local\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Cache emptied successfully C:\Users\Nelleke\AppData\Local\Mozilla\Firefox\Profiles\mwdbv0eh.default\Cache emptied successfully ==== Empty Chrome Cache ====================== No Chrome Cache found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\erik\AppData\Local\Temp emptied successfully C:\Users\Public\AppData\Local\Temp emptied successfully C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Users\Nelleke\AppData\Local\Temp will be emptied at reboot C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Nelleke\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 16-12-2013 at 10:05:36,98 ======================

Zoek.exe Version 4.0.0.5 Updated 14-December-2013 Tool run by Nelleke on zo 15-12-2013 at 19:53:45,98. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Nelleke\Desktop\zoek.exe [script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2013-12-15-185020.log 79548 bytes ==== Empty Folders Check ====================== C:\PROGRA~2\AVS4YOU deleted successfully C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\Samsung deleted successfully C:\PROGRA~2\COMMON~1\Nero deleted successfully C:\ProgramData\Oracle deleted successfully C:\Users\Nelleke\AppData\Roaming\TP deleted successfully C:\Users\erik\AppData\Local\PDFC deleted successfully C:\Users\erik\AppData\Local\VirtualStore deleted successfully C:\Users\Nelleke\AppData\Local\Downloaded Installations deleted successfully C:\Users\Nelleke\AppData\Local\HP MediaSmart Video deleted successfully C:\Users\Nelleke\AppData\Local\PDFC deleted successfully C:\Users\Nelleke\AppData\Local\Zylom Games deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2849121425-4159316806-1266491598-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{95324e44-4b0a-47a9-8f77-9c6415e51c29} deleted successfully ==== Deleting Services ====================== ==== FireFox Fix ====================== Deleted from C:\Users\erik\AppData\Roaming\Mozilla\Firefox\Profiles\is1p0ty0.default\prefs.js: Added to C:\Users\erik\AppData\Roaming\Mozilla\Firefox\Profiles\is1p0ty0.default\prefs.js: user_pref("browser.startup.homepage", "http://www.google.com"); user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.newtab.url", "http://www.google.com/"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); Deleted from C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\b6hp15ti.default\prefs.js: user_pref("browser.search.defaultenginename", "Yahoo"); user_pref("browser.search.selectedEngine", "Yahoo"); user_pref("keyword.URL", "http://nl.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p="); Added to C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\b6hp15ti.default\prefs.js: user_pref("browser.startup.homepage", "http://www.google.com"); user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.newtab.url", "http://www.google.com/"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); Deleted from C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\prefs.js: user_pref("browser.startup.homepage", "http://www.allemaal-series.org/browse.php"); Added to C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\prefs.js: user_pref("browser.startup.homepage", "http://www.google.com"); user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.newtab.url", "http://www.google.com/"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); Deleted from C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\mwdbv0eh.default\prefs.js: user_pref("browser.startup.homepage", "about:home"); user_pref("browser.search.defaultenginename", "Yahoo"); user_pref("browser.search.selectedEngine", "Yahoo"); user_pref("keyword.URL", "http://nl.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p="); user_pref("browser.search.useDBForOrder", true); Added to C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\mwdbv0eh.default\prefs.js: user_pref("browser.startup.homepage", "http://www.google.com"); user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.newtab.url", "http://www.google.com/"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] ==== Deleting Files \ Folders ====================== C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack not found C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack not found C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\ffextension@weheartit.com deleted "C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo.xml" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Nelleke\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2013-12-13 19:10:56 E36E73F2326B20FFE745A3C20CD15D5B 1242400 ----a-w- C:\Windows\SysWOW64\nvumdshim.dll 2013-12-13 19:10:56 0EF0066D8CA7D594134D77100CBCBFA1 9619872 ----a-w- C:\Windows\SysWOW64\nvopencl.dll 2013-12-13 19:10:55 CD986F08852AF10909FD2F4D431300DF 266984 ----a-w- C:\Windows\SysWOW64\nvoglshim32.dll 2013-12-13 19:10:55 B3BFE514794A2A2E9DDB75827126B4EA 22951200 ----a-w- C:\Windows\SysWOW64\nvoglv32.dll 2013-12-13 19:10:54 7E8430B3220987031C025F7EE0DFE83A 141336 ----a-w- C:\Windows\SysWOW64\nvinit.dll 2013-12-13 19:10:54 769FD2BE69A664374F8ED621C9639D6F 562464 ----a-w- C:\Windows\SysWOW64\NvIFR.dll 2013-12-13 19:10:53 426D5FE9DA98EDBD018FBF06BD24B040 609568 ----a-w- C:\Windows\SysWOW64\NvFBC.dll 2013-12-13 19:10:48 EF4D3CEBCB9B10C1926628FFD768A2A2 2947872 ----a-w- C:\Windows\SysWOW64\nvcuvid.dll 2013-12-13 19:10:48 CB11E4C8547869C61427D3F5738EBF70 2747680 ----a-w- C:\Windows\SysWOW64\nvcuvenc.dll 2013-12-13 19:10:48 AD44C98F47A66CA79C10E43289D5559F 9691888 ----a-w- C:\Windows\SysWOW64\nvcuda.dll 2013-12-13 19:10:42 310C66540534F7C56221FC05B48C3BC3 17560352 ----a-w- C:\Windows\SysWOW64\nvcompiler.dll 2013-12-13 19:10:40 D98D3EC7D6A66D865CF47085BDB4B874 2697248 ----a-w- C:\Windows\SysWOW64\nvapi.dll 2013-12-11 21:19:36 3E62CF18441A03A440B280182E4B6935 129872 ----a-w- C:\Windows\SysWOW64\MSSTDFMT.DLL 2013-12-11 02:02:12 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\SysWOW64\wmp.dll 2013-12-11 02:02:12 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\SysWOW64\wmploc.DLL 2013-12-11 02:01:16 C74500A1BCB4113A7310295DD3FA4440 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2013-12-11 02:01:14 3D43EAC957F2F797BE82CF6B04A933F8 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2013-12-11 02:01:14 355BF103E2CF862B00EEB3731E25E802 440832 ----a-w- C:\Windows\SysWOW64\ieui.dll 2013-12-11 02:01:13 35DE59C975A0C97E8DBBE095BCC3644E 553472 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2013-12-11 02:01:12 08881C59F795C356DE12067E44FFD260 703488 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2013-12-11 02:01:11 B2E1F7B212502BB49AAD4EFAD37C5CF5 2166784 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2013-12-11 02:01:11 927FA6456AD6D7630F6854828D2FD16B 1820160 ----a-w- C:\Windows\SysWOW64\wininet.dll 2013-12-11 02:01:11 0763C5D8660436D4D961F72609E33BBE 1157632 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2013-12-11 02:01:10 84EAF0A08C7742697816E148C066D757 1928192 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2013-12-11 02:01:09 4B638CE3DAA3A082E576C0DDF9D635D4 11221504 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2013-12-11 02:01:07 BFAFE990C4A191E83843362B5AC64A9B 17112576 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2013-12-11 02:01:07 A60A222D3126DD9E380F9D8B651BC13D 4243968 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2013-12-11 01:07:39 4EC2C3B15B9EC41AD0D6CD918D20376E 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll 2013-12-11 01:02:33 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\SysWOW64\msieftp.dll 2013-12-11 01:02:11 E9504E484076585F6DA3C59F0E20E122 417792 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll 2013-12-11 01:01:53 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\SysWOW64\imagehlp.dll 2013-12-11 00:58:42 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\SysWOW64\scrrun.dll 2013-12-11 00:58:42 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\SysWOW64\cscript.exe 2013-12-11 00:58:42 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\SysWOW64\wscript.exe 2013-12-11 00:58:42 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\SysWOW64\wshom.ocx ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-12-13 19:16:06 F57504806727758EED2632EB5CAED16A 74456 ----a-w- C:\Windows\Sysnative\RtNicProp64.dll 2013-12-13 19:14:21 A88BE9A6C4E646A2B2A1BD3A7F4B58E7 198896 ----a-w- C:\Windows\Sysnative\SRSHP64.dll 2013-12-13 19:14:21 A028717B791416182959B325D5B40679 211184 ----a-w- C:\Windows\Sysnative\SRSTSH64.dll 2013-12-13 19:14:20 CA1D7D09854D305A64B100DC1400BA21 331880 ----a-w- C:\Windows\Sysnative\RtlCPAPI64.dll 2013-12-13 19:14:20 3F8A63EDF6E0E6827D5494CD8720F7CC 1662024 ----a-w- C:\Windows\Sysnative\RTSnMg64.cpl 2013-12-13 19:14:20 0E2C5B7C842024F50B1795A980C4D0FF 2810072 ----a-w- C:\Windows\Sysnative\RtPgEx64.dll 2013-12-13 19:14:19 ECAEC5FBBBEF8612AF0A866AFA5F7EF2 101208 ----a-w- C:\Windows\Sysnative\RTEEL64A.dll 2013-12-13 19:14:19 D0D0D82B7366E691275E433CD34F89B2 375128 ----a-w- C:\Windows\Sysnative\RTEEP64A.dll 2013-12-13 19:14:19 C08DE9FE49B8DE126EE7A42C7C80450E 1021656 ----a-w- C:\Windows\Sysnative\RtkApi64.dll 2013-12-13 19:14:19 A6286A6C7A1BBFCBA17AA54384A21D1C 204120 ----a-w- C:\Windows\Sysnative\RTEED64A.dll 2013-12-13 19:14:19 8814A281406553A2640D6A04702C63BD 14952 ----a-w- C:\Windows\Sysnative\RtkCoLDR64.dll 2013-12-13 19:14:19 6F4CD493196100EEF349D7132CECAFD9 78680 ----a-w- C:\Windows\Sysnative\RTEEG64A.dll 2013-12-13 19:14:19 6090C634C996CBA3DEB6A4A18ED91345 2588888 ----a-w- C:\Windows\Sysnative\RtkAPO64.dll 2013-12-13 19:14:19 2A7224C314131592497D02A57D867218 618200 ----a-w- C:\Windows\Sysnative\RtDataProc64.dll 2013-12-13 19:14:19 0805289E121F3E3C458C970B08314EB2 149608 ----a-w- C:\Windows\Sysnative\RtkCfg64.dll 2013-12-13 19:14:18 E9D4A333DF15D06C68AC4BFB9B6581CB 310104 ----a-w- C:\Windows\Sysnative\RP3DAA64.dll 2013-12-13 19:14:18 B6FE01558CC03F3866C9AD0ED19261D8 310104 ----a-w- C:\Windows\Sysnative\RP3DHT64.dll 2013-12-13 19:14:18 9979375E79B7237DEC691A379BE3E7A7 154840 ----a-w- C:\Windows\Sysnative\RCoInstII64.dll 2013-12-13 19:14:18 60F991E160AF0E8CC5CDE1FA231D86F2 41974272 ----a-w- C:\Windows\Sysnative\RCoRes64.dat 2013-12-13 19:14:18 22CAB76AF907B82664FEDE6A653ABA2A 1286872 ----a-w- C:\Windows\Sysnative\RTCOM64.dll 2013-12-13 19:14:13 922CDA544EB5C5A57795B38ED5871B69 2743328 ----a-w- C:\Windows\Sysnative\FMAPO64.dll 2013-12-13 19:14:12 6E14F444A2506049EEC25CB5EDFE0905 113576 ----a-w- C:\Windows\Sysnative\CONEQMSAPOGUILibrary.dll 2013-12-13 19:14:11 B3E9EA31E37EDCC1D54CE20504549ABE 108640 ----a-w- C:\Windows\Sysnative\AERTAR64.dll 2013-12-13 19:14:11 2CBDC11690656A1A2D03EC65AE2BCE68 209096 ----a-w- C:\Windows\Sysnative\AERTAC64.dll 2013-12-13 19:13:17 F82F0CE80ACFA3557F5D2D5C954A00E6 31520 ----a-w- C:\Windows\Sysnative\nvhdap64.dll 2013-12-13 19:13:17 89C4FBECDD31F1689DFE5E42469F625D 1510176 ----a-w- C:\Windows\Sysnative\nvhdagenco64.dll 2013-12-13 19:10:56 BE4ECAFC366DDFCBBAE413D977A1A297 30361888 ----a-w- C:\Windows\Sysnative\nvoglv64.dll 2013-12-13 19:10:56 883D68F098D39E83308A58EE31448FFE 18293608 ----a-w- C:\Windows\Sysnative\nvwgf2umx.dll 2013-12-13 19:10:56 588C98756B76B61E4839328E0DC92717 11514624 ----a-w- C:\Windows\Sysnative\nvopencl.dll 2013-12-13 19:10:55 8459D332F3F816E7C61A8985BDE82E41 317472 ----a-w- C:\Windows\Sysnative\nvoglshim64.dll 2013-12-13 19:10:54 BF742DAD722646BB18F96F1F9B3B56D2 168616 ----a-w- C:\Windows\Sysnative\nvinitx.dll 2013-12-13 19:10:54 61A6605C74C789A6359C2C3474A1E7C7 657184 ----a-w- C:\Windows\Sysnative\NvIFR64.dll 2013-12-13 19:10:53 61593AE781A1DDB1EF0ED688F8BC3E97 707360 ----a-w- C:\Windows\Sysnative\NvFBC64.dll 2013-12-13 19:10:52 EFF5A2BA8306B52BB5D93E2A7F17B1AD 1511712 ----a-w- C:\Windows\Sysnative\nvdispgenco6433182.dll 2013-12-13 19:10:52 595830EF0174FC9ABF3BA2823F26ED3D 1884448 ----a-w- C:\Windows\Sysnative\nvdispco6433182.dll 2013-12-13 19:10:48 E20089273809A4C0941A6F32141002B8 3125024 ----a-w- C:\Windows\Sysnative\nvcuvenc.dll 2013-12-13 19:10:48 DB45E530F6844C7791AE4696BDE4ED25 18208624 ----a-w- C:\Windows\Sysnative\nvd3dumx.dll 2013-12-13 19:10:48 2A5C842EF353FFF4A9DFCBED5545E5BC 3132704 ----a-w- C:\Windows\Sysnative\nvcuvid.dll 2013-12-13 19:10:47 102D9A72B71844204CCC219021A352EA 11600432 ----a-w- C:\Windows\Sysnative\nvcuda.dll 2013-12-13 19:10:41 48AA8A36ECFE02A83A0A5A590621E3E4 25257248 ----a-w- C:\Windows\Sysnative\nvcompiler.dll 2013-12-11 12:07:26 FD6FE2728F8747C6A15E2650958037C3 334648 ----a-w- C:\Windows\Sysnative\aswBoot.exe 2013-12-11 02:02:13 AB272BBFB05A8585C3405EFA9F605774 12625920 ----a-w- C:\Windows\Sysnative\wmploc.DLL 2013-12-11 02:02:10 8CBBB27369F9F07BC5E874E750EAF9D0 14631424 ----a-w- C:\Windows\Sysnative\wmp.dll 2013-12-11 02:01:16 FB13F4873F6747AB4E3C37CAFEA8ACAE 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2013-12-11 02:01:16 A3427586C75749B51BF5DEBEDEB4AD5C 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2013-12-11 02:01:15 4E249022336591E9C6DE374A68C18EF6 574976 ----a-w- C:\Windows\Sysnative\ieui.dll 2013-12-11 02:01:14 EF098867663B07247587587C29E631DB 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll 2013-12-11 02:01:14 DACB9A752CEB29C1D931514EF73803E1 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2013-12-11 02:01:14 40B33A42F90DED26DE4F5AAFA00F24CA 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2013-12-11 02:01:14 3A722B49408BE7FE8A375C3B8FD57BB1 218624 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2013-12-11 02:01:14 2E2875FFC6C2DC1ACF4F46AFC7819BD5 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll 2013-12-11 02:01:14 2A0B7281854ACBECA25D8FDD06A4D714 53760 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2013-12-11 02:01:14 0F753FDA08F495E515629210FF0DA59E 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2013-12-11 02:01:13 16B0A65F52531B769B891DC251ECC6C0 23183360 ----a-w- C:\Windows\Sysnative\mshtml.dll 2013-12-11 02:01:13 14074CF6190B937EB70BE2F93113B5FE 708608 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2013-12-11 02:01:12 95EED00D70485F6F82983EB7C03CC42A 817664 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2013-12-11 02:01:12 7016991D493B9F9FA492E75BD13D031D 2764288 ----a-w- C:\Windows\Sysnative\iertutil.dll 2013-12-11 02:01:11 C8CF11D73017CC588411FCB936891CF4 1395200 ----a-w- C:\Windows\Sysnative\urlmon.dll 2013-12-11 02:01:11 9B6678DB9C6A232C5A84D2FDFFF8B0E1 2334208 ----a-w- C:\Windows\Sysnative\wininet.dll 2013-12-11 02:01:10 FA30E3DC75EA42FE19B819F30FBDED8D 1995264 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2013-12-11 02:01:10 EDF5C6A9F33FBD3D717D1B77A9864C64 12996608 ----a-w- C:\Windows\Sysnative\ieframe.dll 2013-12-11 02:01:07 6491B719695D713335B431FCF0EAE28B 5769216 ----a-w- C:\Windows\Sysnative\jscript9.dll 2013-12-11 01:07:39 5FD67F205773EC80674DBBD609DB5315 2048 ----a-w- C:\Windows\Sysnative\tzres.dll 2013-12-11 01:02:33 AC38EC8D0C1B4C783CA6A24D239A71B7 335360 ----a-w- C:\Windows\Sysnative\msieftp.dll 2013-12-11 01:02:29 97D50B0CABF18A6D40F8883D02DDB519 3155968 ----a-w- C:\Windows\Sysnative\win32k.sys 2013-12-11 01:02:11 4EDF8812713291DBBFDA67CE6215F236 465920 ----a-w- C:\Windows\Sysnative\WMPhoto.dll 2013-12-11 01:01:53 B4F29F65AD3114051F01E9403346047F 81408 ----a-w- C:\Windows\Sysnative\imagehlp.dll 2013-12-11 00:58:42 ECB021CA3370582F0C7244B0CF06732C 156160 ----a-w- C:\Windows\Sysnative\cscript.exe 2013-12-11 00:58:42 731131A477F69476F2D739B0DB6A9281 202752 ----a-w- C:\Windows\Sysnative\scrrun.dll 2013-12-11 00:58:42 05D80FF3483BD8F268B01703C859198A 150016 ----a-w- C:\Windows\Sysnative\wshom.ocx 2013-12-11 00:58:42 045451FA238A75305CC26AC982472367 168960 ----a-w- C:\Windows\Sysnative\wscript.exe ====== C:\Windows\Sysnative\drivers ===== 2013-12-13 19:16:05 FABCD0B9CA0A2DC84805DCC199439046 884952 ----a-w- C:\Windows\Sysnative\drivers\Rt64win7.sys 2013-12-13 19:14:19 7A3585C4000C8340AE6B7FA08F9EF50F 3760344 ----a-w- C:\Windows\Sysnative\drivers\RTKVHD64.sys 2013-12-13 19:14:18 3533C7D5CC53FDF149B72CCDAE1B92C0 693329 ----a-w- C:\Windows\Sysnative\drivers\RTAIODAT.DAT 2013-12-13 19:13:16 554964B900AE2954B8B589B6287034AC 196384 ----a-w- C:\Windows\Sysnative\drivers\nvhda64v.sys 2013-12-13 19:10:54 F554291C0A11F5B713B54C5886D4AA31 12613408 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys 2013-12-11 00:59:00 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys 2013-12-11 00:59:00 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys ====== C:\Windows\Tasks ====== 2013-12-15 18:27:24 39A75631CF70391A0D7E1D067561513D 3134 ----a-w- C:\Windows\Sysnative\Tasks\{956B4BA9-5A05-4EA4-83F0-69B5C5CC03E8} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-12-15 09:43:06 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2013-12-14 20:57:20 -------- d-----w- C:\PROGRA~2\Sony 2013-12-14 20:57:20 -------- d-----w- C:\PROGRA~2\COMMON~1\Sony Shared 2013-12-13 19:06:39 -------- d-----w- C:\PROGRA~2\IObit 2013-12-11 21:19:36 -------- d-----w- C:\PROGRA~2\SpywareBlaster ======= C: ===== ====== C:\Users\Nelleke\AppData\Roaming ====== 2013-12-15 18:47:47 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2013-12-15 18:47:46 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\Temp 2013-12-15 18:47:46 -------- d-----w- C:\Users\Public\AppData\Local\Temp 2013-12-15 18:47:46 -------- d-----w- C:\Users\Nelleke\AppData\Local\Temp 2013-12-15 18:47:46 -------- d-----w- C:\Users\erik\AppData\Local\Temp 2013-12-15 18:47:46 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2013-12-15 18:47:46 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2013-12-13 19:22:49 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\IObit 2013-12-13 19:07:41 -------- d-----w- C:\Users\Nelleke\AppData\Locallow\IObit 2013-12-13 19:06:54 -------- d-----w- C:\Users\Nelleke\AppData\Locallow\ADSRemoval 2013-12-13 19:06:44 -------- d-----w- C:\Users\Nelleke\AppData\Roaming\IObit 2013-12-11 21:04:38 E3B1BA76798E2395DFD191EB0F775317 268360 ----a-w- C:\Users\Nelleke\AppData\Local\census.cache 2013-12-11 21:04:31 F6BDD0D34C5B20BEF86A9CFFEAD75847 126473 ----a-w- C:\Users\Nelleke\AppData\Local\ars.cache 2013-12-11 20:22:35 8F65C0CA3FD2405FD07E6815A60F4D87 36 ----a-w- C:\Users\Nelleke\AppData\Local\housecall.guid.cache 2013-12-07 21:15:50 -------- d-----w- C:\Users\Nelleke\AppData\Roaming\Nero 2013-12-07 21:15:46 -------- d-----w- C:\Users\Nelleke\AppData\Local\Nero ====== C:\Users\Nelleke ====== 2013-12-15 09:42:38 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nelleke\Desktop\RSITx64.exe 2013-12-14 20:57:23 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reader for pc 2013-12-13 19:27:01 -------- d-----w- C:\ProgramData\ProductData 2013-12-13 19:11:58 37809BC5943630EC0109C60D7DF3E144 1725064 ----a-w- C:\Users\Nelleke\Desktop\Adaware_Installer.exe 2013-12-13 19:07:42 -------- d-----w- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} 2013-12-13 19:07:38 -------- d-----w- C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F} 2013-12-13 19:07:00 -------- d-----w- C:\ProgramData\IObit 2013-12-13 17:21:31 F778A8F345E103B97059A8B0AD60B850 127080 ----a-w- C:\Users\Nelleke\Desktop\SpotifySetup.exe 2013-12-11 21:19:40 -------- d-----w- C:\ProgramData\Licenses 2013-12-11 21:19:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster 2013-12-11 20:22:26 1FBB338FD54A8E1697488658705BAE05 2406064 ----a-w- C:\Users\Nelleke\Desktop\HousecallLauncher64.exe 2013-12-07 21:06:34 -------- d-----w- C:\ProgramData\Nero ====== C: exe-files == 2013-12-15 09:43:06 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Nelleke.exe 2013-12-15 09:42:38 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nelleke\Desktop\RSITx64.exe 2013-12-14 21:18:00 AE13FB6BD8086465217F6A063EC3FCC3 715038 ----a-w- C:\Program Files (x86)\SpywareBlaster\unins000.exe 2013-12-14 20:30:58 78C3D798F150754CD2CE9F8998B27233 44221288 ----a-w- C:\ProgramData\Sony Corporation\AutoUpdateClient\READER_DESKTOP\2.2.00.11270\ReaderInstaller.exe 2013-12-13 19:37:45 83D0F51B75B0A3B4FE824767EA909589 2126112 ----a-w- C:\Users\Nelleke\AppData\Roaming\IObit\IObit Uninstaller\UninstallPromotetemp.exe 2013-12-13 19:37:45 0FED953F65CA8C0F03BC456C93D99548 637760 ----a-w- C:\Users\Nelleke\AppData\Roaming\IObit\IObit Uninstaller\UninstallDisplaytemp.exe 2013-12-13 19:27:34 A19EA669CFC10017722B496B8D2ABC3A 379168 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\NewUpdate.exe 2013-12-13 19:27:05 BEFF149A82F78B648046108EB9D28893 2151200 ----a-w- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe 2013-12-13 19:25:18 DD2DB12D0A1FD9521D36C303D04D3D95 34511248 ----a-w- C:\ProgramData\IObit\ASCDownloader\Advanced SystemCare.exe 2013-12-13 19:14:21 2A21E75EF80242E0646E7567993E977D 562792 ----a-w- C:\Program Files\Realtek\Audio\HDA\vncutil64.exe 2013-12-13 19:14:20 07622F6D69B93403FC9CBB40450DD842 1719000 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe 2013-12-13 19:14:19 DABD4AB3D049ECA6AFFD61B63A997728 289496 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe 2013-12-13 19:14:19 B87F3F8EDFD0C3A01BA072845B3A9A34 7205592 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe 2013-12-13 19:14:18 F31CDC26F3624750C2AE2DEFF1E598DA 1368792 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe 2013-12-13 19:14:18 16438B000BF56F2CD7FDB5E6C3B38C7E 13662936 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 2013-12-13 19:14:13 0C57BAD785EEAD029ABF6CBCF43E9A39 51776 ----a-w- C:\Program Files\Realtek\Audio\HDA\FMAPP.exe 2013-12-13 19:13:29 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{4CABE4F5-5CF1-4EDF-BC29-A343403E7DC9}\setup.exe 2013-12-13 19:13:28 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{116F5246-2712-45AA-BFE9-8F2EAEAD5B04}\setup.exe 2013-12-13 19:13:27 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{217F4758-34C7-4874-BCA3-9A1DB3D50E7A}\setup.exe 2013-12-13 19:13:26 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{A9891BF7-7BBC-4572-BB7F-E51C488955A2}\setup.exe 2013-12-13 19:13:24 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{ADDAFF59-04F6-4B87-8183-571C51BFAA2B}\setup.exe 2013-12-13 19:13:24 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{00BD9B96-5F67-4641-99F5-90CEF8E22901}\setup.exe 2013-12-13 19:13:22 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{765C517C-834D-45E1-9CB8-C7F843012144}\setup.exe 2013-12-13 19:13:21 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{6057922E-86DA-4BD8-B6A7-A6C28940EED6}\setup.exe 2013-12-13 19:13:05 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{A91C49A5-3CCC-410F-AAEA-E26463D78C47}\setup.exe 2013-12-13 19:12:44 F584C975B1B2FCFD3189DB54E8BF190B 2450208 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\NvTray.exe 2013-12-13 19:12:44 CF8B94FEEA50E39EE0396B5150F05B44 1196832 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvxdsync.exe 2013-12-13 19:12:44 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\setup.exe 2013-12-13 19:12:44 8E99BF264C1F20934A67E91BC9F4FB20 922912 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvvsvc.exe 2013-12-13 19:12:43 7BF84F23080660504DC80C354F441F4C 6866208 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvcplui.exe 2013-12-13 19:12:43 528C3B63ADAC429EF2797DFBACD79523 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvSmartMaxapp64.exe 2013-12-13 19:12:43 3B0A1EAF7ACFE1550ACC993E17052E09 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvSmartMaxapp.exe 2013-12-13 19:12:41 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{708D1A47-B345-4163-AF43-277D53BAF338}\setup.exe 2013-12-13 19:11:58 37809BC5943630EC0109C60D7DF3E144 1725064 ----a-w- C:\Users\Nelleke\Desktop\Adaware_Installer.exe 2013-12-13 19:11:49 958B3188E84C6E61ACAEF26D896EBAAF 37184 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCFixer.exe 2013-12-13 19:10:53 54E3E51EC2E2CA1D4A320B65B2ABBFEF 326944 ----a-w- C:\Program Files\NVIDIA Corporation\NVSMI\nvidia-smi.exe 2013-12-13 19:10:52 1CB9A605B28B1E55A06FDF965407F823 217888 ----a-w- C:\Program Files\NVIDIA Corporation\NVSMI\nvdebugdump.exe 2013-12-13 19:10:40 CCEFE5EBA300A493AD79E4B3D39F1FE5 250144 ----a-w- C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe 2013-12-13 19:10:40 96562BD5056254F0A5A18AB4A9788E69 842016 ----a-w- C:\Program Files\NVIDIA Corporation\NVSMI\MCU.exe 2013-12-13 19:08:09 3501FDCE917D0E41D1D2B4853CF5281B 4580160 ----a-w- C:\ProgramData\IObit\ASCDownloader\Smart Defrag.exe 2013-12-13 19:08:06 A18773FE92140C2D73DB4351ED747100 8691488 ----a-w- C:\ProgramData\IObit\ASCDownloader\Driver Booster.exe 2013-12-13 19:07:54 6120A0AD956D6F3157597CBFDE504207 561472 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Promote.exe 2013-12-13 19:07:47 6B798A617DC2CBF95CB352ADF1EF7BC3 11654912 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Update\imfpatch.exe 2013-12-13 19:07:01 361C7A180E8227314B05A2FEEE64DA95 60430120 ----a-w- C:\ProgramData\IObit\ASCDownloader\Advanced SystemCare Ultimate.exe 2013-12-13 17:21:31 F778A8F345E103B97059A8B0AD60B850 127080 ----a-w- C:\Users\Nelleke\Desktop\SpotifySetup.exe 2013-12-11 21:19:36 BE2EE9C219B016AEC95F604FBFFEE171 2115192 ----a-w- C:\Program Files (x86)\SpywareBlaster\sbautoupdate.exe 2013-12-11 21:19:36 1BE8001D5C4EEE56A97980CD6987EB40 2557544 ----a-w- C:\Program Files (x86)\SpywareBlaster\spywareblaster.exe 2013-12-11 21:19:36 0EED9CD892F88435BFD1AE41EF6ED60D 119976 ----a-w- C:\Program Files (x86)\SpywareBlaster\sburlhelper.exe 2013-12-11 20:22:26 1FBB338FD54A8E1697488658705BAE05 2406064 ----a-w- C:\Users\Nelleke\Desktop\HousecallLauncher64.exe 2013-12-11 02:02:14 D21DD7BFC81C8623DE48EBB17133D59C 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe 2013-12-11 02:02:14 9AED8E824CF5FAAB67957EDBC5512060 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe 2013-12-11 02:01:16 0E1D755673453108415F802C90704327 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2013-12-11 02:01:15 78CCC9D9665DC2A4DDC31CD99ED374FC 482816 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe === C: other files == 2013-12-15 18:55:22 318F6C0B5E55722A8ECD82454E90010B 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2849121425-4159316806-1266491598-1001\$IG4C8JG.zip 2013-12-15 18:54:33 D11604FF6FC51E21E13B6E60CDD18D04 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2849121425-4159316806-1266491598-1001\$IOFFVE7.com 2013-12-15 18:26:21 BC7ACE2C646A01D194CBBD8B43CAD4DA 1398596 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2849121425-4159316806-1266491598-1001\$ROFFVE7.com 2013-12-15 18:25:58 FAFA407BA87C2C39455FC72D3DA863FE 4050563 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2849121425-4159316806-1266491598-1001\$RG4C8JG.zip 2013-12-11 19:05:01 EF04B98F6F60FECD2ED3A745598B6243 256739 ----a-w- C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack.xpi ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2849121425-4159316806-1266491598-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "Facebook Update"="C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Spotify Web Helper"="C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "PDF Complete"="C:\Program Files (x86)\PDF Complete\pdfsty.exe" "IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "BATINDICATOR"="C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe" "LaunchHPOSIAPP"="C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe" "AppleSyncNotifier"="C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "DiscWizardMonitor.exe"="C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "Reader Application Helper"="C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "Facebook Update"="C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Spotify Web Helper"="C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" "SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background" "egui"="C:\Program Files\ESET\ESET Smart Security\egui.exe /hide /waitservice" "Seagate Scheduler2 Service"="C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\progra~3\\bitguard\\271832~1.68\\{16cdf~1\\loader.dll c:\\progra~3\\bitguard\\271769~1.27\\{16cdf~1\\loader.dll" ==== Startup Registry Disabled ====================== [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-] "Google Update"="\"C:\\Users\\Nelleke\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "HP Software Update"="c:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "iTunesHelper"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" "QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11-12-2013 20:54] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001Core.job --a------ C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe [12-07-2012 00:14] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001UA.job --a------ C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe [12-07-2012 00:14] C:\Windows\tasks\HPCeeScheduleForerik.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [05-01-2010 12:53] C:\Windows\tasks\HPCeeScheduleForNelleke.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [05-01-2010 12:53] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\Apple Diagnostics" [C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001Core" [C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001UA" [C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\Google Updater and Installer" [C:\Users\Nelleke\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HP-Online updateprogramma" [c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForerik" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForNelleke" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\HPOSIAPP64" ["%ProgramFiles(x86)%\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe"] "C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{87CB33B6-B2AB-4BA6-B18B-C4C009689351}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\b6hp15ti.default - Undetermined - %ProfilePath%\extensions\compatibility@addons.mozilla.org ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005 - Undetermined - C:\Program Files (x86)\IObit Apps Toolbar\FF - United States English Spellchecker - %ProfilePath%\extensions\en-US@dictionaries.addons.mozilla.org - YouTube Video and Audio Downloader - %ProfilePath%\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi - Kalp Tuu - %ProfilePath%\extensions\ffextension@weheartit.com.xpi - Facebook Secret Emoticons - %ProfilePath%\extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack.xpi ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\mwdbv0eh.default - WOT - %ProfilePath%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} AppDir: C:\Program Files (x86)\Mozilla Firefox - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005 F891089A6AB9E12FEDEBCC5EC0F40D66 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll - Shockwave Flash 0B31B0F8FA99CFD009C8FBEA9E20C9DE - C:\Users\Nelleke\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin ==== Chrome Look ====================== Advanced SystemCare Surfing Protection - Nelleke - Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page Restore"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page Restore"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {D1221A34-81CE-4B3D-81E4-7AED338CCC73} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}" ==== Reset Google Chrome ====================== Nothing found to reset ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\erik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Nelleke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\erik\AppData\Local\Mozilla\Firefox\Profiles\is1p0ty0.default\Cache emptied successfully C:\Users\Nelleke\AppData\Local\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Cache emptied successfully C:\Users\Nelleke\AppData\Local\Mozilla\Firefox\Profiles\mwdbv0eh.default\Cache emptied successfully ==== Empty Chrome Cache ====================== No Chrome Cache found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\erik\AppData\Local\Temp emptied successfully C:\Users\Public\AppData\Local\Temp emptied successfully C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Users\Nelleke\AppData\Local\Temp will be emptied at reboot C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Nelleke\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on zo 15-12-2013 at 20:15:06,56 ======================

Logfile of random's system information tool 1.09 (written by random/random) Run by Nelleke at 2013-12-15 10:43:06 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 862 GB (61%) free of 1417 GB Total RAM: 6103 MB (55% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:43:08, on 15-12-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.16428) Boot mode: Normal Running processes: C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe C:\Program Files (x86)\QuickTime\QTTask.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\CNYHKEY.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe Z:\utorrent versies\utorrent175.exe C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe c:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpressServer.exe C:\PROGRA~2\CYBERL~1\SHARED~1\RICHVI~1.EXE C:\Program Files (x86)\Google\Picasa3\Picasa3.exe C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files\trend micro\Nelleke.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R3 - URLSearchHook: (no name) - {95324e44-4b0a-47a9-8f77-9c6415e51c29} - (no file) O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [bATINDICATOR] C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe O4 - HKLM\..\Run: [LaunchHPOSIAPP] C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [DiscWizardMonitor.exe] "C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted IP range: http://192.168.1.1 O15 - ESC Trusted IP range: http://192.168.1.1 O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: devolo Network Service (DevoloNetworkService) - Unknown owner - C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Realtek11nSU - Realtek - C:\Program Files (x86)\11n USB Wireless LAN Utility\RtlService.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Seagate Scheduler2 Service (SgtSch2Svc) - Seagate - C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 12548 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch "C:\Windows\system32\nvvsvc.exe" C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService "C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe" "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS C:\Windows\system32\svchost.exe -k NetworkService "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe" C:\Windows\system32\nvvsvc.exe -session -first C:\Windows\System32\spoolsv.exe taskeng.exe {781D86FA-8542-48E6-8385-B5B175B81995} C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "taskhost.exe" "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE taskeng.exe {47965E97-50E5-4154-8FDD-318A48C90971} "C:\Program Files\Bonjour\mDNSResponder.exe" "C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe" "C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe" "C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe" C:\Windows\SysWOW64\ezSharedSvcHost.exe "c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe" "C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService "C:\Program Files (x86)\11n USB Wireless LAN Utility\RtlService.exe" "C:\Program Files (x86)\11n USB Wireless LAN Utility\RtWlan.exe" /H "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe" "C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe" "C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe" /rep_new C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe" "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe" WLIDSvcM.exe 3420 "C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE" C:\Windows\System32\alg.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-47235e73-b232-4743-bcc3-01ad3bfcfb38 -SystemEventPortName:HostProcess-8809bd22-536c-4d41-b97d-aca6381b7164 -IoCancelEventPortName:HostProcess-6600ffef-ab10-462a-9676-6d7274eb785b -NonStateChangingEventPortName:HostProcess-7255e765-90b4-4f74-b486-9ad0f250de0a -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:34b1b836-3818-401a-948c-85570a6b866f -DeviceGroupId:WpdFsGroup "C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe" "C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1 "C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe" "C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe" "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "C:\Program Files (x86)\iTunes\iTunesHelper.exe" "C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\CNYHKEY.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe" -Embedding "C:\Program Files\iPod\bin\iPodService.exe" "Z:\utorrent versies\utorrent175.exe" "Z:\Killing Season (2013) 1080p AC3+DTS NL Subs.mkv.torrent" "C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" view=SYSTRAY "c:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpressServer.exe" "C:\PROGRA~2\CYBERL~1\SHARED~1\RICHVI~1.EXE" -Embedding C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe" C:\Windows\System32\svchost.exe -k secsvcs "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7} C:\Windows\system32\svchost.exe -k SDRSVC "C:\Program Files (x86)\Google\Picasa3\Picasa3.exe" "N:\" "C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe" "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe22_ Global\UsGthrCtrlFltPipeMssGthrPipe22 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\sppsvc.exe "C:\Windows\system32\SearchFilterHost.exe" 0 544 548 556 65536 552 C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} "C:\Users\Nelleke\Desktop\RSITx64.exe" ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001Core.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001UA.job C:\Windows\tasks\HPCeeScheduleForerik.job C:\Windows\tasks\HPCeeScheduleForNelleke.job =========Mozilla firefox========= ProfilePath - C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005 prefs.js - "browser.startup.homepage" - "http://www.allemaal-series.org/browse.php" prefs.js - "keyword.enabled" - false [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 11.9.900.170 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=] "Description"=iTunes Detector Plug-in "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0] "Description"= "Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@sony.com/ReaderDesktop] "Description"=Reader for PC is installed if this plugin exists "Path"=C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0] "Description"=WildTangent Games App V2 Presence Detector Plugin "Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 11.9.900.170 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll C:\Program Files (x86)\Mozilla Firefox\extensions\ {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} C:\Program Files (x86)\Mozilla Firefox\components\ nsIQTScriptablePlugin.xpt C:\Program Files (x86)\Mozilla Firefox\plugins\ nppdf32.dll npqtplugin.dll npqtplugin2.dll npqtplugin3.dll npqtplugin4.dll npqtplugin5.dll QuickTimePlugin.class C:\Program Files (x86)\Mozilla Firefox\searchplugins\ yahoo.xml C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\ en-US@dictionaries.addons.mozilla.org feca4b87-3be4-43da-a1b1-137c24220968@jetpack ffextension@weheartit.com jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-06-13 49440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-18 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-18 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"=c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768] "SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2010-01-18 568888] "egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-05-14 2692520] "Seagate Scheduler2 Service"=C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe [2011-06-30 395152] "MRT"=C:\Windows\system32\MRT.exe [2013-12-15 90708896] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2013-11-27 21720] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584] "iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-09-14 59720] "ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-09-15 59720] "Facebook Update"=C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096] "Spotify Web Helper"=C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2013-12-13 1168896] "HPAdvisorDock"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe [2010-09-28 1715768] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AllShareAgent] C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2009-10-15 563736] "IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696] "BATINDICATOR"=C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe [2009-05-09 2068992] "LaunchHPOSIAPP"=C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe [2009-04-04 385024] "AppleSyncNotifier"=C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2011-09-27 59240] "APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720] "DiscWizardMonitor.exe"=C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe [2011-06-30 2638152] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888] "Reader Application Helper"=C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [2013-11-27 899400] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392] ""= [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\progra~3\bitguard\271832~1.68\{16cdf~1\loader.dll c:\progra~3\bitguard\271769~1.27\{16cdf~1\loader.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2013-11-12 243200] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableLockWorkstation"=0 "DisableChangePassword"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "HideFastUserSwitching"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "EnableShellExecuteHooks"=1 "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=lvcod64.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "MSVideo"=vfwwdm32.dll "MSVideo8"=VfWWDM32.dll "wave5"=wdmaud.drv "midi5"=wdmaud.drv "mixer5"=wdmaud.drv "aux1"=wdmaud.drv "wave6"=wdmaud.drv "midi6"=wdmaud.drv "mixer6"=wdmaud.drv "aux2"=wdmaud.drv "wave7"=wdmaud.drv "midi7"=wdmaud.drv "mixer7"=wdmaud.drv "aux3"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 month====== 2013-12-15 10:43:06 ----D---- C:\rsit 2013-12-15 10:43:06 ----D---- C:\Program Files\trend micro 2013-12-14 21:57:20 ----D---- C:\Program Files (x86)\Sony 2013-12-13 20:27:04 ----D---- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} 2013-12-13 20:27:01 ----D---- C:\ProgramData\ProductData 2013-12-13 20:16:06 ----A---- C:\Windows\system32\RtNicProp64.dll 2013-12-13 20:16:05 ----A---- C:\Windows\system32\drivers\Rt64win7.sys 2013-12-13 20:14:41 ----D---- C:\Windows\system32\SRSLabs 2013-12-13 20:14:21 ----A---- C:\Windows\system32\SRSTSH64.dll 2013-12-13 20:14:21 ----A---- C:\Windows\system32\SRSHP64.dll 2013-12-13 20:14:20 ----A---- C:\Windows\system32\RtPgEx64.dll 2013-12-13 20:14:20 ----A---- C:\Windows\system32\RtlCPAPI64.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtkCoLDR64.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtkCfg64.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtkAPO64.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtkApi64.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\RTEEP64A.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\RTEEL64A.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\RTEEG64A.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\RTEED64A.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtDataProc64.dll 2013-12-13 20:14:19 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys 2013-12-13 20:14:18 ----A---- C:\Windows\system32\RTCOM64.dll 2013-12-13 20:14:18 ----A---- C:\Windows\system32\RP3DHT64.dll 2013-12-13 20:14:18 ----A---- C:\Windows\system32\RP3DAA64.dll 2013-12-13 20:14:18 ----A---- C:\Windows\system32\RCoRes64.dat 2013-12-13 20:14:18 ----A---- C:\Windows\system32\RCoInstII64.dll 2013-12-13 20:14:18 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT 2013-12-13 20:14:13 ----A---- C:\Windows\system32\FMAPO64.dll 2013-12-13 20:14:12 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2013-12-13 20:14:11 ----A---- C:\Windows\system32\AERTAR64.dll 2013-12-13 20:14:11 ----A---- C:\Windows\system32\AERTAC64.dll 2013-12-13 20:13:17 ----A---- C:\Windows\system32\nvhdap64.dll 2013-12-13 20:13:17 ----A---- C:\Windows\system32\nvhdagenco64.dll 2013-12-13 20:13:16 ----A---- C:\Windows\system32\drivers\nvhda64v.sys 2013-12-13 20:10:56 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll 2013-12-13 20:10:56 ----A---- C:\Windows\SYSWOW64\nvopencl.dll 2013-12-13 20:10:56 ----A---- C:\Windows\system32\nvwgf2umx.dll 2013-12-13 20:10:56 ----A---- C:\Windows\system32\nvopencl.dll 2013-12-13 20:10:56 ----A---- C:\Windows\system32\nvoglv64.dll 2013-12-13 20:10:55 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll 2013-12-13 20:10:55 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll 2013-12-13 20:10:55 ----A---- C:\Windows\system32\nvoglshim64.dll 2013-12-13 20:10:54 ----A---- C:\Windows\SYSWOW64\nvinit.dll 2013-12-13 20:10:54 ----A---- C:\Windows\SYSWOW64\NvIFR.dll 2013-12-13 20:10:54 ----A---- C:\Windows\system32\nvinitx.dll 2013-12-13 20:10:54 ----A---- C:\Windows\system32\NvIFR64.dll 2013-12-13 20:10:54 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys 2013-12-13 20:10:53 ----A---- C:\Windows\SYSWOW64\NvFBC.dll 2013-12-13 20:10:53 ----A---- C:\Windows\system32\NvFBC64.dll 2013-12-13 20:10:52 ----A---- C:\Windows\system32\nvdispgenco6433182.dll 2013-12-13 20:10:52 ----A---- C:\Windows\system32\nvdispco6433182.dll 2013-12-13 20:10:48 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll 2013-12-13 20:10:48 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll 2013-12-13 20:10:48 ----A---- C:\Windows\SYSWOW64\nvcuda.dll 2013-12-13 20:10:48 ----A---- C:\Windows\system32\nvd3dumx.dll 2013-12-13 20:10:48 ----A---- C:\Windows\system32\nvcuvid.dll 2013-12-13 20:10:48 ----A---- C:\Windows\system32\nvcuvenc.dll 2013-12-13 20:10:47 ----A---- C:\Windows\system32\nvcuda.dll 2013-12-13 20:10:42 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll 2013-12-13 20:10:41 ----A---- C:\Windows\system32\nvcompiler.dll 2013-12-13 20:10:40 ----A---- C:\Windows\SYSWOW64\nvapi.dll 2013-12-13 20:07:42 ----D---- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} 2013-12-13 20:07:39 ----D---- C:\IObit 2013-12-13 20:07:38 ----D---- C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F} 2013-12-13 20:07:00 ----D---- C:\ProgramData\IObit 2013-12-13 20:06:44 ----D---- C:\Users\Nelleke\AppData\Roaming\IObit 2013-12-13 20:06:39 ----D---- C:\Program Files (x86)\IObit 2013-12-11 22:19:40 ----D---- C:\ProgramData\Licenses 2013-12-11 22:19:36 ----D---- C:\Program Files (x86)\SpywareBlaster 2013-12-11 22:19:36 ----A---- C:\Windows\SYSWOW64\MSSTDFMT.DLL 2013-12-11 19:22:24 ----A---- C:\Windows\ntbtlog.txt 2013-12-11 13:09:20 ----D---- C:\Users\Nelleke\AppData\Roaming\AVAST Software 2013-12-11 13:07:26 ----A---- C:\Windows\system32\aswBoot.exe 2013-12-11 13:04:06 ----D---- C:\ProgramData\AVAST Software 2013-12-11 03:02:13 ----A---- C:\Windows\system32\wmploc.DLL 2013-12-11 03:02:12 ----A---- C:\Windows\SYSWOW64\wmploc.DLL 2013-12-11 03:02:12 ----A---- C:\Windows\SYSWOW64\wmp.dll 2013-12-11 03:02:10 ----A---- C:\Windows\system32\wmp.dll 2013-12-11 03:01:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2013-12-11 03:01:15 ----A---- C:\Windows\system32\ieui.dll 2013-12-11 03:01:14 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-12-11 03:01:14 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-12-11 03:01:14 ----A---- C:\Windows\system32\jsproxy.dll 2013-12-11 03:01:14 ----A---- C:\Windows\system32\ieUnatt.exe 2013-12-11 03:01:14 ----A---- C:\Windows\system32\iesetup.dll 2013-12-11 03:01:14 ----A---- C:\Windows\system32\iernonce.dll 2013-12-11 03:01:14 ----A---- C:\Windows\system32\ieetwproxystub.dll 2013-12-11 03:01:14 ----A---- C:\Windows\system32\ieetwcollector.exe 2013-12-11 03:01:14 ----A---- C:\Windows\system32\ie4uinit.exe 2013-12-11 03:01:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2013-12-11 03:01:13 ----A---- C:\Windows\system32\mshtml.dll 2013-12-11 03:01:13 ----A---- C:\Windows\system32\jscript9diag.dll 2013-12-11 03:01:12 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2013-12-11 03:01:12 ----A---- C:\Windows\system32\iertutil.dll 2013-12-11 03:01:12 ----A---- C:\Windows\system32\ieapfltr.dll 2013-12-11 03:01:11 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-12-11 03:01:11 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-12-11 03:01:11 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-12-11 03:01:11 ----A---- C:\Windows\system32\wininet.dll 2013-12-11 03:01:11 ----A---- C:\Windows\system32\urlmon.dll 2013-12-11 03:01:10 ----A---- C:\Windows\system32\ieframe.dll 2013-12-11 03:01:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-12-11 03:01:07 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-12-11 03:01:07 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-12-11 03:01:07 ----A---- C:\Windows\system32\jscript9.dll 2013-12-11 02:07:39 ----A---- C:\Windows\SYSWOW64\tzres.dll 2013-12-11 02:07:39 ----A---- C:\Windows\system32\tzres.dll 2013-12-11 02:02:33 ----A---- C:\Windows\SYSWOW64\msieftp.dll 2013-12-11 02:02:33 ----A---- C:\Windows\system32\msieftp.dll 2013-12-11 02:02:29 ----A---- C:\Windows\system32\win32k.sys 2013-12-11 02:02:11 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll 2013-12-11 02:02:11 ----A---- C:\Windows\system32\WMPhoto.dll 2013-12-11 02:01:53 ----A---- C:\Windows\SYSWOW64\imagehlp.dll 2013-12-11 02:01:53 ----A---- C:\Windows\system32\imagehlp.dll 2013-12-11 01:59:00 ----A---- C:\Windows\system32\drivers\portcls.sys 2013-12-11 01:59:00 ----A---- C:\Windows\system32\drivers\drmk.sys 2013-12-11 01:58:42 ----A---- C:\Windows\SYSWOW64\wscript.exe 2013-12-11 01:58:42 ----A---- C:\Windows\SYSWOW64\scrrun.dll 2013-12-11 01:58:42 ----A---- C:\Windows\SYSWOW64\cscript.exe 2013-12-11 01:58:42 ----A---- C:\Windows\system32\wscript.exe 2013-12-11 01:58:42 ----A---- C:\Windows\system32\scrrun.dll 2013-12-11 01:58:42 ----A---- C:\Windows\system32\cscript.exe 2013-12-07 22:15:50 ----D---- C:\Users\Nelleke\AppData\Roaming\Nero 2013-12-07 22:06:34 ----D---- C:\ProgramData\Nero 2013-12-02 18:46:38 ----D---- C:\ProgramData\APN 2013-12-01 21:17:12 ----D---- C:\Windows\Migration ======List of files/folders modified in the last 1 month====== 2013-12-15 10:43:08 ----D---- C:\Windows\Prefetch 2013-12-15 10:43:07 ----D---- C:\Windows\Temp 2013-12-15 10:43:06 ----RD---- C:\Program Files 2013-12-15 10:42:55 ----D---- C:\Users\Nelleke\AppData\Roaming\uTorrent 2013-12-15 07:51:52 ----D---- C:\Windows\system32\config 2013-12-15 03:03:13 ----D---- C:\ProgramData 2013-12-15 03:00:34 ----D---- C:\Windows\system32\MRT 2013-12-15 03:00:34 ----D---- C:\Windows\debug 2013-12-15 03:00:32 ----A---- C:\Windows\system32\MRT.exe 2013-12-15 03:00:24 ----SHD---- C:\System Volume Information 2013-12-14 22:21:25 ----AD---- C:\ProgramData\Temp 2013-12-14 22:20:33 ----D---- C:\Windows\system32\drivers 2013-12-14 21:57:34 ----SHD---- C:\Windows\Installer 2013-12-14 21:57:20 ----D---- C:\Program Files (x86)\Common Files 2013-12-14 21:57:20 ----D---- C:\Program Files (x86) 2013-12-14 21:31:59 ----D---- C:\Windows\System32 2013-12-14 21:31:59 ----D---- C:\Windows\inf 2013-12-14 21:31:59 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-12-14 20:08:13 ----D---- C:\Windows\system32\Tasks 2013-12-14 20:08:08 ----A---- C:\Windows\SYSWOW64\log.txt 2013-12-13 21:54:36 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2013-12-13 21:54:02 ----D---- C:\Windows\system32\catroot2 2013-12-13 21:51:54 ----D---- C:\Windows\Tasks 2013-12-13 21:51:13 ----D---- C:\Users\Nelleke\AppData\Roaming\HandBrake 2013-12-13 20:22:43 ----AD---- C:\Windows 2013-12-13 20:18:46 ----AD---- C:\Windows\SysWOW64 2013-12-13 20:16:28 ----D---- C:\Windows\system32\catroot 2013-12-13 20:16:27 ----D---- C:\Windows\system32\DriverStore 2013-12-13 20:16:06 ----A---- C:\Windows\system32\RTNUninst64.dll 2013-12-13 20:15:48 ----D---- C:\Users\Nelleke\AppData\Roaming\Spotify 2013-12-13 20:14:36 ----D---- C:\Windows\SYSWOW64\RTCOM 2013-12-13 20:13:02 ----D---- C:\ProgramData\NVIDIA 2013-12-13 20:11:39 ----D---- C:\Program Files\NVIDIA Corporation 2013-12-13 20:10:56 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll 2013-12-13 20:10:56 ----A---- C:\Windows\system32\nvumdshimx.dll 2013-12-13 20:10:48 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll 2013-12-13 20:10:41 ----A---- C:\Windows\system32\nvapi64.dll 2013-12-13 20:07:41 ----D---- C:\Users\Nelleke\AppData\Roaming\Apple Computer 2013-12-12 19:49:47 ----D---- C:\Users\Nelleke\AppData\Roaming\vlc 2013-12-11 21:59:24 ----D---- C:\Program Files (x86)\Google 2013-12-11 20:54:04 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2013-12-11 13:07:26 ----D---- C:\Windows\winsxs 2013-12-11 08:07:51 ----RD---- C:\Users 2013-12-11 03:46:15 ----D---- C:\Windows\rescache 2013-12-11 03:18:18 ----D---- C:\Program Files (x86)\Windows Media Player 2013-12-11 03:18:14 ----D---- C:\Program Files\Windows Media Player 2013-12-11 03:18:14 ----D---- C:\Program Files (x86)\Internet Explorer 2013-12-11 03:18:13 ----D---- C:\Program Files\Internet Explorer 2013-12-11 03:18:09 ----D---- C:\Windows\SYSWOW64\nl-NL 2013-12-11 03:18:09 ----D---- C:\Windows\system32\nl-NL 2013-12-10 08:24:54 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt 2013-12-10 08:18:37 ----D---- C:\Users\Nelleke\AppData\Roaming\HpUpdate 2013-12-10 08:18:37 ----D---- C:\Users\Nelleke\AppData\Roaming\HP Support Assistant 2013-12-09 00:54:42 ----D---- C:\ProgramData\PDFC 2013-12-04 08:30:30 ----D---- C:\Users\Nelleke\AppData\Roaming\Vso 2013-12-03 19:44:53 ----D---- C:\ProgramData\DVD Shrink 2013-12-02 18:46:37 ----D---- C:\ProgramData\YTD Video Downloader 2013-12-01 21:44:48 ----D---- C:\Windows\Microsoft.NET 2013-12-01 21:26:26 ----RAD---- C:\hp 2013-12-01 21:24:16 ----D---- C:\Program Files (x86)\Hewlett-Packard 2013-12-01 21:21:49 ----RSD---- C:\Windows\assembly 2013-12-01 21:19:12 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI 2013-12-01 21:17:21 ----D---- C:\Windows\SYSWOW64\en-US 2013-12-01 21:17:21 ----D---- C:\Windows\system32\en-US 2013-12-01 21:17:12 ----SD---- C:\ProgramData\Microsoft 2013-11-24 21:43:54 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2012-09-08 275552] R0 timounter;Acronis Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2012-09-08 971360] R0 vididr;Acronis Virtual Disk; C:\Windows\system32\DRIVERS\vididr.sys [2012-09-08 210016] R0 vidsflt53;Acronis Disk Storage Filter (53); C:\Windows\system32\DRIVERS\vsflt53.sys [2012-09-08 141920] R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-05-14 134024] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-05-14 142776] R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-05-14 165960] R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-05-14 44944] R2 NPF_devolo;NetGroup Packet Filter Driver (devolo); C:\Windows\sysWOW64\drivers\npf_devolo.sys [2010-06-10 34048] R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2009-05-14 33608] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-12-13 3760344] R3 lvpepf64;Volume Adapter; C:\Windows\system32\DRIVERS\lv302a64.sys [2008-07-26 15768] R3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424] R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072] R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 77824] R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-01-22 180224] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-12-13 196384] R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2011-01-26 82816] R3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV302V64.SYS [2008-07-26 2624408] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-12-13 884952] R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144] R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576] R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840] R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208] R3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496] S0 PzWDM;PzWDM; C:\Windows\system32\Drivers\PzWDM.sys [] S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984] S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384] S3 catchme;catchme; \??\C:\ComboFix\catchme.sys [] S3 cpudrv64;cpudrv64; \??\C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-06-02 17864] S3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2; C:\Windows\system32\DRIVERS\aabed2.sys [2008-03-20 28672] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2011-05-10 22528] S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsucx64.sys [2011-08-17 12800] S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys [2011-08-17 171008] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720] S3 RTL8192su;Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2009-12-29 676864] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784] S3 WinUsb;WinUsb-stuurprogramma; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504] R2 DevoloNetworkService;devolo Network Service; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [2010-07-19 2231616] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2009-05-14 731840] R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232] R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-05-19 73728] R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2013-10-25 2151200] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2009-10-01 268824] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-11-11 922912] R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2009-10-15 635416] R2 Realtek11nSU;Realtek11nSU; C:\Program Files (x86)\11n USB Wireless LAN Utility\RtlService.exe [2009-12-07 40960] R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-12-13 289496] R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944] R2 SgtSch2Svc;Seagate Scheduler2 Service; C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe [2011-06-30 1191408] R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-03-06 3560288] R2 UNS;Intel® Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-10-01 2320920] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976] R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352] R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-15 2458944] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416] S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-05-14 23296] S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120] S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-15 119408] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 Sony SCSI Helper Service;Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [2013-11-26 73728] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-16 1255736] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF----------------- - - - Updated - - - Dank je alvast voor je hulp ! Gr Nelski - - - Updated - - -

Beste allemaal Sinds een paar dagen heb ik last van pop-ups welke opduiken zodra ik Facebook open. Deze geven een melding dat mn C schijf bijna vol is en andere aanverwante problemen. Wanneer ik deze probeer te sluiten opent een pagina van Systweak - Download Software utilities for Windows optimization, Scan & Clean Spyware for Free Help ik wil hier graag vanaf. Alvast hartelijk bedankt voor je reactie Gr Nelski

Goedemorgen Clarkie, Dat zal ik doen, dank je wel voor je hulp

Speciale machtiging bij gebruiker kan ik niet aanvinken!!!