Ga naar inhoud

pantani

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    11

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door pantani

  1. pantani
    Alles is goed verlopen met de herinstallatie, ik heb een cleane pc nu. Nu nog kijken hoe ik het beste de pc bescherm en snel hou, tips zijn altijd welkom Bedankt
  2. pantani
    Dank u kape voor alle hulp die je ons aanbied, ik zal eerst alles inderdaad proberen op te slaan en dan een herinstallatie van windows doen, lijkt mij het beste. Ik denk ook dat ik teveel van die kleine programma's had lopen om te testen en teveel spyware lopen had op de duur, als ik alles terug lopende heb, zal ik dit forum aflopen op tips qua beveiliging, wat wel en wat niet, want hier kun je alles vinden.
  3. pantani
    Heb ik ook gedaan, en heb niets zien gebeuren, ik denk dat er niets anders op zit dan te formateren, dan is alle troep er normaal gezien af, wat mag ik zeker niet vergeten als ik een format doe? Alle tips zijn welkom, of als er nog andere ideeën zijn, hoor ik ze graag. Bedankt om mij te willen helpen, stel ik zeer op prijs hier op dit prachtige en interessante forum.
  4. pantani
    Nog altijd als ik iets copy paste, en zelf als ik iets unrar, zoals die file's die ik gebruikte, dan verdwijnt alles terug, en rebooten de enige oplossing
  5. pantani
    En de volgende log # AdwCleaner v3.015 - Report created 19/12/2013 at 16:57:17 # Updated 10/12/2013 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : Dirk - DIRK-PC # Running from : C:\Users\Dirk\Desktop\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\PC Optimizer Pro Folder Deleted : C:\Program Files (x86)\PC Optimizer Pro Folder Deleted : C:\Users\Dirk\AppData\LocalLow\FreeRIP File Deleted : C:\Users\Public\Desktop\simplicheck.lnk File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk File Deleted : C:\Users\Dirk\AppData\Roaming\Microsoft\Windows\Start Menu\QuickStores.url File Deleted : C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\user.js ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}] Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE Key Deleted : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll Key Deleted : HKLM\SOFTWARE\Classes\AppID\DiscoveryHelper.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\GIFAnimator.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\iMesh.exe Key Deleted : HKLM\SOFTWARE\Classes\AppID\IMTrProgress.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\IMWeb.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll Key Deleted : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe Key Deleted : HKLM\SOFTWARE\Classes\Applications\iMesh_V11_en_Setup.exe Key Deleted : HKLM\SOFTWARE\Classes\Applications\iMeshV11.exe Key Deleted : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery Key Deleted : HKLM\SOFTWARE\Classes\DiscoveryHelper.iMesh6Discovery.1 Key Deleted : HKLM\SOFTWARE\Classes\iLividIEHelper.DNSGuard Key Deleted : HKLM\SOFTWARE\Classes\iLividIEHelper.DNSGuard.1 Key Deleted : HKLM\SOFTWARE\Classes\iMesh.AudioCD Key Deleted : HKLM\SOFTWARE\Classes\iMesh.Device Key Deleted : HKLM\SOFTWARE\Classes\iMesh.file Key Deleted : HKLM\SOFTWARE\Classes\imweb.imwebcontrol Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1 Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\adawarebp_rasapi32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\adawarebp_rasmancs Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ContinueToSave_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ContinueToSave_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FreeRIP3_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FreeRIP3_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_V11_en_Setup_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_V11_en_Setup_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMPlayCDAudioOnArrival Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMRipCDAudioOnArrival Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMShowCDAudioOnArrival Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMShowVolumeOnArrival Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_a8235b05 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_ccfde35c Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_e14dcdfa Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_comica_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_comica_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_star-envelope-printer_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_star-envelope-printer_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_texter_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_texter_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_calibre_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_calibre_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_windows-live-mail-2012_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_voor_windows-live-mail-2012_RASMANCS Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FC41815-FA4C-4F8B-B143-2C045C8EA2FC} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A7DDCBDE-5C86-415C-8A37-763AE183E7E4} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2656B92B-0207-4AFB-BEBF-F5FD231ECD39} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{34CB0620-E343-4772-BBA8-D3074BC47516} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{412CD209-DDA4-4275-8C79-55F1C93FBD47} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{59570C1F-B692-48C9-91B4-7809E6945287} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{63A0F7FA-2C95-4D7E-AF25-EFCC303D20A1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6559E502-6EE1-46B8-A83C-F3A45BDA23EE} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69D3F709-9DE2-479F-980F-532D46895703} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A2858A72-758F-4486-B6A1-7F1DCC0924FA} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B6F8DA9F-2696-419E-A8A3-19BE41EF51BD} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C63CA8A4-AB4E-49E5-A6C0-33FC86D80205} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C6A7847E-8931-4A9A-B4EF-72A91E3CCF4D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD0F1D24-E250-4E93-966C-65615720AEFB} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EC1277BB-1C71-4C0D-BA6D-BFEA16E773A6} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5E8CD073-21DF-4117-9BBD-D03C45D36CAE} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{69D3F709-9DE2-479F-980F-532D46895703} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{252C2315-CCE0-4446-8DA7-C00292A690BA} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{75E8DA27-44AF-40AE-927C-F2EEC99D65B1} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC96F516-51B2-4B46-8451-8665F5A6BA2B} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F07FBD3E-2048-44A4-9065-71BF551E2672} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424C-BB9F-74C6899B9F92} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419E-A8A3-19BE41EF51BD} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4E42-A125-57C0A11DBCDE} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF} Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5E8CD073-21DF-4117-9BBD-D03C45D36CAE} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{69D3F709-9DE2-479F-980F-532D46895703} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C} Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}] Key Deleted : HKCU\Software\APN DTX Key Deleted : HKCU\Software\APN PIP Key Deleted : HKCU\Software\Ask.com.tmp Key Deleted : HKCU\Software\BabSolution Key Deleted : HKCU\Software\BI Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\DataMngr [#] Key Deleted : HKCU\Software\DataMngr_Toolbar Key Deleted : HKCU\Software\dt soft\daemon tools toolbar Key Deleted : HKCU\Software\IGearSettings Key Deleted : HKCU\Software\ilivid Key Deleted : HKCU\Software\ilividtoolbarguid Key Deleted : HKCU\Software\Imesh Key Deleted : HKCU\Software\MGShareware Key Deleted : HKCU\Software\mixidj Key Deleted : HKCU\Software\pc optimizer pro Key Deleted : HKCU\Software\Search Settings Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\systweak Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKCU\Software\AppDataLow\SProtector Key Deleted : HKCU\Software\AppDataLow\Software\Conduit Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes Key Deleted : HKCU\Software\AppDataLow\Software\lyricspal Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\DataMngr Key Deleted : HKLM\Software\iLividSRTB Key Deleted : HKLM\Software\Imesh Key Deleted : HKLM\Software\MGShareware Key Deleted : HKLM\Software\mixidj Key Deleted : HKLM\Software\pc optimizer pro Key Deleted : HKLM\Software\PIP Key Deleted : HKLM\Software\Search Settings Key Deleted : HKLM\Software\SearchProtect Key Deleted : HKLM\Software\simplitec Key Deleted : HKLM\Software\SP Global Key Deleted : HKLM\Software\SProtector Key Deleted : HKLM\Software\systweak Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{501451DE-5808-4599-B544-8BD0915B6B24}_is1 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mixidj Key Deleted : [x64] HKLM\SOFTWARE\DataMngr Key Deleted : HKLM\Software\Classes\Installer\Features\1A594BF8F3A4D1C4DB72F3A32B6E7636 ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.16428 -\\ Mozilla Firefox v22.0 (nl) [ File : C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\prefs.js ] -\\ Google Chrome v31.0.1650.63 [ File : C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\preferences ] Deleted : search_url Deleted : keyword ************************* AdwCleaner[R0].txt - [17396 octets] - [19/12/2013 16:50:39] AdwCleaner[s0].txt - [16684 octets] - [19/12/2013 16:57:17] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [16745 octets] ##########
  6. pantani
    kape Bedankt voor uw hulp Hier de inhoud van het logje: Zoek.exe v5.0.0.0 Updated 18-December-2013 Tool run by Dirk on do 19/12/2013 at 10:12:21,52. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Dirk\Desktop\zoek.scr [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 19/12/2013 10:15:08 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\Advanced System Protector deleted successfully C:\PROGRA~2\AGEIA Technologies deleted successfully C:\PROGRA~2\Application Updater deleted successfully C:\PROGRA~2\Foxit Software deleted successfully C:\PROGRA~2\JLC's Software deleted successfully C:\PROGRA~2\Lattice deleted successfully C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully C:\ProgramData\ALM deleted successfully C:\ProgramData\Babylon deleted successfully C:\ProgramData\com.aspexsoftware.Silhouette_Studio.license deleted successfully C:\ProgramData\CorelDRAW Graphics Suite X6 deleted successfully C:\ProgramData\CorelDRAW Technical Suite X6 deleted successfully C:\ProgramData\Oracle deleted successfully C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} deleted successfully C:\ProgramData\{BD8912D9-3040-46C4-B96A-4C3AC7E43486} deleted successfully C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} deleted successfully C:\Users\Dirk\AppData\Roaming\Any DVD Shrink deleted successfully C:\Users\Dirk\AppData\Roaming\JLC's Software deleted successfully C:\Users\Dirk\AppData\Roaming\passport_photo deleted successfully C:\Users\Dirk\AppData\Roaming\QuickScan deleted successfully C:\Users\Dirk\AppData\Roaming\sdfd deleted successfully C:\Users\Dirk\AppData\Roaming\Secure-Soft Stealer deleted successfully C:\Users\Dirk\AppData\Roaming\winup deleted successfully C:\Users\Dirk\AppData\Local\Algebrator deleted successfully C:\Users\Dirk\AppData\Local\Bundled software uninstaller deleted successfully C:\Users\Dirk\AppData\Local\Conduit deleted successfully C:\Users\Dirk\AppData\Local\CrashDumps deleted successfully C:\Users\Dirk\AppData\Local\Downloaded Installations deleted successfully C:\Users\Dirk\AppData\Local\PACE Anti-Piracy deleted successfully C:\Users\Dirk\AppData\Local\PackageAware deleted successfully ==== Creating Sample_20131912_1038.zip ====================== Copied file C:\Users\Dirk\AppData\Roaming\Processname.exe to sample\Processname.exe Copied file C:\Users\Dirk\AppData\Roaming\WgZBCmPFUb.exe to sample\WgZBCmPFUb.exe sample\Processname.exe renamed to E34C2580BA28F456157A8CF5E9E95FF7 sample\WgZBCmPFUb.exe renamed to D41D8CD98F00B204E9800998ECF8427E C:\Users\Public\Desktop\sample_20131912_1038.zip created successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E634228A-03CF-4BC8-B0AB-668257F1FD8C} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E634228A-03CF-4BC8-B0AB-668257F1FD8C} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1937A80B-890D-FB66-71C8-FADF8FE8DCCE} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1937A80B-890D-FB66-71C8-FADF8FE8DCCE} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{42AA8ED4-5282-F097-A92F-11F4943460FA} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{42AA8ED4-5282-F097-A92F-11F4943460FA} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\SearchScopes\{47C04EA5-D553-4994-87C4-B875239A6372} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\SearchScopes\{7ECBEA8A-4B78-4C3C-A2E5-41A23BD77FF0} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E634228A-03CF-4BC8-B0AB-668257F1FD8C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E634228A-03CF-4BC8-B0AB-668257F1FD8C} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{1937A80B-890D-FB66-71C8-FADF8FE8DCCE} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1937A80B-890D-FB66-71C8-FADF8FE8DCCE} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{42AA8ED4-5282-F097-A92F-11F4943460FA} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42AA8ED4-5282-F097-A92F-11F4943460FA} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{42DFA04F-0F16-418e-B80C-AB97A5AFAD39} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42DFA04F-0F16-418e-B80C-AB97A5AFAD39} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} deleted successfully HKEY_CLASSES_ROOT\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} deleted successfully HKEY_CLASSES_ROOT\CLSID\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{E634228A-03CF-4BC8-B0AB-668257F1FD8C} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{0734d757-fea6-4637-a7e4-2bd40a7fd8da} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{E634228A-03CF-4BC8-B0AB-668257F1FD8C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{42DFA04F-0F16-418e-B80C-AB97A5AFAD39} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Partner Service deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Partner Service deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CltMngSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\CltMngSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ASO3DiskOptimizer deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\ASO3DiskOptimizer deleted successfully ==== FireFox Fix ====================== ProfilePath: C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default ---- Lines BabylonToolbar removed from prefs.js ---- user_pref("extensions.BabylonToolbar.admin", false); user_pref("extensions.BabylonToolbar.aflt", "orgnl"); user_pref("extensions.BabylonToolbar.bbDpng", 21); user_pref("extensions.BabylonToolbar.cntry", "BE"); user_pref("extensions.BabylonToolbar.dfltSrch", false); user_pref("extensions.BabylonToolbar.excTlbr", false); user_pref("extensions.BabylonToolbar.firstRun", false); user_pref("extensions.BabylonToolbar.hdrMd5", "3575838D64852B28350B46FE573CBB02"); user_pref("extensions.BabylonToolbar.hmpg", false); user_pref("extensions.BabylonToolbar.lastActv", "13"); user_pref("extensions.BabylonToolbar.lastDP", 21); user_pref("extensions.BabylonToolbar.lastVrsnTs", ""); user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "11.0"); user_pref("extensions.BabylonToolbar.newTab", true); user_pref("extensions.BabylonToolbar.newTabUrl", "http://search.babylon.com/?babsrc=NT_FFUP"); user_pref("extensions.BabylonToolbar.noFFXTlbr", false); user_pref("extensions.BabylonToolbar.propectorlck", 70888016); user_pref("extensions.BabylonToolbar.prtkDS", 0); user_pref("extensions.BabylonToolbar.prtkHmpg", 0); user_pref("extensions.BabylonToolbar.smplGrp", "free"); ---- Lines mixidj removed from user.js ---- user_pref("extensions.mixidj.tlbrSrchUrl", ""); user_pref("extensions.mixidj.id", "3eb3e87800000000000000016c6f2527"); user_pref("extensions.mixidj.appId", "{A2773ED4-83BD-488A-A186-73590706C916}"); user_pref("extensions.mixidj.instlDay", "15973"); user_pref("extensions.mixidj.vrsn", "1.8.18.8"); user_pref("extensions.mixidj.vrsni", "1.8.18.8"); user_pref("extensions.mixidj.vrsnTs", "1.8.18.818:03:17"); user_pref("extensions.mixidj.prtnrId", "mixidj"); user_pref("extensions.mixidj.prdct", "mixidj"); user_pref("extensions.mixidj.aflt", "babsst"); user_pref("extensions.mixidj.smplGrp", "none"); user_pref("extensions.mixidj.tlbrId", "baseyh"); user_pref("extensions.mixidj.instlRef", "sst"); user_pref("extensions.mixidj.dfltLng", "nl"); user_pref("extensions.mixidj.excTlbr", false); user_pref("extensions.mixidj.ffxUnstlRst", false); user_pref("extensions.mixidj.admin", false); user_pref("extensions.mixidj.autoRvrt", "false"); user_pref("extensions.mixidj.rvrt", "false"); user_pref("extensions.mixidj.newTab", false); ---- FireFox user.js and prefs.js backups ---- user_20131912_1041_.backup prefs_20131912_1041_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1937A80B-890D-FB66-71C8-FADF8FE8DCCE}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42AA8ED4-5282-F097-A92F-11F4943460FA}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E634228A-03CF-4BC8-B0AB-668257F1FD8C}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "DATAMNGR"=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] ==== Deleting Files \ Folders ====================== C:\ProgramData\com.aspexsoftware.Silhouette_Studio.license not found C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} not found C:\ProgramData\{BD8912D9-3040-46C4-B96A-4C3AC7E43486} not found C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} not found C:\Program Files (x86)\FreeRIP Toolbar deleted C:\ProgramData\continuetosave deleted C:\ProgramData\Partner deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\508996177169f@50899617716d8.com deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\50eb2f86e6603@50eb2f86e663c.com deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\50fd714ac5d2f@50fd714ac5d69.com deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\510eb214835a7@510eb214835e1.com deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\ffxtlbr@babylon.com deleted c:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\ffxtlbr@mixidj.com deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\foxmarks@kei.com deleted C:\Users\Dirk\AppData\Roaming\Systweak deleted C:\Program Files (x86)\RegClean Pro deleted C:\PROGRA~2\Mozilla Firefox\searchplugins\babylon.xml deleted C:\PROGRA~2\Mozilla Firefox\searchplugins\Search_Results.xml deleted C:\PROGRA~2\SimpleSpeedy deleted C:\PROGRA~2\ContinueToSave deleted C:\PROGRA~2\simplitec deleted C:\PROGRA~2\SoftQuick deleted C:\PROGRA~2\DAEMON Tools Toolbar deleted C:\PROGRA~2\Advanced System Optimizer 3 deleted C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted C:\PROGRA~2\SearchProtect deleted C:\PROGRA~2\iMesh Applications deleted C:\PROGRA~2\Solibo Ltd deleted C:\PROGRA~2\mixidj deleted C:\PROGRA~2\FreeRIP3 deleted C:\PROGRA~2\TextAloud deleted C:\PROGRA~2\RelevantKnowledge deleted C:\PROGRA~2\Conduit deleted C:\Autorun.inf deleted C:\Users\Dirk\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickStores.url deleted C:\Users\Dirk\AppData\Roaming\simplitec deleted C:\Users\Dirk\AppData\Roaming\PStrip.ini deleted C:\Users\Dirk\AppData\Roaming\Thinstall deleted C:\Users\Dirk\AppData\Roaming\DVDVideoSoftIEHelpers deleted C:\Users\Dirk\AppData\Roaming\BabSolution deleted C:\Users\Dirk\AppData\Roaming\Babylon deleted C:\Users\Dirk\AppData\Roaming\NCdownloader deleted C:\Users\Dirk\AppData\Roaming\Aspex Research & Technology deleted C:\Users\Dirk\AppData\Roaming\OpenCandy deleted C:\ProgramData\simplitec deleted C:\ProgramData\FreeRIP deleted C:\ProgramData\boost_interprocess deleted C:\ProgramData\RightClick deleted C:\ProgramData\CLSoft LTD deleted C:\ProgramData\WoW Worldwide Software LTD deleted C:\ProgramData\InstallMate deleted C:\ProgramData\iMesh deleted C:\ProgramData\Premium deleted C:\Users\Dirk\AppData\Local\SearchProtect deleted C:\Users\Dirk\AppData\Local\Thinstall deleted C:\Users\Dirk\AppData\Local\avgchrome deleted C:\Users\Dirk\AppData\Local\iMesh deleted C:\Users\Dirk\AppData\Local\cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMesh deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\simplitec deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeRIP3 deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solibo Ltd deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\continuetosave deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Optimizer Pro deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SaveAs deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro deleted C:\Users\Dirk\Downloads\SoftonicDownloader_voor_fences.exe deleted C:\Users\Dirk\Downloads\SoftonicDownloader_voor_smart-defrag.exe deleted C:\Users\Dirk\AppData\LocalLow\Search Settings deleted C:\Users\Dirk\AppData\LocalLow\ilividtoolbarguid deleted C:\Users\Dirk\AppData\LocalLow\DataMngr deleted C:\Users\Dirk\AppData\LocalLow\PriceGong deleted C:\Users\Dirk\AppData\LocalLow\Conduit deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\Application Updater deleted C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar deleted C:\Windows\wininit.ini deleted C:\Windows\tasks\ASO-AutoCheckUpdate7Days.job deleted C:\Windows\tasks\ASO-OneClickCare.job deleted C:\Windows\Syswow64\tmp29E4.tmp deleted C:\Windows\Syswow64\tmp29E5.tmp deleted C:\Windows\Syswow64\SearchProtect deleted C:\Windows\SysWow64\searchplugins deleted C:\Windows\SysWow64\Extensions deleted C:\Windows\syswow64\roboot.exe deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\searchplugins\conduit-search.xml deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\searchplugins\daemon-search.xml deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\searchplugins\Search_Results.xml deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\searchplugins\WebSearch.xml deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\ilividtoolbarguid deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\jetpack deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\CT2481029 deleted C:\Users\Public\Desktop\RegClean Pro.lnk deleted C:\Users\Public\Desktop\NCdownloader.lnk deleted C:\PROGRA~2\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433} deleted C:\Users\Dirk\AppData\Roaming\Processname.exe deleted C:\Users\Dirk\AppData\Roaming\WgZBCmPFUb.exe deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\{0734d757-fea6-4637-a7e4-2bd40a7fd8da} deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\{f34c9277-6577-4dff-b2d7-7d58092f272f} deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\conduitCommon deleted C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\{F0B1CEAC-7C0D-407c-B25E-623D7CBECCCB} deleted "C:\Program Files (x86)\Mozilla Firefox\searchplugins\adawaretb.xml" deleted "C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\searchplugins\conduit.xml" deleted "C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\searchplugins\mixidj.xml" deleted "C:\Windows\Installer\1bc4154.msi" deleted "C:\ProgramData\{6C6B676F-FB9D-D63A-C223-0000DFE79717}" deleted "C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\searchplugins\mixidj.xml" deleted "C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\searchplugins\conduit.xml" deleted "C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}" deleted "C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default\extensions\freerip@mybrowserbar.com" deleted "C:\Users\Dirk\AppData\Roaming\Mozilla\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}" deleted "C:\Users\Dirk\AppData\Roaming\mixidj\sqlite3.dll" deleted "C:\Users\Dirk\AppData\Roaming\mresreg\MR1x.bin" deleted "C:\Program Files (x86)\Search Results Toolbar\Datamngr\datamngrUI.exe" deleted "C:\PROGRA~2\Search Results Toolbar\Datamngr\datamngrUI.exe" deleted "C:\Users\Dirk\AppData\Roaming\mixidj" deleted "C:\Users\Dirk\AppData\Roaming\mresreg" deleted "C:\Program Files (x86)\Search Results Toolbar" not deleted "C:\PROGRA~2\Search Results Toolbar" not deleted "C:\Program Files (x86)\Search Results Toolbar\Datamngr" not deleted "C:\PROGRA~2\Search Results Toolbar\Datamngr" not deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-12-18 15:10:37 F3D5EC0A24DCC16213267D609F09C220 749711733 ----a-w- C:\Windows\MEMORY.DMP 2013-12-18 13:42:51 ED42C02A7A7DCA88758606274D3A0A0D 2080472 ----a-w- C:\Windows\RtlExUpd.dll ====== C:\Users\Dirk\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2013-12-18 15:03:21 3331806A4E3026A4583C1565816CEA8E 9889352 ----a-w- C:\Windows\SysWOW64\RtsUStoricon.dll 2013-12-18 13:43:00 B8FEA541BD9EE7554294C3A69166A764 753280 ----a-w- C:\Windows\SysWOW64\MBAPO32.dll 2013-12-18 13:38:51 EF4D3CEBCB9B10C1926628FFD768A2A2 2947872 ----a-w- C:\Windows\SysWOW64\nvcuvid.dll 2013-12-18 13:38:51 D98D3EC7D6A66D865CF47085BDB4B874 2697248 ----a-w- C:\Windows\SysWOW64\nvapi.dll 2013-12-18 13:38:51 D4FBD9D8BDF3E348960CDFD03DF4674C 15218504 ----a-w- C:\Windows\SysWOW64\nvd3dum.dll 2013-12-18 13:38:51 CB11E4C8547869C61427D3F5738EBF70 2747680 ----a-w- C:\Windows\SysWOW64\nvcuvenc.dll 2013-12-18 13:38:51 B3BFE514794A2A2E9DDB75827126B4EA 22951200 ----a-w- C:\Windows\SysWOW64\nvoglv32.dll 2013-12-18 13:38:51 AD44C98F47A66CA79C10E43289D5559F 9691888 ----a-w- C:\Windows\SysWOW64\nvcuda.dll 2013-12-18 13:38:51 87D1F52E33BD337B5571C01A1C0996B0 15862272 ----a-w- C:\Windows\SysWOW64\nvwgf2um.dll 2013-12-18 13:38:51 769FD2BE69A664374F8ED621C9639D6F 562464 ----a-w- C:\Windows\SysWOW64\NvIFR.dll 2013-12-18 13:38:51 426D5FE9DA98EDBD018FBF06BD24B040 609568 ----a-w- C:\Windows\SysWOW64\NvFBC.dll 2013-12-18 13:38:51 310C66540534F7C56221FC05B48C3BC3 17560352 ----a-w- C:\Windows\SysWOW64\nvcompiler.dll 2013-12-18 13:38:51 0EF0066D8CA7D594134D77100CBCBFA1 9619872 ----a-w- C:\Windows\SysWOW64\nvopencl.dll 2013-12-17 23:45:06 C74500A1BCB4113A7310295DD3FA4440 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2013-12-17 23:45:04 3D43EAC957F2F797BE82CF6B04A933F8 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2013-12-17 23:45:04 355BF103E2CF862B00EEB3731E25E802 440832 ----a-w- C:\Windows\SysWOW64\ieui.dll 2013-12-17 23:45:03 35DE59C975A0C97E8DBBE095BCC3644E 553472 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2013-12-17 23:45:02 B2E1F7B212502BB49AAD4EFAD37C5CF5 2166784 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2013-12-17 23:45:02 927FA6456AD6D7630F6854828D2FD16B 1820160 ----a-w- C:\Windows\SysWOW64\wininet.dll 2013-12-17 23:45:02 08881C59F795C356DE12067E44FFD260 703488 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2013-12-17 23:45:01 84EAF0A08C7742697816E148C066D757 1928192 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2013-12-17 23:45:01 0763C5D8660436D4D961F72609E33BBE 1157632 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2013-12-17 23:45:00 4B638CE3DAA3A082E576C0DDF9D635D4 11221504 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2013-12-17 23:44:59 BFAFE990C4A191E83843362B5AC64A9B 17112576 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2013-12-17 23:44:59 A60A222D3126DD9E380F9D8B651BC13D 4243968 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2013-12-16 22:49:22 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\SysWOW64\wmp.dll 2013-12-16 22:49:22 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\SysWOW64\wmploc.DLL 2013-12-16 22:42:48 AD27563BC16AB1EAACAE3033E99C2F78 194048 ----a-w- C:\Windows\SysWOW64\elshyph.dll 2013-12-16 22:42:44 FB0D1CC2911A0645DDA6C0608473EB55 34816 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2013-12-16 22:42:44 F862CD08F1AD4EE39BD506853F3C6103 16284 ----a-w- C:\Windows\SysWOW64\ieuinit.inf 2013-12-16 22:42:44 EC7038154490E50ACD405A022F51B204 83456 ----a-w- C:\Windows\SysWOW64\inseng.dll 2013-12-16 22:42:44 D9F12F54E3B5A092F1D5F191F5286E53 337408 ----a-w- C:\Windows\SysWOW64\html.iec 2013-12-16 22:42:44 CFCE4EFF1D6D909EE2EA3AFCB8F1E677 233472 ----a-w- C:\Windows\SysWOW64\url.dll 2013-12-16 22:42:44 C3B0DBD04CC18574B0706CA119902474 367104 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2013-12-16 22:42:44 C1A6E565B2782C09BC40AD749B46D9ED 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-12-16 22:42:44 C17139EAF939964142C7A1AEEE02DC81 616104 ----a-w- C:\Windows\SysWOW64\ieapfltr.dat 2013-12-16 22:42:44 BE8B10D84DDD8F43A32EE013B54F5287 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2013-12-16 22:42:44 AB3B2CA52AFB695AFCDD2620A21E5B21 24576 ----a-w- C:\Windows\SysWOW64\licmgr10.dll 2013-12-16 22:42:44 9E170B0AF156B478BD2B1FD6A2250C9E 62464 ----a-w- C:\Windows\SysWOW64\tdc.ocx 2013-12-16 22:42:44 9B8701A380CEE1B05D651B4ED4048C8F 645120 ----a-w- C:\Windows\SysWOW64\jsIntl.dll 2013-12-16 22:42:44 9A33FDDD687A836A1FD478B43C5A95FD 151552 ----a-w- C:\Windows\SysWOW64\iexpress.exe 2013-12-16 22:42:44 71144A47CD02FDDC77DDF5EB5315767F 523776 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2013-12-16 22:42:44 6A92CEC8532056791C6832B2725D170D 139264 ----a-w- C:\Windows\SysWOW64\wextract.exe 2013-12-16 22:42:44 6A794439B6612E43FEDE0217C919B652 454656 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2013-12-16 22:42:44 6922D7ED84AE102504174922D5D42F49 238288 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2013-12-16 22:42:44 64831CAD496A073398853A34A5813675 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2013-12-16 22:42:44 5DFE55E0221F0C5FA4D6CECFA72B1D78 32768 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2013-12-16 22:42:44 4F032F1FDEFEA5EC8EEA3562643B5EE8 69120 ----a-w- C:\Windows\SysWOW64\icardie.dll 2013-12-16 22:42:44 44D5C650C971910827EA65B4D989ED94 164864 ----a-w- C:\Windows\SysWOW64\msrating.dll 2013-12-16 22:42:44 2AF48780D879AFC43733159CB29CD8BD 1051136 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2013-12-16 22:42:44 298FDE634538B62CEEEC266D8773B21A 182272 ----a-w- C:\Windows\SysWOW64\msls31.dll 2013-12-16 22:42:44 08B56CF57B7CE44315034247CC76D0F1 244736 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2013-12-16 22:42:44 03B3541AE6986602CF9CB5B3AD169C33 208384 ----a-w- C:\Windows\SysWOW64\webcheck.dll 2013-12-16 22:42:43 F8DE2F74CD4323BABBDACAADD9A39254 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2013-12-16 22:42:43 F7B6E341F4B1947BEC0E14EEBE3C627E 111616 ----a-w- C:\Windows\SysWOW64\IEAdvpack.dll 2013-12-16 22:42:43 AE6A2C5ECD3E96556E22F12816842F60 48640 ----a-w- C:\Windows\SysWOW64\mshtmler.dll 2013-12-16 22:42:43 ABDFC692D9FE43E2BA8FE6CB5A8CB95A 13312 ----a-w- C:\Windows\SysWOW64\mshta.exe 2013-12-16 22:42:43 887055A3C8DD6C87D200D11EAFDBD45B 74240 ----a-w- C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-12-16 22:42:43 83F49FD1BC0A999B006D564C540C7258 86016 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2013-12-16 22:42:43 779E142FE2159935E78C0FA2E190FF1E 610304 ----a-w- C:\Windows\SysWOW64\jscript.dll 2013-12-16 22:42:43 6EB0B7301E00F717BD68A742D1391FAF 36352 ----a-w- C:\Windows\SysWOW64\imgutil.dll 2013-12-16 22:42:43 5EC13202430A3EB68DFF44CF1FEEA2BE 61952 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2013-12-16 22:42:43 55969AADF0210A614700F89B48976F68 43008 ----a-w- C:\Windows\SysWOW64\msfeedsbs.dll 2013-12-16 22:42:43 53FC62C51CB18C9100A7DFAF2D2A6C47 12800 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe 2013-12-16 22:42:43 4D4726D1AD5ED1590A62685F92900594 51200 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2013-12-16 22:42:43 4BCC7EB5F20840DA67943BD86AE95735 56832 ----a-w- C:\Windows\SysWOW64\pngfilt.dll 2013-12-16 22:42:43 1AFBAA54BDF637F69B8E02A5578286B0 116736 ----a-w- C:\Windows\SysWOW64\iepeers.dll 2013-12-16 22:42:43 1200D9C7DB0ADC1B8143A0A9921BF7DA 127488 ----a-w- C:\Windows\SysWOW64\occache.dll 2013-12-16 17:01:10 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\SysWOW64\msieftp.dll 2013-12-16 17:01:08 E9504E484076585F6DA3C59F0E20E122 417792 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll 2013-12-16 17:01:00 4EC2C3B15B9EC41AD0D6CD918D20376E 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll 2013-12-16 17:00:44 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\SysWOW64\imagehlp.dll 2013-12-16 17:00:29 CC09E0C9A2D89C6E71D093DC8BD121B7 1168384 ----a-w- C:\Windows\SysWOW64\crypt32.dll 2013-12-16 16:59:47 EE7CB55F77465CDAC4C80F587FF7C278 1796096 ----a-w- C:\Windows\SysWOW64\authui.dll 2013-12-16 16:59:46 E9BB0CD09DA17C71FD1B9954D75AEEF7 168960 ----a-w- C:\Windows\SysWOW64\credui.dll 2013-12-16 16:59:46 4BCC63ED1C3D15B2635A8AE2B854B3EB 152576 ----a-w- C:\Windows\SysWOW64\SmartcardCredentialProvider.dll 2013-12-16 16:59:09 AD7FB087A238883D1618F29F7BBBD584 220160 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2013-12-16 16:59:09 AA6F6457116B559B76BC6A012CB4C293 247808 ----a-w- C:\Windows\SysWOW64\schannel.dll 2013-12-16 16:59:09 42B924C5F3924C1EB2539F22C10D7DF1 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2013-12-16 16:59:08 372948BB5E41CE42341C4398DE572E56 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2013-12-16 16:58:54 F0D0E883EBBDC7615DC9EDEA0FFB2817 216576 ----a-w- C:\Windows\SysWOW64\FWPUCLNT.DLL 2013-12-16 16:58:54 CE2A48CD0D2B39FB77FA4797C6434E71 656896 ----a-w- C:\Windows\SysWOW64\nshwfp.dll 2013-12-16 16:58:52 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\SysWOW64\wshom.ocx 2013-12-16 16:58:51 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\SysWOW64\scrrun.dll 2013-12-16 16:58:51 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\SysWOW64\cscript.exe 2013-12-16 16:58:51 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\SysWOW64\wscript.exe 2013-12-16 16:58:47 56E3313690866F99CD17AA1342F64AE1 311808 ----a-w- C:\Windows\SysWOW64\gdi32.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-12-18 16:56:04 59FABA5DD27F61469E2BC52AF2DD8284 1656 ----a-w- C:\Windows\Sysnative\ASOROSet.bin 2013-12-18 14:28:34 97D2958591ED2368E57745B6584F8DF4 1459712 ----a-w- C:\Windows\Sysnative\wstbtnrb.dll 2013-12-18 13:43:10 2FCADCC14F8E540F6ADE4BF92BD8AEDD 155888 ----a-w- C:\Windows\Sysnative\SRSWOW64.dll 2013-12-18 13:43:10 018D3D2478754AA411DE6DA6DE5F8F21 518896 ----a-w- C:\Windows\Sysnative\SRSTSX64.dll 2013-12-18 13:43:09 3F8A63EDF6E0E6827D5494CD8720F7CC 1662024 ----a-w- C:\Windows\Sysnative\RTSnMg64.cpl 2013-12-18 13:43:09 027D50CF8F4A9FAFF61B49958CFED1ED 2810072 ----a-w- C:\Windows\Sysnative\RtPgEx64.dll 2013-12-18 13:43:07 CA1D7D09854D305A64B100DC1400BA21 331880 ----a-w- C:\Windows\Sysnative\RtlCPAPI64.dll 2013-12-18 13:43:06 8814A281406553A2640D6A04702C63BD 14952 ----a-w- C:\Windows\Sysnative\RtkCoLDR64.dll 2013-12-18 13:43:06 0805289E121F3E3C458C970B08314EB2 149608 ----a-w- C:\Windows\Sysnative\RtkCfg64.dll 2013-12-18 13:43:05 ECAEC5FBBBEF8612AF0A866AFA5F7EF2 101208 ----a-w- C:\Windows\Sysnative\RTEEL64A.dll 2013-12-18 13:43:05 D0D0D82B7366E691275E433CD34F89B2 375128 ----a-w- C:\Windows\Sysnative\RTEEP64A.dll 2013-12-18 13:43:05 C08DE9FE49B8DE126EE7A42C7C80450E 1021656 ----a-w- C:\Windows\Sysnative\RtkApi64.dll 2013-12-18 13:43:05 8BFA2E598156C9224545DD3317856D9B 2587864 ----a-w- C:\Windows\Sysnative\RtkAPO64.dll 2013-12-18 13:43:05 6F4CD493196100EEF349D7132CECAFD9 78680 ----a-w- C:\Windows\Sysnative\RTEEG64A.dll 2013-12-18 13:43:04 A6286A6C7A1BBFCBA17AA54384A21D1C 204120 ----a-w- C:\Windows\Sysnative\RTEED64A.dll 2013-12-18 13:43:04 20B2E41DAA40B18444C19C1CCE9577DE 617176 ----a-w- C:\Windows\Sysnative\RtDataProc64.dll 2013-12-18 13:43:03 E9D4A333DF15D06C68AC4BFB9B6581CB 310104 ----a-w- C:\Windows\Sysnative\RP3DAA64.dll 2013-12-18 13:43:03 B6FE01558CC03F3866C9AD0ED19261D8 310104 ----a-w- C:\Windows\Sysnative\RP3DHT64.dll 2013-12-18 13:43:03 6294EB69AE8907495D3F69C19676DBC0 1286360 ----a-w- C:\Windows\Sysnative\RTCOM64.dll 2013-12-18 13:43:02 B6FB3F1D359FA0D293E952FD1550BB41 153304 ----a-w- C:\Windows\Sysnative\RCoInstII64.dll 2013-12-18 13:43:00 73F5245D81AC7922808255847ED0F401 397080 ----a-w- C:\Windows\Sysnative\MBWrp64.dll 2013-12-18 13:43:00 50E41327A6B0312313C5A90A203950CA 65112 ----a-w- C:\Windows\Sysnative\MBppld64.dll 2013-12-18 13:43:00 4CEE426B1FAD0479F95CB23F97EFCDC8 897152 ----a-w- C:\Windows\Sysnative\MBAPO64.dll 2013-12-18 13:43:00 09D9D2C960A14D3857B6E5B1AB6F4D0E 60504 ----a-w- C:\Windows\Sysnative\MBPPCn64.dll 2013-12-18 13:42:54 922CDA544EB5C5A57795B38ED5871B69 2743328 ----a-w- C:\Windows\Sysnative\FMAPO64.dll 2013-12-18 13:42:52 6E14F444A2506049EEC25CB5EDFE0905 113576 ----a-w- C:\Windows\Sysnative\CONEQMSAPOGUILibrary.dll 2013-12-18 13:38:52 EFF5A2BA8306B52BB5D93E2A7F17B1AD 1511712 ----a-w- C:\Windows\Sysnative\nvdispgenco6433182.dll 2013-12-18 13:38:52 595830EF0174FC9ABF3BA2823F26ED3D 1884448 ----a-w- C:\Windows\Sysnative\nvdispco6433182.dll 2013-12-18 13:38:51 E20089273809A4C0941A6F32141002B8 3125024 ----a-w- C:\Windows\Sysnative\nvcuvenc.dll 2013-12-18 13:38:51 DB45E530F6844C7791AE4696BDE4ED25 18208624 ----a-w- C:\Windows\Sysnative\nvd3dumx.dll 2013-12-18 13:38:51 BE4ECAFC366DDFCBBAE413D977A1A297 30361888 ----a-w- C:\Windows\Sysnative\nvoglv64.dll 2013-12-18 13:38:51 61A6605C74C789A6359C2C3474A1E7C7 657184 ----a-w- C:\Windows\Sysnative\NvIFR64.dll 2013-12-18 13:38:51 61593AE781A1DDB1EF0ED688F8BC3E97 707360 ----a-w- C:\Windows\Sysnative\NvFBC64.dll 2013-12-18 13:38:51 588C98756B76B61E4839328E0DC92717 11514624 ----a-w- C:\Windows\Sysnative\nvopencl.dll 2013-12-18 13:38:51 48AA8A36ECFE02A83A0A5A590621E3E4 25257248 ----a-w- C:\Windows\Sysnative\nvcompiler.dll 2013-12-18 13:38:51 2A5C842EF353FFF4A9DFCBED5545E5BC 3132704 ----a-w- C:\Windows\Sysnative\nvcuvid.dll 2013-12-18 13:38:51 102D9A72B71844204CCC219021A352EA 11600432 ----a-w- C:\Windows\Sysnative\nvcuda.dll 2013-12-17 23:45:07 A3427586C75749B51BF5DEBEDEB4AD5C 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2013-12-17 23:45:06 FB13F4873F6747AB4E3C37CAFEA8ACAE 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2013-12-17 23:45:04 EF098867663B07247587587C29E631DB 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll 2013-12-17 23:45:04 4E249022336591E9C6DE374A68C18EF6 574976 ----a-w- C:\Windows\Sysnative\ieui.dll 2013-12-17 23:45:04 3A722B49408BE7FE8A375C3B8FD57BB1 218624 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2013-12-17 23:45:04 2A0B7281854ACBECA25D8FDD06A4D714 53760 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2013-12-17 23:45:04 0F753FDA08F495E515629210FF0DA59E 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2013-12-17 23:45:03 DACB9A752CEB29C1D931514EF73803E1 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2013-12-17 23:45:03 40B33A42F90DED26DE4F5AAFA00F24CA 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2013-12-17 23:45:03 2E2875FFC6C2DC1ACF4F46AFC7819BD5 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll 2013-12-17 23:45:03 16B0A65F52531B769B891DC251ECC6C0 23183360 ----a-w- C:\Windows\Sysnative\mshtml.dll 2013-12-17 23:45:03 14074CF6190B937EB70BE2F93113B5FE 708608 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2013-12-17 23:45:02 95EED00D70485F6F82983EB7C03CC42A 817664 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2013-12-17 23:45:02 7016991D493B9F9FA492E75BD13D031D 2764288 ----a-w- C:\Windows\Sysnative\iertutil.dll 2013-12-17 23:45:01 FA30E3DC75EA42FE19B819F30FBDED8D 1995264 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2013-12-17 23:45:01 C8CF11D73017CC588411FCB936891CF4 1395200 ----a-w- C:\Windows\Sysnative\urlmon.dll 2013-12-17 23:45:01 9B6678DB9C6A232C5A84D2FDFFF8B0E1 2334208 ----a-w- C:\Windows\Sysnative\wininet.dll 2013-12-17 23:45:00 EDF5C6A9F33FBD3D717D1B77A9864C64 12996608 ----a-w- C:\Windows\Sysnative\ieframe.dll 2013-12-17 23:44:58 6491B719695D713335B431FCF0EAE28B 5769216 ----a-w- C:\Windows\Sysnative\jscript9.dll 2013-12-16 22:49:23 AB272BBFB05A8585C3405EFA9F605774 12625920 ----a-w- C:\Windows\Sysnative\wmploc.DLL 2013-12-16 22:49:20 8CBBB27369F9F07BC5E874E750EAF9D0 14631424 ----a-w- C:\Windows\Sysnative\wmp.dll 2013-12-16 22:48:04 2D01F001F8E45924E57B7BB77CF96BC2 28368 ----a-w- C:\Windows\Sysnative\IEUDINIT.EXE 2013-12-16 22:42:48 344DA9D196C0D98A738289BB09CE4CF6 940032 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2013-12-16 22:42:44 8F7FBD0177F79727CF945ABDA657A0AC 235008 ----a-w- C:\Windows\Sysnative\elshyph.dll 2013-12-16 22:42:43 6F1AF8E1206E92256459E3012C20472A 942592 ----a-w- C:\Windows\Sysnative\jsIntl.dll 2013-12-16 22:42:42 F862CD08F1AD4EE39BD506853F3C6103 16284 ----a-w- C:\Windows\Sysnative\ieuinit.inf 2013-12-16 22:42:42 E4A6577D74B2439974C8018AB5F1BFEA 13312 ----a-w- C:\Windows\Sysnative\msfeedssync.exe 2013-12-16 22:42:42 D6C88A6094D1FDAC56A186BBD7F06357 40448 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2013-12-16 22:42:42 D31AE751B6DACAFD0D7CC99EAE9606C2 131072 ----a-w- C:\Windows\Sysnative\IEAdvpack.dll 2013-12-16 22:42:42 CE8831D2DCB5803A4CBC8EDCCBBC2A05 77312 ----a-w- C:\Windows\Sysnative\tdc.ocx 2013-12-16 22:42:42 C6ECA2F7A1B189025171E6A29F2605AA 453120 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2013-12-16 22:42:42 C17139EAF939964142C7A1AEEE02DC81 616104 ----a-w- C:\Windows\Sysnative\ieapfltr.dat 2013-12-16 22:42:42 5BECC17076F1806F60BB259B654FAC5C 195584 ----a-w- C:\Windows\Sysnative\msrating.dll 2013-12-16 22:42:42 5141B67F14E2B6CBB6ADF851ABE364A5 90112 ----a-w- C:\Windows\Sysnative\SetIEInstalledDate.exe 2013-12-16 22:42:42 4399857346DD183683332921500046B1 86016 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe 2013-12-16 22:42:42 3A4FD19F13F8809BA08E9F76C0E38832 413696 ----a-w- C:\Windows\Sysnative\html.iec 2013-12-16 22:42:42 2EBD0C5B090125AECF017C57344C45AB 247808 ----a-w- C:\Windows\Sysnative\msls31.dll 2013-12-16 22:42:42 2405D24AA28CCC4CC7E0CC0AE008746F 48640 ----a-w- C:\Windows\Sysnative\mshtmler.dll 2013-12-16 22:42:42 0FBEBD36FEFFEE5AF25FDAEE5E35EE99 105984 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2013-12-16 22:42:42 0A9D5716CB1F3AFA73703F39647BB8C2 81408 ----a-w- C:\Windows\Sysnative\icardie.dll 2013-12-16 22:42:42 038ABC9BCC86DFF9E181D44E43E2CEBA 52224 ----a-w- C:\Windows\Sysnative\msfeedsbs.dll 2013-12-16 22:42:42 0134898497B6C6CD50F7FC5DE85712A6 296960 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2013-12-16 22:42:41 FD61D51199F3FC9EB0023FBF405EAAD0 147968 ----a-w- C:\Windows\Sysnative\occache.dll 2013-12-16 22:42:41 F00AE7B953ABEF1B53FBBA187DFC8238 243200 ----a-w- C:\Windows\Sysnative\webcheck.dll 2013-12-16 22:42:41 EE10AB99A480875E012CA339EC48F02B 1228800 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2013-12-16 22:42:41 E70D4270C43CE6C46841B684315B9EFF 62464 ----a-w- C:\Windows\Sysnative\pngfilt.dll 2013-12-16 22:42:41 CC84F4E36AA96810AD766C88DD657ADB 626176 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2013-12-16 22:42:41 C92173481A58935BE15172079CF122B8 235520 ----a-w- C:\Windows\Sysnative\url.dll 2013-12-16 22:42:41 BB6DEAFAC5F0AAEC37FEAF3F3AA48347 774144 ----a-w- C:\Windows\Sysnative\jscript.dll 2013-12-16 22:42:41 ADA5C3D49A12CED9F07913DC00E547A8 48128 ----a-w- C:\Windows\Sysnative\imgutil.dll 2013-12-16 22:42:41 A8C830CABD7640EE8E6F0F1019F91E83 548352 ----a-w- C:\Windows\Sysnative\vbscript.dll 2013-12-16 22:42:41 9870EC900829595D191BB03C6C48B479 83968 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2013-12-16 22:42:41 9675B272086CF5D22B83B541FAA8D4EA 30208 ----a-w- C:\Windows\Sysnative\licmgr10.dll 2013-12-16 22:42:41 95828D670CFD3B16EE188168E083C3C5 13824 ----a-w- C:\Windows\Sysnative\mshta.exe 2013-12-16 22:42:41 77FBE2E014EFB93FD037FA33AB8C7D6E 263376 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2013-12-16 22:42:41 68899208A26E4522D25DBA87FF2E98D1 84992 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2013-12-16 22:42:41 5BBDBE5EBB49EA7C76A2EE7490A45D68 101376 ----a-w- C:\Windows\Sysnative\inseng.dll 2013-12-16 22:42:41 46FD16F9B1924A2EA8CD5C6716CC654F 167424 ----a-w- C:\Windows\Sysnative\iexpress.exe 2013-12-16 22:42:41 1FCBE949A67939ADEAE7279E423AA684 135680 ----a-w- C:\Windows\Sysnative\iepeers.dll 2013-12-16 22:42:41 1EA6500C25A80E8BDB65099C509AF993 143872 ----a-w- C:\Windows\Sysnative\wextract.exe 2013-12-16 17:01:11 AC38EC8D0C1B4C783CA6A24D239A71B7 335360 ----a-w- C:\Windows\Sysnative\msieftp.dll 2013-12-16 17:01:09 97D50B0CABF18A6D40F8883D02DDB519 3155968 ----a-w- C:\Windows\Sysnative\win32k.sys 2013-12-16 17:01:08 4EDF8812713291DBBFDA67CE6215F236 465920 ----a-w- C:\Windows\Sysnative\WMPhoto.dll 2013-12-16 17:01:00 5FD67F205773EC80674DBBD609DB5315 2048 ----a-w- C:\Windows\Sysnative\tzres.dll 2013-12-16 17:00:44 B4F29F65AD3114051F01E9403346047F 81408 ----a-w- C:\Windows\Sysnative\imagehlp.dll 2013-12-16 17:00:30 780F6ECC4F55D76C9730E6B6C9B31913 1474048 ----a-w- C:\Windows\Sysnative\crypt32.dll 2013-12-16 16:59:47 34152997FB906895290E0199AC94B85F 1930752 ----a-w- C:\Windows\Sysnative\authui.dll 2013-12-16 16:59:46 8563BA40DF4F1E93A61B70E2C8B60CF8 190464 ----a-w- C:\Windows\Sysnative\SmartcardCredentialProvider.dll 2013-12-16 16:59:46 4403D5ECE7D8323CAF1207D1AA38FA01 197120 ----a-w- C:\Windows\Sysnative\credui.dll 2013-12-16 16:59:10 31FFED18C7B836CEC1B559347E32E151 340992 ----a-w- C:\Windows\Sysnative\schannel.dll 2013-12-16 16:59:09 B08EA91C774AA734E0B9881F85CD9F42 135680 ----a-w- C:\Windows\Sysnative\sspicli.dll 2013-12-16 16:59:09 747B9BA5412422F27934CB21131F0A3E 307200 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2013-12-16 16:59:09 4D71227301DD8D09097B9E4CC6527E5A 30720 ----a-w- C:\Windows\Sysnative\lsass.exe 2013-12-16 16:59:09 086F906B1D30C0A5D35FE0F6362DAB21 1447936 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2013-12-16 16:59:08 7C46EC9CCDE6E793713FA01DB2EB918E 28672 ----a-w- C:\Windows\Sysnative\sspisrv.dll 2013-12-16 16:59:08 208EAAFF40DA400190AA0605C797BEA2 28160 ----a-w- C:\Windows\Sysnative\secur32.dll 2013-12-16 16:58:54 D07EB640618F96490DB88C3CE58DB608 324096 ----a-w- C:\Windows\Sysnative\FWPUCLNT.DLL 2013-12-16 16:58:54 660C06F663F27760F565FD567B57625C 830464 ----a-w- C:\Windows\Sysnative\nshwfp.dll 2013-12-16 16:58:54 344789398EC3EE5A4E00C52B31847946 859648 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL 2013-12-16 16:58:52 ECB021CA3370582F0C7244B0CF06732C 156160 ----a-w- C:\Windows\Sysnative\cscript.exe 2013-12-16 16:58:52 731131A477F69476F2D739B0DB6A9281 202752 ----a-w- C:\Windows\Sysnative\scrrun.dll 2013-12-16 16:58:52 05D80FF3483BD8F268B01703C859198A 150016 ----a-w- C:\Windows\Sysnative\wshom.ocx 2013-12-16 16:58:51 045451FA238A75305CC26AC982472367 168960 ----a-w- C:\Windows\Sysnative\wscript.exe 2013-12-16 16:58:48 56325BB1FF19F2A5AC8713756AC41140 404480 ----a-w- C:\Windows\Sysnative\gdi32.dll ====== C:\Windows\Sysnative\drivers ===== 2013-12-18 14:28:34 161E84B112E9EF5C6387CC2B28020949 9856 ----a-w- C:\Windows\Sysnative\drivers\wstbtndb.sys 2013-12-18 14:27:50 8A375CB3B6D1A56A2AEEE72A5F1D0926 36096 ----a-w- C:\Windows\Sysnative\drivers\amdkmpfd.sys 2013-12-18 13:43:06 FA2B7507CD49908B2260949E52F8B9FE 3707864 ----a-w- C:\Windows\Sysnative\drivers\RTKVHD64.sys 2013-12-18 13:43:03 C8C7EAD8098EA7468D651F3459657240 681905 ----a-w- C:\Windows\Sysnative\drivers\RTAIODAT.DAT 2013-12-18 13:42:56 215DCB833B0747FBAD8AE28C85B5381C 34840 ----a-w- C:\Windows\Sysnative\drivers\gwfilt64.sys 2013-12-18 13:38:52 F554291C0A11F5B713B54C5886D4AA31 12613408 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys 2013-12-16 17:00:05 79059559E89D06E8B80CE2944BE20228 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys 2013-12-16 16:59:58 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys 2013-12-16 16:59:58 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys 2013-12-16 16:59:09 EBF28856F69CF094A902F884CF989706 458712 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2013-12-16 16:59:09 8F489706472F7E9A06BAAA198703FA64 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2013-12-16 16:59:09 868A2CAAB12EFC7A021682BCA0EEC54C 154560 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-12-18 17:07:08 -------- d-----w- C:\Program Files\trend micro 2013-12-18 13:43:36 -------- d-----w- C:\Program Files\Realtek ======= C:\PROGRA~2 ===== 2013-12-19 09:01:06 -------- d-----w- C:\PROGRA~2\Loaris 2013-12-17 20:44:04 -------- d-----w- C:\PROGRA~2\Stardock 2013-12-17 17:01:29 -------- d-----w- C:\PROGRA~2\IObit 2013-12-16 18:09:14 -------- d-----w- C:\PROGRA~2\PokerStars.BE ======= C: ===== ====== C:\Users\Dirk\AppData\Roaming ====== 2013-12-18 13:40:28 -------- d-s---w- C:\Users\UpdatusUser\AppData\Roaming\Microsoft 2013-12-18 13:40:28 -------- d-----w- C:\Users\UpdatusUser\AppData\Roaming\Media Center Programs 2013-12-18 13:40:28 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\Temp 2013-12-18 13:40:28 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\Microsoft Help 2013-12-18 13:40:28 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\Microsoft 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-12-17 20:45:01 -------- d-----w- C:\Users\Dirk\AppData\Local\Stardock_Corporation 2013-12-17 17:01:38 -------- d-----w- C:\Users\Dirk\AppData\Roaming\IObit 2013-12-17 14:39:47 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\CrashDumps 2013-12-16 22:32:17 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\CrashDumps 2013-12-16 18:10:02 -------- d-----w- C:\Users\Dirk\AppData\Local\PokerStars.BE ====== C:\Users\Dirk ====== 2013-12-19 09:01:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loaris Trojan Remover 2013-12-18 17:06:32 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Dirk\Downloads\RSITx64.exe 2013-12-18 13:40:32 -------- d-----w- C:\Users\UpdatusUser\Searches 2013-12-18 13:40:32 -------- d-----w- C:\Users\UpdatusUser\Contacts 2013-12-18 13:40:31 6FC234AD3752E1267B34FB12BCD6718B 20 --sha-w- C:\Users\UpdatusUser\ntuser.ini 2013-12-18 13:40:28 -------- d--h--w- C:\Users\UpdatusUser\AppData 2013-12-18 13:40:28 -------- d-----w- C:\Users\UpdatusUser\Saved Games 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\Videos 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\Pictures 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\Music 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\Links 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\Favorites 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\Downloads 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\Documents 2013-12-18 13:40:28 -------- d-----r- C:\Users\UpdatusUser\Desktop 2013-12-18 13:11:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Optimizer 3 2013-12-17 20:44:50 -------- d-----w- C:\ProgramData\Stardock 2013-12-17 20:44:08 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock 2013-12-17 20:43:36 E486057D5F966E695D996232DEAD8236 14162808 ----a-w- C:\Users\Dirk\Desktop\Fences2.exe 2013-12-17 17:11:19 D98979ABFF32EB76C5AB7527F714FFF8 4208656 ----a-w- C:\Users\Dirk\Downloads\dfsetup216.exe 2013-12-17 17:02:12 -------- d-----w- C:\ProgramData\IObit 2013-12-17 17:00:52 93EB684B0D84571A4F17885528DC3CAE 5852272 ----a-w- C:\Users\Dirk\Desktop\defragsetup.exe 2013-12-16 18:09:59 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.BE 2013-12-16 18:08:29 9BF36B2E7DA454E14EC6FE63433E29D6 27978264 ----a-w- C:\Users\Dirk\Downloads\PokerStarsInstallBE.exe 2013-12-16 18:05:30 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\bwin Poker ====== C: exe-files == 2013-12-19 09:01:07 8F6B45400AA4E36271367E36D1A1B898 4766208 ----a-w- C:\Program Files (x86)\Loaris\Trojan Remover 1.2\ltr12.exe 2013-12-19 09:01:06 0E3A036508CF82D91E03EB4FF592AE49 1186161 ----a-w- C:\Program Files (x86)\Loaris\Trojan Remover 1.2\unins000.exe 2013-12-19 09:00:40 98E5E6ED1C7BF360E7DAA4C8A878825A 28128066 ----a-w- C:\Grabit\MrSoftware Loaris Trojan Remover v1281 Unattended\Loaris Trojan Remover v1.2.8.1.exe 2013-12-18 17:07:08 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Dirk.exe 2013-12-18 15:03:56 5E0458CFB499C7641F35CB1FFD5F69BD 400456 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}\setup.exe 2013-12-18 15:03:22 BCE3974EB6C6A535062A8D1EAF757513 55840 ------w- C:\Program Files (x86)\Realtek\Realtek Card Reader\SetEHCIKey.exe 2013-12-18 15:03:22 BA9F72B06199A2E92852D77F74354377 2474056 ----a-w- C:\Program Files (x86)\Realtek\Realtek Card Reader\RIconMan.exe 2013-12-18 15:03:22 9B9939DE3454A62A8B450C2937266462 90696 ----a-w- C:\Program Files (x86)\Realtek\Realtek Card Reader\revcon64.exe 2013-12-18 15:03:22 8B23FB9DD8CDF72B7C8A598FE9E1336C 563416 ------w- C:\Program Files (x86)\Realtek\Realtek Card Reader\Rmb.exe 2013-12-18 15:03:22 57C5A20DA6D63CBFAB28A0EDFE911CD3 86600 ----a-w- C:\Program Files (x86)\Realtek\Realtek Card Reader\revcon32.exe 2013-12-18 13:43:57 07622F6D69B93403FC9CBB40450DD842 1719000 ----a-w- C:\Program Files (x86)\Realtek\Audio\InstallShield\Rtkupd64.exe 2013-12-18 13:43:12 07622F6D69B93403FC9CBB40450DD842 1719000 ------w- C:\Program Files (x86)\Realtek\Audio\Drivers\RtlUpd64.exe 2013-12-18 13:43:07 07622F6D69B93403FC9CBB40450DD842 1719000 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe 2013-12-18 13:43:01 BAF91E0F5CDE5300D4957859B8893D03 1361112 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe 2013-12-18 13:43:01 16438B000BF56F2CD7FDB5E6C3B38C7E 13662936 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 2013-12-18 13:42:54 0C57BAD785EEAD029ABF6CBCF43E9A39 51776 ----a-w- C:\Program Files\Realtek\Audio\HDA\FMAPP.exe 2013-12-18 13:42:52 49B3D2077199C44C1F3BBB16B4094AE6 121064 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe 2013-12-18 13:42:50 9B7E1DF9722AA964C973425FC449F46D 65024 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ISBEW64.exe 2013-12-18 13:42:49 D87A2C80695F22C428BD4A64291D45E3 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe 2013-12-18 13:40:26 BB8BC946B50AA9B6822BAC2BAC239530 1224480 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe 2013-12-18 13:40:26 815290E27B7B7D12AF013638819BE1B6 1914656 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 2013-12-18 13:40:26 517FABD7FF7BDC9EBE90AD242869FF65 190752 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\WLMerger.exe 2013-12-18 13:40:08 F584C975B1B2FCFD3189DB54E8BF190B 2450208 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{C5525E42-E16F-4EE7-B4F0-7176E6AA9C80}\NvTray.exe 2013-12-18 13:40:08 CF8B94FEEA50E39EE0396B5150F05B44 1196832 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{C5525E42-E16F-4EE7-B4F0-7176E6AA9C80}\nvxdsync.exe 2013-12-18 13:40:08 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{C5525E42-E16F-4EE7-B4F0-7176E6AA9C80}\setup.exe 2013-12-18 13:40:08 8E99BF264C1F20934A67E91BC9F4FB20 922912 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{C5525E42-E16F-4EE7-B4F0-7176E6AA9C80}\nvvsvc.exe 2013-12-18 13:40:08 7BF84F23080660504DC80C354F441F4C 6866208 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{C5525E42-E16F-4EE7-B4F0-7176E6AA9C80}\nvcplui.exe 2013-12-18 13:40:08 528C3B63ADAC429EF2797DFBACD79523 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{C5525E42-E16F-4EE7-B4F0-7176E6AA9C80}\nvSmartMaxapp64.exe 2013-12-18 13:40:08 3B0A1EAF7ACFE1550ACC993E17052E09 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{C5525E42-E16F-4EE7-B4F0-7176E6AA9C80}\nvSmartMaxapp.exe 2013-12-18 13:40:06 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{6F1E8CAB-95C9-4739-8802-D0869B05C19E}\setup.exe 2013-12-18 13:38:53 B258A85C4AE615409BD446F7FC03976C 1588512 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{1D8951E1-175B-4DAA-8726-49BB5C8D8AC3}\nvspcaps64.exe 2013-12-18 13:38:53 ABDE3FB776F6DF44A8807EEDC9D5E896 1368864 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{1D8951E1-175B-4DAA-8726-49BB5C8D8AC3}\nvspcaps.exe 2013-12-18 13:38:52 FAC8E3991C67BCC8664313BA4B217B72 32574752 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{F5A0EB2A-79CD-41D8-84A9-99C9713F6117}\nvcplsetupeng.exe 2013-12-18 13:38:52 CCEFE5EBA300A493AD79E4B3D39F1FE5 250144 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{F5A0EB2A-79CD-41D8-84A9-99C9713F6117}\dbInstaller.exe 2013-12-18 13:38:52 CCEFE5EBA300A493AD79E4B3D39F1FE5 250144 ----a-w- C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe 2013-12-18 13:38:52 C1CA26A077687A6369951D96C6E41E2A 596768 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{A1F28117-D650-4C0E-909C-9A4A1AE73CB2}\7z.exe 2013-12-18 13:38:52 BD8A110DFB30A5BF363129B8FC3CC7F9 3010336 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{329CD0C5-3F3D-4810-962D-2E32C08EF5E0}\x86\server\nvstreamer.exe 2013-12-18 13:38:52 BB8BC946B50AA9B6822BAC2BAC239530 1224480 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.{CDD73AF4-6C52-4C3A-9F50-FE2444832DE1}\ComUpdatus.exe 2013-12-18 13:38:52 90834ADAD2C9CA584130ECB392662923 629760 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{329CD0C5-3F3D-4810-962D-2E32C08EF5E0}\SteamLauncher\NVIDIA.SteamLauncher.exe 2013-12-18 13:38:52 87538C90E09D60D957338EE5C387412D 810784 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{A1F28117-D650-4C0E-909C-9A4A1AE73CB2}\GFExperience.exe 2013-12-18 13:38:52 815290E27B7B7D12AF013638819BE1B6 1914656 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.{CDD73AF4-6C52-4C3A-9F50-FE2444832DE1}\daemonu.exe 2013-12-18 13:38:52 7499DE42A69950F532F4B49D6161A1ED 87328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.LEDVisualizer.{431B02D3-9729-41DA-9EFF-48DB9FEB2FB2}\NvLedServiceHost.exe 2013-12-18 13:38:52 517FABD7FF7BDC9EBE90AD242869FF65 190752 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\NVIDIA.Update.{CDD73AF4-6C52-4C3A-9F50-FE2444832DE1}\WLMerger.exe 2013-12-18 13:38:52 4EE8FBE4C969EE0D790F33281BA33100 125728 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.LEDVisualizer.{431B02D3-9729-41DA-9EFF-48DB9FEB2FB2}\NvLedVisualizer.exe 2013-12-18 13:38:52 4D287BC6BAACA3983D8398391EB61764 14652704 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{329CD0C5-3F3D-4810-962D-2E32C08EF5E0}\x86\server\nvstreamsvc.exe 2013-12-18 13:38:52 26E43EF59996485CCC7AAF3082CA877F 3894560 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{329CD0C5-3F3D-4810-962D-2E32C08EF5E0}\amd64\server\nvstreamer.exe 2013-12-18 13:38:52 259A2A5AE440B5EC3F6DEA96AA90F3BF 15125280 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{329CD0C5-3F3D-4810-962D-2E32C08EF5E0}\amd64\server\nvstreamsvc.exe 2013-12-18 13:38:52 234481D4BF1AE89CAAF34F3C51AB6497 23772960 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.3DVision.{A87C1266-785A-4BAE-A968-9282BCE6075B}\3DVision_331.82.exe 2013-12-18 13:38:52 1E7FF436A5395FE57AB5FC662FC3767F 1028384 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{A1F28117-D650-4C0E-909C-9A4A1AE73CB2}\nvtmru.exe 2013-12-18 13:38:21 65A6EFC0FEBF70556C2D5389A48693D9 412960 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{570304E1-4E18-4599-A960-411BFE2EBCCF}\setup.exe 2013-12-18 13:01:37 7AA7EEFE5FB0ADABC039DEC8B694F285 5843247 ----a-w- C:\Grabit\MrSoftware Systweak RegClean Pro v62165 Unattended\Systweak RegClean Pro v6.21.65.exe 2013-12-17 23:45:05 78CCC9D9665DC2A4DDC31CD99ED374FC 482816 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2013-12-17 23:45:05 0E1D755673453108415F802C90704327 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2013-12-17 20:44:04 88EEBFA3D53250DC018CAA193610CFF6 1351352 ----a-w- C:\Program Files (x86)\Stardock\Fences\uninstall.exe 2013-12-17 17:02:36 6617AD1E87714966B56F5EF3B8E80A84 407872 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 2\NewUpdater.exe 2013-12-16 22:49:24 D21DD7BFC81C8623DE48EBB17133D59C 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe 2013-12-16 22:49:24 9AED8E824CF5FAAB67957EDBC5512060 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe 2013-12-16 22:42:44 CC02FE4520CA886508069245D9A6962F 222720 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2013-12-16 22:42:44 C8A8321292A459B0A17FB39A782A5C74 806096 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2013-12-16 22:42:43 7F7F391491C315A4A72EFCAC0D34FA93 25600 ----a-w- C:\Program Files (x86)\Internet Explorer\ExtExport.exe 2013-12-16 22:42:43 0685765C0CBE095BA0C6C8790BAE21EF 804560 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2013-12-16 22:42:42 D68007F924B9F387AA7C76F48D0A260A 223232 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2013-12-16 22:42:42 41F922D6A794C0F8425C8436D7077C84 359632 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe 2013-12-16 21:54:00 9951192EACEAA79DCE5E77E785C1AA55 400464 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_64_C22F1A733501EA96.exe 2013-12-16 21:53:57 1ACCA74287FE5D7449FBB2B9F0C83341 309328 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_32_D053C89A9DB0461F.exe 2013-12-16 21:53:53 228A4633D638F7EEA6400D5ED5274397 1071696 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_231F3FD17DB59CFD.exe 2013-12-16 21:53:11 BD5A28471F81D492D21A381610672411 531424 ----a-w- C:\Program Files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\7.5.4805.320\GoogleToolbarInstaller_updater_signed.exe 2013-12-16 18:09:59 DDB7A1B4FBFA30DAF69FD8A565A74763 334640 ----a-w- C:\Program Files (x86)\PokerStars.BE\Tracer.exe 2013-12-16 18:09:48 597415862CF01CC750D9AB24E32CEE33 46360 ----a-w- C:\Program Files (x86)\PokerStars.BE\Stub.exe 2013-12-16 18:09:47 B65DF29E2AD8438F13773C7F9A649F00 695616 ----a-w- C:\Program Files (x86)\PokerStars.BE\PokerStarsUpdate.exe 2013-12-16 18:09:47 46B1063F3CF12B027D937FFFF2FF213F 348160 ----a-w- C:\Program Files (x86)\PokerStars.BE\PokerStarsUninstall.exe 2013-12-16 18:09:47 3266C86D19FAEC7F2373412E8A3F7746 656728 ----a-w- C:\Program Files (x86)\PokerStars.BE\PokerStarsOnlineUpdate.exe 2013-12-16 18:09:46 35683682ABEEF9808ABCAA046EA6A2DB 816472 ----a-w- C:\Program Files (x86)\PokerStars.BE\PokerStarsCommunicate.exe 2013-12-16 18:09:44 452442CA0E96D6084C0E5AFDEB1B5FFF 212288 ----a-w- C:\Program Files (x86)\PokerStars.BE\PokerStarsBr.exe 2013-12-16 18:09:40 ECFB7B071C14FE1843CE93645A317FA5 10618688 ----a-w- C:\Program Files (x86)\PokerStars.BE\PokerStars.exe 2013-12-16 17:01:47 CB3091FB191AB59FCF68CB1E8137A7B5 13435232 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.63\31.0.1650.63_30.0.1599.101_chrome_updater.exe 2013-12-16 16:47:27 CA0A340ABCF0C14A09691CBC90186AB4 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleUpdateBroker.exe 2013-12-16 16:47:27 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleUpdateSetup.exe 2013-12-16 16:47:27 600B1A4BCC0823A96DC7B86F005ADBB8 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleUpdateOnDemand.exe 2013-12-16 16:47:11 9CCBA5E2489E603BB1578D1D541252A8 273800 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe 2013-12-16 16:47:10 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe 2013-12-16 16:46:20 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleUpdate.exe 2013-12-16 16:45:56 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.3\GoogleUpdateSetup.exe === C: other files == 2013-12-19 09:38:48 30DBDDF043069954481A5D5D9717C4F9 404526 ----a-w- C:\Users\Public\Desktop\sample_20131912_1038.zip 2013-12-18 15:03:21 8EB9D800AA6AF3A65289DD58FF9D6DBC 264408 ----a-w- C:\Program Files (x86)\Realtek\Realtek Card Reader\RtsUStor.sys 2013-12-18 14:28:34 161E84B112E9EF5C6387CC2B28020949 9856 ----a-w- C:\Windows\System32\drivers\wstbtndb.sys 2013-12-18 14:27:50 8A375CB3B6D1A56A2AEEE72A5F1D0926 36096 ----a-w- C:\Windows\System32\drivers\amdkmpfd.sys 2013-12-18 13:43:06 FA2B7507CD49908B2260949E52F8B9FE 3707864 ----a-w- C:\Windows\System32\drivers\RTKVHD64.sys 2013-12-18 13:42:56 215DCB833B0747FBAD8AE28C85B5381C 34840 ----a-w- C:\Windows\System32\drivers\gwfilt64.sys 2013-12-18 13:38:52 F554291C0A11F5B713B54C5886D4AA31 12613408 ----a-w- C:\Windows\System32\drivers\nvlddmkm.sys 2013-12-18 13:38:52 9AD1ABCD0CDC3C840EE7BFE3E4ED3830 33568 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{6182A48A-C664-4706-A3FB-47F95843DAB1}\nvvad32v.sys 2013-12-18 13:38:52 557FF31892F4FE95658E2392D64F6BF2 435232 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.NVIRUSB.{0D7ECC02-9C1E-424D-932C-04009D366551}\nvstusb32.sys 2013-12-18 13:38:52 31B16657118E439B77B0A527F7EA66CB 39200 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{6182A48A-C664-4706-A3FB-47F95843DAB1}\nvvad64v.sys 2013-12-18 13:38:52 25FEA7ECF2CCC69284BA2FE962AA7E30 451872 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.NVIRUSB.{0D7ECC02-9C1E-424D-932C-04009D366551}\nvstusb64.sys 2013-12-16 18:05:18 E1B922BB434B0E5DBA1DA43F44A45C32 70216 ----a-w- C:\Programs\bwinbe\EBEngine\GGCH\Temp\pbwggch.zip 2013-12-16 18:05:18 C048250EB43D263B67CF839828251A0E 13455 ----a-w- C:\Programs\bwinbe\EBEngine\MSIE\Temp\pbwmsie.zip 2013-12-16 18:05:18 39070264A9CDC99246FDE1596430A6BC 18866423 ----a-w- C:\Programs\bwinbe\EBEngine\GGCH\Temp\cef.zip 2013-12-16 17:01:09 97D50B0CABF18A6D40F8883D02DDB519 3155968 ----a-w- C:\Windows\System32\win32k.sys 2013-12-16 17:00:05 79059559E89D06E8B80CE2944BE20228 497152 ----a-w- C:\Windows\System32\drivers\afd.sys 2013-12-16 16:59:58 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys 2013-12-16 16:59:58 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys 2013-12-16 16:59:09 EBF28856F69CF094A902F884CF989706 458712 ----a-w- C:\Windows\System32\drivers\cng.sys 2013-12-16 16:59:09 8F489706472F7E9A06BAAA198703FA64 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2013-12-16 16:59:09 868A2CAAB12EFC7A021682BCA0EEC54C 154560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Clavier+"="C:\Users\Dirk\AppData\Local\Clavier+\Clavier.exe" "RoboForm"="C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" "RocketDock"="C:\Program Files (x86)\RocketDock\RocketDock.exe" "StickyPassword"="C:\Program Files (x86)\Sticky Password\stpass.exe /autorunned" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "JMB36X IDE Setup"="C:\Windows\RaidTool\xInsIDE.exe" "RIMBBLaunchAgent.exe"="C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" "TrojanScanner"="C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot" "PromptService"="C:\Windows\PromptService.exe" "PromptService64"="C:\Windows\PromptService64.exe" "SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" "AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin" "Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Clavier+"="C:\Users\Dirk\AppData\Local\Clavier+\Clavier.exe" "RoboForm"="C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" "RocketDock"="C:\Program Files (x86)\RocketDock\RocketDock.exe" "StickyPassword"="C:\Program Files (x86)\Sticky Password\stpass.exe /autorunned" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "Fences"="C:\Program Files (x86)\Stardock\Fences\Fences.exe /startup" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" ==== Startup Registry Disabled ====================== [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-] "Skype"="\"C:\\Program Files (x86)\\Skype\\Phone\\Skype.exe\" /nosplash /minimized" "AshSnap"="C:\\Program Files (x86)\\Ashampoo\\Ashampoo Snap 6\\ashsnap.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "EgisTecLiveUpdate"="\"C:\\Program Files (x86)\\EgisTec Egis Software Update\\EgisUpdate.exe\"" "nmapp"="\"C:\\Program Files (x86)\\nmapp.exe\" -autorun -nosplash" "nmctxth"="\"C:\\Program Files (x86)\\Common Files\\Pure Networks Shared\\Platform\\nmctxth.exe\"" "ROC_roc_ssl_v12"="\"C:\\Program Files (x86)\\AVG Secure Search\\ROC_roc_ssl_v12.exe\" / /PROMPT /CMPID=roc_ssl_v12" "SearchSettings"="\"C:\\Program Files (x86)\\Common Files\\Spigot\\Search Settings\\SearchSettings.exe\"" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acrobat Assistant 8.0] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Acrobat Assistant 8.0" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Adobe\\Acrobat 9.0\\Acrobat\\Acrotray.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Acrobat Speed Launcher] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe Acrobat Speed Launcher" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Adobe\\Acrobat 9.0\\Acrobat\\Acrobat_sl.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe Reader Speed Launcher" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeAAMUpdater-1.0" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS4ServiceManager] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeCS4ServiceManager" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe\" -launchedbylogin" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeUpdater] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeUpdater" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\Common Files\\Adobe\\Updater\\AdobeUpdater.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe_ID0ENQBO] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe_ID0ENQBO" "hkey"="HKLM" "command"="C:\\PROGRA~2\\COMMON~1\\Adobe\\ADOBEV~1\\Server\\bin\\VERSIO~2.EXE" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ArcadeDeluxeAgent] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ArcadeDeluxeAgent" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\ArcadeDeluxeAgent.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BackupManagerTray] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BackupManagerTray" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\NewTech Infosystems\\Acer Backup Manager\\BackupManagerTray.exe\" -h -k" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BCSSync" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Comrade.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Comrade.exe" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\GameSpy\\Comrade\\Comrade.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DAEMON Tools Lite" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DU Meter] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DU Meter" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\DU Meter\\DUMeter.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Easy-PrintToolBox] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Easy-PrintToolBox" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Canon\\Easy-PrintToolBox\\BJPSMAIN.EXE /logon" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HDInspector.exe] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HDInspector.exe" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Hard Drive Inspector\\HDInspector.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Hotkey Utility] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Hotkey Utility" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Acer\\Hotkey Utility\\HotkeyUtility.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HP Software Update" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msnmsgr" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Windows Live\\Messenger\\msnmsgr.exe\" /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mwlDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mwlDaemon" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\EgisTec\\MyWinLocker 3\\x86\\mwlDaemon.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NortonOnlineBackupReminder] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NortonOnlineBackupReminder" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Symantec\\Norton Online Backup\\Activation\\NobuActivation.exe\" UNATTENDED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PlayMovie] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="PlayMovie" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Acer Arcade Deluxe\\PlayMovie\\PMVService.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="QuickTime Task" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Reader Library Launcher] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Reader Library Launcher" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Sony\\Reader\\Data\\bin\\launcher\\Reader Library Launcher.exe " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Skype" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Skype\\Phone\\Skype.exe\" /nosplash /minimized" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sonic PDF Print Dispatcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Sonic PDF Print Dispatcher" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Investintech.com Inc\\Sonic PDF Creator\\3.0\\itSONPrnDisp.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Spotify" "hkey"="HKCU" "command"="\"C:\\Users\\Dirk\\AppData\\Roaming\\Spotify\\spotify.exe\" /uri spotify:autostart" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Spotify Web Helper" "hkey"="HKCU" "command"="\"C:\\Users\\Dirk\\AppData\\Roaming\\Spotify\\Data\\SpotifyWebHelper.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SpybotSD TeaTimer] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SpybotSD TeaTimer" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\Spybot - Search & Destroy\\TeaTimer.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Steam] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Steam" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Steam\\Steam.exe\" -silent" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\swg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="swg" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="uTorrent" "hkey"="HKCU" "command"="\"C:\\Users\\Dirk\\AppData\\Roaming\\uTorrent\\uTorrent.exe\" /MINIMIZED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\HP Digital Imaging Monitor.lnk" "backup"="C:\\Windows\\pss\\HP Digital Imaging Monitor.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~2\\HP\\DIGITA~1\\bin\\hpqtra08.exe " "item"="HP Digital Imaging Monitor" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\McAfee Security Scan Plus.lnk" "backup"="C:\\Windows\\pss\\McAfee Security Scan Plus.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~2\\MCAFEE~1\\307523~1.318\\SSSCHE~1.EXE " "item"="McAfee Security Scan Plus" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NCdownloader.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\NCdownloader.lnk" "backup"="C:\\Windows\\pss\\NCdownloader.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~2\\SOLIBO~1\\NCDOWN~1\\NCDOWN~1.EXE " "item"="NCdownloader" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SmartCopy.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\SmartCopy.lnk" "backup"="C:\\Windows\\pss\\SmartCopy.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~2\\NORTHS~1\\SMARTC~1\\SMARTC~1.EXE " "item"="SmartCopy" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SmartLauncher.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\SmartLauncher.lnk" "backup"="C:\\Windows\\pss\\SmartLauncher.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~2\\NORTHS~1\\SMARTL~1\\SMARTL~1.EXE " "item"="SmartLauncher" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Dirk^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk] "path"="C:\\Users\\Dirk\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Adobe Gamma.lnk" "backup"="C:\\Windows\\pss\\Adobe Gamma.lnk.Startup" "backupExtension"=".Startup" "command"="C:\\PROGRA~2\\COMMON~1\\Adobe\\CALIBR~1\\ADOBEG~1.EXE " "item"="Adobe Gamma" ==== Startup Folders ====================== 2011-09-17 09:31:42 1173 ----a-w- C:\Users\Dirk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FastStone Capture.lnk 2013-12-17 20:44:25 2060 ----a-w- C:\Users\Dirk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Fences.lnk 2013-07-03 21:48:41 2055 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk 2012-06-20 12:54:41 1179 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\YouTube Uploader for CASIO.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [16/12/2013 19:05] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19/01/2011 14:06] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19/01/2011 14:06] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Dirk-PC-Dirk" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\SysNative\tasks\Egis technology-online actualiseringsprogramma" [C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files (x86)\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\{AE47E636-C2C0-42C7-A080-F5D17EB4A403}" [C:\Program Files (x86)\Skype\\Phone\Skype.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] "C:\Windows\SysNative\tasks\Recovery Management\Burn Notification" [C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{ACAA314B-EEBA-48e4-AD47-84E31C44796C}"="C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff" [29/01/2013 21:27] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "{54affe52-8223-453b-be1e-2fe2e250045c}"="C:\Users\Dirk\AppData\Roaming\Lamantine\Sticky Password\spAutofill" [30/10/2013 13:27] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default - Undetermined - C:\Program Files (x86)\FreeRIP Toolbar\FF - Undetermined - C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension - Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn - Undetermined - C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension - PDF Download - %ProfilePath%\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250} - ColorZilla - %ProfilePath%\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} - ReminderFox - %ProfilePath%\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae} - Firebug - %ProfilePath%\extensions\firebug@software.joehewitt.com.xpi - Malayalam IN Language Pack - %ProfilePath%\extensions\langpack-ml@firefox.mozilla.org.xpi - Nederlands NL Language Pack - %ProfilePath%\extensions\langpack-nl@firefox.mozilla.org.xpi - Platinum Hide IP - %ProfilePath%\extensions\support@platinumhideip.com.xpi - All-in-One Sidebar - %ProfilePath%\extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi - DVDVideoSoft YouTube MP3 and Video Download - %ProfilePath%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi - Web Developer - %ProfilePath%\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - QuickStores-Toolbar - %AppDir%\extensions\quickstores@quickstores.de - Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Dirk\AppData\Roaming\Mozilla\Firefox\Profiles\rxxcbrwy.default F891089A6AB9E12FEDEBCC5EC0F40D66 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll - Shockwave Flash 4642E0013BB8BBB58F857CD629AA9631 - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll - PDF-XChange Viewer ==== Deleted Firefox Extensions ====================== C:\Program Files (x86)\Mozilla Firefox\extensions\quickstores@quickstores.de deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions boipimhfjpakfgckhbljjengakjhkcbp - C:\Users\Dirk\AppData\Roaming\BabSolution\CR\mixiDj.crx[] efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[] hemmfhklkpjgcjgbkeifcnfffmejlipc - C:\ProgramData\SaveAs\hemmfhklkpjgcjgbkeifcnfffmejlipc.crx[] kpepfkjapeclaafmhoelccknpfedainn - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\mixidj.crx[] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02/03/2012 10:53] mmiopbgcekanlhpjkonogoljpfmhpkhf - C:\Program Files (x86)\LyricsPal\125.crx[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[28/01/2013 12:01] continuetosave - Dirk - Backup Default\Extensions\koinffoagbppgfghcodeidelicdlolop Skype Click to Call - Dirk - Backup Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl DVDVideoSoft Browser Extension - Dirk - Backup Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp Google Docs - Dirk - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Dirk - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Dirk - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo MixiDJ Toolbar - Dirk - Default\Extensions\boipimhfjpakfgckhbljjengakjhkcbp Last updated at time on date - Dirk - Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Adblock for Youtube\u2122 - Dirk - Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk Adblock for Gmail\u2122 - Dirk - Default\Extensions\cobbaepnkejfnljmjgimdhoefifdhcak Google Search - Dirk - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf AdBlock - Dirk - Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom MixiDj Chrome Toolbar - Dirk - Default\Extensions\kpepfkjapeclaafmhoelccknpfedainn Skype Click to Call - Dirk - Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl DVDVideoSoft Browser Extension - Dirk - Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp Google Wallet - Dirk - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Last updated at time on date - Dirk - Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch Gmail - Dirk - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\boipimhfjpakfgckhbljjengakjhkcbp deleted successfully C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_boipimhfjpakfgckhbljjengakjhkcbp_0.localstorage deleted successfully C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpepfkjapeclaafmhoelccknpfedainn deleted successfully C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Backup Default\Extensions\koinffoagbppgfghcodeidelicdlolop deleted successfully C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Backup Default\Local Storage\chrome-extension_koinffoagbppgfghcodeidelicdlolop_0.localstorage deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} Conduit Search Url="http://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=&q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_nlBE415" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_USERS\S-1-5-21-2228187871-3197938237-4166181318-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1A594BF8F3A4D1C4DB72F3A32B6E7636 deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\ContinueToSave deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C7E71AD0-AEC7-40CA-A221-E6E51C043826} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\boipimhfjpakfgckhbljjengakjhkcbp deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\hemmfhklkpjgcjgbkeifcnfffmejlipc deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kpepfkjapeclaafmhoelccknpfedainn deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\mmiopbgcekanlhpjkonogoljpfmhpkhf deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1 deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iMesh deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0F44DC3F-6E62-4961-A14B-95323C512F9B}_is1 deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilividtoolbarguid deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PC Optimizer Pro deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BEB2C565-1EF0-422B-97AE-B194E3FA0C7D} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\1A594BF8F3A4D1C4DB72F3A32B6E7636 deleted successfully HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\565C2BEB0FE1B22479EA1B493EAFC0D7 deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0 deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DU Meter deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NortonOnlineBackupReminder deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Dirk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Dirk\AppData\Local\Mozilla\Firefox\Profiles\rxxcbrwy.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Backup Default\Cache emptied successfully C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Dirk\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Users\Dirk\AppData\Local\Temp will be emptied at reboot C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Dirk\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Program Files (x86)\Search Results Toolbar" not found "C:\PROGRA~2\Search Results Toolbar" not found ==== EOF on do 19/12/2013 at 12:16:27,85 ======================
  7. pantani
    Als ik iets durf te copy pasten, dan verdwijnen mijn pictogrammen en taakbalk, ik krijg deze alleen terug door te rebooten, iemand enig idee hoe dat komt? Ik heb regcleaner, ccleaner gebruikt om mijn pc een beetje op te ruimen, maar telkens verdwijnen de pictogrammen en taakbalk na copy paste, soms als ik op bureaublad klik verwijnt deze ook, ik kan dan niets meer doen, alleen ctrl alt del en rebooten.[ATTACH]29520[/ATTACH] Bijlage met het log bestand is toegevoegd. Alvast bedankt hoor. log.txt
  8. pantani
    Dank u wel
  9. pantani
    Als ik iets durf te copy pasten, dan verdwijnen mijn pictogrammen en taakbalk, ik krijg deze alleen terug door te rebooten, iemand enig idee hoe dat komt? Ik heb regcleaner, ccleaner gebruikt om mijn pc een beetje op te ruimen, maar telkens verdwijnen de pictogrammen en taakbalk na copy paste, soms als ik op bureaublad klik verwijnt deze ook, ik kan dan niets meer doen, alleen ctrl alt del en rebooten. Mvg
  10. pantani
    Bedankt voor de hulp, het helpt idd
  11. pantani
    Hallo allemaal, In bijlage heb ik een documentje gestoken die eens iemand heeft gemaakt voor mij, nu is de naam van mijn forum iets veranderd alsook het logo, ik wou nu een nieuwtje maken, maar hoe weet ik niet, kan iemand mij hier mee helpen aub. [ATTACH]13801[/ATTACH] kenbaar maken.doc
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.