-
Items
38 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Berichten die geplaatst zijn door Fonzer
-
-
Hallo allemaal,
Ik hoop wat hulp te krijgen van de specialisten onder jullie!
Ik heb onlangs een nieuwe router gekocht (TP-Link AC1750). Dit met als hoofdbedoeling mijn WIFI-bereik uit te breiden, doch om eveneens nog andere apparaten aan te sluiten via ethernet, alsook eventueel een USB-HD. Ik had dus de bedoeling deze aan de modem/router van telenet te koppelen, maar dan als bridge/client. Ik heb hier een totale leek in en heb dus wat opzoekingswerk verricht.
Ik heb gelezen dat je de router (TP-Link) moet instellen als bridge, dat je de DHCP moet uitschakelen alsook de NAT. De kabel van de telenetmodem moet je vervolgens in de ethernet-poort (LAN) van de router steken en niet in de WAN-poort.
Tot zover is alles goed gelukt. Ik heb overal internet, mijn WIFI is stukken beter en kan zowel via de computer aangesloten op mijn router, als deze op de telenet-modem mijn NAS-harde schijf die eveneens op het netwerk hangt bedienen. Alles werkt dus eigenlijk, doch heb ik één probleem. Om dit allemaal in te stellen ga ik naar de setup van mijn router (TP-link) via het IP (192.168.1.1) in te geven in een internetbrowser. Nadat ik de DHCP en de NAT heb uitgeschakeld, geraak ik daar niet meer in. Zeer lastig om mijn instellingen van de USB-poort op de router in te stellen.
Kan iemand mij zeggen wat ik verkeerd doe. Moet ik andere instellingen gebruiken?
Ik heb enkele screenshots van mijn instellingen meegestuurd, dat geeft misschien een beter beeld.
Alvast bedankt en benieuwd naar het antwoord....
Mvg,
Steven
-
Hallo,
Ik zit sinds een paar weken valt mijn Telenet Wi-Fi signaal op mijn GSM weg en verbindt die automatisch met mijn telenet Homespot. Het gebeurt niet altijd, ik heb de indruk dat het vooral 's avonds een probleem is (als iedereen thuis is...) maar dat kan ook een gevoel zijn.
Ik maakt vervolgens terug verbinding met mijn telenet Wi-Fi, soms zonder problemen, soms vraagt opnieuw het wachtwoord.... soms niet.... Nadat hij verbonden is, zie je soms na enkele seconden de verbinding terug overspringen naar mijn telenet Homespot, soms na enkele minuten, soms na een uur.... ik geraak er gewoon niet meer aan uit.
Mijn GSM toestel is een Samsung Galaxy S4.
Ik heb hetzelfde probleem bij mijn Samsung Galaxy Tab 2.
Merkwaardig is dat mijn dochter dit probleem bij haar Ipod niet heeft. Mijn printer en laptop zitten eveneens op dit Wi-Fi netwerk en hebben hier ook geen last van.
Zoals reeds aangehaald, dit probleem is sinds enkele weken. Daarvoor heb ik hier nooit last van gehad. Bij mijn weten heb ik niets aan de instellingen van mijn router/modem gewijzigd. Ik heb hem al zelfs via mijn.telenet.be gereset, doch ook zonder succes.
Weet iemand hier raad mee?
Alvast bedankt!
Steven
-
Prachtig! Werkt weer prima!
Bedankt voor de support!
Grtz
Steven
-
Er zijn geen problemen meer... ik denk dat alles opgelost is!
Bedankt voor de snelle en professionele hulp!
Steven
-
Dit heeft inderdaad zeer... maar dan zeer lang geduurd.
Bij het afsluiten heb ik gekozen voor "uninstall", waardoor er vermoedelijk dus geen log werd opgeslagen.
Ik heb wel een logje gemaakt van de bestanden die gevonden werden en gewist werden.
Grtz
Steven
-
-
Bedankt voor de snelle reactie.
Zoals gevraagd....
Grtz
Steven
-
Hallo,
Mijn dochter heeft op mijn laptop van alles gedownload voor haar spelletje Minecraft. Uiteraard zat hier wat rotzooi bij, waaronder vermoedelijk die omiga-plus miserie.
Met wat zoekwerk zag ik dat jullie in verband met dit probleem een logje vragen van RSIT vragen.
Besturingssysteem is Windows 7 - 64 bit.
In bijlage heb ik alvast een logje geplaatst.
Kunnen jullie eventjes kijken hiernaar?
Bedankt
Steven
-
Zo, dat is ook gebeurd.
De laptop loopt weer als een treintje!
Nogmaals bedankt voor de hulp!
Ik zet deze topic alvast op "OPGELOST".
Steven
-
Op het eerste zicht werkt alles prima!
Ik zet de virusscanner gelijk terug aan en hoop dat het voorlopig zo blijft ;-)
Bedankt voor de snelle en professionele hulp!
Steven
-
Bedankt voor de snelle reactie!
Zoek.exe v5.0.0.0 Updated 26-07-2014
Tool run by johny on ma 28/07/2014 at 11:57:43,33.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\johny\Desktop\zoek.exe [scan all users] [script inserted]
==== Older Logs ======================
C:\zoek-results2014-07-28-092608.log 24815 bytes
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
"Yahoo\Users\johny\AppData\Local\Pay-By-Ads\Yahoo Search\1.3.8.2\dsrlte.exe"=-
"Yahoo\Users\johny\AppData\Local\Pay-By-Ads\Yahoo Search\1.3.8.2\dsrlte.exe"=-
==== Deleting Files \ Folders ======================
C:\Windows\Sysnative\Tasks\Yahoo! Search deleted
==== C:\zoek_backup content ======================
C:\zoek_backup (files=72 folders=39 44473066 bytes)
==== EOF on ma 28/07/2014 at 11:59:19,44 ======================
-
Met wat vertraging.... ik had de lader van de laptop niet mee.... maar nu heb ik terug stroom en hieronder het gevraagde postje!
Zoek.exe v5.0.0.0 Updated 26-07-2014
Tool run by johny on ma 28/07/2014 at 11:03:29,51.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\johny\Desktop\zoek.exe [scan all users] [script inserted]
==== System Restore Info ======================
28/07/2014 11:04:59 Zoek.exe System Restore Point Created Succesfully.
==== Empty Folders Check ======================
C:\Users\johny\AppData\Roaming\rmi deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mfefire deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mfevtp deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\System\mfehidk deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mfehidk deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mfewfpk deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mfeavfk deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mfefirek deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\cfwids deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mfeapfk deleted successfully
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
==== Registry Fix Code x64 ======================
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Yahoo Search"=-
==== Deleting Files \ Folders ======================
C:\Users\johny\AppData\Local\Pay-By-Ads not found
C:\Program Files (x86)\NewPlayer not found
C:\ProgramData\WindowsMangerProtect not found
C:\Program Files (x86)\Cling Clang deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Systweak deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair deleted
C:\Users\johny\Searches deleted
C:\Windows\Reimage.ini deleted
C:\windows\SysNative\Tasks\Reimage Reminder deleted
C:\windows\SysNative\tasks\Optimizer Pro Schedule deleted
C:\windows\SysNative\tasks\Right Backup_startup deleted
"C:\windows\SysNative\mfevtps.exe" deleted
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AddonNP.lnk" deleted
"C:\windows\SysNative\drivers\mfehidk.sys" deleted
"C:\windows\SysNative\drivers\mfewfpk.sys" deleted
"C:\windows\SysNative\drivers\mfeavfk.sys" deleted
"C:\windows\SysNative\drivers\mfefirek.sys" deleted
"C:\windows\SysNative\drivers\cfwids.sys" deleted
"C:\windows\SysNative\drivers\mfeapfk.sys" deleted
"C:\Windows\Installer\213d0.msi" deleted
"C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe" deleted
"C:\Program Files\Common Files\mcafee\systemcore\mfehida.dll" deleted
"C:\Program Files\Common Files\mcafee" not deleted
"C:\Program Files\Common Files\mcafee\systemcore" not deleted
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2014-07-28 08:54:43 357CEBBCD99C8928A2D1A61A6CACC168 43152 ----a-w- C:\Windows\avastSS.scr
====== C:\Users\johny\AppData\Local\Temp ====
2014-07-28 09:02:43 B600DE404F4D6C5A1AB9A033739A21AA 41984 ----a-w- C:\Users\johny\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpmszvvy.dll
2014-07-27 16:36:20 CF95932C00190451115C782E139DE582 264488 ----a-w- C:\Users\johny\AppData\Local\Temp\MSS\3.8.150.1\McInstallerRes.dll
2014-07-27 16:36:20 2AA753368BF68871962D2E99B8692985 153760 ----a-w- C:\Users\johny\AppData\Local\Temp\MSS\3.8.150.1\McInstallerRes_LD.dll
2014-07-27 16:36:19 C4CF03B998D4D758B89CD07F22D7A7F9 645168 ----a-w- C:\Users\johny\AppData\Local\Temp\MSS\3.8.150.1\McUICnt.exe
2014-07-27 16:36:19 87AA773F15D90973090D4DF76F8E60EF 565808 ----a-w- C:\Users\johny\AppData\Local\Temp\MSS\3.8.150.1\mcbrwsr2.dll
2014-07-27 16:36:19 14E9947D26B0A418AA02F87741E4B40B 769736 ----a-w- C:\Users\johny\AppData\Local\Temp\MSS\3.8.150.1\McInstallerStartup.dll
2014-07-16 13:41:00 08335232736A353F8226DC532315FE8D 573339 ------w- C:\Users\johny\AppData\Local\Temp\is45637729\62352478_stp\AnyProtectScannerSetup.exe
2014-07-16 13:41:00 08335232736A353F8226DC532315FE8D 573339 ------w- C:\Users\johny\AppData\Local\Temp\is45637729\351212934_stp\AnyProtectScannerSetup.exe
2014-07-16 13:41:00 08335232736A353F8226DC532315FE8D 573339 ------w- C:\Users\johny\AppData\Local\Temp\is45637729\351018175_stp\AnyProtectScannerSetup.exe
2014-07-16 13:17:31 2CFAB1D7725CCBF2E76493A0105CE7DD 7025360 ----a-w- C:\Users\johny\AppData\Local\Temp\optprosetup.exe
2014-07-16 13:16:56 24EC134D9F6AB83932F3E7747275935D 291069 ----a-w- C:\Users\johny\AppData\Local\Temp\68D4tmp\vopackage.exe
2014-07-16 13:16:55 AF37247590F4E4B8A8A214A091EA6067 73816 ----a-w- C:\Users\johny\AppData\Local\Temp\6855tmp\cloud_backup_setup.exe
2014-07-16 13:16:55 ADFEF32F32469012581272933B122EB0 7205384 ----a-w- C:\Users\johny\AppData\Local\Temp\6816tmp\optimizerpro.exe
2014-07-16 05:25:04 08335232736A353F8226DC532315FE8D 573339 ------w- C:\Users\johny\AppData\Local\Temp\is45637729\334260115_stp\AnyProtectScannerSetup.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-07-27 12:11:46 0DC5AF80D059DEC792B665ED598C6567 536576 ----a-w- C:\Windows\SysWOW64\sqlite3.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-07-28 08:54:53 B46B41CE922CE5B7B055A28226DE2D79 307344 ----a-w- C:\Windows\Sysnative\aswBoot.exe
====== C:\Windows\Sysnative\drivers =====
2014-07-28 08:54:56 B8FDEDE963B82CFD23B3A53A3084666D 1041168 ----a-w- C:\Windows\Sysnative\drivers\aswSnx.sys
2014-07-28 08:54:56 998B6692C48CEC0F078C9A26744DC899 426848 ----a-w- C:\Windows\Sysnative\drivers\aswsp.sys.1406537752671
2014-07-28 08:54:56 645D97385F3F284FB5604F9B970F4D24 65776 ----a-w- C:\Windows\Sysnative\drivers\aswRvrt.sys
2014-07-28 08:54:56 48DED912CDE54FC0923B9858512366E1 92008 ----a-w- C:\Windows\Sysnative\drivers\aswStm.sys
2014-07-28 08:54:56 471A311745848B80339436688A8286E6 224896 ----a-w- C:\Windows\Sysnative\drivers\aswVmm.sys
2014-07-28 08:54:56 0DEDC041DF594AEC2C3BD00417CFAF60 427360 ----a-w- C:\Windows\Sysnative\drivers\aswsp.sys
2014-07-28 08:54:55 FF1E537A3632CBB9A0BF72B9FD0878D5 79184 ----a-w- C:\Windows\Sysnative\drivers\aswMonFlt.sys
2014-07-28 08:54:55 D95E64416A4A3ED6986E0F474DA934BD 29208 ----a-w- C:\Windows\Sysnative\drivers\aswHwid.sys
2014-07-28 08:54:55 A5757DE5F9C83AB40667A53D5126EA40 93568 ----a-w- C:\Windows\Sysnative\drivers\aswRdr2.sys
2014-07-27 12:26:52 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-07-27 12:26:29 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2014-07-27 12:26:29 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-07-27 12:26:29 0664F6335F108F38FE08C3CA747311EE 64216 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2014-07-09 20:11:46 374E27295F0A9DCAA8FC96370F9BEEA5 563200 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2014-07-09 20:11:05 1CD3A907D64D08F49208DA00B69BF35E 565576 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2014-07-08 18:00:31 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
====== C:\Windows\Tasks ======
2014-07-28 08:55:49 0F7783125A7BA080B60DF1E5C4DEBE3D 4182 ----a-w- C:\Windows\Sysnative\Tasks\avast! Emergency Update
2014-07-07 05:03:04 7C3293F763476A0DCF3D2D1F173428F7 3532 ----a-w- C:\Windows\Sysnative\Tasks\Yahoo! Search
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-07-27 11:34:55 -------- d-----w- C:\Program Files\trend micro
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\johny\AppData\Roaming ======
2014-07-28 09:00:33 -------- d-----w- C:\Users\johny\AppData\Roaming\Dropbox
2014-07-16 13:20:07 -------- d-----w- C:\Users\johny\AppData\Local\com
2014-07-16 13:14:22 -------- d-----w- C:\Users\johny\AppData\Locallow\Sun
====== C:\Users\johny ======
2014-07-28 08:56:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-28 08:50:49 F8E16DF8D737DC44F7D43383D3BD521F 4860576 ----a-w- C:\Users\johny\Downloads\avast_free_antivirus_setup_online.exe
2014-07-27 16:39:15 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\johny\Desktop\RSITx64.exe
2014-07-27 16:38:34 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\johny\Downloads\RSITx64 (1).exe
2014-07-27 12:25:31 32A7154F9934CF3AA5D945D02D069D1F 17523384 ----a-w- C:\Users\johny\Desktop\mbam-setup-2.0.0.1000.exe
2014-07-27 12:24:56 32A7154F9934CF3AA5D945D02D069D1F 17523384 ----a-w- C:\Users\johny\Downloads\mbam-setup-2.0.0.1000.exe
2014-07-27 12:09:11 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\johny\Desktop\adwcleaner_3.216.exe
2014-07-27 12:08:21 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\johny\Downloads\adwcleaner_3.216 (1).exe
2014-07-27 12:07:52 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\johny\Downloads\adwcleaner_3.216.exe
2014-07-27 11:34:37 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\johny\Downloads\RSITx64.exe
2014-07-16 13:20:32 3C166BAE84553D4CB27AF8ABDC61712D 675988 ----a-w- C:\Users\johny\Downloads\Minecraft (3).exe
2014-07-16 13:18:19 -------- d---a-w- C:\ProgramData\TEMP
2014-07-16 13:16:09 A084E6B19B1B02D077788255387CCC1D 1452712 ----a-w- C:\Users\johny\Downloads\Setup (1).exe
2014-07-16 13:15:59 D618A309D224F7536F1DAB9571853B0F 1452712 ----a-w- C:\Users\johny\Downloads\Setup.exe
2014-07-16 13:14:10 C9D490D6D602309F182DFE7304100930 918952 ----a-w- C:\Users\johny\Downloads\chromeinstall-7u65 (1).exe
2014-07-16 13:13:55 3C166BAE84553D4CB27AF8ABDC61712D 675988 ----a-w- C:\Users\johny\Downloads\Minecraft (2).exe
2014-07-16 13:13:37 C9D490D6D602309F182DFE7304100930 918952 ----a-w- C:\Users\johny\Downloads\chromeinstall-7u65.exe
2014-07-16 13:12:22 3C166BAE84553D4CB27AF8ABDC61712D 675988 ----a-w- C:\Users\johny\Downloads\Minecraft (1).exe
2014-07-16 13:12:16 3C166BAE84553D4CB27AF8ABDC61712D 675988 ----a-w- C:\Users\johny\Downloads\Minecraft.exe
====== C: exe-files ==
2014-07-28 08:54:53 B46B41CE922CE5B7B055A28226DE2D79 307344 ----a-w- C:\Windows\System32\aswBoot.exe
2014-07-28 08:50:49 F8E16DF8D737DC44F7D43383D3BD521F 4860576 ----a-w- C:\Users\johny\Downloads\avast_free_antivirus_setup_online.exe
2014-07-27 16:39:15 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\johny\Desktop\RSITx64.exe
2014-07-27 16:38:34 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\johny\Downloads\RSITx64 (1).exe
2014-07-27 16:36:19 C4CF03B998D4D758B89CD07F22D7A7F9 645168 ----a-w- C:\Users\johny\AppData\Local\Temp\MSS\3.8.150.1\McUICnt.exe
2014-07-27 12:25:31 32A7154F9934CF3AA5D945D02D069D1F 17523384 ----a-w- C:\Users\johny\Desktop\mbam-setup-2.0.0.1000.exe
2014-07-27 12:24:56 32A7154F9934CF3AA5D945D02D069D1F 17523384 ----a-w- C:\Users\johny\Downloads\mbam-setup-2.0.0.1000.exe
2014-07-27 12:09:11 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\johny\Desktop\adwcleaner_3.216.exe
2014-07-27 12:08:21 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\johny\Downloads\adwcleaner_3.216 (1).exe
2014-07-27 12:07:52 B653DD91D5D6E519D3357A80A15A5DFB 1354223 ----a-w- C:\Users\johny\Downloads\adwcleaner_3.216.exe
2014-07-27 11:34:55 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\johny.exe
2014-07-27 11:34:37 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\johny\Downloads\RSITx64.exe
2014-07-27 10:33:54 0E3ABB6CE83347B955966A04360018E3 5170179 ----a-w- C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\IEC4T60X\BlockAndSurf_2222-5510[1].exe
2014-07-27 10:33:44 5FF515BC1979FBEF0D515D82EE37CAEF 3300864 ----a-w- C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\G0OR21KT\setup_fst_be[1].exe
2014-07-26 15:13:36 B5B185C9F95263AF4DAAA5C1912FF1D5 592714 ----a-w- C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\G0OR21KT\Setup[1].exe
2014-07-22 15:08:43 83F280F72BFE875D1F079CFDF23E0679 588607 ----a-w- C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\GZYB6OLG\Setup[5].exe
2014-07-21 15:07:52 AA86DCFE35EB5B6EDEBA279FD2679A9C 49502 ----a-w- C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\IEC4T60X\REDChecker[1].exe
=== C: other files ==
2014-07-28 08:54:56 B8FDEDE963B82CFD23B3A53A3084666D 1041168 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2014-07-28 08:54:56 645D97385F3F284FB5604F9B970F4D24 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2014-07-28 08:54:56 48DED912CDE54FC0923B9858512366E1 92008 ----a-w- C:\Windows\System32\drivers\aswStm.sys
2014-07-28 08:54:56 471A311745848B80339436688A8286E6 224896 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2014-07-28 08:54:56 0DEDC041DF594AEC2C3BD00417CFAF60 427360 ----a-w- C:\Windows\System32\drivers\aswsp.sys
2014-07-28 08:54:55 FF1E537A3632CBB9A0BF72B9FD0878D5 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2014-07-28 08:54:55 D95E64416A4A3ED6986E0F474DA934BD 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2014-07-28 08:54:55 A5757DE5F9C83AB40667A53D5126EA40 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2014-07-27 12:26:52 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-07-27 12:26:29 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-07-27 12:26:29 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-07-27 12:26:29 0664F6335F108F38FE08C3CA747311EE 64216 ----a-w- C:\Windows\System32\drivers\mwac.sys
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-2775301530-3041261639-2431639458-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Yahoo\Users\johny\AppData\Local\Pay-By-Ads\Yahoo Search\1.3.8.2\dsrlte.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
"TSVU"="c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"ControlCenter4"="C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun"
"BrStsMon00"="C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun"
"Yahoo\Users\johny\AppData\Local\Pay-By-Ads\Yahoo Search\1.3.8.2\dsrlte.exe"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cAudioFilterAgent"="C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe"
"SmartAudio"="C:\Program Files\CONEXANT\SAII\SACpl.exe /t"
"TecoResident"="C:\Program Files\TOSHIBA\Teco\TecoResident.exe"
"TSSSrv"="C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe"
"Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun"
"TosWaitSrv"="%ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe "
"TCrdMain"="C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24/02/2014 13:46]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24/02/2014 13:46]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\AutoPico Daily Restart" ["C:\Program Files\KMSpico\AutoPico.exe"]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\UMonitor Task" [C:\Windows\SysWOW64\UMonit64.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{385ED407-5FDE-4132-BF8B-C93636E663A3}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\TOSHIBA\CommonNotifier" [C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe]
"C:\Windows\SysNative\tasks\TOSHIBA\Service Station" ["C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe"]
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [28/07/2014 10:54]
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[28/07/2014 10:54]
VideoDownloadConverter - johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\hefdopkjddeacfpjlhnnikdibknmdepg
==== Chrome Fix ======================
C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully
C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Search Bar"="http://www.google.com"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com"
"SearchAssistant"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E40670FF068C9E042A033EF74AF101A3 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FF07604E-C860-40E9-A230-E37FA41F103A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\E40670FF068C9E042A033EF74AF101A3 deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=72 folders=39 44473066 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\johny\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\johny\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Program Files\Common Files\mcafee" not found
==== EOF on ma 28/07/2014 at 11:26:08,62 ======================
-
Het is de laptop van mijn schoonvader, maar ik ben er vrij zeker van dat MacAffee de proeflicentie betreft. Ik heb ze gewist!
Hieronder het nieuwe logje zoals gevraagd!
Logfile of random's system information tool 1.10 (written by random/random)Run by johny at 2014-07-27 18:39:29Microsoft Windows 8.1
System drive C: has 644 GB (91%) free of 704 GB
Total RAM: 7630 MB (82% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:39:34, on 27/07/2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\johny.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [brStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Yahoo! Search] C:\Users\johny\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe
O4 - Global Startup: AddonNP.lnk = C:\Program Files (x86)\NewPlayer\AddonNP.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: AdaptiveSleepService - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Windows ® Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: DTS APO Service (dts_apo_service) - Unknown owner - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - Toshiba Corporation - C:\Program Files\Toshiba\Teco\TecoService.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Unknown owner - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8659 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\system32\CxAudMsg64.exe
dashost.exe {de31727e-3ab4-4e96-a68f8ee13d151011}
"C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe"
"C:\Windows\system32\mfevtps.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files\Toshiba\Teco\TecoService.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
ClassicStartMenu.exe -startup
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
C:\Windows\SysWOW64\UMonit64.exe
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe"
"C:\Program Files\Toshiba\Teco\TecoResident.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
-BootProc
"C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe" /AUTORUN
-BootProc
"C:\Program Files (x86)\Browny02\BrYNSvc.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2640.0.861200739\1157008950" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16 --gpu-vendor-id=0x1002 --gpu-device-id=0x9830 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.152.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Control/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_50/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="2640.1.1309157952\887209785" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Control/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_50/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="2640.2.2103377767\2121680799" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Control/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_50/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="2640.5.867313912\4545687" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Control/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_50/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="2640.6.1836214675\197422261" /prefetch:673131151
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
"C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide
"C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="2640.8.1537467987\786283192" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe"
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 2C5F0CB2-08A4-E490-39CA-0FB3BB1A81FC -Reinvoke
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 560 572 65536 568
"C:\Users\johny\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-05-21 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18 796352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18 483520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18 674496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2014-06-10 1730264]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18 437440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18 796352]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18 674496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-01-12 894048]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2013-08-14 354144]
"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2013-08-18 2556768]
"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2013-08-21 178016]
"TSSSrv"=C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [2013-09-12 296520]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-01-18 161984]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-28 2774256]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Yahoo! Search"=C:\Users\johny\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-31 766208]
"TSVU"=c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [2013-07-23 516512]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2012-09-06 143360]
"BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2012-06-06 3076096]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AddonNP.lnk - C:\Program Files (x86)\NewPlayer\AddonNP.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-07-27 14:26:52 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-07-27 14:26:29 ----D---- C:\ProgramData\Malwarebytes
2014-07-27 14:26:29 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-27 14:26:29 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-07-27 14:26:29 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-07-27 14:26:29 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-07-27 14:11:46 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-07-27 14:08:40 ----D---- C:\AdwCleaner
2014-07-27 13:34:55 ----D---- C:\rsit
2014-07-27 13:34:55 ----D---- C:\Program Files\trend micro
2014-07-16 20:12:01 ----D---- C:\rbtemp
2014-07-16 15:18:19 ----AD---- C:\ProgramData\TEMP
2014-07-10 02:51:33 ----A---- C:\Windows\system32\termsrv.dll
2014-07-09 22:11:46 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-09 22:11:44 ----A---- C:\Windows\system32\win32k.sys
2014-07-09 22:11:44 ----A---- C:\Windows\system32\osk.exe
2014-07-09 22:11:43 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-07-09 22:11:41 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-07-09 22:11:41 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-09 22:11:40 ----A---- C:\Windows\system32\mshtml.dll
2014-07-09 22:11:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-07-09 22:11:27 ----A---- C:\Windows\system32\jscript9.dll
2014-07-09 22:11:24 ----A---- C:\Windows\system32\ieframe.dll
2014-07-09 22:11:22 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-07-09 22:11:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-07-09 22:11:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-07-09 22:11:18 ----A---- C:\Windows\system32\urlmon.dll
2014-07-09 22:11:17 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-07-09 22:11:17 ----A---- C:\Windows\system32\wininet.dll
2014-07-09 22:11:17 ----A---- C:\Windows\system32\iertutil.dll
2014-07-09 22:11:17 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-09 22:11:17 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-09 22:11:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-07-09 22:11:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-07-09 22:11:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-07-09 22:11:15 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-07-09 22:11:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-07-09 22:11:15 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-09 22:11:15 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-09 22:11:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-07-09 22:11:14 ----A---- C:\Windows\system32\ieapfltr.dll
2014-07-09 22:11:14 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-09 22:11:05 ----A---- C:\Windows\system32\lsasrv.dll
2014-07-09 22:11:05 ----A---- C:\Windows\system32\drivers\cng.sys
2014-07-09 22:11:04 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-07-09 22:11:04 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-07-09 22:11:04 ----A---- C:\Windows\system32\certcli.dll
2014-07-09 22:11:04 ----A---- C:\Windows\system32\adtschema.dll
2014-07-09 22:10:04 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-07-09 22:10:04 ----A---- C:\Windows\system32\qedit.dll
2014-07-09 22:10:01 ----A---- C:\Windows\system32\twinui.dll
2014-07-09 22:10:00 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-07-09 22:10:00 ----A---- C:\Windows\system32\wuaueng.dll
2014-07-09 22:10:00 ----A---- C:\Windows\system32\WSShared.dll
2014-07-09 22:09:59 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-07-09 22:09:59 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2014-07-09 22:09:59 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 22:09:59 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2014-07-09 22:09:59 ----A---- C:\Windows\system32\wuauclt.exe
2014-07-09 22:09:59 ----A---- C:\Windows\system32\wuapi.dll
2014-07-09 22:09:59 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 22:09:59 ----A---- C:\Windows\system32\twinui.appcore.dll
2014-07-09 22:09:59 ----A---- C:\Windows\system32\twinapi.appcore.dll
2014-07-09 22:09:58 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-07-09 22:09:58 ----A---- C:\Windows\system32\wudriver.dll
2014-07-09 22:02:50 ----A---- C:\Windows\system32\WSReset.exe
======List of files/folders modified in the last 1 month======
2014-07-27 18:39:21 ----D---- C:\Windows\Prefetch
2014-07-27 18:36:29 ----RD---- C:\Program Files
2014-07-27 18:36:29 ----HD---- C:\ProgramData
2014-07-27 18:36:07 ----D---- C:\Users\johny\AppData\Roaming\ClassicShell
2014-07-27 18:35:19 ----D---- C:\Windows\system32\sru
2014-07-27 17:25:43 ----D---- C:\Windows\system32\drivers
2014-07-27 17:24:06 ----D---- C:\Windows\System
2014-07-27 17:23:58 ----D---- C:\Program Files (x86)
2014-07-27 17:23:52 ----D---- C:\Windows\Temp
2014-07-27 17:23:52 ----D---- C:\Windows\Tasks
2014-07-27 17:23:52 ----D---- C:\Windows\system32\Tasks
2014-07-27 17:23:52 ----D---- C:\Users\johny\AppData\Roaming\rmi
2014-07-27 14:13:53 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-27 14:13:52 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-07-27 14:12:39 ----RAD---- C:\Windows\System32
2014-07-27 14:12:39 ----A---- C:\Windows\win.ini
2014-07-27 14:12:24 ----D---- C:\Program Files (x86)\Cling Clang
2014-07-27 14:11:46 ----D---- C:\Windows\SysWOW64
2014-07-27 02:41:27 ----D---- C:\Windows\Microsoft.NET
2014-07-27 02:39:50 ----D---- C:\Windows\AppReadiness
2014-07-27 02:39:49 ----HD---- C:\Program Files\WindowsApps
2014-07-25 17:55:11 ----D---- C:\Windows\apppatch
2014-07-25 03:43:38 ----SHD---- C:\Windows\Installer
2014-07-24 02:52:19 ----SHD---- C:\System Volume Information
2014-07-24 01:49:56 ----D---- C:\Windows\Inf
2014-07-16 20:12:08 ----SD---- C:\Users\johny\AppData\Roaming\Microsoft
2014-07-16 15:28:57 ----D---- C:\Windows\rescache
2014-07-13 02:44:01 ----D---- C:\Windows\system32\config
2014-07-12 18:38:23 ----D---- C:\Windows\WinSxS
2014-07-12 18:35:24 ----RD---- C:\Windows\ToastData
2014-07-12 18:35:24 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-07-12 18:35:24 ----D---- C:\Windows\SYSWOW64\en-US
2014-07-12 18:35:24 ----D---- C:\Windows\system32\nl-NL
2014-07-12 18:35:24 ----D---- C:\Windows\system32\en-US
2014-07-12 18:35:24 ----D---- C:\Program Files\Internet Explorer
2014-07-12 18:35:24 ----D---- C:\Program Files (x86)\Internet Explorer
2014-07-12 18:35:23 ----D---- C:\Windows\WinStore
2014-07-12 18:33:30 ----D---- C:\ProgramData\Microsoft Help
2014-07-12 18:32:15 ----RSD---- C:\Windows\assembly
2014-07-10 02:57:25 ----D---- C:\Windows\CbsTemp
2014-07-10 02:56:27 ----D---- C:\Windows\system32\MRT
2014-07-10 02:54:32 ----A---- C:\Windows\system32\MRT.exe
2014-07-10 02:50:12 ----D---- C:\Program Files\Windows Journal
2014-07-09 22:09:46 ----D---- C:\Windows\system32\catroot2
2014-07-08 20:00:31 ----SD---- C:\ProgramData\Microsoft
2014-07-08 20:00:29 ----D---- C:\Windows\system32\drivers\UMDF
2014-06-29 16:57:52 ----AD---- C:\Windows
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2013-08-07 776168]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2013-08-07 343568]
R0 tos_sps64;@oem18.inf,%SERVICE_DESC_amd64%;TOSHIBA tos_sps64 Service; C:\Windows\System32\drivers\tos_sps64.sys [2012-06-18 499096]
R0 TVALZ;@oem13.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\System32\drivers\TVALZ_O.SYS [2013-08-15 32832]
R0 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\Windows\System32\Drivers\TVALZFL.sys [2012-07-22 16768]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 APXACC;@oem4.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\Windows\system32\DRIVERS\appexDrv.sys [2013-04-18 219360]
R3 AmdAS4;@oem3.inf,%AmdAS4.SVCDESC%;AmdAS4 service; C:\Windows\System32\drivers\AmdAS4.sys [2013-02-07 17504]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-30 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-30 618496]
R3 athr;@oem15.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2013-08-16 3859968]
R3 AtiHDAudioService;@oem6.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdWB6.sys [2013-06-22 138240]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-08-22 590024]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 CnxtHdAudService;@oem5.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2013-07-18 1387712]
R3 dtsoftbus01;@oem22.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-02-24 283064]
R3 L1C;@oem16.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C63x64.sys [2013-07-18 130248]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2013-08-07 310224]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2013-08-07 519064]
R3 QIOMem;@oem1.inf,%SERVICE_DISPLAY_NAME%;Generic IO & Memory Access; C:\Windows\System32\drivers\QIOMem.sys [2013-08-06 14000]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 SynTP;@oem28.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-08-28 524528]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2012-07-25 31184]
R3 Thotkey;@oem10.inf,%Thotkey%;Toshiba Hotkey Driver; C:\Windows\System32\drivers\Thotkey.sys [2013-08-19 32624]
R3 tosrfec;@oem19.inf,%busenum.SVCDESC%;Bluetooth ACPI; C:\Windows\System32\drivers\tosrfec.sys [2013-11-01 27032]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\Windows\system32\drivers\mfeelamk.sys [2013-08-07 69264]
S3 BrSerIb;@oem24.inf,%BrSerIb.SvcDesc%;Brother Serial Interface Driver(WDM); C:\Windows\system32\DRIVERS\BrSerIb.sys [2013-11-21 95344]
S3 BrUsbSIb;@oem24.inf,%BrUsbSIb.SvcDesc%;Brother Serial USB Driver(WDM); C:\Windows\system32\DRIVERS\BrUsbSIb.sys [2013-11-21 21872]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2013-08-07 70112]
S3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2013-08-07 179664]
S3 RTWlanE;@netrtwlane.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\Windows\system32\DRIVERS\rtwlane.sys [2013-07-31 1936088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S4 WinDivert1.1;WinDivert1.1; \??\C:\Program Files\KMSpico\WinDivert.sys [2014-02-24 35376]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdaptiveSleepService;AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [2013-08-31 99328]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-30 239616]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-08-22 312448]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-12-12 205560]
R2 dts_apo_service;DTS APO Service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [2013-09-10 19792]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2013-08-07 219272]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2013-08-07 182752]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-25 5024576]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\Toshiba\Teco\TecoService.exe [2013-08-10 328544]
R3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2012-06-05 266240]
R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2013-07-31 53864]
R3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2013-09-04 466504]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-24 116648]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2013-12-11 1050904]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-22 43696]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-24 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
S3 TemproMonitoringService;TEMPRO Service; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2013-07-19 116088]
-----------------EOF-----------------
-
Hey,
hieronder de log van Anti-Malware
Malwarebytes Anti-Malwarewww.malwarebytes.orgScan Date: 27/07/2014
Scan Time: 14:29:47
Logfile:
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.07.27.04
Rootkit Database: v2014.07.17.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: johny
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 457670
Time Elapsed: 2 hr, 39 min, 4 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 12
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{1b646e65-56b2-4543-b72c-0e8976cf559e}w64, , [247d910f6417b87e25c187a37b89ea16],
PUP.Optional.AdvancedSystemProtector.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\IEXPLORE.EXE, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\IEXPLORE.EXE, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.ClingClang.A, HKLM\SOFTWARE\WOW6432NODE\Cling Clang, , [b3ee4c54215a5bdb17a4d742e222eb15],
PUP.Optional.MediaPlayer.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\video MediaPlay-Air, , [c4ddb1ef65168caa1d146cbf699b8f71],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.PassShow.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{9CB9BF52-6347-0774-99A7-9024BC83DE91}, , [3b66f3ad94e7e155b2b079417b8952ae],
PUP.Optional.PassShow.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{9CB9BF52-6347-0774-99A7-9024BC83DE91}, , [3b66f3ad94e7e155b2b079417b8952ae],
PUP.Optional.PassShow.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{80258FA5-DDE6-6D85-1C02-14C88523DF51}, , [3b66f3ad94e7e155b2b079417b8952ae],
PUP.Optional.PassShow.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{077F0EC1-ACFA-86F7-9BC3-23C73B61D37A}, , [3b66f3ad94e7e155b2b079417b8952ae],
PUP.Optional.PassShow.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{80258FA5-DDE6-6D85-1C02-14C88523DF51}, , [3b66f3ad94e7e155b2b079417b8952ae],
Registry Values: 2
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_be_22, , [ccd50c94225937ffe0b2f6ebc1418779],
PUP.Optional.PassShow.A, HKU\S-1-5-21-2775301530-3041261639-2431639458-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{47963714-F9F3-E470-3ABF-90AF1F21542B}, C:\Program Files (x86)\PassShow-soft\170.xpi, , [f1b0445c562567cf8780db00a260fe02]
Registry Data: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[7a27d2ce304bb4828fc6b9fd6b995ba5]
Folders: 107
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\clamunpack, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Troubleshooter, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\native, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\native\libs, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\adapter, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\abstractbutton, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\abstractbutton\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\alert, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\alert\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedhtml, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedhtml\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedhtml\html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedhtml\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedscript, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedscript\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedscript\html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedscript\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\flare, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\flare\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\flare\icons, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\generic, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\generic\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\link, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\link\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\images, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\rss, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\rss\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\thirdparty, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\thirdparty\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\uninstall, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\uninstall\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\weather, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\weather\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\common, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\radio, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\radio\css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\radio\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\rss, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\rss\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\test, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\topapps, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\topapps\css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\topapps\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\weather, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\weather\css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\weather\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api\window, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\moviereviews, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\moviereviews\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\moviereviews\css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\moviereviews\html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\moviereviews\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio\css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio\foreground, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio\radioWrapper, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\search, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\search\background, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\search\html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\icons, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\shared, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\_metadata, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.SmileysWeLove.A, C:\Users\johny\AppData\Local\Temp\swlfiles, , [f1b0d0d0e19ac076a28d78478f73c739],
PUP.Optional.SmileysWeLove.A, C:\Users\johny\AppData\Local\Temp\swlfiles\x86, , [f1b0d0d0e19ac076a28d78478f73c739],
PUP.Optional.Extutil.A, C:\Users\johny\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B, , [efb2d0d0c7b493a3e325f5cce51d9f61],
PUP.Optional.Managera.A, C:\Users\johny\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42, , [7e23267a067592a430d92e9308fa619f],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\userCode, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\icons, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\icons\actions, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\api, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\popupResource, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dnaojefanpmakfgcaliphepgoiiafmpf_0, , [4e53623e1f5c8ea80405348f689a9a66],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899, , [376a267afb8062d45bb58d36679bbc44],
Files: 504
PUP.Optional.ClingClang.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cling Clang\updateClingClang.exe.vir, , [b1f0d6ca413ab581d084154651b003fd],
PUP.Optional.ClingClang.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cling Clang\bin\utilClingClang.exe.vir, , [178a8e12b4c779bde86c1645996802fe],
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cling Clang\bin\plugins\ClingClang.BrowserAdapterS.dll.vir, , [9f02eab6f289cd6979f03b539c65a957],
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cling Clang\bin\plugins\ClingClang.OfSvc.dll.vir, , [d1d0336de3981026f5d61e7ca0618d73],
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cling Clang\bin\plugins\ClingClang.PurBrowse.dll.vir, , [d7cae5bbe99233037bcad2ac12ef47b9],
PUP.Optional.Sanbreel.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cling Clang\bin\plugins\ClingClang.PurBrowseG.dll.vir, , [8e130b9594e76bcbf3af304fbb46e21e],
PUP.Optional.NewPlayer.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe.vir, , [3a67910fb9c214220d793a4dd72af60a],
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSchedule.exe.vir, , [acf51d8336451e18399b71bf7889de22],
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe.vir, , [bfe2356bc6b5c96d884d33fd808102fe],
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir, , [4b56465a6b10e55190a262331ee3916f],
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll.vir, , [40612779116a11252b07791c37ca649c],
PUP.Optional.Conduit.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir, , [98091a865625d363808e8efd38c9d030],
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir, , [356c5e42b8c32f07151dc1d40001e41c],
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe.vir, , [752c059b80fb5ed84de5118426db4eb2],
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir, , [adf4e6ba1c5faf876dc55144df22d52b],
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll.vir, , [3f62b1efb5c6ed49b979eda85ea3629e],
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll.vir, , [9b06049c6813fd391d151c79bd446e92],
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll.vir, , [9c05dac6adce1026959d3a5b738e38c8],
PUP.Optional.SearchProtect.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe.vir, , [425fcbd5b4c757df55ddafe6da27e11f],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface32.dll.vir, , [3968d1cf8bf087af631d523cfe039070],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface64.dll.vir, , [d7caf5ab7506979f126e87075ba6f40c],
PUP.Optional.IEPluginService.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\RSHP.exe.vir, , [f3ae29770a7167cf357c78f9a35e5da3],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect32.dll.vir, , [0c95e9b7087361d5b3cda4eaa75a27d9],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect64.dll.vir, , [4958534d33482214d1affa945ca51ce4],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SpAPPSv32.dll.vir, , [237ed8c8aad110264b354d416b96bc44],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SpAPPSv64.dll.vir, , [3968297798e332047e02fe900af7c13f],
PUP.Optional.SupTab.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupTab.dll.vir, , [059c831dbdbe62d4b2b5a590629e9c64],
PUP.Optional.IePluginService.A, C:\AdwCleaner\Quarantine\C\ProgramData\IePluginServices\PluginService.exe.vir, , [78290f91b0cba2945ad76cf3d0319c64],
PUP.Optional.WPM.A, C:\AdwCleaner\Quarantine\C\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe.vir, , [71307927b3c862d4a389efa3b44df709],
PUP.Optional.PayByAds.A, C:\AdwCleaner\Quarantine\C\Users\johny\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe.vir, , [960b9c04fd7e9c9a91dc39ab32d241bf],
PUP.Optional.UpdateChecker.A, C:\AdwCleaner\Quarantine\C\Users\johny\AppData\Local\Popajar\UpdateChecker\UpdateCheckerApp.exe.vir, , [c1e0a2fe780355e17e7f801142bf9e62],
PUP.Optional.SmileysWeLove.A, C:\AdwCleaner\Quarantine\C\Users\johny\AppData\Local\Popajar\UpdateChecker\UpdateNotifier.exe.vir, , [dac7544c9dded75faa558110d130b64a],
PUP.Optional.Conduit.A, C:\AdwCleaner\Quarantine\C\Users\johny\AppData\Roaming\OpenCandy\C5407B33744142689A62585FFE8603F8\SSStub_SearchProtect_p1v0.exe.vir, , [abf6b1ef99e250e6f37630f5679a3dc3],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-11.exe, , [5f42722ee79466d0ce7d296e07fa9868],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-2.exe, , [831e48584a3178be96b5bfd8cb3610f0],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-3.exe, , [633e6a36dba062d48bc06d2aae539b65],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-4.exe, , [722f831df28939fd68e31a7dff023dc3],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-5.exe, , [eab7544c89f2dc5ae86356416b96f30d],
PUP.Optional.crossRider.A, C:\Program Files (x86)\video MediaPlay-Air\utils.exe, , [841d3d63e99280b60af5043b649c11ef],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-bg.exe, , [772ac2def88392a44407385f3cc55fa1],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-bho.dll, , [e1c0d5cb9eddd95def5c0c8bb54c8e72],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-bho64.dll, , [2c75b5eb512ac472014af2a5758c9868],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-codedownloader.exe, , [3f627c244f2c6bcb2d1e7c1bd8291ce4],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-nova.exe, , [5b467e22b0cb5adce16a9cfb32cf7d83],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-novainstaller.exe, , [346da6faf289c96dc7843562fc05be42],
PUP.Optional.Wajam.A, C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\1M3M5KKR\WIE_2.12.1.60[1].exe, , [f4ad3e6276053600657d390fee12b34d],
PUP.Optional.Conduit.A, C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\G0OR21KT\spstub[1].exe, , [1e83861a4833c2741e59cbc4a9587789],
PUP.Optional.Conduit.A, C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\G0OR21KT\spidentifierimpl[1].exe, , [f0b1465afc7f78be7ffbd6b68f7230d0],
PUP.Optional.SearchHijacker.A, C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\GZYB6OLG\lly_webssearches[1].exe, , [f1b01f8156252c0a378bd0cc808104fc],
PUP.Optional.InstallMonetizer, C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\GZYB6OLG\VuuPC_VO2_8907[1].exe, , [d6cbaef280fb77bfc03024354cb69967],
PUP.Optional.Wajam.A, C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\GZYB6OLG\wajam_download[1].exe, , [fea3435de99258def31fa4a351af1ee2],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\GZYB6OLG\setup[1].exe, , [2978dfc1146786b009ef7ece5da3cd33],
PUP.Optional.NewPlayer.A, C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\GZYB6OLG\NewVideoPlayerSetup[1].exe, , [6f324b554c2f6fc7fd89c3c4f0117d83],
PUP.Optional.SupraSavings.A, C:\Users\johny\AppData\Local\Microsoft\Windows\INetCache\IE\GZYB6OLG\F978377C-B7D4-4536-8E10-14CA97B13394[1].exe, , [4b5630704635ce687651c3883fc337c9],
PUP.Optional.Conduit.A, C:\Users\johny\AppData\Local\Temp\nsu8B67.exe, , [bee38c14b2c9fb3b85893655de23fc04],
PUP.Optional.SearchProtect.A, C:\Users\johny\AppData\Local\Temp\nsv64.exe, , [9e03dcc4e497e84e7ac37ab806fbc13f],
PUP.Optional.SearchProtect.A, C:\Users\johny\AppData\Local\Temp\nsbCF8F.exe, , [841db3ed760583b3e15cf9397889c13f],
PUP.Optional.Conduit.A, C:\Users\johny\AppData\Local\Temp\nscDD82.exe, , [2180c8d8700b7db9927cf9929b664eb2],
PUP.Optional.SearchProtect.A, C:\Users\johny\AppData\Local\Temp\nsg9B5D.exe, , [8a17910fa9d25bdbba830f23f0116b95],
PUP.Optional.SearchProtect.A, C:\Users\johny\AppData\Local\Temp\SPSetup.exe, , [178a60408bf02610e74b4d4844bd6e92],
Adware.EoRezo, C:\Users\johny\AppData\Local\Temp\setup_somoto_fst_be_22.exe, , [d7ca7927d7a4f5412bc71f56d03140c0],
PUP.Optional.Somoto, C:\Users\johny\AppData\Local\Temp\bitool.dll, , [fea300a052291224af41c4719a6840c0],
PUP.Optional.Somoto, C:\Users\johny\AppData\Local\Temp\nshB27D.tmp, , [18898d1382f96fc7a50e58e35ba99d63],
PUP.Optional.Conduit.A, C:\Users\johny\AppData\Local\Temp\nsjE2D2.exe, , [2879ddc322594beb7c929bf0a75a39c7],
PUP.Optional.SearchProtect.A, C:\Users\johny\AppData\Local\Temp\nsx2D69.exe, , [88194d53f68551e55fde53dfae5327d9],
PUP.Optional.Somoto, C:\Users\johny\AppData\Local\Temp\nsz6A59.tmp, , [e4bd9a06e09b86b0476ca299659f936d],
PUP.Optional.Conduit.A, C:\Users\johny\AppData\Local\Temp\nsn8617.exe, , [841dc1dfb2c9a393e826afdcb44d2dd3],
PUP.Optional.SearchProtect.A, C:\Users\johny\AppData\Local\Temp\nso96B8.exe, , [20813a66f388f64065d8b0820ef30af6],
PUP.Optional.SearchProtect.A, C:\Users\johny\AppData\Local\Temp\nsa34C9\SpSetup.exe, , [7f2247594f2cc96db67c573e8c751be5],
PUP.Optional.SearchProtect.A, C:\Users\johny\AppData\Local\Temp\nsw5F3A.tmp\SPtool.dll, , [9110564a047790a6093463cf04fdb947],
PUP.Optional.NewPlayer.A, C:\Users\johny\AppData\Local\Temp\67A6tmp\newvideoplayersetup.exe, , [48598d13d3a8cf67a5e1d5b2679a2fd1],
PUP.Optional.Wajam.A, C:\Users\johny\AppData\Local\Temp\67D6tmp\wajam_download.exe, , [5a4747593d3e3cfa2ce6b790f90719e7],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Temp\6895tmp\setup.exe, , [970a3b65cdaeaa8cde1aaaa207f9f010],
PUP.Optional.SearchHijacker.A, C:\Users\johny\AppData\Local\Temp\6904tmp\lly_webssearches.exe, , [0b96861a4c2fa98d19a90b913fc2fe02],
PUP.Optional.SupraSavings.A, C:\Users\johny\AppData\Local\Temp\6953tmp\f978377c-b7d4-4536-8e10-14ca97b13394.exe, , [c9d88a164734f640ae199faca65c06fa],
PUP.Optional.Conduit.A, C:\Users\johny\AppData\Local\Temp\DEE5tmp\spidentifierimpl.exe, , [fda408984c2fd85ef486e2aa8a776f91],
PUP.Optional.Conduit.A, C:\Users\johny\AppData\Local\Temp\nsy6D85\SpSetup.exe, , [9f02c1df03788aaca984b57235ccf10f],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Temp\pehD7BD.tmp\UPDATER.EXE, , [3d64f3ad0e6d4bebbda586f43fc2a25e],
PUP.Optional.OpenCandy, C:\Users\johny\AppData\Roaming\rmi\daemon-tools-4.48.1.exe, , [d9c87b25abd02115bd959645dd2708f8],
PUP.Optional.OpenCandy, C:\Users\johny\Downloads\daemon-tools-4.48.1.exe, , [abf6366a2754ad892a28f5e6b0549967],
PUP.Optional.ToolBarInstaller.A, C:\Users\johny\Downloads\SocialNetworksSetup.exe, , [bee3831d6f0c1e187075a2a940c17d83],
PUP.Optional.OpenCandy, C:\Users\johny\Downloads\vlc-64-2.1.2.exe, , [bee30a96bbc03501252dcd0e5aaa7b85],
PUP.Optional.SearchProtect.A, C:\Windows\apppatch\apppatch64\SPVCLdr64.dll, , [6938f9a71a6168ce42f0c4d146bb7f81],
PUP.Optional.Conduit.A, C:\Windows\Temp\nsb8178.exe, , [cdd4dbc57902270f66a8dfac39c8a15f],
PUP.Optional.Conduit.A, C:\Windows\Temp\nsc9C6B.exe, , [10911b856b101f1739d5e4a706fbe719],
PUP.Optional.Conduit.A, C:\Windows\Temp\nse1D35.exe, , [9c055b45334890a69f6f7d0e2fd20bf5],
PUP.Optional.Conduit.A, C:\Windows\Temp\nsg1A59.exe, , [2c75d7c97a01b581b856b1daa160df21],
PUP.Optional.Conduit.A, C:\Windows\Temp\nsiF47E.exe, , [178a5e42314a73c3907efd8e80814ab6],
PUP.Optional.Conduit.A, C:\Windows\Temp\nsk7AAE.exe, , [178a930d8af1181edd3106854cb5d42c],
PUP.Optional.Conduit.A, C:\Windows\Temp\nsk7DC6.exe, , [e4bd257b29522a0c2be3eba0d32e40c0],
PUP.Optional.Conduit.A, C:\Windows\Temp\nso2E1.exe, , [9e030f91017a85b14fbfbbd0d32e629e],
PUP.Optional.Conduit.A, C:\Windows\Temp\nstFA4D.exe, , [8f12752b08730e28a36b5b3032cf8f71],
PUP.Optional.Conduit.A, C:\Windows\Temp\nswE352.exe, , [faa7029e2b502a0ce9255c2f9f62d62a],
PUP.Optional.Conduit.A, C:\Windows\Temp\nsx9A1E.exe, , [930e564adba0d46231dd1378966b847c],
PUP.Optional.Conduit.A, C:\Windows\Temp\nsz3E53.exe, , [762b00a0235849ed45c95e2d9071e818],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{1b646e65-56b2-4543-b72c-0e8976cf559e}Gw64.sys, , [c1a0c08cad94871e27a4577594677aac],
PUP.Optional.WebSearchs.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage, , [f7aa1f81a1da59dd21d7aa22f9098878],
PUP.Optional.WebSearchs.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage-journal, , [9f0227790c6f142207f1a12bae54817f],
PUP.Optional.Boost.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.boostsaves.com_0.localstorage, , [e6bb663a8eed51e5c14fab221ae8da26],
PUP.Optional.Boost.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.boostsaves.com_0.localstorage-journal, , [efb2118f611a9b9ba96735984bb7619f],
PUP.Optional.PassShow.A, C:\Windows\System32\Tasks\PassShow Update, , [ecb5c6da1665003600649a389d65b848],
PUP.Optional.Trovi.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage, , [762bb3ed502bfc3aaaf5706b8f73cb35],
PUP.Optional.Trovi.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage-journal, , [7b26e3bda8d380b6009f0ad170923ec2],
PUP.Optional.Superfish.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, , [940d0a96dc9fa294fcd406d68979758b],
PUP.Optional.Superfish.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, , [d3ce1987443768ce3b95e4f85ba740c0],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_videodownloadconverter.dl.tb.ask.com_0.localstorage, , [544d802089f22d0977d47c63c93925db],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_videodownloadconverter.dl.tb.ask.com_0.localstorage-journal, , [0b96851bf487ff3768e37b64d03210f0],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_myfuncards.dl.tb.ask.com_0.localstorage, , [940d2b75eb9054e2e09f5f807a88629e],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_myfuncards.dl.tb.ask.com_0.localstorage-journal, , [4a57e9b7710ac07638476a7561a141bf],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pehdhibmkmcipbeahabjgfhgngojeace_0.localstorage, , [4d54acf478033bfb9450b330c93915eb],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pehdhibmkmcipbeahabjgfhgngojeace_0.localstorage-journal, , [dfc20997a2d95cda3ca86a79c939f50b],
PUP.Optional.PassShow.A, C:\Windows\Tasks\PassShow Update.job, , [dbc6b5ebf5863df90db6817342c011ef],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{1b646e65-56b2-4543-b72c-0e8976cf559e}w64.sys, , [81a4074720a1691731770f6bfe0aaf98],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dnaojefanpmakfgcaliphepgoiiafmpf_0.localstorage, , [d5ccf1afe497989ebf04fe2d11f3b64a],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dnaojefanpmakfgcaliphepgoiiafmpf_0.localstorage-journal, , [7130534d89f2e84e843f9d8e07fddb25],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe.config, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\swedish_asp_SV.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\AppResource.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\asp.ico, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\AspManager.exe, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\aspsys.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\ASPUninstall.exe, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\categories.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Chinese_asp_ZH-CN.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Chinese_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Communication.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\danish_asp_DA.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Danish_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\dutch_asp_NL.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Dutch_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\eng_asp_en.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\eng_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\filetypehelper.exe, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Finnish_asp_FI.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Finnish_uninst_fi.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\french_asp_FR.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\French_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\korean_uninst_ko.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\loading_withWhiteBG.avi, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Microsoft.Win32.TaskScheduler.DLL, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\norwegian_asp_NO.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Norwegian_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\polish_uninst_pl.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\portugese_uninst_pt.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\portuguese_asp_PT-BR.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Portuguese_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\russian_asp_ru.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\russian_uninst_ru.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\scandll.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\spanish_asp_ES.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\spanish_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\SSDPTstub.exe, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\german_asp_DE.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\German_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\greek_uninst_el.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Interop.IWshRuntimeLibrary.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\italian_asp_IT.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Italian_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\japanese_asp_JA.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Japanese_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\swedish_uninst.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\System.Core.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\System.Data.SQLite.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\TPS.ico, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\traditionalcn_uninst_zh-tw.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Turkish_uninst_tr.ini, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\unins000.dat, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\unins000.exe, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\unins000.msg, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\unrar.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Xceed.Compression.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Xceed.Compression.Formats.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Xceed.FileSystem.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Xceed.Zip.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\clamunpack\clamscan.exe, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\clamunpack\libclamav.dll, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\clamunpack\readme.txt, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Troubleshooter\asp-fixer.com, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Troubleshooter\asp-fixer.exe, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Troubleshooter\asp-fixer.pif, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Troubleshooter\asp-fixer.scr, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Troubleshooter\ASP-Troubleshooter.chm, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Troubleshooter\firefox.com, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Troubleshooter\iexplore.exe, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.AdvancedSystemProtector.A, C:\Program Files (x86)\ASP\Troubleshooter\iexplore.lnk, , [0a970a96cdae80b67d01220bcd3706fa],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\buildVars.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\config.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\contentScript.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\contentScript.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\extension_toolbar_api.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\initWidgetWindow.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\manifest.json, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\options.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\spent.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\spent.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\spent.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\superFrame.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\toolbar.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\toolbar.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\toolbarUI.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\toolbarUI.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\toolbarUI.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\native\ce.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\native\ss.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\native\libs\jquery-1.7.1.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\native\libs\jquery-1.9.1.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\adapter\adapterUtil.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\adapter\widget-adapter.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\abstractbutton\background\abstractButton.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\alert\background\alertButton.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedhtml\background\embedHtmlWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedhtml\html\embedHtmlTemplate.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedhtml\html\innerEmbedHtmlTemplate.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedhtml\js\embedHtmlUI.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedscript\background\embedScriptWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedscript\html\embedScriptTemplate.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedscript\html\innerEmbedScriptTemplate.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\embedscript\js\embedScriptUI.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\flare\background\FlareWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\flare\icons\Icon_Flare_blue.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\flare\icons\Icon_Flare_pink.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\flare\icons\Thumbs.db, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\generic\background\GenericWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\link\background\linkButton.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\README.txt, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\background\menuButton.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\css\menuframe.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\html\menuframe.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\images\right_arrow.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\images\right_arrow_white.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\js\jquery-1.7.1.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\js\menuframe.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\js\query-string.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\menu\js\underscore-1.3.1.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\rss\background\RssWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\thirdparty\background\thirdPartyWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\uninstall\background\uninstallButton.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\components\weather\background\weatherButton.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\blacklistService.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\common.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\dynamic.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\enableDetect.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\eventListening.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\global.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\jquery-1.7.1.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\list-interaction.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\messageEventListener.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\navRedirector.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\paramReplacer.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\PartnerId.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\set.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\underscore-1.3.1.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\underscore-1.5.2.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\js\unifiedLogging.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widget-context-1.0.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\common\common.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\common\eventListening.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\common\jquery-1.7.1.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\common\list-interaction.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\common\set.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\common\underscore-1.3.1.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\radio\radio-widget.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\radio\css\radio-widget.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\radio\js\radio-custom.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\radio\js\radio-parser.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\radio\js\radio-widget-ui.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\radio\js\radio-widget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\rss\rssWidget.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\rss\js\rss-widget-custom.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\rss\js\rss-widget-parse.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\rss\js\rss-widget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\test\invalid.json, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\test\jquery.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\test\qunit.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\test\qunit.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\test\resource.json, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\test\resource.xml, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\test\testWidget.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\test\testWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\topapps\widget.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\topapps\css\widget.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\topapps\js\nanigans-topapps-feed.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\topapps\js\topapps-config.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\topapps\js\widget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\weather\weatherButton.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\weather\css\weatherButton.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\common\widget-api\widgets\weather\js\weather.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api\background\ApiBasedWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api\background\widget-api-impl.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api\window\hiddenWidgetWindow.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api\window\hiddenWidgetWindow.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api\window\hiddenWidgetWindowInit.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api\window\widgetWindow.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\api\window\widgetWindow.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\background\updateSearch.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\background\updateSearchPromptBg.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\07_buttons2.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\08_buttons2.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\defaultSearchModal.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\defaultSearchModalInjector.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\defaultSearchModalInjector.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\tvf_btn_ok.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\tvf_btn_ok2.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\tvf_restart_alert_icon.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\tvf_restart_icon.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\defaultSearch\foreground\updateSearchPromptFg.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\moviereviews\background\MovieReviewsWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\moviereviews\css\movieReviews.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\moviereviews\html\movieReviews.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\moviereviews\js\movieReviews.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio\background\RadioWidget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio\css\toolbar-item.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio\foreground\button.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio\radioWrapper\radioWrapper.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\radio\radioWrapper\radioWrapper.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\search\background\searchBox.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\search\html\searchSuggestions.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\search\html\searchSuggestions.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\search\html\searchSuggestions.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\search\html\searchSuggestionsInit.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\css\supertab.css, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\html\supertab.html, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\js\newtabfork.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\js\reporting.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\js\srchsugg.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\js\supertab.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\js\unifiedLogging.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\components\supertab\js\__utm.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\icons\arrowSprite.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\icons\icon128.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\icons\icon16.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\icons\icon19disabled.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\icons\icon19on.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\icons\icon48.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\icons\tb_icon_search_disappearing_ask.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\222112232.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\222112235.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\222112257.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\222112258.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\222112259.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\222112261.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\222112275.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\down_arrow.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\IDR_PRODUCT_LOGO_16.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\IDR_WEBSTORE_ICON.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\magnifying_glass.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\RadioPlayerSprite.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\search_button.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\tvf_icon_guide.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\tvf_logo.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\images\wrench.png, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\options.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\chromeUtils.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\exeManager.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\exePackageManager.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\focusManager.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\globalBlacklistManager.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\messaging.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\mutation_summary-min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\mutation_summary.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\newTabInfo.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\newTabInitialize.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\readLocalStorage.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\reservespacefortoolbar.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\reservespaceifenabled.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\scriptInjector.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\searchContext.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\settingsOverrides.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\toolbarCookieParser.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\toolbarPreinit.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\underscore-1.3.1.min.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\URILoaderContentScript.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\Widget.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\widgetFactory.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\js\widgetWindowManager.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\shared\HttpURL.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\shared\rsvp-latest.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\shared\unifiedLogging.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\shared\universalConsole.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\shared\utils.js, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.MindSpark.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace\10.74.4.15109_0\_metadata\verified_contents.json, , [bde44e525328e55166310ea41ae811ef],
PUP.Optional.SmileysWeLove.A, C:\Users\johny\AppData\Local\Temp\swlfiles\BrowserHelper.exe.config, , [f1b0d0d0e19ac076a28d78478f73c739],
PUP.Optional.SmileysWeLove.A, C:\Users\johny\AppData\Local\Temp\swlfiles\browserhelperff.log, , [f1b0d0d0e19ac076a28d78478f73c739],
PUP.Optional.SmileysWeLove.A, C:\Users\johny\AppData\Local\Temp\swlfiles\smileyswelovetoolbar.crx, , [f1b0d0d0e19ac076a28d78478f73c739],
PUP.Optional.SmileysWeLove.A, C:\Users\johny\AppData\Local\Temp\swlfiles\smileyswelovetoolbar.xpi, , [f1b0d0d0e19ac076a28d78478f73c739],
PUP.Optional.SmileysWeLove.A, C:\Users\johny\AppData\Local\Temp\swlfiles\x86\SQLite.Interop.dll, , [f1b0d0d0e19ac076a28d78478f73c739],
PUP.Optional.Extutil.A, C:\Users\johny\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\bk.js, , [efb2d0d0c7b493a3e325f5cce51d9f61],
PUP.Optional.Extutil.A, C:\Users\johny\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\cs.js, , [efb2d0d0c7b493a3e325f5cce51d9f61],
PUP.Optional.Extutil.A, C:\Users\johny\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\manifest.json, , [efb2d0d0c7b493a3e325f5cce51d9f61],
PUP.Optional.Managera.A, C:\Users\johny\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\cs.js, , [7e23267a067592a430d92e9308fa619f],
PUP.Optional.Managera.A, C:\Users\johny\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\manifest.json, , [7e23267a067592a430d92e9308fa619f],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\1293297481.mxaddon, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\28434b15-8bee-49e8-91cd-a585cb7816f9.crx, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\ae5dab3e-f301-46b7-b69d-ece73d07d926.crx, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\background.html, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\bgNova.html, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee.crx, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee.xpi, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\Uninstall.exe, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-nova.dll, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.MediaPlayer.A, C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air.ico, , [b9e8ecb4e39888aeff1eedd47b8723dd],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\background.html, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\chromeCoreFilesIndex.txt, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\manifest.json, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\popup.html, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\Settings.json, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\manifest.xml, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins.json, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\1.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\102.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\104.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\13.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\14.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\17.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\177.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\182.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\183.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\184.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\19.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\191.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\193.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\195.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\207.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\21.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\211.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\22.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\220.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\221.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\226.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\242.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\244.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\246.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\262.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\263.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\267.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\28.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\281.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\287.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\4.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\47.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\64.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\7.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\72.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\78.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\80.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\9.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\91.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\93.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\plugins\97.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\userCode\background.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\extensionData\userCode\extension.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\icons\icon128.png, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\icons\icon16.png, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\icons\icon48.png, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\icons\actions\1.png, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\background.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\main.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\platformVersion.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\api\chrome.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\api\cookie.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\api\message.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\api\monitor.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\api\pageAction.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\api\pageActionBG.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\app_api.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\bg_app_api.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\consts.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\cookie_store.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\crossriderAPI.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\delegate.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\events.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\extensionDataStore.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\installer.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\logFile.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\logging.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\onBGDocumentLoad.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\reports.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\storageWrapper.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\updateManager.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\util.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\xhr.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\popupResource\newPopup.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnaojefanpmakfgcaliphepgoiiafmpf\1.26.34_0\js\lib\popupResource\popup.js, , [d6cba9f7bac156e0dc2bbe0548ba2dd3],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf\000005.ldb, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf\000008.ldb, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf\000017.ldb, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf\000024.log, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf\CURRENT, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf\LOCK, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf\LOG, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf\LOG.old, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dnaojefanpmakfgcaliphepgoiiafmpf\MANIFEST-000022, , [465bffa15229de5839cf3192ad55d927],
PUP.Optional.CrossRider.A, C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dnaojefanpmakfgcaliphepgoiiafmpf_0\4, , [4e53623e1f5c8ea80405348f689a9a66],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\GoogleCrashHandler.exe, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\GoogleUpdate.exe, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\GoogleUpdateBroker.exe, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\GoogleUpdateHelper.msi, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\GoogleUpdateOnDemand.exe, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\goopdate.dll, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\goopdateres_en.dll, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\npGoogleUpdate4.dll, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\psmachine.dll, , [376a267afb8062d45bb58d36679bbc44],
PUP.Optional.GlobalUpdate.A, C:\Users\johny\AppData\Local\Temp\comh.295899\psuser.dll, , [376a267afb8062d45bb58d36679bbc44],
Physical Sectors: 0
(No malicious items detected)
(end)
Ik heb na de scan gekozen voor "quarantaine all" gekozen. Ik hoop dat dit OK is?
Steven
-
Hey, bedankt voor de supersnelle reactie !
Ik heb het gevraagde gedaan. Hieronder het logje...
# AdwCleaner v3.216 - Rapport aangemaakt 27/07/2014 op 14:12:09# Laatste Update 17/07/2014 door Xplode# Besturingssysteem : Windows 8.1 (64 bits)
# Gebruikersnaam : johny - JOHNY-PC
# Gestart vanuit : C:\Users\johny\Desktop\adwcleaner_3.216.exe
# Optie : Verwijderen
***** [ Services ] *****
Service Verwijderd : {1b646e65-56b2-4543-b72c-0e8976cf559e}Gw64
Service Verwijderd : 70e6ca8c
[#] Service Verwijderd : BackupStack
Service Verwijderd : CltMngSvc
[#] Service Verwijderd : globalUpdate
[#] Service Verwijderd : globalUpdatem
Service Verwijderd : IePluginServices
Service Verwijderd : NewPlayerUpdaterService
Service Verwijderd : RBClientService
Service Verwijderd : ReimageRealTimeProtection
Service Verwijderd : servervo
[#] Service Verwijderd : Update Cling Clang
[#] Service Verwijderd : Util Cling Clang
Service Verwijderd : Wajam Internet Enhancer Service
***** [ Bestanden / Mappen ] *****
Map Verwijderd : C:\ProgramData\IePluginServices
Map Verwijderd : C:\ProgramData\Systweak
Map Verwijderd : C:\ProgramData\WindowsMangerProtect
Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro v3.2
Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Right Backup
Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam
Map Verwijderd : C:\Program Files (x86)\AnyProtectEx
[!] Map Verwijderd : C:\Program Files (x86)\Cling Clang
Map Verwijderd : C:\Program Files (x86)\globalUpdate
Map Verwijderd : C:\Program Files (x86)\MyPC Backup
Map Verwijderd : C:\Program Files (x86)\NewPlayer
Map Verwijderd : C:\Program Files (x86)\Optimizer Pro
Map Verwijderd : C:\Program Files (x86)\PassShow-soft
Map Verwijderd : C:\Program Files (x86)\predm
Map Verwijderd : C:\Program Files (x86)\RegClean Pro
Map Verwijderd : C:\Program Files (x86)\Right Backup
Map Verwijderd : C:\Program Files (x86)\SearchProtect
Map Verwijderd : C:\Program Files (x86)\SupTab
Map Verwijderd : C:\Program Files (x86)\Wajam
Map Verwijderd : C:\Program Files\003
Map Verwijderd : C:\Program Files\Reimage
Map Verwijderd : C:\Program Files\SupraSavings
Map Verwijderd : C:\Users\johny\AppData\Local\globalUpdate
Map Verwijderd : C:\Users\johny\AppData\Local\NewPlayer
Map Verwijderd : C:\Users\johny\AppData\Local\Pay-By-Ads
Map Verwijderd : C:\Users\johny\AppData\Local\Popajar
Map Verwijderd : C:\Users\johny\AppData\Local\SearchProtect
Map Verwijderd : C:\Users\johny\AppData\Local\Temp\Smartbar
Map Verwijderd : C:\Users\johny\AppData\Roaming\OpenCandy
Map Verwijderd : C:\Users\johny\AppData\Roaming\Optimizer Pro
Map Verwijderd : C:\Users\johny\AppData\Roaming\Systweak
Map Verwijderd : C:\Users\johny\AppData\Roaming\VOPackage
Map Verwijderd : C:\Users\johny\AppData\Roaming\webssearches
Map Verwijderd : C:\Users\johny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
Map Verwijderd : C:\Users\johny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Map Verwijderd : C:\Users\johny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
Map Verwijderd : C:\Users\johny\Documents\Optimizer Pro
Map Verwijderd : C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Map Verwijderd : C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl
Bestand Verwijderd : C:\END
Bestand Verwijderd : C:\Users\Public\Desktop\Advanced System Protector.lnk
Bestand Verwijderd : C:\Users\Public\Desktop\RegClean Pro.lnk
Bestand Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk
Bestand Verwijderd : C:\Windows\System32\roboot64.exe
Bestand Verwijderd : C:\Windows\System32\sasnative64.exe
Bestand Verwijderd : C:\Users\johny\AppData\Local\AnyProtectScannerSetup.exe
Bestand Verwijderd : C:\Users\johny\AppData\Roaming\aps.scan.quick.results
Bestand Verwijderd : C:\Users\johny\AppData\Roaming\aps.scan.results
Bestand Verwijderd : C:\Users\johny\AppData\Roaming\aps.uninstall.scan.results
Bestand Verwijderd : C:\Users\johny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AnyProtect.lnk
Bestand Verwijderd : C:\Users\johny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
Bestand Verwijderd : C:\Users\johny\Desktop\AnyProtect.lnk
Bestand Verwijderd : C:\Users\johny\Desktop\Continue VuuPC Installation.lnk
Bestand Verwijderd : C:\Users\johny\Desktop\MyPC Backup.lnk
Bestand Verwijderd : C:\Users\johny\Desktop\NewPlayer.lnk
Bestand Verwijderd : C:\Users\johny\Desktop\Optimizer Pro.lnk
Bestand Verwijderd : C:\Users\johny\Desktop\Sync Folder.lnk
Bestand Verwijderd : C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx
Bestand Verwijderd : C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Bestand Verwijderd : C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Bestand Verwijderd : C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.wajam.com_0.localstorage
Bestand Verwijderd : C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.wajam.com_0.localstorage-journal
Bestand Verwijderd : C:\Windows\System32\Tasks\Advanced System Protector
Bestand Verwijderd : C:\Windows\System32\Tasks\Advanced System Protector_startup
Bestand Verwijderd : C:\Windows\Tasks\APSnotifierPP1.job
Bestand Verwijderd : C:\Windows\System32\Tasks\APSnotifierPP1
Bestand Verwijderd : C:\Windows\Tasks\APSnotifierPP2.job
Bestand Verwijderd : C:\Windows\System32\Tasks\APSnotifierPP2
Bestand Verwijderd : C:\Windows\Tasks\APSnotifierPP3.job
Bestand Verwijderd : C:\Windows\System32\Tasks\APSnotifierPP3
Bestand Verwijderd : C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
Bestand Verwijderd : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
Bestand Verwijderd : C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
Bestand Verwijderd : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
Bestand Verwijderd : C:\Windows\System32\Tasks\RegClean Pro
Bestand Verwijderd : C:\Windows\Tasks\RegClean Pro_DEFAULT.job
Bestand Verwijderd : C:\Windows\System32\Tasks\RegClean Pro_DEFAULT
Bestand Verwijderd : C:\Windows\Tasks\RegClean Pro_UPDATES.job
Bestand Verwijderd : C:\Windows\System32\Tasks\RegClean Pro_UPDATES
Bestand Verwijderd : C:\Windows\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-1.job
Bestand Verwijderd : C:\Windows\System32\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-1
Bestand Verwijderd : C:\Windows\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-11.job
Bestand Verwijderd : C:\Windows\System32\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-11
Bestand Verwijderd : C:\Windows\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-2.job
Bestand Verwijderd : C:\Windows\System32\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-2
Bestand Verwijderd : C:\Windows\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-3.job
Bestand Verwijderd : C:\Windows\System32\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-3
Bestand Verwijderd : C:\Windows\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-4.job
Bestand Verwijderd : C:\Windows\System32\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-4
Bestand Verwijderd : C:\Windows\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-5.job
Bestand Verwijderd : C:\Windows\System32\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-5
Bestand Verwijderd : C:\Windows\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-5_user.job
Bestand Verwijderd : C:\Windows\System32\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-5_user
Bestand Verwijderd : C:\Windows\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-6.job
Bestand Verwijderd : C:\Windows\System32\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-6
Bestand Verwijderd : C:\Windows\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-7.job
Bestand Verwijderd : C:\Windows\System32\Tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-7
***** [ Snelkoppelingen ] *****
Snelkoppeling Gedesinfecteerd : C:\Users\Public\Desktop\Google Chrome.lnk
Snelkoppeling Gedesinfecteerd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Snelkoppeling Gedesinfecteerd : C:\Users\johny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Snelkoppeling Gedesinfecteerd : C:\Users\johny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Snelkoppeling Gedesinfecteerd : C:\Users\johny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Snelkoppeling Gedesinfecteerd : C:\Users\johny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
***** [ Register ] *****
Sleutel Verwijderd : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Sleutel Verwijderd : HKLM\SOFTWARE\Google\Chrome\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl
Sleutel Verwijderd : HKLM\SOFTWARE\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
Waarde Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro]
Waarde Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [updateChecker]
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASAPI32
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASMANCS
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\WajamInternetEnhancer_RASAPI32
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Tracing\WajamInternetEnhancer_RASMANCS
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Waarde Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [AnyProtect Scanner]
Sleutel Verwijderd : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Sleutel Verwijderd : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CrossriderApp0059599.BHO
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CrossriderApp0059599.BHO.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CrossriderApp0059599.Sandbox
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CrossriderApp0059599.Sandbox.1
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511951199}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522952299}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555955599}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566956699}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440544954499}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511951199}
Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}
Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511951199}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522952299}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555955599}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566956699}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511951199}
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Gegevens Hersteld : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Sleutel Verwijderd : HKCU\Software\AnyProtect
Sleutel Verwijderd : HKCU\Software\Cling Clang
Sleutel Verwijderd : HKCU\Software\GlobalUpdate
Sleutel Verwijderd : HKCU\Software\InstallCore
Sleutel Verwijderd : HKCU\Software\installedbrowserextensions
Sleutel Verwijderd : HKCU\Software\Optimizer Pro
Sleutel Verwijderd : HKCU\Software\Popajar
Sleutel Verwijderd : HKCU\Software\SmileysWeLove
Sleutel Verwijderd : HKCU\Software\systweak
Sleutel Verwijderd : HKCU\Software\TutoTag
Sleutel Verwijderd : HKCU\Software\Wajam
Sleutel Verwijderd : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\Crossrider
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\suprasavings
Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\video MediaPlay-Air
Sleutel Verwijderd : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Sleutel Verwijderd : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Sleutel Verwijderd : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Sleutel Verwijderd : HKLM\Software\Cling Clang
Sleutel Verwijderd : HKLM\Software\free_soft_to_day
Sleutel Verwijderd : HKLM\Software\GlobalUpdate
Sleutel Verwijderd : HKLM\Software\installedbrowserextensions
Sleutel Verwijderd : HKLM\Software\NewPlayer
Sleutel Verwijderd : HKLM\Software\SearchProtect
Sleutel Verwijderd : HKLM\Software\SupDp
Sleutel Verwijderd : HKLM\Software\SupTab
Sleutel Verwijderd : HKLM\Software\supWindowsMangerProtect
Sleutel Verwijderd : HKLM\Software\supWPM
Sleutel Verwijderd : HKLM\Software\systweak
Sleutel Verwijderd : HKLM\Software\Tutorials
Sleutel Verwijderd : HKLM\Software\video MediaPlay-Air
Sleutel Verwijderd : HKLM\Software\Wajam
Sleutel Verwijderd : HKLM\Software\webssearchesSoftware
Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NewPlayer
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean-Pro_is1
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\video MediaPlay-Air
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\installedbrowserextensions
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Speedchecker Limited
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\suprasavings
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Cling Clang
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
Sleutel Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\suprasavings
Gegevens Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll
Gegevens Verwijderd : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~1.DLL
Gegevens Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll
Gegevens Verwijderd : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~2.DLL
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Main [search Page]
Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Main [start Page]
Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Main [search Bar]
Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page]
Instelling Hersteld : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [search Page]
Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\Search [searchAssistant]
Instelling Hersteld : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
Instelling Hersteld : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Instelling Hersteld : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Instelling Hersteld : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [start Page]
Instelling Hersteld : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [search Page]
-\\ Google Chrome v36.0.1985.125
[ Bestand : C:\Users\johny\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Verwijderd [startup_urls] : hxxp://istart.webssearches.com/?type=hppp&ts=1405534002&from=tugs&uid=TOSHIBAXMQ01ABD075_Y3JHSAUGSXXY3JHSAUGS
Verwijderd [Homepage] : hxxp://istart.webssearches.com/?type=hppp&ts=1405534002&from=tugs&uid=TOSHIBAXMQ01ABD075_Y3JHSAUGSXXY3JHSAUGS
Verwijderd [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Verwijderd [Extension] : bopakagnckmlgajfccecajhnimjiiedh
Verwijderd [Extension] : fjbbjfdilbioabojmcplalojlmdngbjl
Verwijderd [Extension] : flpcjncodpafbgdpnkljologafpionhb
Verwijderd [Extension] : pelmeidfhdlhlbjimpabfcbnnojbboma
*************************
AdwCleaner[R0].txt - [24456 octets] - [27/07/2014 14:11:06]
AdwCleaner[s0].txt - [19929 octets] - [27/07/2014 14:12:09]
########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [19990 octets] ##########
-
Hallo,
Mijn schoonvader zijn laptop heeft "kuren". Hij krijgt veel ongevraagd links en vragen om programma's (antivirus) te kopen....
Kunnen jullie eventjes een kijkje nemen?
Bedankt!
Steven.
Logfile of random's system information tool 1.10 (written by random/random)Run by johny at 2014-07-27 13:34:55Microsoft Windows 8.1
System drive C: has 644 GB (91%) free of 704 GB
Total RAM: 7630 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:35:03, on 27/07/2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Right Backup\RightBackup.exe
C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe
C:\Program Files (x86)\Cling Clang\bin\ClingClang.BrowserAdapter.exe
C:\Users\johny\AppData\Local\Popajar\UpdateChecker\UpdateCheckerApp.exe
C:\Users\johny\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\johny.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = WebSearches
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/?publisher=Somoto&dpid=SomotoCH&co=BE&userid=a4c010a8-c255-b1bc-bfe5-fa546f4629b7&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com/?publisher=Somoto&dpid=SomotoCH&co=BE&userid=a4c010a8-c255-b1bc-bfe5-fa546f4629b7&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Zoeken
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = WebSearches
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1405516664&from=tugs&uid=TOSHIBAXMQ01ABD075_Y3JHSAUGSXXY3JHSAUGS&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1405516664&from=tugs&uid=TOSHIBAXMQ01ABD075_Y3JHSAUGSXXY3JHSAUGS&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = WebSearches
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.com/?publisher=Somoto&dpid=SomotoCH&co=BE&userid=a4c010a8-c255-b1bc-bfe5-fa546f4629b7&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com/?publisher=Somoto&dpid=SomotoCH&co=BE&userid=a4c010a8-c255-b1bc-bfe5-fa546f4629b7&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:52081;https=127.0.0.1:52081
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: CrossriderApp0059599 - {11111111-1111-1111-1111-110511951199} - C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-bho.dll
O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: PassShow - {9CB9BF52-6347-0774-99A7-9024BC83DE91} - C:\Program Files (x86)\PassShow-soft\170.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [brStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKLM\..\Run: [AnyProtect Scanner] "C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [updateChecker] C:\Users\johny\AppData\Local\Popajar\UpdateChecker\UpdateCheckerApp.exe
O4 - HKCU\..\Run: [Yahoo! Search] C:\Users\johny\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe
O4 - HKCU\..\Run: [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
O4 - Startup: MyPC Backup.lnk = C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
O4 - Global Startup: AddonNP.lnk = C:\Program Files (x86)\NewPlayer\AddonNP.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll C:\PROGRA~2\SupTab\SEARCH~1.DLL
O23 - Service: AdaptiveSleepService - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Windows ® Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Computer Backup (MyPC Backup) (BackupStack) - Just Develop It - C:\Program Files (x86)\MyPC Backup\BackupStack.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: Search Protect Service (CltMngSvc) - Client Connect LTD - C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: DTS APO Service (dts_apo_service) - Unknown owner - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IePlugin Services (IePluginServices) - Cherished Technololgy LIMITED - C:\ProgramData\IePluginServices\PluginService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NewPlayer Updater Service (NewPlayerUpdaterService) - Unknown owner - C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe
O23 - Service: RBClientService - Systweak - C:\Program Files (x86)\Right Backup\RBClientService.exe
O23 - Service: Reimage Real Time Protection (ReimageRealTimeProtection) - Reimage® - C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: VO Service component (servervo) - Unknown owner - C:\Users\johny\AppData\Roaming\VOPackage\VOsrv.exe
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TEMPRO Service (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - Toshiba Corporation - C:\Program Files\Toshiba\Teco\TecoService.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update Cling Clang - Unknown owner - C:\Program Files (x86)\Cling Clang\updateClingClang.exe
O23 - Service: Util Cling Clang - Unknown owner - C:\Program Files (x86)\Cling Clang\bin\utilClingClang.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: Wajam Internet Enhancer Service - Wajam Internet Technologies Inc. - C:\Program Files (x86)\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Fuyu LIMITED - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14228 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe"
dashost.exe {a5994b35-4f94-4034-9494d6e42da877c4}
"C:\Windows\system32\mfevtps.exe"
"C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\TODDSrv.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files\Toshiba\Teco\TecoService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Browny02\BrYNSvc.exe"
"C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
C:\Users\johny\AppData\Roaming\VOPackage\VOsrv.exe
"C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\Optimizer Pro\OptProCrash.dll",SVC
"C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\Optimizer Pro\OptProCrash.dll",SVC
"C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe"
C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service
"C:\Program Files (x86)\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe"
C:\ProgramData\IePluginServices\PluginService.exe -service
taskeng.exe {E94C974C-F384-4621-8F5D-03BF771562CF}
"C:\Program Files (x86)\Right Backup\RBClientService.exe"
"C:\Program Files (x86)\Cling Clang\updateClingClang.exe"
"C:\Program Files (x86)\Cling Clang\bin\utilClingClang.exe"
C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe
"C:\Program Files (x86)\Cling Clang\bin\ClingClang.PurBrowse64.exe" /l false /s false /c "Cling Clang" /t "C:\Program Files (x86)\Cling Clang\bin\TEMP" /i "http://apiclingclangbiz-a.akamaihd.net/gsrs?is=t4pcsuBE&bp=PB&g=00000000-0000-0000-0000-000000000000" /d {1b646e65-56b2-4543-b72c-0e8976cf559e}w64 /p a7e7abf6-ae06-477b-950b-ed6f8e0706a8:chrome /p da5f4ea4-65c3-4d46-868a-5c89f3672fc8:iexplore
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
taskhostex.exe
"C:\Program Files (x86)\Right Backup\RightBackup.exe" autolaunch
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe" autolaunch
"C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-nova.exe" /gcqMM='video MediaPlay-Air' /fJqPb=59599 /YnirmjtT='001673' /ixKcyS='verticals-ads,shopping' /QGFwUn='0' /vZEXbT=F11123427EEA4246A71E55568DB7B955IE /vTYVPfC=fa3608cdd5cddb3de7bddf8f4f03c18d /eztPeAlZ=1_34_07_01 /BqOZarmQ=1.34.7.1 /SgiQeb=1405516660 /KXPqJMMq=http://stats.genstatsnet.com /bHOcZp=http://errors.genstatsnet.com /pdfcWf=http://js.genstatsnet.com /iINtmPeW=ch /eESYMrV /MlysTG=video MediaPlay-Air /RPAAqIR='nova' /UqhgsZOd=http://js.clientdemocloud.com /gLkmK='{"asw":[0, 33554433, 16781824]}' /xcseE='http://update.genstatsnet.com/novarun/{CAMP_ID}/update.json' /XXOLGHkv='task' /gFWqXhWgY=''
C:\PROGRA~2\SearchProtect\SearchProtect\bin\cltmng.exe
ClassicStartMenu.exe -startup
C:\Windows\System32\skydrive.exe -Embedding
C:\PROGRA~2\SearchProtect\UI\bin\cltmngui.exe
/c a7e7abf6-ae06-477b-950b-ed6f8e0706a8 /i da5f4ea4-65c3-4d46-868a-5c89f3672fc8 /s /z "n=ClingClang&is=t4pcsuBE&dpt=21"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe"
"C:\Program Files\Toshiba\Teco\TecoResident.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
WajamInternetEnhancer.exe "C:\Program Files (x86)\Wajam\Wajam Internet Enhancer\WJManifest"
"C:\Users\johny\AppData\Local\Popajar\UpdateChecker\UpdateCheckerApp.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Users\johny\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe"
"C:\Program Files (x86)\NewPlayer\AddonNP.exe"
C:\Windows\SysWOW64\UMonit64.exe
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe"
"C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe"
-BootProc
"C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe" /AUTORUN
-BootProc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" WebSearches
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4620.0.406703073\927312099" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16 --gpu-vendor-id=0x1002 --gpu-device-id=0x9830 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.152.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Control/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_50/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="4620.4.811329\777614846" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Control/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_50/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="4620.5.95878571\721888441" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Control/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_50/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="4620.8.1415113092\1780508765" /prefetch:673131151
"C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4620.14.478863345\2036881918" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/Preperiod_A3_StableBookmarksIndexURLs/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Control/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_50/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --channel="4620.18.1654129028\46348885" /prefetch:673131151
"C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe" /hide
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe974_ Global\UsGthrCtrlFltPipeMssGthrPipe974 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572
"C:\Users\johny\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\APSnotifierPP1.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe --notifier2 A
C:\Windows\tasks\APSnotifierPP2.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe --notifier 4
C:\Windows\tasks\APSnotifierPP3.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe --notifier 6
C:\Windows\tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-1.job - C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-codedownloader.exe /mEjIVoB /XXOLGHkv=task /gcqMM='video MediaPlay-Air' /fJqPb=59599 /YnirmjtT='001673' /ixKcyS='verticals-ads,shopping' /QGFwUn='0' /vZEXbT=F11123427EEA4246A71E55568DB7B955IE /vTYVPfC=fa3608cdd5cddb3de7bddf8f4f03c18d /eztPeAlZ=1_34_07_01 /BqOZarmQ=1.34.7.1 /SgiQeb=1405516660 /KXPqJMMq=http://stats.genstatsnet.com /bHOcZp=http://errors.genstatsnet.com /pdfcWf=http://js.genstatsnet.com /iINtmPeW=ch /MlysTG='video MediaPlay-Air' /UqhgsZOd=http://js.clientdemocloud.com /XclwYaf /gLkmK='{"asw":[0, 33554433, 16781824]}' /xcseE='http://update.genstatsnet.com/ie_code_agent_updates/{CAMP_ID}/update.json' /XXOLGHkv='task' /gFWqXhWgY=''
C:\Windows\tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-11.job - C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-11.exe /ARYXeRLEO=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
C:\Windows\tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-2.job - C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-2.exe /iCnJy /gcqMM='video MediaPlay-Air' /fJqPb=59599 /YnirmjtT='001673' /ixKcyS='verticals-ads,shopping' /QGFwUn='0' /vZEXbT=F11123427EEA4246A71E55568DB7B955IE /vTYVPfC=fa3608cdd5cddb3de7bddf8f4f03c18d /eztPeAlZ=1_34_07_01 /SgiQeb=1405516660 /KXPqJMMq=http://stats.genstatsnet.com /bHOcZp=http://errors.genstatsnet.com /ucsPOGUmc=11111111-1111-1111-1111-110511951199 /iINtmPeW=ch /IDdLVw /XclwYaf /xcseE='http://update.genstatsnet.com/ie_enable_agent_updates/{CAMP_ID}/update.json' /XXOLGHkv='task' /gFWqXhWgY=''
C:\Windows\tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-3.job - C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-3.exe /ARYXeRLEO=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
C:\Windows\tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-4.job - C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-4.exe /rSzNCCaZk /gcqMM='video MediaPlay-Air' /uoVeYM='C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee.xpi' /fJqPb=59599 /YnirmjtT='001673' /ixKcyS='verticals-ads,shopping' /QGFwUn='0' /vZEXbT=F11123427EEA4246A71E55568DB7B955IE /vTYVPfC=fa3608cdd5cddb3de7bddf8f4f03c18d /eztPeAlZ=1_34_07_01 /BqOZarmQ=1.34.7.1 /SgiQeb=1405516660 /KXPqJMMq=http://stats.genstatsnet.com /bHOcZp=http://errors.genstatsnet.com /dJawdNe=300 /wHPqK=ff806580-6db3-4c09-ba06-d6caf0e99172@8453cb25-7fef-4ed5-8934-b08be5605617.com /ONNfwQ=0.95 /cCDvK=aff8065806db34c09ba06d6caf0e991728453cb257fef4ed58934b08be5605617com59599 /IvgIl=https://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/59599.rdf /JzAARcA='video MediaPlay-Air' /ZaOFTpgh='MediaPlayerEnhance Extension' /dIUSYuZz='enter' /iINtmPeW=ch /gLkmK='{"asw":[0, 33554433, 16781824]}' /XclwYaf /KIUiFi /mtppVI /xcseE='http://update.genstatsnet.com/ff_agent_updates/{CAMP_ID}/update.json' /XXOLGHkv='task' /gFWqXhWgY=''
C:\Windows\tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-5.job - C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-5.exe /dOmCzKO /gcqMM='video MediaPlay-Air' /fJqPb=59599 /YnirmjtT='001673' /ixKcyS='verticals-ads,shopping' /QGFwUn='0' /vZEXbT=F11123427EEA4246A71E55568DB7B955IE /vTYVPfC=fa3608cdd5cddb3de7bddf8f4f03c18d /eztPeAlZ=1_34_07_01 /SgiQeb=1405516660 /KXPqJMMq=http://stats.genstatsnet.com /bHOcZp=http://errors.genstatsnet.com /FhPKx=http://ipgeoapi.com/ /LGnWOxdAW=http://update.genstatsnet.com /MBYGXavyx=2 /boexUPHJ=http://logs.genstatsnet.com /xcseE='http://update.genstatsnet.com/updater_agent_updates/{CAMP_ID}/update.json' /XXOLGHkv='task' /gFWqXhWgY=''
C:\Windows\tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-5_user.job - C:\Program Files (x86)\video MediaPlay-Air\c5b5f03e-ca42-497c-abf8-a1f533e128ee-5.exe /dOmCzKO /gcqMM='video MediaPlay-Air' /fJqPb=59599 /YnirmjtT='001673' /ixKcyS='verticals-ads,shopping' /QGFwUn='0' /vZEXbT=F11123427EEA4246A71E55568DB7B955IE /vTYVPfC=fa3608cdd5cddb3de7bddf8f4f03c18d /eztPeAlZ=1_34_07_01 /SgiQeb=1405516660 /KXPqJMMq=http://stats.genstatsnet.com /bHOcZp=http://errors.genstatsnet.com /FhPKx=http://ipgeoapi.com/ /LGnWOxdAW=http://update.genstatsnet.com /MBYGXavyx=2 /boexUPHJ=http://logs.genstatsnet.com /xcseE='http://update.genstatsnet.com/updater_agent_updates/{CAMP_ID}/update.json' /xXCHj /XXOLGHkv='task' /gFWqXhWgY=''
C:\Windows\tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-6.job - C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-novainstaller.exe /FJHXRau /gcqMM='video MediaPlay-Air' /fJqPb=59599 /YnirmjtT='001673' /ixKcyS='verticals-ads,shopping' /QGFwUn='0' /vZEXbT=F11123427EEA4246A71E55568DB7B955IE /vTYVPfC=fa3608cdd5cddb3de7bddf8f4f03c18d /eztPeAlZ=1_34_07_01 /BqOZarmQ=1.34.7.1 /SgiQeb=1405516660 /KXPqJMMq=http://stats.genstatsnet.com /bHOcZp=http://errors.genstatsnet.com /pdfcWf=http://js.genstatsnet.com /iINtmPeW=ch /eESYMrV /MlysTG=video MediaPlay-Air /RPAAqIR='nova' /UqhgsZOd=http://js.clientdemocloud.com /gLkmK='{"asw":[0, 33554433, 16781824]}' /XXOLGHkv=task /xcseE='http://update.genstatsnet.com/novacode/{CAMP_ID}/update.json' /XXOLGHkv='task' /gFWqXhWgY=''
C:\Windows\tasks\c5b5f03e-ca42-497c-abf8-a1f533e128ee-7.job - C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-nova.exe /gcqMM='video MediaPlay-Air' /fJqPb=59599 /YnirmjtT='001673' /ixKcyS='verticals-ads,shopping' /QGFwUn='0' /vZEXbT=F11123427EEA4246A71E55568DB7B955IE /vTYVPfC=fa3608cdd5cddb3de7bddf8f4f03c18d /eztPeAlZ=1_34_07_01 /BqOZarmQ=1.34.7.1 /SgiQeb=1405516660 /KXPqJMMq=http://stats.genstatsnet.com /bHOcZp=http://errors.genstatsnet.com /pdfcWf=http://js.genstatsnet.com /iINtmPeW=ch /eESYMrV /MlysTG=video MediaPlay-Air /RPAAqIR='nova' /UqhgsZOd=http://js.clientdemocloud.com /gLkmK='{"asw":[0, 33554433, 16781824]}' /xcseE='http://update.genstatsnet.com/novarun/{CAMP_ID}/update.json' /XXOLGHkv='task' /gFWqXhWgY=''
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\PassShow Update.job - C:\Program Files (x86)\PassShow-soft\PassShowT01.exe /update
C:\Windows\tasks\RegClean Pro_DEFAULT.job - C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe -default
C:\Windows\tasks\RegClean Pro_UPDATES.job - C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe -updatecheck
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511951199}]
video MediaPlay-Air - C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-bho64.dll [2014-07-16 701976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-05-21 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18 796352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18 483520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511951199}]
video MediaPlay-Air - C:\Program Files (x86)\video MediaPlay-Air\video MediaPlay-Air-bho.dll [2014-07-16 520728]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
IETabPage Class - C:\Program Files (x86)\SupTab\SupTab.dll [2014-07-16 515464]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18 674496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CB9BF52-6347-0774-99A7-9024BC83DE91}]
PassShow - C:\Program Files (x86)\PassShow-soft\170.dll [2014-05-21 179200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2014-06-10 1730264]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18 437440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18 796352]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18 674496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-01-12 894048]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2013-08-14 354144]
"TCrdMain"=C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2013-08-18 2556768]
"TecoResident"=C:\Program Files\TOSHIBA\Teco\TecoResident.exe [2013-08-21 178016]
"TSSSrv"=C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [2013-09-12 296520]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-01-18 161984]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-08-28 2774256]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"UpdateChecker"=C:\Users\johny\AppData\Local\Popajar\UpdateChecker\UpdateCheckerApp.exe [2014-01-16 7168]
"Yahoo! Search"=C:\Users\johny\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe [2014-07-07 535472]
"Optimizer Pro"=C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [2014-07-13 146888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-31 766208]
"TSVU"=c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [2013-07-23 516512]
"fst_be_22"= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2012-09-06 143360]
"BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2012-06-06 3076096]
"AnyProtect Scanner"=C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2014-07-16 16986624]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AddonNP.lnk - C:\Program Files (x86)\NewPlayer\AddonNP.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Users\johny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MyPC Backup.lnk - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll C:\PROGRA~2\SupTab\SEARCH~2.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-07-27 13:34:55 ----D---- C:\rsit
2014-07-27 13:34:55 ----D---- C:\Program Files\trend micro
2014-07-18 17:56:46 ----D---- C:\Program Files (x86)\Right Backup
2014-07-16 20:12:01 ----D---- C:\rbtemp
2014-07-16 20:11:27 ----D---- C:\ProgramData\Systweak
2014-07-16 20:11:17 ----D---- C:\Program Files (x86)\ASP
2014-07-16 20:11:17 ----A---- C:\Windows\system32\sasnative64.exe
2014-07-16 20:10:54 ----D---- C:\Users\johny\AppData\Roaming\Systweak
2014-07-16 20:10:54 ----A---- C:\Windows\system32\roboot64.exe
2014-07-16 20:10:42 ----D---- C:\Program Files (x86)\RegClean Pro
2014-07-16 20:10:38 ----D---- C:\Program Files (x86)\AnyProtectEx
2014-07-16 15:19:27 ----D---- C:\Program Files\suprasavings
2014-07-16 15:18:56 ----D---- C:\ProgramData\IePluginServices
2014-07-16 15:18:42 ----D---- C:\Program Files (x86)\Wajam
2014-07-16 15:18:38 ----D---- C:\Program Files (x86)\SupTab
2014-07-16 15:18:26 ----D---- C:\ProgramData\WindowsMangerProtect
2014-07-16 15:18:22 ----D---- C:\Users\johny\AppData\Roaming\Optimizer Pro
2014-07-16 15:18:19 ----AD---- C:\ProgramData\TEMP
2014-07-16 15:18:16 ----D---- C:\Users\johny\AppData\Roaming\webssearches
2014-07-16 15:18:01 ----D---- C:\Program Files (x86)\globalUpdate
2014-07-16 15:17:50 ----D---- C:\Program Files (x86)\NewPlayer
2014-07-16 15:17:49 ----D---- C:\Program Files (x86)\video MediaPlay-Air
2014-07-16 15:17:42 ----D---- C:\Program Files (x86)\Optimizer Pro
2014-07-16 15:17:15 ----D---- C:\Program Files (x86)\MyPC Backup
2014-07-16 15:17:14 ----D---- C:\Users\johny\AppData\Roaming\VOPackage
2014-07-16 15:17:14 ----D---- C:\Program Files\003
2014-07-10 02:51:33 ----A---- C:\Windows\system32\termsrv.dll
2014-07-09 22:11:46 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-09 22:11:44 ----A---- C:\Windows\system32\win32k.sys
2014-07-09 22:11:44 ----A---- C:\Windows\system32\osk.exe
2014-07-09 22:11:43 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-07-09 22:11:41 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-07-09 22:11:41 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-09 22:11:40 ----A---- C:\Windows\system32\mshtml.dll
2014-07-09 22:11:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-07-09 22:11:27 ----A---- C:\Windows\system32\jscript9.dll
2014-07-09 22:11:24 ----A---- C:\Windows\system32\ieframe.dll
2014-07-09 22:11:22 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-07-09 22:11:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-07-09 22:11:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-07-09 22:11:18 ----A---- C:\Windows\system32\urlmon.dll
2014-07-09 22:11:17 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-07-09 22:11:17 ----A---- C:\Windows\system32\wininet.dll
2014-07-09 22:11:17 ----A---- C:\Windows\system32\iertutil.dll
2014-07-09 22:11:17 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-09 22:11:17 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-09 22:11:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-07-09 22:11:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-07-09 22:11:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-07-09 22:11:15 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-07-09 22:11:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-07-09 22:11:15 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-09 22:11:15 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-09 22:11:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-07-09 22:11:14 ----A---- C:\Windows\system32\ieapfltr.dll
2014-07-09 22:11:14 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-09 22:11:05 ----A---- C:\Windows\system32\lsasrv.dll
2014-07-09 22:11:05 ----A---- C:\Windows\system32\drivers\cng.sys
2014-07-09 22:11:04 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-07-09 22:11:04 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-07-09 22:11:04 ----A---- C:\Windows\system32\certcli.dll
2014-07-09 22:11:04 ----A---- C:\Windows\system32\adtschema.dll
2014-07-09 22:10:04 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-07-09 22:10:04 ----A---- C:\Windows\system32\qedit.dll
2014-07-09 22:10:01 ----A---- C:\Windows\system32\twinui.dll
2014-07-09 22:10:00 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-07-09 22:10:00 ----A---- C:\Windows\system32\wuaueng.dll
2014-07-09 22:10:00 ----A---- C:\Windows\system32\WSShared.dll
2014-07-09 22:09:59 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-07-09 22:09:59 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2014-07-09 22:09:59 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 22:09:59 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2014-07-09 22:09:59 ----A---- C:\Windows\system32\wuauclt.exe
2014-07-09 22:09:59 ----A---- C:\Windows\system32\wuapi.dll
2014-07-09 22:09:59 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 22:09:59 ----A---- C:\Windows\system32\twinui.appcore.dll
2014-07-09 22:09:59 ----A---- C:\Windows\system32\twinapi.appcore.dll
2014-07-09 22:09:58 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-07-09 22:09:58 ----A---- C:\Windows\system32\wudriver.dll
2014-07-09 22:02:50 ----A---- C:\Windows\system32\WSReset.exe
======List of files/folders modified in the last 1 month======
2014-07-27 13:34:55 ----RD---- C:\Program Files
2014-07-27 13:34:37 ----D---- C:\Windows\Prefetch
2014-07-27 13:30:53 ----D---- C:\Windows\Temp
2014-07-27 13:30:41 ----D---- C:\Windows\system32\Tasks
2014-07-27 13:28:30 ----D---- C:\Windows\system32\sru
2014-07-27 12:34:15 ----D---- C:\Users\johny\AppData\Roaming\ClassicShell
2014-07-27 12:33:42 ----D---- C:\Windows\SysWOW64
2014-07-27 02:41:27 ----D---- C:\Windows\Microsoft.NET
2014-07-27 02:39:50 ----D---- C:\Windows\AppReadiness
2014-07-27 02:39:49 ----HD---- C:\Program Files\WindowsApps
2014-07-27 02:08:35 ----A---- C:\Windows\win.ini
2014-07-25 17:55:20 ----D---- C:\Windows\system32\drivers
2014-07-25 17:55:16 ----D---- C:\Program Files (x86)\SearchProtect
2014-07-25 17:55:11 ----D---- C:\Windows\apppatch
2014-07-25 03:43:38 ----SHD---- C:\Windows\Installer
2014-07-25 03:41:31 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-25 03:41:31 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-07-24 02:52:19 ----SHD---- C:\System Volume Information
2014-07-24 01:49:56 ----D---- C:\Windows\Inf
2014-07-19 18:12:24 ----RAD---- C:\Windows\System32
2014-07-19 17:04:01 ----D---- C:\Program Files (x86)
2014-07-16 20:12:08 ----SD---- C:\Users\johny\AppData\Roaming\Microsoft
2014-07-16 20:11:27 ----HD---- C:\ProgramData
2014-07-16 20:11:15 ----D---- C:\Windows\Tasks
2014-07-16 15:28:57 ----D---- C:\Windows\rescache
2014-07-13 02:44:01 ----D---- C:\Windows\system32\config
2014-07-12 18:38:23 ----D---- C:\Windows\WinSxS
2014-07-12 18:35:24 ----RD---- C:\Windows\ToastData
2014-07-12 18:35:24 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-07-12 18:35:24 ----D---- C:\Windows\SYSWOW64\en-US
2014-07-12 18:35:24 ----D---- C:\Windows\system32\nl-NL
2014-07-12 18:35:24 ----D---- C:\Windows\system32\en-US
2014-07-12 18:35:24 ----D---- C:\Program Files\Internet Explorer
2014-07-12 18:35:24 ----D---- C:\Program Files (x86)\Internet Explorer
2014-07-12 18:35:23 ----D---- C:\Windows\WinStore
2014-07-12 18:33:30 ----D---- C:\ProgramData\Microsoft Help
2014-07-12 18:32:15 ----RSD---- C:\Windows\assembly
2014-07-10 02:57:25 ----D---- C:\Windows\CbsTemp
2014-07-10 02:56:27 ----D---- C:\Windows\system32\MRT
2014-07-10 02:54:32 ----A---- C:\Windows\system32\MRT.exe
2014-07-10 02:50:12 ----D---- C:\Program Files\Windows Journal
2014-07-09 22:09:46 ----D---- C:\Windows\system32\catroot2
2014-07-08 20:00:31 ----SD---- C:\ProgramData\Microsoft
2014-07-08 20:00:29 ----D---- C:\Windows\system32\drivers\UMDF
2014-06-29 16:57:52 ----AD---- C:\Windows
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2013-08-07 776168]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2013-08-07 343568]
R0 tos_sps64;@oem18.inf,%SERVICE_DESC_amd64%;TOSHIBA tos_sps64 Service; C:\Windows\System32\drivers\tos_sps64.sys [2012-06-18 499096]
R0 TVALZ;@oem13.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\System32\drivers\TVALZ_O.SYS [2013-08-15 32832]
R0 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\Windows\System32\Drivers\TVALZFL.sys [2012-07-22 16768]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 APXACC;@oem4.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\Windows\system32\DRIVERS\appexDrv.sys [2013-04-18 219360]
R3 AmdAS4;@oem3.inf,%AmdAS4.SVCDESC%;AmdAS4 service; C:\Windows\System32\drivers\AmdAS4.sys [2013-02-07 17504]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-30 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-30 618496]
R3 athr;@oem15.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2013-08-16 3859968]
R3 AtiHDAudioService;@oem6.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdWB6.sys [2013-06-22 138240]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-08-22 590024]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator-service; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 CnxtHdAudService;@oem5.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2013-07-18 1387712]
R3 dtsoftbus01;@oem22.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-02-24 283064]
R3 L1C;@oem16.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C63x64.sys [2013-07-18 130248]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2013-08-07 310224]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2013-08-07 519064]
R3 QIOMem;@oem1.inf,%SERVICE_DISPLAY_NAME%;Generic IO & Memory Access; C:\Windows\System32\drivers\QIOMem.sys [2013-08-06 14000]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 SPPD;SPPD; \??\C:\Windows\system32\drivers\SPPD.sys []
R3 SynTP;@oem28.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-08-28 524528]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2012-07-25 31184]
R3 Thotkey;@oem10.inf,%Thotkey%;Toshiba Hotkey Driver; C:\Windows\System32\drivers\Thotkey.sys [2013-08-19 32624]
R3 tosrfec;@oem19.inf,%busenum.SVCDESC%;Bluetooth ACPI; C:\Windows\System32\drivers\tosrfec.sys [2013-11-01 27032]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\Windows\system32\drivers\mfeelamk.sys [2013-08-07 69264]
S3 BrSerIb;@oem24.inf,%BrSerIb.SvcDesc%;Brother Serial Interface Driver(WDM); C:\Windows\system32\DRIVERS\BrSerIb.sys [2013-11-21 95344]
S3 BrUsbSIb;@oem24.inf,%BrUsbSIb.SvcDesc%;Brother Serial USB Driver(WDM); C:\Windows\system32\DRIVERS\BrUsbSIb.sys [2013-11-21 21872]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2013-08-07 70112]
S3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2013-08-07 179664]
S3 RTWlanE;@netrtwlane.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\Windows\system32\DRIVERS\rtwlane.sys [2013-07-31 1936088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 70e6ca8c;Optimizer Pro Crash Monitor; C:\Windows\syswow64\rundll32.exe [2013-08-22 49664]
R2 AdaptiveSleepService;AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [2013-08-31 99328]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-30 239616]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-08-22 312448]
R2 CltMngSvc;Search Protect Service; C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe [2014-07-22 2975168]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-12-12 205560]
R2 dts_apo_service;DTS APO Service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [2013-09-10 19792]
R2 IePluginServices;IePlugin Services; C:\ProgramData\IePluginServices\PluginService.exe [2014-07-16 759688]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2013-08-07 219272]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2013-08-07 182752]
R2 NewPlayerUpdaterService;NewPlayer Updater Service; C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe [2014-06-30 11776]
R2 RBClientService;RBClientService; C:\Program Files (x86)\Right Backup\RBClientService.exe [2014-07-11 48240]
R2 ReimageRealTimeProtection;Reimage Real Time Protection; C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe [2014-04-27 5100384]
R2 servervo;VO Service component; C:\Users\johny\AppData\Roaming\VOPackage\VOsrv.exe [2014-07-16 71680]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-25 5024576]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\Toshiba\Teco\TecoService.exe [2013-08-10 328544]
R2 Update Cling Clang;Update Cling Clang; C:\Program Files (x86)\Cling Clang\updateClingClang.exe [2014-07-23 321824]
R2 Util Cling Clang;Util Cling Clang; C:\Program Files (x86)\Cling Clang\bin\utilClingClang.exe [2014-07-23 321824]
R2 Wajam Internet Enhancer Service;Wajam Internet Enhancer Service; C:\Program Files (x86)\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe [2014-07-04 303616]
R3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2012-06-05 266240]
R3 TMachInfo;TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2013-07-31 53864]
R3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2013-09-04 466504]
S2 BackupStack;Computer Backup (MyPC Backup); C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2014-06-18 36424]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-16 68608]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-24 116648]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2013-12-11 1050904]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-22 43696]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-16 68608]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-24 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
S3 TemproMonitoringService;TEMPRO Service; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2013-07-19 116088]
-----------------EOF-----------------
-
Na enige vertraging....
Maar de pc werkt wel weer naar behoren.
Hieronder het logje....
Ashampoo AppLauncher (Medion) v.1.0.0 Ashampoo GmbH & Co. KG 8/11/2012 310 MB 1.0.0CCleaner Piriform 26/02/2014 4.11Classic Shell IvoSoft 3/05/2013 8,54 MB 3.6.7
CyberLink PhotoDirector 3 CyberLink Corp. 8/11/2012 211 MB 3.0.3124
CyberLink PhotoNow CyberLink Corp. 8/11/2012 21,7 MB 1.1.7717
CyberLink PowerRecover CyberLink Corp. 26/04/2013 5.7.0.0913
Dolby Home Theater v4 Dolby Laboratories Inc 21/11/2012 2,93 MB 7.2.8000.17
Facebook Video Calling 2.0.0.447 Skype Limited 13/01/2014 12,0 MB 2.0.447
FindRight FindRight 24/02/2014 2,50 MB 2014.02.21.042329
Google Chrome Google Inc. 3/05/2013 33.0.1750.117
Google Talk Plugin Google 10/02/2014 21,0 MB 5.1.4.17398
Intel® Management Engine Components Intel Corporation 26/04/2013 8.1.0.1252
Intel® Processor Graphics Intel Corporation 26/04/2013 9.17.10.2875
Intel® PROSet/Wireless for Bluetooth® + High Speed Intel Corporation 15/11/2012 5,68 MB 15.5.4.0423
Intel® PROSet/Wireless Software for Bluetooth® Technology Intel Corporation 15/11/2012 90,0 MB 2.6.1210.0278
Intel® Rapid Storage Technology Intel Corporation 26/04/2013 11.6.0.1030
Intel® SDK for OpenCL - CPU Only Runtime Package Intel Corporation 26/04/2013 2.0.0.37149
Intel® WiDi Intel Corporation 15/11/2012 121 MB 3.5.40.0
Intel® PROSet/Wireless WiFi Software Intel Corporation 15/11/2012 165 MB 15.05.6000.1620
Mediathek Medion 8/11/2012 2,06 MB 1.4.0
Medion Home Cinema 10 CyberLink Corp. 26/04/2013 1,66 GB 10.0
Microsoft Office Microsoft Corporation 8/11/2012 6,26 MB 14.0.6120.5004
Microsoft Silverlight Microsoft Corporation 8/11/2012 40,4 MB 4.1.10329.0
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 8/11/2012 1,92 MB 3.1.0000
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 8/11/2012 4,84 MB 8.0.61001
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 8/11/2012 13,2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 8/11/2012 10,2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 8/11/2012 8,69 MB 9.0.30729.4148
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 15/11/2012 13,8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 15/11/2012 11,1 MB 10.0.40219
NVIDIA Graphics Driver 307.17 NVIDIA Corporation 17/11/2012 307.17
PHotkey Pegatron Corporation 29/11/2012 1.00.0081
PowerDirector CyberLink Corp. 26/04/2013 297 MB 9.0.0.3815c
PowerRecover CyberLink Corp. 26/04/2013 5.7.0.0913
QuickLaunch Lenovo Group Limited 8/11/2012 2,28 MB 1.00.0019
Realtek Ethernet Controller Driver Realtek 15/11/2012 8.3.730.2012
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 15/11/2012 6.0.1.6722
Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 15/11/2012 6.1.8400.30136
Skype™ 6.11 Skype Technologies S.A. 27/11/2013 44,9 MB 6.11.102
Synaptics Pointing Device Driver Synaptics Incorporated 26/04/2013 46,4 MB 16.2.16.0
Windows Live Essentials Microsoft Corporation 8/11/2012 16.4.3505.0912
-
Bedankt!
Geen problemen meer...
Hieronder het logje:
Zoek.exe v5.0.0.0 Updated 19-February-2014
Tool run by Huguette on ma 24/02/2014 at 14:21:49,67.
Microsoft Windows 8 6.2.9200 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Huguette\Desktop\zoek.exe [scan all users] [script inserted]
==== Older Logs ======================
C:\zoek-results2014-02-24-113054.log 51478 bytes
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Installed Programs ======================
Ashampoo AppLauncher (Medion) v.1.0.0
CCleaner
Classic Shell
CyberLink LabelPrint 2.5
CyberLink MediaEspresso 6.5
CyberLink PhotoDirector 3
CyberLink PhotoNow
CyberLink Power2Go 8
CyberLink PowerDirector
CyberLink PowerDVD 10
CyberLink PowerDVD Copy 1.5
CyberLink PowerRecover
CyberLink YouCam 5
D3DX10
Dolby Home Theater v4
Facebook Video Calling 2.0.0.447
FindRight
Fotogalerie
Galerie de photos
Google Chrome
Google Talk Plugin
Google Update Helper
Intel PROSet Wireless
Intel® Management Engine Components
Intel® Processor Graphics
Intel® PROSet/Wireless for Bluetooth® + High Speed
Intel® PROSet/Wireless Software for Bluetooth® Technology
Intel® Rapid Storage Technology
Intel® SDK for OpenCL - CPU Only Runtime Package
Intel® WiDi
Intel© PROSet/Wireless WiFi Software
Intel© Trusted Connect Service Client
Mediathek
Medion Home Cinema 10
Microsoft Application Error Reporting
Microsoft Office
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Movie Maker
MSVCRT
MSVCRT110
MSVCRT110_amd64
NVIDIA Control Panel 307.17
NVIDIA Graphics Driver 307.17
NVIDIA Install Application
NVIDIA Optimus 1.10.8
NVIDIA Update Components
PHotkey
Photo Common
Photo Gallery
QuickLaunch
Raccolta foto
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
SkypeT 6.11
Synaptics Pointing Device Driver
Windows Live
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
==== Running Processes ======================
C:\Program Files\Classic Shell\ClassicShellService.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\PHotkey\PHotkey.exe
C:\Program Files (x86)\PHotkey\MsgTranAgt.exe
C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
C:\Program Files (x86)\PHotkey\POSD.exe
C:\Program Files (x86)\PHotkey\GPMTray.exe
C:\Program Files (x86)\PHotkey\HCSynApi.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Users\Huguette\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
==== Deleting Services ======================
==== System Specs ======================
Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 3978 MB
CPU Info: Intel® Core i3-3120M CPU @ 2.50GHz
CPU Speed: 2494,6 MHz
Sound Card: Speakers (Realtek High Definiti |
Realtek Digital Output (Realtek |
Display Adapters: Intel® HD Graphics 4000 | Intel® HD Graphics 4000 | Intel® HD Graphics 4000 | NVIDIA GeForce GT 635M
Monitors: 1x; Generic PnP Monitor |
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Bluetooth Device (Personal Area Network) | Intel® Centrino® Wireless-N 2230 | Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SN-208BB
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C: 869,8GB | D: 60,0GB
Hard Disks - Free: C: 822,6GB | D: 41,5GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | | MEDION - 1
Time Zone: Romance (standaardtijd)
Motherboard *: Medion Akoya P6638
Country: Belgi‰
Language: NLB
==== System Specs (Software) ======================
Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome 33.0.1750.117
Internet Explorer Version: 10.0.9200.16798
Google Chrome version: 33.0.1750.117
==== Files Recently Created / Modified ======================
====== C:\Windows ====
====== C:\Users\Huguette\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-02-12 10:34:50 568C888D74169B679E4D9E1F4E7E75BD 523776 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2014-02-12 10:34:49 9F38E0E4F9EA7DD9E58C48B21F202B63 1419264 ----a-w- C:\Windows\SysWOW64\msxml3.dll
2014-02-12 10:34:48 E016BB18F1D978772EF5D1662E536372 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2014-02-12 10:34:48 952B209CA4A39FB67C9CF110B9855583 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 10:34:48 6733B2B5EEA3243E1B0FC5EABDA7223B 39936 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 10:34:48 66A313E15312F666829D024235B1BA24 1140736 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2014-02-12 10:34:47 FFD94811DD4D65FFA5EF36B5C1432B06 163840 ----a-w- C:\Windows\SysWOW64\msrating.dll
2014-02-12 10:34:47 5668E7858F32D61FA8750470FF07C9BA 44032 ----a-w- C:\Windows\SysWOW64\UXInit.dll
2014-02-12 10:34:47 1FF83D2BE92B40DAE234CF4236680B6E 1767936 ----a-w- C:\Windows\SysWOW64\wininet.dll
2014-02-12 10:34:46 A66F7525EBF8530C495D10E742FCDA2B 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll
2014-02-12 10:34:46 71EB230269480E7F5F62E46261404B10 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2014-02-12 10:34:46 64AA1B23EFDF4B8776135C31B583D33A 534528 ----a-w- C:\Windows\SysWOW64\uxtheme.dll
2014-02-12 10:34:45 FAF025218BF7A20BDD899C097B86E4A8 13760512 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2014-02-12 10:34:43 96484B4ED8FD9838692E3B5896C6DA61 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 10:34:17 2F867C9A274B4C731E3ADB9BAF3337C4 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll
2014-02-12 10:34:17 0AAE2EE5A85EA18E00079CAF359B9387 2877952 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2014-02-12 10:34:16 5DC326473A638CC67EA5A4AF4C776BEB 2049024 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2014-02-12 10:34:08 4098C722E878697489F0207108C8E0DA 14359040 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2014-02-12 10:34:02 FC925BF83D0EA5E0E524F86E310D64F4 451072 ----a-w- C:\Windows\SysWOW64\msdrm.dll
2014-02-12 10:33:57 C7E96470AD5552C67092B073B667121B 3288576 ----a-w- C:\Windows\SysWOW64\d2d1.dll
2014-02-12 10:33:56 CB0AD586EA7C13AEF616848B64C5CC53 2032640 ----a-w- C:\Windows\SysWOW64\d3d10warp.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-02-12 10:34:58 4B916278E1487A5CD5F8F9A521980026 385614 ----a-w- C:\Windows\Sysnative\ApnDatabase.xml
2014-02-12 10:34:50 05F9C60AD29EDF12929663B1227D28F5 600064 ----a-w- C:\Windows\Sysnative\vbscript.dll
2014-02-12 10:34:49 C93EC176F21B90D9B04661E134ECF984 1845248 ----a-w- C:\Windows\Sysnative\msxml3.dll
2014-02-12 10:34:47 4CA2A7EB74EB959C23E359887D617E69 53760 ----a-w- C:\Windows\Sysnative\UXInit.dll
2014-02-12 10:34:46 EFC64446D5881A95674E04DFAC39AB7A 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll
2014-02-12 10:34:46 7A824F15114E3D34691946E0D2F58911 197120 ----a-w- C:\Windows\Sysnative\msrating.dll
2014-02-12 10:34:46 600FB9CB67C48F76C5ECE67E7B76D4B0 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2014-02-12 10:34:46 5F63553B55465358ED6B0ED241DB44CF 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2014-02-12 10:34:46 2ACDD6E1522DDA16D73F3E61A02EFCEB 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll
2014-02-12 10:34:45 2D9B01CE9C1F93D047131175F4C07F7C 915968 ----a-w- C:\Windows\Sysnative\uxtheme.dll
2014-02-12 10:34:43 F62A5D527794DCBC1F84B1976FB44244 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll
2014-02-12 10:34:43 56DDB27B59BDE8CA6C9D563D38BC4673 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll
2014-02-12 10:34:42 D5B3FD1A39B6EBFD65B260B1E0FAF7D0 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2014-02-12 10:34:42 B61F1163B0717D7781CBD140AF80D3BA 15403520 ----a-w- C:\Windows\Sysnative\ieframe.dll
2014-02-12 10:34:39 F75B88A57B3264914FD80462CB992F0C 855552 ----a-w- C:\Windows\Sysnative\jscript.dll
2014-02-12 10:34:39 90860E913075B03369BEB7B0B510DC2F 2241536 ----a-w- C:\Windows\Sysnative\wininet.dll
2014-02-12 10:34:38 DBF5C7BFBAB5E01020E16156E2D5FEC3 53760 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2014-02-12 10:34:35 1B59269891A17BD804F3F640A66F2A08 19274240 ----a-w- C:\Windows\Sysnative\mshtml.dll
2014-02-12 10:34:19 CB0DB3C57ED00FCDCDE7536CC505EF55 2648576 ----a-w- C:\Windows\Sysnative\iertutil.dll
2014-02-12 10:34:18 027D0EAECAC2358406A088EA218A47C0 3960320 ----a-w- C:\Windows\Sysnative\jscript9.dll
2014-02-12 10:34:02 9C6302820FEA434728A14B2E356A600A 583680 ----a-w- C:\Windows\Sysnative\msdrm.dll
2014-02-12 10:33:58 D05FDB359808642231FC244CD06E8E4C 2238976 ----a-w- C:\Windows\Sysnative\d3d10warp.dll
2014-02-12 10:33:58 B9868B46EC3A67EF9B85B9437DB2CB65 3842560 ----a-w- C:\Windows\Sysnative\d2d1.dll
====== C:\Windows\Sysnative\drivers =====
2014-02-12 10:35:03 DD4249F03598043DED6FA540EB14898A 2232664 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2014-02-12 10:34:58 961A45CC15514178E511BBF1384CE0B8 83968 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys
====== C:\Windows\Tasks ======
2014-02-24 09:50:54 7F177A0AD89355AEB18E88C909C49B43 3072 ----a-w- C:\Windows\Sysnative\Tasks\{A47E54FB-4D57-4C47-91D8-A5361A73AC94}
2014-02-24 09:40:46 7F177A0AD89355AEB18E88C909C49B43 3072 ----a-w- C:\Windows\Sysnative\Tasks\{AEE14734-A274-476B-8D40-DB6FBC100AF2}
2014-02-24 09:31:42 7F177A0AD89355AEB18E88C909C49B43 3072 ----a-w- C:\Windows\Sysnative\Tasks\{F61EA155-B075-4EAD-8573-A198987FE594}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-02-24 10:03:07 -------- d-----w- C:\Program Files\trend micro
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\Huguette\AppData\Roaming ======
2014-02-24 11:31:12 -------- d-----w- C:\Users\Huguette\AppData\Local\VirtualStore
2014-02-24 11:26:29 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2014-02-24 11:26:29 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2014-02-24 11:26:29 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\Temp
2014-02-24 11:26:29 -------- d-----w- C:\Users\Huguette\AppData\Local\Temp
2014-02-24 11:26:29 -------- d-----w- C:\Users\Default\AppData\Local\Temp
2014-02-24 11:26:29 -------- d-----w- C:\Users\Administrator\AppData\Local\Temp
2014-02-24 09:25:33 -------- d-----w- C:\Users\Huguette\AppData\Roaming\0F1F1C2Y1H1P1C0I0T
2014-02-10 03:15:51 -------- d-----w- C:\Users\Huguette\AppData\Roaming\Mozilla
====== C:\Users\Huguette ======
2014-02-24 12:18:43 0840EB50F38B3A9BBA2D24780AEB07A6 1241834 ----a-w- C:\Users\Huguette\Desktop\adwcleaner.exe
2014-02-24 10:02:54 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Huguette\Downloads\RSITx64.exe
2014-02-24 09:23:49 3BE0201F7FE62B1845B287EF5B5F4A30 1070944 ----a-w- C:\Users\Huguette\Downloads\adobe-flash-player [1].exe
2014-02-24 09:23:16 8AD0183A9E0F72DCED955F8F4CF875D8 690648 ----a-w- C:\Users\Huguette\Downloads\adobe-flash-player.exe
====== C: exe-files ==
2014-02-24 12:18:43 0840EB50F38B3A9BBA2D24780AEB07A6 1241834 ----a-w- C:\Users\Huguette\Desktop\adwcleaner.exe
2014-02-24 10:03:07 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Huguette.exe
2014-02-24 10:02:54 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Huguette\Downloads\RSITx64.exe
2014-02-24 09:25:33 4F1C94A86DBB8989959AFB5DB4FD039E 1114624 ----a-w- C:\Users\Huguette\AppData\Roaming\0F1F1C2Y1H1P1C0I0T\Adobe Flash Player Packages\uninstaller.exe
2014-02-24 09:23:49 3BE0201F7FE62B1845B287EF5B5F4A30 1070944 ----a-w- C:\Users\Huguette\Downloads\adobe-flash-player [1].exe
2014-02-24 09:23:16 8AD0183A9E0F72DCED955F8F4CF875D8 690648 ----a-w- C:\Users\Huguette\Downloads\adobe-flash-player.exe
2014-02-22 10:17:30 77B543895991B553DEEF89B40A166962 368552 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\0000584d\updatus.17905555_RUNASUSER.exe
2014-02-21 07:52:00 A4F0C36642681927FA53CD6A90CA2975 7620312 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\33.0.1750.117\33.0.1750.117_32.0.1700.107_chrome_updater.exe
2014-02-19 10:14:22 FF27ADE15F0A9D6A7CE2FAFF15FF887C 368024 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\00005836\updatus.17888621_RUNASUSER.exe
2014-02-18 10:13:46 3FEEF708F9B65B0E21C40CB6EE7E3B4C 367432 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\0000581b\updatus.17876851_RUNASUSER.exe
=== C: other files ==
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-2970988644-3505338818-4284075279-1005\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Facebook Update"="C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Google Update"="C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe /c"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"="C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Facebook Update"="C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Google Update"="C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe /c"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 "
"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core.job --a-------- [undetermined Task]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA.job --a-------- C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe [26/08/2013 18:33]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [03/05/2013 09:24]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [03/05/2013 09:24]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core.job --a-------- C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe [27/09/2013 09:54]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA.job --a-------- C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe [27/09/2013 09:54]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\Dolby Selector" [C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core" [C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA" [C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core" [C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA" [C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe]
"C:\Windows\SysNative\tasks\{A47E54FB-4D57-4C47-91D8-A5361A73AC94}" [C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe]
"C:\Windows\SysNative\tasks\{AEE14734-A274-476B-8D40-DB6FBC100AF2}" [C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe]
"C:\Windows\SysNative\tasks\{B0E1158B-1DAA-4444-87BC-B45B4232D77D}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\{F61EA155-B075-4EAD-8573-A198987FE594}" [C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe]
==== Chrome Look ======================
Google Docs - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
MyFunCards - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace
Gmail - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{7A369F6F-07A0-4899-8813-129DD04E1DD9} Bing Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS"
==== HijackThis Entries ======================
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Google Update] "C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: Verzenden naar Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Produits électroniques, Voitures, Vêtements, Objets de collection, Bons d'achat et autres achats en ligne | eBay (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Produits électroniques, Voitures, Vêtements, Objets de collection, Bons d'achat et autres achats en ligne | eBay (file missing) (HKCU)
O9 - Extra button: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Security Service (BTHSSecurityMgr) - Intel® Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink PowerDVD 10 MS Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
O23 - Service: CyberLink PowerDVD 10 MS Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Huguette\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Huguette\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UUCX41VH will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Huguette\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=232 folders=25 61785165 bytes)
==== Empty Temp Folders ======================
C:\Users\Administrator\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Huguette\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Huguette\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Huguette\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UUCX41VH" not found
==== EOF on ma 24/02/2014 at 14:34:42,38 ======================
-
Alweer bedankt voor de snelle reactie.
Het ziet er al een pak beter uit!
Hieronder het gevraagde logje:
# AdwCleaner v3.019 - Report created 24/02/2014 at 13:20:48# Updated 17/02/2014 by Xplode# Operating System : Windows 8 (64 bits)
# Username : Huguette - LAPTOPHUGUETTE
# Running from : C:\Users\Huguette\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\systweak
Key Deleted : HKLM\Software\systweak
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16798
-\\ Google Chrome v33.0.1750.117
[ File : C:\Users\Huguette\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1355 octets] - [24/02/2014 13:19:48]
AdwCleaner[s0].txt - [1201 octets] - [24/02/2014 13:20:48]
########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1261 octets] ##########
-
Bedankt voor de snelle reactie.
Hieronder het logje...
Zoek.exe v5.0.0.0 Updated 19-February-2014
Tool run by Huguette on ma 24/02/2014 at 12:12:33,15.
Microsoft Windows 8 6.2.9200 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Huguette\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used]
==== Running Processes ======================
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\dwm.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\Classic Shell\ClassicShellService.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
C:\Windows\system32\dashost.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\CyberLink\Shared files\RichVideo64.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\FindRight\updateFindRight.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
C:\Program Files (x86)\PHotkey\PHotkey.exe
C:\Program Files (x86)\PHotkey\MsgTranAgt.exe
C:\Program Files (x86)\PHotkey\MsgTranAgt64.exe
C:\Program Files (x86)\PHotkey\ATouch64.exe
C:\Program Files (x86)\PHotkey\POSD.exe
C:\Windows\System32\igfxtray.exe
C:\Program Files (x86)\PHotkey\GPMTray.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\System32\rundll32.exe
C:\Program Files (x86)\PHotkey\HCSynApi.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files (x86)\FindRight\bin\utilFindRight.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Huguette\Desktop\zoek.exe
C:\Windows\system32\conhost.exe
==== System Restore Info ======================
24/02/2014 12:14:17 Zoek.exe System Restore Point Created Succesfully.
==== Empty Folders Check ======================
C:\Users\Huguette\AppData\Local\VirtualStore deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2c774641-5504-46a8-b63f-6715ae3fe376} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2c774641-5504-46a8-b63f-6715ae3fe376} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Installed Programs ======================
Ashampoo AppLauncher (Medion) v.1.0.0
CCleaner
Classic Shell
CyberLink LabelPrint 2.5
CyberLink MediaEspresso 6.5
CyberLink PhotoDirector 3
CyberLink PhotoNow
CyberLink Power2Go 8
CyberLink PowerDirector
CyberLink PowerDVD 10
CyberLink PowerDVD Copy 1.5
CyberLink PowerRecover
CyberLink YouCam 5
D3DX10
Dolby Home Theater v4
Facebook Video Calling 2.0.0.447
FindRight
Fotogalerie
Galerie de photos
Google Chrome
Google Talk Plugin
Google Update Helper
Intel PROSet Wireless
Intel® Management Engine Components
Intel® Processor Graphics
Intel® PROSet/Wireless for Bluetooth® + High Speed
Intel® PROSet/Wireless Software for Bluetooth® Technology
Intel® Rapid Storage Technology
Intel® SDK for OpenCL - CPU Only Runtime Package
Intel® WiDi
Intel© PROSet/Wireless WiFi Software
Intel© Trusted Connect Service Client
Mediathek
Medion Home Cinema 10
Microsoft Application Error Reporting
Microsoft Office
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Movie Maker
MSVCRT
MSVCRT110
MSVCRT110_amd64
NVIDIA Control Panel 307.17
NVIDIA Graphics Driver 307.17
NVIDIA Install Application
NVIDIA Optimus 1.10.8
NVIDIA Update Components
PHotkey
Photo Common
Photo Gallery
QuickLaunch
Raccolta foto
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
RegClean Pro
SkypeT 6.11
Synaptics Pointing Device Driver
Windows Live
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util FindRight deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Util FindRight deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update FindRight deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update FindRight deleted successfully
==== Registry Fix Code x64 ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2c774641-5504-46a8-b63f-6715ae3fe376}]
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Advanced System Protector deleted
C:\PROGRA~3\Systweak deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector deleted
C:\Windows\SysNative\roboot64.exe deleted
C:\Windows\SysNative\sasnative64.exe deleted
C:\windows\SysNative\Tasks\Advanced System Protector_startup deleted
C:\windows\SysNative\tasks\RegClean Pro deleted
C:\windows\SysNative\tasks\RegClean Pro_DEFAULT deleted
C:\windows\SysNative\tasks\RegClean Pro_UPDATES deleted
C:\Windows\tasks\RegClean Pro_DEFAULT.job deleted
C:\Windows\tasks\RegClean Pro_UPDATES.job deleted
"C:\Program Files (x86)\RegClean Pro\isxdl.dll" deleted
"C:\Program Files (x86)\RegClean Pro\RegCleanPro.dll" deleted
"C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe" deleted
"C:\Program Files (x86)\RegClean Pro\xmllite.dll" deleted
"C:\Program Files (x86)\FindRight\updateFindRight.exe" deleted
"C:\PROGRA~2\RegClean Pro\isxdl.dll" deleted
"C:\PROGRA~2\RegClean Pro\RegCleanPro.dll" deleted
"C:\PROGRA~2\RegClean Pro\RegCleanPro.exe" deleted
"C:\PROGRA~2\RegClean Pro\xmllite.dll" deleted
"C:\PROGRA~2\FindRight\updateFindRight.exe" deleted
"C:\Program Files (x86)\FindRight\bin\utilFindRight.exe" deleted
"C:\Users\Huguette\AppData\Roaming\systweak\RegClean Pro\Version 6.1\log_02-24-2014.log" deleted
"C:\PROGRA~2\FindRight\bin\utilFindRight.exe" deleted
"C:\Program Files (x86)\RegClean Pro" deleted
"C:\Program Files (x86)\FindRight" not deleted
"C:\PROGRA~2\RegClean Pro" deleted
"C:\Users\Huguette\AppData\Roaming\systweak" deleted
"C:\PROGRA~2\FindRight" not deleted
"C:\Program Files (x86)\FindRight\bin" not deleted
"C:\Users\Huguette\AppData\Roaming\systweak\RegClean Pro" deleted
"C:\Users\Huguette\AppData\Roaming\systweak\RegClean Pro\Version 6.1" deleted
"C:\PROGRA~2\FindRight\bin" not deleted
==== System Specs ======================
Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 3978 MB
CPU Info: Intel® Core i3-3120M CPU @ 2.50GHz
CPU Speed: 2500,8 MHz
Sound Card: Speakers (Realtek High Definiti |
Realtek Digital Output (Realtek |
Display Adapters: Intel® HD Graphics 4000 | Intel® HD Graphics 4000 | Intel® HD Graphics 4000 | NVIDIA GeForce GT 635M
Monitors: 1x; Generic PnP Monitor |
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Bluetooth Device (Personal Area Network) | Intel® Centrino® Wireless-N 2230 | Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SN-208BB
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C: 869,8GB | D: 60,0GB
Hard Disks - Free: C: 822,5GB | D: 41,5GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | | MEDION - 1
Time Zone: Romance (standaardtijd)
Motherboard *: Medion Akoya P6638
Country: Belgi‰
Language: NLB
==== System Specs (Software) ======================
Anti-Virus: Windows Defender On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome 33.0.1750.117
Internet Explorer Version: 10.0.9200.16798
Google Chrome version: 33.0.1750.117
==== Files Recently Created / Modified ======================
====== C:\Windows ====
====== C:\Users\Huguette\AppData\Local\Temp ====
2014-02-24 09:23:37 3BE0201F7FE62B1845B287EF5B5F4A30 1070944 ----a-w- C:\Users\Huguette\AppData\Local\Temp\is266438442\136215125_stp.EXE
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-02-12 10:34:50 568C888D74169B679E4D9E1F4E7E75BD 523776 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2014-02-12 10:34:49 9F38E0E4F9EA7DD9E58C48B21F202B63 1419264 ----a-w- C:\Windows\SysWOW64\msxml3.dll
2014-02-12 10:34:48 E016BB18F1D978772EF5D1662E536372 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2014-02-12 10:34:48 952B209CA4A39FB67C9CF110B9855583 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 10:34:48 6733B2B5EEA3243E1B0FC5EABDA7223B 39936 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 10:34:48 66A313E15312F666829D024235B1BA24 1140736 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2014-02-12 10:34:47 FFD94811DD4D65FFA5EF36B5C1432B06 163840 ----a-w- C:\Windows\SysWOW64\msrating.dll
2014-02-12 10:34:47 5668E7858F32D61FA8750470FF07C9BA 44032 ----a-w- C:\Windows\SysWOW64\UXInit.dll
2014-02-12 10:34:47 1FF83D2BE92B40DAE234CF4236680B6E 1767936 ----a-w- C:\Windows\SysWOW64\wininet.dll
2014-02-12 10:34:46 A66F7525EBF8530C495D10E742FCDA2B 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll
2014-02-12 10:34:46 71EB230269480E7F5F62E46261404B10 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2014-02-12 10:34:46 64AA1B23EFDF4B8776135C31B583D33A 534528 ----a-w- C:\Windows\SysWOW64\uxtheme.dll
2014-02-12 10:34:45 FAF025218BF7A20BDD899C097B86E4A8 13760512 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2014-02-12 10:34:43 96484B4ED8FD9838692E3B5896C6DA61 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 10:34:17 2F867C9A274B4C731E3ADB9BAF3337C4 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll
2014-02-12 10:34:17 0AAE2EE5A85EA18E00079CAF359B9387 2877952 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2014-02-12 10:34:16 5DC326473A638CC67EA5A4AF4C776BEB 2049024 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2014-02-12 10:34:08 4098C722E878697489F0207108C8E0DA 14359040 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2014-02-12 10:34:02 FC925BF83D0EA5E0E524F86E310D64F4 451072 ----a-w- C:\Windows\SysWOW64\msdrm.dll
2014-02-12 10:33:57 C7E96470AD5552C67092B073B667121B 3288576 ----a-w- C:\Windows\SysWOW64\d2d1.dll
2014-02-12 10:33:56 CB0AD586EA7C13AEF616848B64C5CC53 2032640 ----a-w- C:\Windows\SysWOW64\d3d10warp.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-02-12 10:34:58 4B916278E1487A5CD5F8F9A521980026 385614 ----a-w- C:\Windows\Sysnative\ApnDatabase.xml
2014-02-12 10:34:50 05F9C60AD29EDF12929663B1227D28F5 600064 ----a-w- C:\Windows\Sysnative\vbscript.dll
2014-02-12 10:34:49 C93EC176F21B90D9B04661E134ECF984 1845248 ----a-w- C:\Windows\Sysnative\msxml3.dll
2014-02-12 10:34:47 4CA2A7EB74EB959C23E359887D617E69 53760 ----a-w- C:\Windows\Sysnative\UXInit.dll
2014-02-12 10:34:46 EFC64446D5881A95674E04DFAC39AB7A 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll
2014-02-12 10:34:46 7A824F15114E3D34691946E0D2F58911 197120 ----a-w- C:\Windows\Sysnative\msrating.dll
2014-02-12 10:34:46 600FB9CB67C48F76C5ECE67E7B76D4B0 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2014-02-12 10:34:46 5F63553B55465358ED6B0ED241DB44CF 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2014-02-12 10:34:46 2ACDD6E1522DDA16D73F3E61A02EFCEB 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll
2014-02-12 10:34:45 2D9B01CE9C1F93D047131175F4C07F7C 915968 ----a-w- C:\Windows\Sysnative\uxtheme.dll
2014-02-12 10:34:43 F62A5D527794DCBC1F84B1976FB44244 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll
2014-02-12 10:34:43 56DDB27B59BDE8CA6C9D563D38BC4673 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll
2014-02-12 10:34:42 D5B3FD1A39B6EBFD65B260B1E0FAF7D0 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2014-02-12 10:34:42 B61F1163B0717D7781CBD140AF80D3BA 15403520 ----a-w- C:\Windows\Sysnative\ieframe.dll
2014-02-12 10:34:39 F75B88A57B3264914FD80462CB992F0C 855552 ----a-w- C:\Windows\Sysnative\jscript.dll
2014-02-12 10:34:39 90860E913075B03369BEB7B0B510DC2F 2241536 ----a-w- C:\Windows\Sysnative\wininet.dll
2014-02-12 10:34:38 DBF5C7BFBAB5E01020E16156E2D5FEC3 53760 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2014-02-12 10:34:35 1B59269891A17BD804F3F640A66F2A08 19274240 ----a-w- C:\Windows\Sysnative\mshtml.dll
2014-02-12 10:34:19 CB0DB3C57ED00FCDCDE7536CC505EF55 2648576 ----a-w- C:\Windows\Sysnative\iertutil.dll
2014-02-12 10:34:18 027D0EAECAC2358406A088EA218A47C0 3960320 ----a-w- C:\Windows\Sysnative\jscript9.dll
2014-02-12 10:34:02 9C6302820FEA434728A14B2E356A600A 583680 ----a-w- C:\Windows\Sysnative\msdrm.dll
2014-02-12 10:33:58 D05FDB359808642231FC244CD06E8E4C 2238976 ----a-w- C:\Windows\Sysnative\d3d10warp.dll
2014-02-12 10:33:58 B9868B46EC3A67EF9B85B9437DB2CB65 3842560 ----a-w- C:\Windows\Sysnative\d2d1.dll
====== C:\Windows\Sysnative\drivers =====
2014-02-12 10:35:03 DD4249F03598043DED6FA540EB14898A 2232664 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2014-02-12 10:34:58 961A45CC15514178E511BBF1384CE0B8 83968 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys
====== C:\Windows\Tasks ======
2014-02-24 09:50:54 7F177A0AD89355AEB18E88C909C49B43 3072 ----a-w- C:\Windows\Sysnative\Tasks\{A47E54FB-4D57-4C47-91D8-A5361A73AC94}
2014-02-24 09:40:46 7F177A0AD89355AEB18E88C909C49B43 3072 ----a-w- C:\Windows\Sysnative\Tasks\{AEE14734-A274-476B-8D40-DB6FBC100AF2}
2014-02-24 09:31:42 7F177A0AD89355AEB18E88C909C49B43 3072 ----a-w- C:\Windows\Sysnative\Tasks\{F61EA155-B075-4EAD-8573-A198987FE594}
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-02-24 10:03:07 -------- d-----w- C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2014-02-24 09:24:57 -------- d-----w- C:\PROGRA~2\FindRight
======= C: =====
====== C:\Users\Huguette\AppData\Roaming ======
2014-02-24 09:25:33 -------- d-----w- C:\Users\Huguette\AppData\Roaming\0F1F1C2Y1H1P1C0I0T
2014-02-10 03:15:51 -------- d-----w- C:\Users\Huguette\AppData\Roaming\Mozilla
====== C:\Users\Huguette ======
2014-02-24 10:02:54 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Huguette\Downloads\RSITx64.exe
2014-02-24 09:23:49 3BE0201F7FE62B1845B287EF5B5F4A30 1070944 ----a-w- C:\Users\Huguette\Downloads\adobe-flash-player [1].exe
2014-02-24 09:23:16 8AD0183A9E0F72DCED955F8F4CF875D8 690648 ----a-w- C:\Users\Huguette\Downloads\adobe-flash-player.exe
====== C: exe-files ==
2014-02-24 10:03:07 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Huguette.exe
=== C: other files ==
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-2970988644-3505338818-4284075279-1005\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Facebook Update"="C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Google Update"="C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe /c"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"="C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Facebook Update"="C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Google Update"="C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe /c"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 "
"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core.job --a-------- [undetermined Task]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA.job --a-------- C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe [26/08/2013 18:33]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [03/05/2013 09:24]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [03/05/2013 09:24]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core.job --a-------- C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe [27/09/2013 09:54]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA.job --a-------- C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe [27/09/2013 09:54]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\Dolby Selector" [C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core" [C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA" [C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core" [C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA" [C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe]
"C:\Windows\SysNative\tasks\{A47E54FB-4D57-4C47-91D8-A5361A73AC94}" [C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe]
"C:\Windows\SysNative\tasks\{AEE14734-A274-476B-8D40-DB6FBC100AF2}" [C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe]
"C:\Windows\SysNative\tasks\{B0E1158B-1DAA-4444-87BC-B45B4232D77D}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]
"C:\Windows\SysNative\tasks\{F61EA155-B075-4EAD-8573-A198987FE594}" [C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe]
==== Chrome Look ======================
Google Docs - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
MyFunCards - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pehdhibmkmcipbeahabjgfhgngojeace
Gmail - Huguette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://lenovo13.msn.com"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{7A369F6F-07A0-4899-8813-129DD04E1DD9}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{7A369F6F-07A0-4899-8813-129DD04E1DD9} Bing Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS"
==== Uninstall List x64 ======================
Ashampoo AppLauncher (Medion) v.1.0.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Ashampoo AppLauncher (Medion)_is1]
CCleaner [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CCleaner]
Classic Shell [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7F34ADBE-77C0-47A0-BBC6-B3DA16CE8E68}]
CyberLink LabelPrint 2.5 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C59C179C-668D-49A9-B6EA-0121CCFC1243}]
CyberLink MediaEspresso 6.5 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E3739848-5329-48E3-8D28-5BBD6E8BE384}]
CyberLink PhotoDirector 3 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{39337565-330E-4ab6-A9AE-AC81E0720B10}]
CyberLink PhotoDirector 3 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}]
CyberLink PhotoNow [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D36DD326-7280-11D8-97C8-000129760CBE}]
CyberLink PhotoNow [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}]
CyberLink Power2Go 8 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}]
CyberLink PowerDirector [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}]
CyberLink PowerDVD 10 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}]
CyberLink PowerDVD Copy 1.5 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E3D04529-6EDB-11D8-A372-0050BAE317E1}]
CyberLink PowerRecover [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}]
CyberLink PowerRecover [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}]
CyberLink YouCam 5 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{01FB4998-33C4-4431-85ED-079E3EEFE75D}]
D3DX10 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E09C4DB7-630C-4F06-A631-8EA7239923AF}]
Dolby Home Theater v4 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}]
Facebook Video Calling 2.0.0.447 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}]
FindRight [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\FindRight]
Fotogalerie [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3CBD94C1-BA15-488C-888B-D8DD296CC6DC}]
Galerie de photos [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{446CC8CE-0E90-44F7-ADD0-774B243EF090}]
Google Chrome [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
Google Talk Plugin [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{41101F0C-DBD9-321C-A6B1-E0689B495A4E}]
Google Update Helper [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
Intel PROSet Wireless [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\ProInst]
Intel® Management Engine Components [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}]
Intel® Processor Graphics [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}]
Intel® PROSet/Wireless for Bluetooth® + High Speed [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E77289CF-12B9-4CAB-A49E-FEAE947F4D95}]
Intel® PROSet/Wireless Software for Bluetooth® Technology [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DA2600C1-6BDF-4FD1-8F3D-148929CC1385}]
Intel® Rapid Storage Technology [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}]
Intel® SDK for OpenCL - CPU Only Runtime Package [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}]
Intel® WiDi [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6097158B-0184-4140-BEC3-7885794D2571}]
Intel© PROSet/Wireless WiFi Software [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1593C708-5535-47A4-8C0F-F8D4BE2B4560}]
Intel© Trusted Connect Service Client [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}]
Mediathek [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EFFED0C0-5299-422E-AFE6-8B8066D18A2A}]
Medion Home Cinema 10 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}]
Medion Home Cinema 10 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}]
Microsoft Silverlight [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}]
Microsoft SQL Server 2005 Compact Edition [ENU] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}]
Microsoft Visual C++ 2005 Redistributable [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8220EEFE-38CD-377E-8595-13398D740ACE}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9A25302D-30C0-39D9-BD6F-21E6EC160475}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}]
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}]
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}]
Movie Maker [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{03CC9D58-B132-4CC0-A521-4F3660AA43C7}]
Movie Maker [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{701FE1BC-834A-4857-AF62-6EBA50CFBC78}]
Movie Maker [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7E63F102-A9E9-4F4C-8004-BC62974736BF}]
Movie Maker [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8E6E8CBB-8E58-493C-943F-4664F5F2FEDB}]
Movie Maker [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A17946CA-18E5-4CF0-8D55-A56D804718F8}]
Movie Maker [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AE8044B5-FCA3-4EBE-AC78-0FB3A6E8DC76}]
Movie Maker [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{ED6C77F9-4D7E-447C-9EC0-9A212D075535}]
MSVCRT [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}]
MSVCRT110 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}]
MSVCRT110_amd64 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E9FA781F-3E80-4399-825A-AD3E11C28C77}]
NVIDIA Control Panel 307.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel]
NVIDIA Graphics Driver 307.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver]
NVIDIA Install Application [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer]
NVIDIA Optimus 1.10.8 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus]
NVIDIA Update Components [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update]
PHotkey [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E50C224A-BBF2-428D-9DCF-DBF9DF85C40E}]
Photo Common [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{49110532-D289-4BFF-807C-45B782E66A7C}]
Photo Common [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4AF53C99-315D-4536-873F-029D2D274AE2}]
Photo Common [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{743FD554-A73F-4FE8-BE7B-C283D16297F9}]
Photo Common [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C7929038-EDFB-416D-A2C9-CC65416DA0DF}]
Photo Common [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E1203F8C-FF34-4968-A4A5-B4F1F8533DAB}]
Photo Common [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F54030F3-14B6-432D-9361-78DCB1473920}]
Photo Gallery [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{30F99474-EBE3-4134-A02B-F6CD38CFE243}]
Photo Gallery [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{63824BC0-B747-43F3-9863-1066D64AD919}]
Photo Gallery [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E0E0FB88-D570-463E-A98E-733B7B656867}]
Photo Gallery [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F67CA22C-C11F-4573-8406-57F75BA06B51}]
QuickLaunch [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A802F1E3-34C8-4C84-9948-C1C4E37D0FA9}]
Raccolta foto [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D04EBB49-C985-4A38-8695-62000861293A}]
Realtek Ethernet Controller Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}]
Realtek High Definition Audio Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}]
Realtek USB 2.0 Card Reader [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{96AE7E41-E34E-47D0-AC07-1091A8127911}]
RegClean Pro [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1]
SkypeT 6.11 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}]
Synaptics Pointing Device Driver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SynTPDeinstKey]
Windows Live [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8D813AFF-D91D-4EE0-821F-B901FC2E89FA}]
Windows Live Communications Platform [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0454BB9A-2A7A-4214-BDFF-937F7A711A44}]
Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{49F068F2-4323-417B-AFC8-1E43F479D46C}]
Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{690F5BA3-5DEB-42CD-962B-F687EE59FAA7}]
Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6CEA775F-E70A-4D72-A3B4-1EB3A5AD4B5C}]
Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B096A0E4-26A1-4E9F-8548-577964B9434B}]
Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B7F31B9C-8775-4500-8E9D-6ABE9AE17CF4}]
Windows Live Essentials [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinLiveSuite]
Windows Live Installer [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}]
Windows Live Photo Common [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}]
Windows Live PIMT Platform [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}]
Windows Live SOXE [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FE7C0B3D-50B9-4951-BE78-A321CBF86552}]
Windows Live SOXE Definitions [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}]
Windows Live UX Platform [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4CCBD1F4-CEEC-452A-9CB8-46564B501315}]
Windows Live UX Platform Language Pack [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0E1BB4B4-00FF-45B1-914B-AB8D8B9862B3}]
Windows Live UX Platform Language Pack [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4AA2A466-8031-403A-8236-5301B4E391FB}]
Windows Live UX Platform Language Pack [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{90993BD9-C7D9-4C2F-B56C-2F7AFEBD4CD0}]
Windows Live UX Platform Language Pack [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B727564C-47D3-473A-AC9E-F4BE7B1BD5D3}]
Windows Live UX Platform Language Pack [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CE542E0D-E056-4426-9F98-084C13E18641}]
Windows Live UX Platform Language Pack [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F21F0424-B2FF-40BF-A984-9E0D7FB4C97E}]
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1 deleted successfully
==== HijackThis Entries ======================
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Google Update] "C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: Verzenden naar Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Produits électroniques, Voitures, Vêtements, Objets de collection, Bons d'achat et autres achats en ligne | eBay (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Produits électroniques, Voitures, Vêtements, Objets de collection, Bons d'achat et autres achats en ligne | eBay (file missing) (HKCU)
O9 - Extra button: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Security Service (BTHSSecurityMgr) - Intel® Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink PowerDVD 10 MS Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
O23 - Service: CyberLink PowerDVD 10 MS Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Huguette\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Huguette\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K74U7KW8 will be deleted at reboot
C:\Users\Huguette\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R78KQI6Y will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Huguette\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=232 folders=25 61785165 bytes)
==== Empty Temp Folders ======================
C:\Users\Administrator\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Huguette\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Huguette\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Program Files (x86)\FindRight" not found
"C:\PROGRA~2\FindRight" not found
"C:\Users\Huguette\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K74U7KW8" not found
"C:\Users\Huguette\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R78KQI6Y" not found
==== EOF on ma 24/02/2014 at 12:30:54,28 ======================
-
Beste,
Op de laptop van mijn schoonmoeder heeft zich een lastig progje genesteld, namelijk RegClean Pro.
Ik heb reeds tevergeefs dit trachten te wissen.... doch zonder gevolg. Wat opzoekingen op internet leert mij, zoals verwacht, dat een een soort malware is.
Kunnen jullie helpen?
Bedankt,
Steven
Logfile of random's system information tool 1.09 (written by random/random)Run by Huguette at 2014-02-24 11:03:07Microsoft Windows 8
System drive C: has 842 GB (95%) free of 891 GB
Total RAM: 3977 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:03:13, on 24/02/2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16798)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe
C:\Program Files (x86)\PHotkey\HCSynApi.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Huguette.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: FindRight - {2c774641-5504-46a8-b63f-6715ae3fe376} - C:\Program Files (x86)\FindRight\FindRightbho.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Google Update] "C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: Verzenden naar Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Produits électroniques, Voitures, Vêtements, Objets de collection, Bons d'achat et autres achats en ligne | eBay (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Produits électroniques, Voitures, Vêtements, Objets de collection, Bons d'achat et autres achats en ligne | eBay (file missing) (HKCU)
O9 - Extra button: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Security Service (BTHSSecurityMgr) - Intel® Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink PowerDVD 10 MS Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
O23 - Service: CyberLink PowerDVD 10 MS Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: Update FindRight - Unknown owner - C:\Program Files (x86)\FindRight\updateFindRight.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 10797 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"dwm.exe"
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Classic Shell\ClassicShellService.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 521128621296
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\PHotkey\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe"
dashost.exe {387790ee-4e95-49aa-bfd5e0d0dc31caff}
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\FindRight\updateFindRight.exe"
"C:\Program Files\Windows Defender\MsMpEng.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Classic Shell\ClassicStartMenu.exe" -startup
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe" -rem
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\PHotkey\PHotkey.exe"
"C:\Program Files (x86)\PHotkey\MsgTranAgt.exe"
"C:\Program Files (x86)\PHotkey\MsgTranAgt64.exe"
ATouch64
"C:\Program Files (x86)\PHotkey\POSD.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\PHotkey\GPMTray.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HCSynApi.exe
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4204.0.1437340963\1312214865" --disable-image-transport-surface --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,27 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2875 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-pinch --renderer-print-preview --enable-software-compositing --channel="4204.1.309744403\1853878032" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group3 pct:10c stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-pinch --extension-process --renderer-print-preview --enable-software-compositing --channel="4204.3.1010070396\1730728020" /prefetch:673131151
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey ADB04CD2-B32E-3232-89D3-B2F8AA166524 -Reinvoke
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
C:\Windows\system32\msiexec.exe /V
"C:\Users\Huguette\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2970988644-3505338818-4284075279-1005UA.job
C:\Windows\tasks\RegClean Pro_DEFAULT.job
C:\Windows\tasks\RegClean Pro_UPDATES.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-04-12 742400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll [2013-04-12 454656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2c774641-5504-46a8-b63f-6715ae3fe376}]
FindRight - C:\Program Files (x86)\FindRight\FindRightbho.dll [2014-02-21 249632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-04-12 611840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll [2013-04-12 385024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-04-12 742400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-04-12 611840]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-10-22 171040]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-10-22 399392]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-10-22 441888]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-08-30 13192848]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-08-17 1215632]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2012-09-30 11582848]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-09-21 2930488]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14 20584608]
"Facebook Update"=C:\Users\Huguette\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-26 138096]
"Google Update"=C:\Users\Huguette\AppData\Local\Google\Update\GoogleUpdate.exe [2013-09-27 116648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"=C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-06-08 111120]
"CLVirtualDrive"=C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2012-07-20 491120]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-07-13 93296]
"YouCam Service"=C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2012-07-30 258576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-10-22 441344]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1
"ConfirmFileDelete"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-02-24 11:03:07 ----D---- C:\rsit
2014-02-24 11:03:07 ----D---- C:\Program Files\trend micro
2014-02-24 10:25:33 ----D---- C:\Users\Huguette\AppData\Roaming\0F1F1C2Y1H1P1C0I0T
2014-02-24 10:24:57 ----D---- C:\ProgramData\Systweak
2014-02-24 10:24:57 ----D---- C:\Program Files (x86)\FindRight
2014-02-24 10:24:51 ----D---- C:\Program Files (x86)\Advanced System Protector
2014-02-24 10:24:51 ----A---- C:\Windows\system32\sasnative64.exe
2014-02-24 10:24:15 ----A---- C:\Windows\system32\roboot64.exe
2014-02-24 10:24:12 ----D---- C:\Users\Huguette\AppData\Roaming\systweak
2014-02-24 10:24:03 ----D---- C:\Program Files (x86)\RegClean Pro
2014-02-12 11:35:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-02-12 11:34:58 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-02-12 11:34:50 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-02-12 11:34:50 ----A---- C:\Windows\system32\vbscript.dll
2014-02-12 11:34:49 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-02-12 11:34:49 ----A---- C:\Windows\system32\msxml3.dll
2014-02-12 11:34:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-02-12 11:34:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-02-12 11:34:48 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-02-12 11:34:48 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-02-12 11:34:47 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-02-12 11:34:47 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2014-02-12 11:34:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-02-12 11:34:47 ----A---- C:\Windows\system32\UXInit.dll
2014-02-12 11:34:46 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2014-02-12 11:34:46 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-02-12 11:34:46 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-02-12 11:34:46 ----A---- C:\Windows\system32\urlmon.dll
2014-02-12 11:34:46 ----A---- C:\Windows\system32\msrating.dll
2014-02-12 11:34:46 ----A---- C:\Windows\system32\iernonce.dll
2014-02-12 11:34:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-02-12 11:34:45 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-02-12 11:34:45 ----A---- C:\Windows\system32\uxtheme.dll
2014-02-12 11:34:43 ----A---- C:\Windows\system32\iesysprep.dll
2014-02-12 11:34:43 ----A---- C:\Windows\system32\iesetup.dll
2014-02-12 11:34:42 ----A---- C:\Windows\system32\msfeeds.dll
2014-02-12 11:34:42 ----A---- C:\Windows\system32\ieframe.dll
2014-02-12 11:34:39 ----A---- C:\Windows\system32\wininet.dll
2014-02-12 11:34:39 ----A---- C:\Windows\system32\jscript.dll
2014-02-12 11:34:38 ----A---- C:\Windows\system32\jsproxy.dll
2014-02-12 11:34:35 ----A---- C:\Windows\system32\mshtml.dll
2014-02-12 11:34:19 ----A---- C:\Windows\system32\iertutil.dll
2014-02-12 11:34:18 ----A---- C:\Windows\system32\jscript9.dll
2014-02-12 11:34:17 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-02-12 11:34:17 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-02-12 11:34:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-02-12 11:34:08 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-02-12 11:34:02 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-02-12 11:34:02 ----A---- C:\Windows\system32\msdrm.dll
2014-02-12 11:33:58 ----A---- C:\Windows\system32\d3d10warp.dll
2014-02-12 11:33:58 ----A---- C:\Windows\system32\d2d1.dll
2014-02-12 11:33:57 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-02-12 11:33:56 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-02-10 04:15:51 ----D---- C:\Users\Huguette\AppData\Roaming\Mozilla
2014-02-09 13:41:38 ----D---- C:\Program Files\CCleaner
======List of files/folders modified in the last 1 month======
2014-02-24 11:03:07 ----RD---- C:\Program Files
2014-02-24 11:03:02 ----D---- C:\Windows\Temp
2014-02-24 11:02:35 ----D---- C:\Windows\system32\sru
2014-02-24 11:01:00 ----D---- C:\Users\Huguette\AppData\Roaming\Skype
2014-02-24 11:00:31 ----D---- C:\Windows\Prefetch
2014-02-24 10:50:54 ----D---- C:\Windows\system32\Tasks
2014-02-24 10:50:09 ----A---- C:\Windows\SYSWOW64\log.txt
2014-02-24 10:44:29 ----D---- C:\Windows\SoftwareDistribution
2014-02-24 10:32:23 ----D---- C:\Windows
2014-02-24 10:24:57 ----RD---- C:\Program Files (x86)
2014-02-24 10:24:57 ----HD---- C:\ProgramData
2014-02-24 10:24:51 ----RD---- C:\Windows\System32
2014-02-24 10:24:35 ----D---- C:\Windows\Tasks
2014-02-24 10:14:59 ----D---- C:\Windows\Inf
2014-02-24 10:14:52 ----D---- C:\Windows\debug
2014-02-24 09:53:59 ----D---- C:\Windows\system32\config
2014-02-24 09:35:17 ----D---- C:\Windows\WinSxS
2014-02-24 09:29:02 ----D---- C:\Windows\Microsoft.NET
2014-02-21 08:01:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-02-20 20:18:25 ----D---- C:\Windows\SysWOW64
2014-02-20 20:16:30 ----D---- C:\Windows\CbsTemp
2014-02-20 20:16:07 ----SHD---- C:\System Volume Information
2014-02-17 23:03:37 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-02-17 16:18:10 ----RSD---- C:\Windows\assembly
2014-02-16 15:51:37 ----D---- C:\Windows\rescache
2014-02-16 15:17:59 ----D---- C:\Windows\system32\Drivers
2014-02-16 15:17:56 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-02-16 15:17:55 ----D---- C:\Windows\system32\nl-NL
2014-02-16 15:17:54 ----D---- C:\Program Files (x86)\Internet Explorer
2014-02-16 15:17:49 ----D---- C:\Program Files\Internet Explorer
2014-02-16 15:17:41 ----D---- C:\Windows\system32\DriverStore
2014-02-16 15:17:27 ----D---- C:\Windows\system32\MRT
2014-02-16 15:15:29 ----A---- C:\Windows\system32\MRT.exe
2014-02-13 12:12:33 ----HD---- C:\Program Files\WindowsApps
2014-02-12 20:16:09 ----D---- C:\Windows\system32\catroot2
2014-02-12 15:51:03 ----SHD---- C:\Windows\Installer
2014-02-11 16:48:27 ----D---- C:\Windows\AUInstallAgent
2014-02-09 13:45:22 ----D---- C:\Windows\Panther
2014-02-09 13:45:18 ----D---- C:\Windows\Minidump
2014-02-09 13:45:18 ----D---- C:\Windows\Logs
2014-02-08 21:02:39 ----D---- C:\Windows\system32\wdi
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\Windows\System32\drivers\ACPI.sys [2012-09-20 425192]
R0 acpiex;Microsoft ACPIEx Driver; C:\Windows\System32\Drivers\acpiex.sys [2012-07-26 77040]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\Windows\System32\drivers\CLFS.sys [2012-07-26 361200]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2012-10-11 562392]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\Windows\System32\drivers\disk.sys [2013-10-13 100696]
R0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\Windows\System32\drivers\EhStorClass.sys [2012-07-26 81136]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\System32\drivers\fileinfo.sys [2012-07-26 71920]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\Windows\system32\drivers\fltmgr.sys [2012-07-26 374512]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2013-08-21 465240]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2012-09-01 647736]
R0 KSecDD;KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [2012-09-20 100072]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2012-10-11 172264]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\Windows\System32\drivers\mountmgr.sys [2012-07-26 93936]
R0 msisadrv;msisadrv; C:\Windows\System32\drivers\msisadrv.sys [2012-07-26 17136]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\Windows\System32\Drivers\mup.sys [2012-07-26 83696]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\Windows\system32\drivers\ndis.sys [2013-06-16 997632]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2012-10-12 30056]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\Windows\System32\drivers\partmgr.sys [2013-01-10 91880]
R0 pci;@machine.inf,%pci_svcdesc%;PCI Bus Driver; C:\Windows\System32\drivers\pci.sys [2012-07-26 234224]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2012-07-26 52464]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\Windows\system32\drivers\pdc.sys [2013-03-02 69864]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-07-26 217328]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\Windows\System32\drivers\spaceport.sys [2013-10-05 285016]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\Windows\System32\drivers\tcpip.sys [2013-11-01 2232664]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\Windows\System32\drivers\vdrvroot.sys [2012-07-26 36080]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\Windows\System32\drivers\volmgr.sys [2012-07-26 83184]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2012-07-26 378608]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\Windows\System32\drivers\volsnap.sys [2013-06-01 327936]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\Windows\system32\drivers\Wdf01000.sys [2013-06-22 785624]
R0 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\Windows\system32\drivers\WdFilter.sys [2013-07-01 247216]
R0 WFPLWFS;@%SystemRoot%\System32\drivers\wfplwfs.sys,-6000; C:\Windows\system32\DRIVERS\wfplwfs.sys [2013-10-10 96600]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\Windows\system32\drivers\afd.sys [2013-09-04 576512]
R1 BasicDisplay;BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [2012-07-26 48640]
R1 BasicRender;BasicRender; C:\Windows\System32\drivers\BasicRender.sys [2012-07-26 29696]
R1 Beep;Beep; C:\Windows\system32\drivers\Beep.sys [2012-07-26 7680]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\Windows\System32\drivers\cdrom.sys [2012-07-26 174080]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\Windows\System32\Drivers\dfsc.sys [2012-07-26 118784]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2012-07-26 50688]
R1 Msfs;Msfs; C:\Windows\system32\drivers\Msfs.sys [2012-07-26 26112]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\Windows\System32\drivers\mssmbios.sys [2012-07-26 37616]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\Windows\system32\DRIVERS\netbios.sys [2012-07-26 46080]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\Windows\System32\DRIVERS\netbt.sys [2012-07-26 331776]
R1 Npfs;Npfs; C:\Windows\system32\drivers\Npfs.sys [2012-07-26 49152]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\Windows\System32\drivers\npsvctrig.sys [2012-07-26 23552]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2012-07-26 34304]
R1 Null;Null; C:\Windows\system32\drivers\Null.sys [2012-07-26 5632]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\Windows\system32\DRIVERS\pacer.sys [2012-07-26 145408]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\Windows\system32\DRIVERS\rdbss.sys [2013-05-04 427520]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2012-07-26 117248]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2013-04-09 83456]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\Windows\system32\DRIVERS\lltdio.sys [2012-07-26 60416]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2012-07-26 134144]
R2 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\Windows\system32\DRIVERS\nwifi.sys [2012-07-26 427520]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\Windows\system32\drivers\Ndu.sys [2012-07-26 97792]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2013-04-09 805376]
R2 PEGAGFN;PEGAGFN; \??\C:\Program Files (x86)\PHotkey\PEGAGFN.sys [2009-09-11 14344]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\Windows\system32\DRIVERS\rspndr.sys [2012-07-26 78848]
R2 secdrv;Security Driver; C:\Windows\system32\drivers\secdrv.sys [2012-07-26 23040]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2012-07-26 45056]
R3 AMPPAL;@oem13.inf,%AMPPAL.SVCDESC%;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\System32\drivers\AMPPAL.sys [2012-09-13 162344]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2012-07-26 101888]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 btmaux;@oem16.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2012-10-01 132480]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2012-10-01 1337216]
R3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\Windows\System32\drivers\CmBatt.sys [2012-07-26 25600]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\Windows\System32\drivers\CompositeBus.sys [2012-07-26 36352]
R3 condrv;Console Driver; C:\Windows\System32\drivers\condrv.sys [2012-07-26 33792]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2013-09-19 1455448]
R3 fastfat;FAT12/16/32 File System Driver; C:\Windows\system32\drivers\fastfat.sys [2012-07-26 210672]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\Windows\System32\drivers\HDAudBus.sys [2012-09-20 71168]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\Windows\system32\drivers\HTTP.sys [2013-03-15 861184]
R3 i8042prt;@msmouse.inf,%i8042prt.SvcDesc%;PS/2 Keyboard and Mouse Port Driver; C:\Windows\System32\drivers\i8042prt.sys [2012-07-26 112640]
R3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-08-06 68136]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-10-22 5332896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-09-04 4134672]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\Windows\System32\drivers\intelppm.sys [2012-11-06 89088]
R3 iwdbus;@oem18.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2012-10-09 25568]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\Windows\System32\drivers\kbdclass.sys [2012-07-26 48368]
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Microsoft Kernel Debug Network Miniport (NDIS 6.20); C:\Windows\system32\DRIVERS\kdnic.sys [2012-07-26 18432]
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys [2012-07-26 21376]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel® Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\Windows\System32\drivers\monitor.sys [2013-03-01 30720]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\Windows\System32\drivers\mouclass.sys [2012-07-26 45808]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2013-10-31 74752]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\Windows\system32\DRIVERS\mrxsmb.sys [2013-02-05 370688]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2012-07-26 279552]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2013-02-05 215552]
R3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\Windows\system32\DRIVERS\ndistapi.sys [2012-09-20 25088]
R3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\Windows\system32\DRIVERS\ndisuio.sys [2012-07-26 58880]
R3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
R3 NDProxy;NDIS Proxy; C:\Windows\system32\drivers\NDProxy.sys [2013-04-09 60416]
R3 NETwNe64;@oem12.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\Windows\system32\DRIVERS\NETwew00.sys [2012-10-10 4309032]
R3 Ntfs;Ntfs; C:\Windows\system32\drivers\Ntfs.sys [2013-02-02 1933544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2012-10-12 13496680]
R3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\Windows\system32\DRIVERS\raspptp.sys [2012-07-26 114176]
R3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2012-07-26 68608]
R3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\Windows\system32\DRIVERS\rasl2tp.sys [2012-07-26 124928]
R3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\Windows\system32\DRIVERS\raspppoe.sys [2012-07-26 81920]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2012-07-26 92672]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\Windows\System32\drivers\rdpbus.sys [2012-07-26 22528]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 RTL8168;@oem8.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-07-31 690832]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-09-21 44344]
R3 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\Windows\System32\DRIVERS\srv.sys [2012-07-26 416768]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2013-04-09 623104]
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2013-04-09 247808]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\Windows\System32\drivers\swenum.sys [2012-07-26 13680]
R3 SynTP;@oem11.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2012-09-21 457528]
R3 TPM;@tpm.inf,%TPM%;TPM; C:\Windows\system32\drivers\tpm.sys [2013-08-10 151896]
R3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Stuurprogramma voor Microsoft IPv6 Tunnel-minipoortadapter; C:\Windows\system32\DRIVERS\tunnel.sys [2012-07-26 149504]
R3 UCX01000;USB Controller Extension; C:\Windows\System32\drivers\ucx01000.sys [2013-07-02 213336]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\Windows\System32\drivers\umbus.sys [2012-07-26 48128]
R3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass-stuurprogramma; C:\Windows\System32\drivers\umpass.sys [2012-07-26 11776]
R3 usb3Hub;@oem19.inf,%usb3Hub.SVCDESC%;USB-IF USB 3.0 Hub; C:\Windows\System32\drivers\usb3Hub.sys [2012-10-09 47072]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\Windows\System32\drivers\usbccgp.sys [2013-06-29 120832]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\System32\drivers\usbehci.sys [2013-07-01 79192]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Stuurprogramma voor Microsoft USB Standaard-hub; C:\Windows\System32\drivers\usbhub.sys [2013-07-01 623448]
R3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\Windows\System32\drivers\UsbHub3.sys [2013-10-02 447320]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]
R3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\Windows\System32\drivers\USBXHCI.SYS [2013-07-02 337752]
R3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2012-07-26 24064]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
R3 WmiAcpi;@wmiacpi.inf,%WMIMAP.SvcDesc%;Microsoft Windows Management Interface for ACPI; C:\Windows\System32\drivers\wmiacpi.sys [2012-07-26 17408]
S0 3ware;3ware; C:\Windows\System32\drivers\3ware.sys [2012-07-26 106736]
S0 adp94xx;adp94xx; C:\Windows\System32\drivers\adp94xx.sys [2012-07-26 492272]
S0 adpahci;adpahci; C:\Windows\System32\drivers\adpahci.sys [2012-07-26 340720]
S0 adpu320;adpu320; C:\Windows\System32\drivers\adpu320.sys [2012-07-26 184048]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\Windows\System32\drivers\agp440.sys [2012-07-26 63216]
S0 amdsata;amdsata; C:\Windows\System32\drivers\amdsata.sys [2012-07-26 76016]
S0 amdsbs;amdsbs; C:\Windows\System32\drivers\amdsbs.sys [2012-07-26 258288]
S0 amdxata;amdxata; C:\Windows\System32\drivers\amdxata.sys [2012-07-26 26352]
S0 arc;arc; C:\Windows\System32\drivers\arc.sys [2012-07-26 104688]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Windows Inbox Miniport Driver; C:\Windows\System32\drivers\arcsas.sys [2012-07-26 108272]
S0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\Windows\System32\drivers\atapi.sys [2012-07-26 25840]
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II VBD; C:\Windows\System32\drivers\bxvbda.sys [2012-09-20 533224]
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\System32\drivers\evbda.sys [2012-09-20 3265256]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\Windows\System32\drivers\EhStorTcgDrv.sys [2012-07-26 113904]
S0 gagp30kx;@agp.inf,%gagp30kx_svcdesc%;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\System32\drivers\gagp30kx.sys [2012-07-26 66800]
S0 HpSAMD;HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [2012-07-26 64752]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2012-07-26 24816]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\Windows\System32\drivers\iaStorV.sys [2012-07-26 411888]
S0 iirsp;iirsp; C:\Windows\System32\drivers\iirsp.sys [2012-07-26 45296]
S0 intelide;intelide; C:\Windows\System32\drivers\intelide.sys [2012-07-26 18672]
S0 isapnp;isapnp; C:\Windows\System32\drivers\isapnp.sys [2012-07-26 22256]
S0 LSI_SAS;LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [2012-07-26 108784]
S0 LSI_SAS2;LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [2012-07-26 92400]
S0 LSI_SCSI;LSI_SCSI; C:\Windows\System32\drivers\lsi_scsi.sys [2012-07-26 116976]
S0 LSI_SSS;LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [2012-07-26 81136]
S0 megasas;megasas; C:\Windows\System32\drivers\megasas.sys [2012-07-26 51952]
S0 MegaSR;MegaSR; C:\Windows\System32\drivers\MegaSR.sys [2012-07-26 353008]
S0 mvumis;mvumis; C:\Windows\System32\drivers\mvumis.sys [2012-07-26 64240]
S0 nfrd960;nfrd960; C:\Windows\System32\drivers\nfrd960.sys [2012-07-26 52464]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\Windows\System32\drivers\nv_agp.sys [2012-07-26 125168]
S0 nvraid;nvraid; C:\Windows\System32\drivers\nvraid.sys [2012-07-26 150256]
S0 nvstor;nvstor; C:\Windows\System32\drivers\nvstor.sys [2012-07-26 168176]
S0 pciide;pciide; C:\Windows\System32\drivers\pciide.sys [2012-07-26 14064]
S0 pcmcia;pcmcia; C:\Windows\System32\drivers\pcmcia.sys [2012-07-26 237808]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\Windows\System32\drivers\sbp2port.sys [2012-07-26 107760]
S0 SiSRaid2;SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [2012-07-26 44784]
S0 SiSRaid4;SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [2012-07-26 81648]
S0 stexstor;stexstor; C:\Windows\System32\drivers\stexstor.sys [2012-07-26 30960]
S0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\Windows\System32\drivers\storahci.sys [2013-03-02 77544]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2012-07-26 45160]
S0 storvsc;storvsc; C:\Windows\System32\drivers\storvsc.sys [2012-07-26 37992]
S0 uagp35;@agp.inf,%uagp35_svcdesc%;Microsoft AGPv3.5 Filter; C:\Windows\System32\drivers\uagp35.sys [2012-07-26 65776]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\Windows\System32\drivers\uliagpkx.sys [2012-07-26 66800]
S0 viaide;viaide; C:\Windows\System32\drivers\viaide.sys [2012-07-26 19184]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\System32\drivers\vmbus.sys [2012-07-26 137832]
S0 vsmraid;vsmraid; C:\Windows\System32\drivers\vsmraid.sys [2012-07-26 164080]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage Controller Windows Driver; C:\Windows\System32\drivers\vstxraid.sys [2012-07-26 322800]
S0 Wd;@wd.inf,%WdServiceDisplayName%;Microsoft Watchdog Timer Driver; C:\Windows\System32\drivers\wd.sys [2012-07-26 23792]
S0 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\Windows\system32\drivers\WdBoot.sys [2013-07-02 36288]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\Windows\system32\drivers\dam.sys [2013-08-16 58200]
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\Windows\System32\drivers\1394ohci.sys [2012-07-26 226304]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\Windows\System32\drivers\acpipagr.sys [2012-07-26 10240]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\Windows\System32\drivers\acpipmi.sys [2012-07-26 12288]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\Windows\System32\drivers\acpitime.sys [2012-07-26 10752]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\Windows\System32\drivers\amdk8.sys [2012-11-06 90624]
S3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\Windows\System32\drivers\amdppm.sys [2012-11-06 88064]
S3 AMPPALP;@oem14.inf,%AMPPALP_Desc%;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2012-09-13 162344]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2012-07-26 79360]
S3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\Windows\system32\DRIVERS\asyncmac.sys [2012-07-26 26624]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2013-06-01 37632]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 51200]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2012-11-27 29952]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\Windows\System32\drivers\bthmodem.sys [2012-07-26 65536]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\Windows\System32\drivers\circlass.sys [2012-07-26 45056]
S3 dmvsc;dmvsc; C:\Windows\System32\drivers\dmvsc.sys [2012-07-26 33280]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\Windows\system32\drivers\drmkaud.sys [2012-10-11 5632]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\Windows\System32\drivers\errdev.sys [2012-07-26 10240]
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2012-07-26 194560]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\Windows\System32\drivers\fdc.sys [2012-07-26 30720]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2012-07-26 34816]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\Windows\System32\drivers\flpydisk.sys [2012-07-26 24576]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2012-07-26 57584]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\Windows\System32\drivers\fxppm.sys [2012-11-06 22528]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\Windows\System32\drivers\vmgencounter.sys [2012-07-26 12288]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\Windows\System32\Drivers\msgpioclx.sys [2013-07-09 120144]
S3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2013-06-26 341504]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\Windows\System32\drivers\HidBatt.sys [2012-07-26 27136]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\Windows\System32\drivers\hidbth.sys [2013-04-09 95744]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\Windows\System32\drivers\hidi2c.sys [2012-11-20 39936]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\Windows\System32\drivers\hidir.sys [2012-07-26 46080]
S3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\Windows\System32\drivers\hidusb.sys [2013-05-04 27648]
S3 hyperkbd;hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [2012-07-26 11776]
S3 HyperVideo;HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [2012-07-26 24576]
S3 intaud_WaveExtensible;@oem17.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2012-10-09 35296]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\Windows\system32\DRIVERS\ipfltdrv.sys [2012-07-26 89088]
S3 IPMIDRV;IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [2012-07-26 78336]
S3 IPNAT;IP Network Address Translator; C:\Windows\System32\drivers\ipnat.sys [2012-07-26 145920]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\Windows\system32\drivers\irenum.sys [2012-07-26 17920]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\Windows\System32\drivers\msiscsi.sys [2012-11-06 277736]
S3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\Windows\System32\drivers\kbdhid.sys [2012-07-26 29184]
S3 Modem;Modem; C:\Windows\system32\drivers\modem.sys [2012-07-26 40448]
S3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\Windows\System32\drivers\mouhid.sys [2013-03-02 26112]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\Windows\system32\drivers\mrxdav.sys [2012-07-26 141312]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2012-07-26 129536]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;GPIO Buttons Driver; C:\Windows\System32\drivers\msgpiowin32.sys [2013-01-10 28904]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2012-07-26 8704]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\Windows\System32\drivers\mshidumdf.sys [2012-07-26 10752]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2012-07-26 11008]
S3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\Windows\system32\DRIVERS\mslldp.sys [2012-07-26 68608]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2012-07-26 7168]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2012-07-26 6912]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2012-07-26 390896]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2012-07-26 8192]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\Windows\System32\drivers\MTConfig.sys [2012-07-26 14848]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\Windows\system32\DRIVERS\ndiscap.sys [2012-07-26 46592]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [2012-07-26 126464]
S3 NDISWANLEGACY;@%systemroot%\system32\rascfg.dll,-32014; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
S3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\Windows\System32\drivers\parport.sys [2012-07-26 105984]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\Windows\System32\drivers\processr.sys [2012-11-06 87552]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2012-07-26 46592]
S3 RasAcd;Remote Access Auto Connection Driver; C:\Windows\System32\DRIVERS\rasacd.sys [2012-07-26 16384]
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\Windows\System32\drivers\rdpdr.sys [2012-07-26 179712]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-10-12 27880]
S3 RDPWD;RDP Winstation Driver; C:\Windows\system32\drivers\RDPWD.sys [2012-07-26 208384]
S3 RSUSBSTOR;@oem9.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2012-06-13 252048]
S3 s3cap;s3cap; C:\Windows\System32\drivers\vms3cap.sys [2012-07-26 7168]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2012-07-26 36864]
S3 sdbus;sdbus; C:\Windows\System32\drivers\sdbus.sys [2013-06-29 195416]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\Windows\System32\drivers\sdstor.sys [2012-10-11 56552]
S3 SerCx;Serial UART Support Library; C:\Windows\system32\drivers\SerCx.sys [2012-07-26 62976]
S3 Serenum;@msports.inf,%Serenum.SVCDESC%;Serenum Filter Driver; C:\Windows\System32\drivers\serenum.sys [2012-07-26 23040]
S3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\Windows\System32\drivers\serial.sys [2012-07-26 76800]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\Windows\System32\drivers\sermouse.sys [2012-07-26 27136]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\Windows\System32\drivers\sfloppy.sys [2012-07-26 16896]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2012-09-21 41272]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\Windows\system32\drivers\SpbCx.sys [2012-07-26 59392]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2013-11-01 2232664]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\Windows\System32\drivers\terminpt.sys [2012-07-26 36592]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-07-26 57344]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\Windows\System32\drivers\TsUsbGD.sys [2012-07-26 30208]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\Windows\System32\drivers\uaspstor.sys [2012-07-26 97008]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\Windows\System32\drivers\usbcir.sys [2013-07-05 99328]
S3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\System32\drivers\usbohci.sys [2012-11-20 27136]
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\Windows\System32\drivers\usbprint.sys [2013-07-01 25600]
S3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\Windows\System32\drivers\USBSTOR.SYS [2013-06-06 119040]
S3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\System32\drivers\usbuhci.sys [2013-06-29 32256]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\Windows\system32\drivers\VerifierExt.sys [2012-07-26 106224]
S3 vhdmp;vhdmp; C:\Windows\System32\drivers\vhdmp.sys [2013-03-02 495336]
S3 VMBusHID;VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [2012-07-26 22144]
S3 vpci;@wvpci.inf,%vpci.SVCDESC%;Microsoft Hyper-V Virtual PCI Bus; C:\Windows\System32\drivers\vpci.sys [2012-07-26 67824]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\Windows\System32\drivers\wacompen.sys [2012-07-26 27008]
S3 Wanarp;@%systemroot%\system32\rascfg.dll,-32011; C:\Windows\system32\DRIVERS\wanarp.sys [2013-04-09 83456]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2012-07-26 33520]
S3 wpcfltr;Family Safety Filter Driver; C:\Windows\system32\DRIVERS\wpcfltr.sys [2012-07-26 45056]
S4 cdfs;CD/DVD File System Reader; C:\Windows\system32\DRIVERS\cdfs.sys [2012-07-26 108544]
S4 udfs;udfs; C:\Windows\system32\DRIVERS\udfs.sys [2013-06-26 321536]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-09-13 731688]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-09-30 1112000]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-09-30 1132480]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-08-15 135984]
R2 ClassicShellService;Classic Shell Service; C:\Program Files\Classic Shell\ClassicShellService.exe [2013-04-12 68608]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 CyberLink PowerDVD 10 MS Monitor Service;CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [2011-04-13 70952]
R2 CyberLink PowerDVD 10 MS Service;CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [2011-04-13 312616]
R2 DcomLaunch;@combase.dll,-5012; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-09-24 617776]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 GFNEXSrv;GFNEX Service; C:\Program Files (x86)\PHotkey\GFNEXSrv.exe [2012-11-29 805888]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-09-01 14904]
R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2012-07-17 165760]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2012-07-17 276864]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-12 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-12 1258856]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-09-24 149296]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-10-19 386344]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 RpcSs;@combase.dll,-5010; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe [2012-09-20 35840]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe [2012-07-26 769024]
R2 stisvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-07-17 364416]
R2 Update FindRight;Update FindRight; C:\Program Files (x86)\FindRight\updateFindRight.exe [2014-02-21 111392]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 WinDefend;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310; C:\Program Files\Windows Defender\MsMpEng.exe [2013-07-02 16048]
R2 Winmgmt;@%Systemroot%\system32\wbem\wmisvc.dll,-205; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R2 WlanSvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe [2012-07-26 124416]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
R3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-03 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2013-08-16 4917760]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe [2012-07-26 94208]
S3 AllUserInstallAgent;@%SystemRoot%\System32\AUInstallAgent.dll,-101; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe [2012-07-26 10752]
S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-10-22 277024]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 Eaphost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2012-09-20 35840]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2012-07-26 669696]
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-03 116648]
S3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2012-09-20 35840]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe [2012-07-26 144384]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-09-24 272176]
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe [2012-09-20 35840]
S3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2012-07-26 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 PrintNotify;@C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe [2012-07-26 9728]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2012-07-26 14848]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2013-05-15 98304]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2012-07-26 40960]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2012-09-20 35840]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2013-06-01 680960]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\Windows\system32\vssvc.exe [2013-05-04 1483776]
S3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2012-07-26 1616896]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S3 wlidsvc;@%SystemRoot%\system32\wlidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 wmiApSrv;@%Systemroot%\system32\wbem\wmiapsrv.exe,-110; C:\Windows\system32\wbem\WmiApSrv.exe [2012-07-26 198144]
S3 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; C:\Program Files\Windows Media Player\wmpnetwk.exe [2012-09-20 1314816]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-12 139696]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe [2012-09-20 29696]
S4 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe [2012-09-20 29696]
S4 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\Windows\System32\svchost.exe [2012-09-20 29696]
-----------------EOF-----------------
-
Hopla! Alles werkt weer naar behoren!
Van harte bedankt hiervoor!
Greetz
Steven
-
Hey Kape,
alles werkt op het eerste zicht prima!
Geen pop-ups, bij geen enkele webbrowser (hoewel ik het liefste chrome gebruik).
Hartelijk dank voor de snelle en professionele support!
Steven
-
Het volgende logje....
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Professional x86
Ran by Brigitte on Sun 19/01/2014 at 9:33:54,28
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A2DF06F9-A21A-44A8-8A99-8B9C84F29160}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\theseaapp
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\adawarebp
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\caphyon
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\Brigitte\appdata\locallow\protectedtoolbar"
Successfully deleted: [Folder] "C:\Program Files\protectedtoolbar"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 19/01/2014 at 9:36:13,71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Problemen met thuisnetwerk en extra router
in Archief Internet & Netwerk
Geplaatst:
Bedankt voor de reactie!
Het probleem is ondertussen opgelost. Ik heb het adres gewijzigd naar 192.168.0.2 en de NAT niet uitgezet. Alles werkt prima en ik kan zonder problemen op de instellingen van de router.
Toch bedankt voor de reactie!
Steven