handlocker
-
Items
73 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door handlocker
-
Bedankt. Ik ga er werk van maken.
-
Dit is goed om te weten. En zal kijken of garantie nog geldig is. Ik neem aan als de harde schijf het opgeeft dat ik dan ook alles kwijt ben als ik geen back up heb gemaakt.
-
-
http://speccy.piriform.com/results/EiCZLFWmtXbztr6MZXnmYYf
-
Hallo iedereen, Dit is het laptop van me zusje. Die heeft sinds kort problemen met haar laptop. Tijdens het internetten loopt alles vast. Het maakt niet uit welke browser je gebruikt of welke website je bezoekt. Opnieuw starten door het power knop in te drukken is het enige manier want het vastlopen houd niet op. Kan iemand me hierbij helpen.
-
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
Ik heb een paar x opnieuw gestart en het gaat 10x sneller. Ik krijg geen donker scherm meer en Windows laad zoals ik het gewend ben. Zoals gewoonlijk hier top werk en top service. -
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
AdwCleanerC1.txt -
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
zoek-results.txt -
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
zoek-results.txt -
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
zoek-results.txt -
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
zoek-results.txt -
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
zoek-results.txt -
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
Is goed. Bedankt voor je hulp en begeleiding. -
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
log.txt -
Trage en vastlopende opstart
handlocker reageerde op handlocker's topic in Archief Bestrijding malware & virussen
http://speccy.piriform.com/results/dNPFpzFRvXJzSgAfzbqCoAn -
Trage en vastlopende opstart
handlocker plaatste een topic in Archief Bestrijding malware & virussen
Beste leden/gasten, Al paar weken werkt me laptop (Windows 10) niet meer optimaal. Elke x wanneer ik me laptop start of opnieuw start dan duurt het meer dan 5 minuten voordat Windows helemaal is opgestart. Ik krijg na het invoeren van me wachtwoord tijdje donkere beeld met alleen me muis te zien. Wanneer me Windows dan eindelijk is opgestart dan duurt het weer enkele minuten voordat het taakbalk is geladen en me muis goed kan bewegen. Het is zelfs tweemaal voorgekomen dat Windows na 2 uur wachten nog steeds niet geladen was. Ik heb getest op virussen en spyware maar er is niets gevonden daarnaast heb ik ook gebruik gemaakt van Ccleaner maar het heeft allemaal niets geholpen. Wie kan me hierbij helpen? Alvast bedankt. Groetjes, Handlocker -
Ja. Een gewone wel. Ik heb de camera ook in een andere usb poort gestopt maar helaas werkt dat ook niet. Camera geeft wel usb verbinding aan. Windows geeft niets aan maar ook helemaal niets. Vreemd dit.
-
Beste leden/gasten, Ik weet niet of er iemand is die me kan helpen met dit irritante probleem. Ik heb een Sony camera [DSC-W320]. Ik zit al dagen te kloten met het usb verbinding. Ik heb Windows 8 maar die wilt me camera niet herkennen. Geen meldingen. Apparaatbeheer geeft ook geen melding aan. Ik heb gekeken of er driver updates zijn of iets dergelijks maar dat kan ik ook niet vinden. Zijn er meer mensen met dit probleem en heeft iemand een oplossing? Groetjes
-
PC loopt al stukken beter. Grote verandering! Bedankt voor jullie geduld, tijd en service. Serieus jullie doen hier echt goed werk. Afgelopen jaren had ik wat probleempjes en steeds hebben jullie een professionele begeleiding en oplossingen. Top!
-
ESETSmartInstaller@High as CAB hook log: OnlineScanner.ocx - registred OK # product=EOS # version=8 # iexplore.exe=11.00.9600.16428 (winblue_gdr.131013-1700) # OnlineScanner.ocx=1.0.0.7623 # api_version=3.0.2 # EOSSerial=fa216936a9e8804797f5c683ff9e8fd6 # engine=19766 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2014-08-21 06:42:37 # local_time=2014-08-21 08:42:37 (+0100, West-Europa (zomertijd)) # country="Netherlands" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode_1='Microsoft Security Essentials' # compatibility_mode=5895 16777213 100 100 12259128 49959873 0 0 # scanned=174051 # found=13 # cleaned=13 # scan_time=19472 sh=40C5BC73228FDC726542ED7728E7606AC9584C4F ft=1 fh=20226ff923152af2 vn="a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application (deleted - quarantined)" ac=C fn="C:\Users\pc\Documents\SopCast\Setup-SopCast-3.8.3-2013-6-26.exe" sh=47418AD4698F40CBBD570C6FEAFEEE71BED07F29 ft=0 fh=0000000000000000 vn="Win32/PSWTool.KonBoot.A potentially unsafe application (deleted - quarantined)" ac=C fn="C:\Users\pc\Downloads\Software\ubcd528.iso" sh=CA5FBAEFE7F0923A65CA47B86013D7ED9AEBBF2F ft=0 fh=0000000000000000 vn="Android/Exploit.Lotoor.AK trojan (cleaned by deleting - quarantined)" ac=C fn="C:\Users\pc\Downloads\Software\SuperOneClickv2.3.3-ShortFuse\Exploits\psneuter" sh=A917385340FA5BFD17C2C5E07C64FBC3E4AE28FB ft=1 fh=65ab92f317eeb562 vn="a variant of Win32/Toolbar.Besttoolbars.I potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Program Files_Freecorder extension\AddonsFramework.Typelib.dll" sh=AB322BA3029F90646BBF6F28D24AFE1D8C51C6AB ft=1 fh=56353594fd4e9e09 vn="a variant of Win64/Toolbar.Besttoolbars.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Program Files_Freecorder extension\AddonsFramework.Typelib64.dll" sh=54EDC074945B870345529CA61C2ED262AD902D01 ft=1 fh=58e308a19e323267 vn="a variant of Win32/Toolbar.Besttoolbars.G potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Program Files_Freecorder extension\BackgroundHost.exe" sh=D09B88D85C0C5FABE0E615F56827BE4FAD115CC2 ft=1 fh=a47dd344701284cd vn="a variant of Win64/Toolbar.Besttoolbars.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Program Files_Freecorder extension\BackgroundHost64.exe" sh=1F9663D903E03CE091C979FA26D168F5408C8289 ft=1 fh=bebd09d8e4ef60a6 vn="a variant of Win32/Toolbar.Besttoolbars.J potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Program Files_Freecorder extension\ScriptHost.dll" sh=0B0809855D8D766CEFAC686726C1D9F4E5E03B2F ft=1 fh=d0629def5ef46c9d vn="a variant of Win32/Toolbar.Besttoolbars.J potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Program Files_Freecorder extension\ScriptHost64.dll" sh=8E6A6992A3C7FEC4000FA1A4D764DD597109E0B5 ft=1 fh=c71c0011cd00713e vn="Win32/NextLive.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Users_pc_AppData_Local_genienext\nengine.dll" sh=D6CFE89E51D1CF5C0043E538BC26C4477CE3EF3E ft=0 fh=0000000000000000 vn="a variant of Win32/Mobogenie.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Users_pc_AppData_Local_Mobogenie\Version\NewVersion\Mobogenie2.2.0.zip" sh=93AD648467F47DC2708810D169F26F4A814778C5 ft=1 fh=e589ccabe231da4b vn="a variant of Win32/Mobogenie.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Users_pc_AppData_Local_Mobogenie\Version\NewVersion\Mobogenie\UpdateMoboGenie.exe" sh=8E6A6992A3C7FEC4000FA1A4D764DD597109E0B5 ft=1 fh=c71c0011cd00713e vn="Win32/NextLive.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\zoek_backup\C_Users_pc_AppData_Roaming_newnext.me\nengine.dll"
-
Ongeveer een weekje. Alles hapert dan. Met het muis bewegen lukt al dan niet meer. Wanneer ik me PC opnieuw start (soms 2 x) doet die het weer helemaal normaal.
-
ComboFix 14-08-19.01 - pc 21-08-2014 12:12:23.1.2 - x86 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.31.1043.18.2047.757 [GMT 2:00] Gestart vanuit: c:\users\pc\Downloads\ComboFix.exe AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F} SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((( Bestanden Gemaakt van 2014-07-21 to 2014-08-21 )))))))))))))))))))))))))))))) . . 2014-08-21 10:20 . 2014-08-21 10:20 -------- d-----w- c:\users\pc\AppData\Local\temp 2014-08-21 10:08 . 2014-08-21 10:08 39464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C36008B3-C7FE-42D3-9A00-EDBB6540C353}\MpKsl62603063.sys 2014-08-21 08:30 . 2014-08-21 08:30 -------- d-----w- c:\users\pc\AppData\Roaming\PopcornTime 2014-08-20 20:22 . 2014-08-20 20:22 -------- d-----w- c:\program files\Common Files\Java 2014-08-20 20:19 . 2014-08-20 20:22 -------- d-----w- c:\programdata\Oracle 2014-08-20 18:49 . 2014-08-20 18:58 -------- d-----w- c:\program files\Popcorn Time 2014-08-20 18:47 . 2014-08-19 18:10 893248 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{23F2340B-BA90-4AF2-9C1A-BC3D2A5BA5B5}\gapaengine.dll 2014-08-20 18:45 . 2014-08-07 09:05 8581864 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C36008B3-C7FE-42D3-9A00-EDBB6540C353}\mpengine.dll 2014-08-20 16:43 . 2014-08-20 16:28 24064 ----a-w- c:\windows\zoek-delete.exe 2014-08-20 10:04 . 2014-08-20 16:41 -------- d-----w- C:\zoek_backup 2014-08-20 06:38 . 2014-08-20 07:57 -------- d-----w- c:\program files\trend micro 2014-08-20 06:38 . 2014-08-20 06:38 -------- d-----w- C:\rsit 2014-08-19 18:10 . 2014-08-07 09:05 8581864 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2014-08-13 06:21 . 2014-03-09 21:47 99480 ----a-w- c:\windows\system32\infocardapi.dll 2014-08-13 06:20 . 2014-06-30 22:14 8856 ----a-w- c:\windows\system32\icardres.dll 2014-08-13 06:20 . 2014-03-09 21:47 619672 ----a-w- c:\windows\system32\icardagt.exe 2014-08-13 06:20 . 2014-06-06 06:16 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe 2014-08-13 00:03 . 2014-07-14 01:42 654336 ----a-w- c:\windows\system32\rpcrt4.dll 2014-08-13 00:03 . 2014-06-16 01:44 730048 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2014-08-13 00:03 . 2014-06-16 01:44 219072 ----a-w- c:\windows\system32\drivers\dxgmms1.sys 2014-08-13 00:03 . 2014-06-16 01:40 107520 ----a-w- c:\windows\system32\cdd.dll 2014-08-13 00:01 . 2014-06-03 09:30 101824 ----a-w- c:\windows\system32\consent.exe 2014-08-13 00:01 . 2014-06-03 09:29 337408 ----a-w- c:\windows\system32\msihnd.dll 2014-08-13 00:01 . 2014-06-03 09:29 2363392 ----a-w- c:\windows\system32\msi.dll 2014-08-13 00:01 . 2014-06-03 09:29 1805824 ----a-w- c:\windows\system32\authui.dll 2014-08-13 00:01 . 2014-08-07 01:43 412160 ----a-w- c:\windows\system32\aepdu.dll 2014-08-13 00:01 . 2014-08-07 01:39 302592 ----a-w- c:\windows\system32\aeinv.dll 2014-08-13 00:01 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDYAK.DLL 2014-08-13 00:01 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDBASH.DLL 2014-08-09 17:51 . 2014-08-09 19:00 -------- d-----w- c:\users\pc\AppData\Roaming\TeamViewer 2014-08-09 17:51 . 2014-08-09 17:51 -------- d-----w- c:\program files\TeamViewer 2014-08-07 18:33 . 2014-08-07 18:33 -------- d-----w- c:\program files\Common Files\Skype 2014-08-02 13:27 . 2014-05-14 16:23 45536 ----a-w- c:\windows\system32\wups2.dll 2014-08-02 13:27 . 2014-05-14 16:23 54240 ----a-w- c:\windows\system32\wuauclt.exe 2014-08-02 13:27 . 2014-05-14 16:17 2425856 ----a-w- c:\windows\system32\wucltux.dll 2014-08-02 13:27 . 2014-05-14 16:23 1973728 ----a-w- c:\windows\system32\wuaueng.dll 2014-08-02 13:27 . 2014-05-14 16:23 36320 ----a-w- c:\windows\system32\wups.dll 2014-08-02 13:27 . 2014-05-14 16:23 581600 ----a-w- c:\windows\system32\wuapi.dll 2014-08-02 13:27 . 2014-05-14 16:17 92672 ----a-w- c:\windows\system32\wudriver.dll 2014-08-02 13:26 . 2014-05-14 07:23 179656 ----a-w- c:\windows\system32\wuwebv.dll 2014-08-02 13:26 . 2014-05-14 07:17 33792 ----a-w- c:\windows\system32\wuapp.exe 2014-07-29 22:37 . 2014-07-29 22:37 -------- d-----w- C:\SUPERDelete 2014-07-28 10:16 . 2014-07-28 10:16 2895040 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\1043\MSOINTL.DLL 2014-07-27 09:41 . 2014-07-27 09:41 5532368 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\CMigrate.exe 2014-07-27 09:41 . 2014-07-27 09:41 550072 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\MSOSQM.EXE 2014-07-27 09:41 . 2014-07-27 09:41 5233848 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\Csi.dll 2014-07-27 09:41 . 2014-07-27 09:41 26273464 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\MSO.DLL 2014-07-27 09:41 . 2014-07-27 09:41 189128 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE15\LICLUA.EXE . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2014-08-20 20:20 . 2014-03-13 01:13 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2014-08-19 18:10 . 2013-07-17 15:06 893248 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll 2014-08-14 15:18 . 2013-07-12 18:31 699568 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2014-08-14 15:18 . 2013-07-12 18:31 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2014-06-18 01:51 . 2014-07-09 02:40 646144 ----a-w- c:\windows\system32\osk.exe 2014-06-06 10:47 . 2014-06-06 10:47 4558848 ----a-w- c:\windows\system32\GPhotos.scr 2014-06-06 09:44 . 2014-07-09 02:40 509440 ----a-w- c:\windows\system32\qedit.dll 2014-06-05 14:26 . 2014-07-09 02:38 1059840 ----a-w- c:\windows\system32\lsasrv.dll 2014-05-30 07:52 . 2014-07-09 02:40 172032 ----a-w- c:\windows\system32\wdigest.dll 2014-05-30 07:52 . 2014-07-09 02:40 65536 ----a-w- c:\windows\system32\TSpkg.dll 2014-05-30 07:52 . 2014-07-09 02:40 247808 ----a-w- c:\windows\system32\schannel.dll 2014-05-30 07:52 . 2014-07-09 02:40 220160 ----a-w- c:\windows\system32\ncrypt.dll 2014-05-30 07:52 . 2014-07-09 02:40 259584 ----a-w- c:\windows\system32\msv1_0.dll 2014-05-30 07:52 . 2014-07-09 02:40 550912 ----a-w- c:\windows\system32\kerberos.dll 2014-05-30 07:52 . 2014-07-09 02:40 17408 ----a-w- c:\windows\system32\credssp.dll 2014-05-30 06:36 . 2014-07-09 02:41 338944 ----a-w- c:\windows\system32\drivers\afd.sys 2010-01-26 07:11 . 2013-07-14 02:54 444283 ----a-w- c:\program files\Common Files\WinPcapNmap.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)] @="{8BA85C75-763B-4103-94EB-9470F12FE0F7}" [HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}] 2014-07-27 09:41 1730256 ----a-w- c:\progra~1\MICROS~4\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)] @="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}" [HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}] 2014-07-27 09:41 1730256 ----a-w- c:\progra~1\MICROS~4\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)] @="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}" [HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}] 2014-07-27 09:41 1730256 ----a-w- c:\progra~1\MICROS~4\Office15\GROOVEEX.DLL . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 951576] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-07-30 507776] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-07-13 280576] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^RocketDock.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\RocketDock.lnk backup=c:\windows\pss\RocketDock.lnk.CommonStartup backupExtension=.CommonStartup . [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SkinPackMenu.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\SkinPackMenu.lnk backup=c:\windows\pss\SkinPackMenu.lnk.CommonStartup backupExtension=.CommonStartup . [HKLM\~\startupfolder\C:^Users^pc^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk] path=c:\users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk backup=c:\windows\pss\OpenOffice.org 3.4.1.lnk.Startup backupExtension=.Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2013-11-21 16:57 959904 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] 2013-09-13 18:51 59720 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync] 2012-11-05 14:27 89184 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlueStacks Agent] 2014-03-06 11:49 819984 ----a-w- c:\program files\BlueStacks\HD-Agent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4] 2014-08-07 03:20 860488 ----a-w- c:\program files\Google\Chrome\Application\chrome.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend] 2014-03-20 21:03 1797064 ----a-w- c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2014-01-17 15:24 421888 ----a-w- c:\program files\QuickTime\QTTask.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Remote Control Server] 2013-11-09 08:53 1988608 ----a-w- c:\program files\Remote Control Server\Remote Control Server.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent] 2014-04-08 01:56 1268816 ----a-w- c:\users\pc\AppData\Roaming\uTorrent\uTorrent.exe . R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-07-25 108032] S2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x] S2 BstHdDrv;BlueStacks Hypervisor;c:\program files\BlueStacks\HD-Hypervisor-x86.sys [2014-03-06 113424] S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files\BlueStacks\HD-LogRotatorService.exe [2014-03-06 385808] S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files\BlueStacks\HD-UpdaterService.exe [2014-03-06 770832] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - MPKSL62603063 . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2014-08-15 02:11 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.143\Installer\chrmstp.exe . Inhoud van de 'Gedeelde Taken' map . 2014-08-21 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-12 15:18] . 2014-08-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2013-07-13 00:30] . 2014-08-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2013-07-13 00:30] . 2014-08-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1577482832-1229427741-2884412449-1000Core.job - c:\users\pc\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-09 01:41] . 2014-08-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1577482832-1229427741-2884412449-1000UA.job - c:\users\pc\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-09 01:41] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.nl/ IE: &Verzenden naar OneNote - c:\progra~1\MICROS~4\Office15\ONBttnIE.dll/105 IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~4\Office15\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 192.168.1.1 FF - ProfilePath - c:\users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.nl/ . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-10 - (no file) MSConfigStartUp-NextLive - c:\users\pc\AppData\Roaming\newnext.me\nengine.dll AddRemove-Freecorder extension - c:\program files\Freecorder extension\uninstall.exe AddRemove-Freecorder extension for Chrome - c:\program files\Freecorder extension\UninstallChromeToolbar.exe AddRemove-Freecorder extension for Firefox - c:\program files\Freecorder extension\UninstallFirefoxToolbar.exe AddRemove-{8e70e4e1-06d7-470b-9f74-a51bef21088e} - c:\programdata\Package Cache\{8e70e4e1-06d7-470b-9f74-a51bef21088e}\vcredist_x86.exe AddRemove-{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1 - c:\program files\VDownloader\unins000.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\S-1-5-21-1577482832-1229427741-2884412449-1000\Software\SecuROM\License information*] "datasecu"=hex:1f,36,61,5f,bb,98,a3,6d,93,61,d8,f5,98,ba,49,fe,91,ce,e3,c7,b8, a9,ca,bd,4e,87,61,86,f6,91,d1,e5,a6,fe,a5,8f,29,bc,7b,08,86,c1,7c,65,31,1b,\ "rkeysecu"=hex:6f,15,e0,7c,1f,7e,79,73,36,88,b0,0c,ef,11,3c,34 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2014-08-21 12:23:13 ComboFix-quarantined-files.txt 2014-08-21 10:23 . Pre-Run: 284.683.833.344 bytes beschikbaar Post-Run: 284.588.851.200 bytes beschikbaar . - - End Of File - - 6FF0DD51F9236098141E785ED49C42AD 8E734BD7AA1D4F7E9AF58DF495F6CF9E
-
PC hapert nog steeds. Alleen gebeurd het niet meer om de seconde maar om de vijf seconden ongeveer.
-
Zoek.exe v5.0.0.0 Updated 19-08-2014 Tool run by pc on wo 20-08-2014 at 18:28:55,74. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\pc\Downloads\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2014-08-20-103505.log 47277 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "quick_start@gmail.com"=- ==== Deleting Files \ Folders ====================== C:\Windows\system32\tasks\0 deleted C:\Windows\system32\tasks\4392 deleted ==== Firefox Extensions ====================== AppDir: C:\Program Files\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default 0CA4180B21C6B728578F3B0433BB740E - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin 99407FF47487D59D749545B93CDCE4D3 - C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll - Java Platform SE 8 U11 F42962C2257294BE4AB0CB6038D9E477 - C:\Program Files\Java\jre8\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.110.12 4390CCD3790F8D9C427C0C29590C62D7 - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash FB5621842FDABF9F8359775573498FBC - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll - Google Update B5269A90EB2C747C4802E2FE0527C5D2 - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa 893BF7D2261C56C24F813405D9D018E0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In 14365399E83D7BC15760E8676E890C87 - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat 14365399E83D7BC15760E8676E890C87 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat 14365399E83D7BC15760E8676E890C87 - C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll - Adobe Acrobat 5596E40701BE8A4AEC399F57DBCE289E - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.5 5596E40701BE8A4AEC399F57DBCE289E - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.5 87FCE1D38F135B923EEC502825B5C7F6 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.5 87FCE1D38F135B923EEC502825B5C7F6 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.5 5A2AF08FEF626D3825AA7923B0A9DFF5 - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.5 5A2AF08FEF626D3825AA7923B0A9DFF5 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.5 B033D1486EAD65BE7857114DFAFD8429 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.5 B033D1486EAD65BE7857114DFAFD8429 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.5 DA632EC5CCC16F0B0FAC9BB21C10B2C3 - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7.5 DA632EC5CCC16F0B0FAC9BB21C10B2C3 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll - QuickTime Plug-in 7.7.5 4B12052DEA1DEA28FFADBC27C6D5CB20 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll - NVIDIA 3D Vision B573EFC0DAD162E35FC11258C0496E70 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll - NVIDIA 3D VISION D6ED6EB98E759460AD8C66DE23070132 - C:\Program Files\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll - Microsoft Office 2013 68BCBB241EF254BC5100D9E6C06ECC71 - C:\Users\pc\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll - Google Talk Plugin Video Accelerator 99FE6AFE80EB7FE3EEB75DC504A326A3 - C:\Users\pc\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer AF42019A3B0EDBFA6878F75B9377A792 - C:\Users\pc\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin B674373AED09BDC9C4150B5762FD4360 - C:\Program Files\Logitech\Harmony Remote Driver\NprtHarmonyPlugin.dll - Harmony Firefox Plugin 99F97C9FE748C37528C338A423577FCB - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin 8DA2ED6B04EA33F2EAE8BA883F903729 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions omaonpoimgkmbllpdihbnmgphjoipdhf - C:\Program Files\Logitech\Harmony Remote Driver\harmony_chrome.crx[01-05-2012 21:45] ==== Chromium Startpages ====================== C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "Google", "startup_urls": [ "Google" ], ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="{searchTerms - Google Search}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" ==== Empty IE Cache ====================== C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\01X4GUS6 will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2118 folders=319 372492899 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\pc\AppData\Local\Temp will be emptied at reboot C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\Users\UpdatusUser.pc-PC\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\pc\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\01X4GUS6" not found ==== EOF on wo 20-08-2014 at 18:51:54,77 ======================
-
Zoek.exe v5.0.0.0 Updated 19-08-2014 Tool run by pc on wo 20-08-2014 at 12:07:13,05. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\pc\Downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 20-8-2014 12:09:49 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\AGEIA Technologies deleted successfully C:\Program Files\dumps deleted successfully C:\Program Files\MediaBuzzV1 deleted successfully C:\Program Files\Movies Toolbar deleted successfully C:\Program Files\RichMediaViewV1 deleted successfully C:\Program Files\Rockstar Games deleted successfully C:\PROGRA~2\Oracle deleted successfully C:\Users\pc\AppData\Roaming\Google deleted successfully C:\Users\pc\AppData\Roaming\Logitech deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1577482832-1229427741-2884412449-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} deleted successfully HKEY_USERS\S-1-5-21-1577482832-1229427741-2884412449-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} deleted successfully HKEY_USERS\S-1-5-21-1577482832-1229427741-2884412449-1000\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473} deleted successfully HKEY_CLASSES_ROOT\CLSID\{B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\nvvsvc.exe C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\System32\spoolsv.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\BlueStacks\HD-LogRotatorService.exe C:\Program Files\BlueStacks\HD-UpdaterService.exe C:\Windows\system32\taskhost.exe C:\Program Files\Popcorn Time\PopcornTimeUpdater.exe C:\Windows\system32\Dwm.exe C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\BlueStacks\HD-Service.exe C:\Windows\Explorer.EXE C:\Program Files\BlueStacks\HD-Network.exe C:\Windows\system32\conhost.exe C:\Program Files\BlueStacks\HD-BlockDevice.exe C:\Windows\system32\conhost.exe C:\Program Files\BlueStacks\HD-SharedFolder.exe C:\Windows\system32\conhost.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe c:\Program Files\Microsoft Security Client\NisSrv.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Skype\Phone\Skype.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_14_0_0_176_ActiveX.exe C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Windows\System32\MsSpellCheckingFacility.exe C:\Users\pc\Downloads\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\system32\conhost.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\System32\svchost.exe -k LocalServicePeerNet ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Popcorn Time Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Popcorn Time Updater deleted successfully ==== FireFox Fix ====================== ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default ---- Lines ask.com removed from prefs.js ---- user_pref("browser.search.defaultenginename", "Ask.com"); user_pref("browser.search.order.1", "Ask.com"); user_pref("browser.search.selectedEngine", "Ask.com"); user_pref("keyword.URL", "Ask.com ---- Lines crossrider removed from prefs.js ---- user_pref("extensions.crossrider.bic", "144b2d1f9c98fb80017c09cda4e01f96"); ---- FireFox user.js and prefs.js backups ---- user_20-08-2014_1223_.backup prefs_20-08-2014_1223_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B15BBE59-42F5-4206-B3F0-BE98F5DC4B93}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="C:\\Program Files\\Internet Explorer\\iexplore.exe" ==== Deleting Files \ Folders ====================== C:\Program Files\Freecorder extension deleted C:\Program Files\Popcorn Time deleted C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default\extensions\addon@freecorder.com deleted C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} deleted C:\Users\pc\AppData\Roaming\PopcornTime deleted C:\Users\pc\AppData\Local\genienext deleted C:\Users\pc\daemonprocess.txt deleted C:\Users\pc\.android deleted C:\Program Files\GUT223C.tmp deleted C:\Program Files\GUM223B.tmp deleted C:\Program Files\VDownloader deleted C:\Users\pc\AppData\Roaming\newnext.me deleted C:\PROGRA~2\IePluginService deleted C:\PROGRA~2\WPM deleted C:\PROGRA~2\Tarma Installer deleted C:\PROGRA~2\Package Cache deleted C:\Users\pc\AppData\Local\cache deleted C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx deleted C:\Users\pc\Searches deleted C:\Users\pc\AppData\LocalLow\DataMngr deleted C:\Windows\system32\config\systemprofile\Searches deleted C:\Users\pc\Documents\Mobogenie deleted C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default\searchplugins\Ask.xml deleted C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default\somotomoviestoolbar181 deleted C:\Users\pc\Desktop\VDownloader.lnk deleted C:\Program Files\Mozilla Firefox\browser\searchplugins\Ask.xml deleted "C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default\extensions\quick_start@gmail.com" deleted "C:\Users\pc\AppData\Local\Mobogenie" deleted ==== System Specs ====================== Windows: Windows 7 Ultimate Edition Service Pack 1 (Build 7601) Memory (RAM): 2048 MB CPU Info: Intel® Pentium® Dual CPU E2160 @ 1.80GHz CPU Speed: 1765,8 MHz Sound Card: Luidsprekers (2- High Definitio | Luidsprekers (2- High Definitio | Display Adapters: NVIDIA GeForce 210 | NVIDIA GeForce 210 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1280 X 1024 - 32 bit Network: Network Present Network Adapters: Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter | NETGEAR WG311v3 54Mbps Wireless PCI Adapter | Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (D: | ) D: TSSTcorpCDDVDW SH-224DB Ports: COM1 | COM2 LPT1 Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 373,1GB Hard Disks - Free: C: 264,8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 08/30/07 | DELL - 8000730 Time Zone: West-Europa (standaardtijd) Motherboard *: NEC Computers SAS ECS-945G Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: Microsoft Security Essentials disabled (Outdated) Default Browser: Firefox 31.0 Internet Explorer Version: 11.0.9600.17239 Mozilla Firefox version: 31.0 (x86 nl) Google Chrome version: 36.0.1985.143 Adobe Reader version: 11.0.07.79 Sun Java version: 1.8.0_11 (32-bit) Flash Player version: 14.0.0.145 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\pc\AppData\Local\Temp ==== ====== Java Cache ===== 2014-08-18 05:49:20 E8B7CABB76DE48FA002A1A81205471A6 95 ----a-w- C:\Users\pc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\4f038bca-f55a6f7642190875b27f0f016d0986b22abdccd6da0c1082add5c4539b3a56f1-6.0.lap 2014-08-18 05:49:47 ECF4123D119922532FA7D40E57E51561 85 ----a-w- C:\Users\pc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\66b148ce-459529750f7872bd81ebdbff78fea7bc251323c19d90bb99c61625edf2508e52-6.0.lap 2014-08-18 05:49:25 D9D40F8EEEDEE656CA6C6C1BF0B6587B 8913 ----a-w- C:\Users\pc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\7d7caccf-46c47230 2014-08-18 05:49:45 90FD9F9BB1F980586096D4D326C9EDD8 13192 ----a-w- C:\Users\pc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\984882a-37656c50 2014-08-18 06:14:50 F3450967A4281B6AEB0570D79F49BD3B 112702425 ----a-w- C:\Users\pc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\46bbb7bf-22834b9b 2014-08-18 05:49:45 FA2873259BAE12E84EA83039220D40C3 85 ----a-w- C:\Users\pc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\66fd0948-9c57d1ff4f2bf675aae805c26868ea6582c68260db7eb8d4951ab5266f510438-6.0.lap ====== C:\Windows\system32 ===== 2014-08-13 20:49:07 E6B01B9FF2A8B13BA9FD95B0BF23AABA 456320 ----a-w- C:\Windows\System32\FNTCACHE.DAT 2014-08-13 06:21:04 AF6655214DEBB2C8446DE843A02AAEBA 99480 ----a-w- C:\Windows\System32\infocardapi.dll 2014-08-13 06:20:58 370FC4421ADE62FC89AC93B345570388 8856 ----a-w- C:\Windows\System32\icardres.dll 2014-08-13 06:20:47 8D466B36076BCD7997838C0DDB69764C 619672 ----a-w- C:\Windows\System32\icardagt.exe 2014-08-13 06:20:36 28A8B99DE70F376B18709E6B07D6A352 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe 2014-08-13 00:03:03 C9059EF0C94C55C0DA9CACEE160A5F66 654336 ----a-w- C:\Windows\System32\rpcrt4.dll 2014-08-13 00:03:00 5860EE5C807CB3866551B845123493C6 107520 ----a-w- C:\Windows\System32\cdd.dll 2014-08-13 00:02:52 41A3A54603686FD437FA4E8EB95025F9 51200 ----a-w- C:\Windows\System32\ieetwproxystub.dll 2014-08-13 00:02:51 FEE3E022B00A5165ED645E38C1E6C776 60416 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll 2014-08-13 00:02:51 004DFEA0B7AE3F8F438CD2D8C643DAEE 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-08-13 00:02:50 478824EC0BCE9968C0DC787164B1753B 32768 ----a-w- C:\Windows\System32\iernonce.dll 2014-08-13 00:02:50 3BB3D5D1CACD68BE8F7A16CCB3AADA93 646144 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2014-08-13 00:02:49 7B051C4A70F23A84A09366999FE63CBD 307384 ----a-w- C:\Windows\System32\iedkcs32.dll 2014-08-13 00:02:49 6D017C0E499443ACDE3D9B5DCD753F32 1169920 ----a-w- C:\Windows\System32\urlmon.dll 2014-08-13 00:02:49 36B67392AFB8901CC442EA988AD4603D 43008 ----a-w- C:\Windows\System32\jsproxy.dll 2014-08-13 00:02:48 E9B28B60C0272E2E1E462E6FB38E6B55 367104 ----a-w- C:\Windows\System32\dxtmsft.dll 2014-08-13 00:02:48 87C2B5010779DF6BE4732751C5DB5D64 112128 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-08-13 00:02:48 1A05CFA45B6AEBFCCC835DCF68CBD1D0 526336 ----a-w- C:\Windows\System32\msfeeds.dll 2014-08-13 00:02:47 E8D46F442AB53A52BDBB3EA0C51BDABD 2724864 ----a-w- C:\Windows\System32\mshtml.tlb 2014-08-13 00:02:46 E70C00791A18866BB23B3A652E3390A0 2001920 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-08-13 00:02:45 B91AA3BC8083E66925FAE29FDA485CEA 164864 ----a-w- C:\Windows\System32\msrating.dll 2014-08-13 00:02:45 7EFBB7A3C664A8DF93C9937DF76760A4 663040 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-08-13 00:02:44 D7D412D3436CFB85B383CDD3C9B455F0 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll 2014-08-13 00:02:44 4D0E91438CE181AF94C653B3BBE3C65A 61952 ----a-w- C:\Windows\System32\iesetup.dll 2014-08-13 00:02:43 9D16B568E318F49535AD72539C9997C2 455168 ----a-w- C:\Windows\System32\vbscript.dll 2014-08-13 00:02:43 18A3154606E3F8945956948A4E708007 704512 ----a-w- C:\Windows\System32\ieapfltr.dll 2014-08-13 00:02:42 B945BAA81B4805AD6BDDF4D026DCFB47 1792512 ----a-w- C:\Windows\System32\wininet.dll 2014-08-13 00:02:39 239575F9EA0D227516843EEE8B7342CA 239616 ----a-w- C:\Windows\System32\dxtrans.dll 2014-08-13 00:02:38 F48A1A114382AB4EF8000E1943E6CF1F 438784 ----a-w- C:\Windows\System32\ieui.dll 2014-08-13 00:02:37 90FF511B751A0327D07C4073760F1578 11772928 ----a-w- C:\Windows\System32\ieframe.dll 2014-08-13 00:02:35 444EB30B1610A35FC99D62A91B2BCAA7 69632 ----a-w- C:\Windows\System32\mshtmled.dll 2014-08-13 00:02:34 49FFD37673BD20279A8BF27CC20040B3 1068032 ----a-w- C:\Windows\System32\mshtmlmedia.dll 2014-08-13 00:02:33 FF4A917DD7C387BD2715A5F67307FED1 2184704 ----a-w- C:\Windows\System32\iertutil.dll 2014-08-13 00:02:33 272420427EB96EA052C719AA796C09F2 61952 ----a-w- C:\Windows\System32\MshtmlDac.dll 2014-08-13 00:02:30 24FA5F74D3B4BA62539DF87285BA934E 597504 ----a-w- C:\Windows\System32\jscript9diag.dll 2014-08-13 00:02:29 7C1BFC2ABE297BCA1A7BA77A8292C088 4204032 ----a-w- C:\Windows\System32\jscript9.dll 2014-08-13 00:02:28 8453DDF167CE2986AA4AB04BC6824925 17524224 ----a-w- C:\Windows\System32\mshtml.dll 2014-08-13 00:02:12 EB0AAAAC964609473049AF9A1AE26F42 2352640 ----a-w- C:\Windows\System32\win32k.sys 2014-08-13 00:02:12 8C192180F49B102626B6517E9B94645F 305152 ----a-w- C:\Windows\System32\gdi32.dll 2014-08-13 00:02:07 D08819FEE0CDB8A8A58E2B34D05E7A11 2048 ----a-w- C:\Windows\System32\tzres.dll 2014-08-13 00:01:41 CADC4CFE957C24984FFA718AB7E4EF3C 101824 ----a-w- C:\Windows\System32\consent.exe 2014-08-13 00:01:41 C212A43AA83A717AD38505F23ACDCB33 2363392 ----a-w- C:\Windows\System32\msi.dll 2014-08-13 00:01:41 9DA1CCDBBF8136AC2383C2624CA8CD14 337408 ----a-w- C:\Windows\System32\msihnd.dll 2014-08-13 00:01:41 43CD23B65CBF04D6F8ACA984B0EF93FE 1805824 ----a-w- C:\Windows\System32\authui.dll 2014-08-13 00:01:18 D14DF403FF550F6B1F4702CD2F288ABD 412160 ----a-w- C:\Windows\System32\aepdu.dll 2014-08-13 00:01:15 C4675C2734716F56FCA370CF1183457F 302592 ----a-w- C:\Windows\System32\aeinv.dll 2014-08-13 00:01:13 386BF6FD9FC562B1A5558C49E1C3A6FB 12874240 ----a-w- C:\Windows\System32\shell32.dll 2014-08-13 00:01:03 06FC8A93A4FA1F42A3D1D06694F2B339 419992 ----a-w- C:\Windows\System32\locale.nls 2014-08-13 00:01:01 F1886C30C3E4A7C5513525CBA665AA31 6144 ----a-w- C:\Windows\System32\KBDTAT.DLL 2014-08-13 00:01:01 EB3D06A9EDFDFD12228AD7A9F24D15D6 5632 ----a-w- C:\Windows\System32\KBDRU.DLL 2014-08-13 00:01:01 40FFC65117C4AC69D33DEC6D567392FD 6144 ----a-w- C:\Windows\System32\KBDYAK.DLL 2014-08-13 00:01:01 33DB506498E0419CD50B144DE7CCFC75 6144 ----a-w- C:\Windows\System32\KBDBASH.DLL 2014-08-13 00:01:01 1235259E135F87BF4AE5864A818E1513 6144 ----a-w- C:\Windows\System32\KBDRU1.DLL ====== C:\Windows\system32\drivers ===== 2014-08-13 00:03:01 3583A5A8CC2E682BFFBD4630D0FEC08B 730048 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2014-08-13 00:03:01 0EC652D17AB4607745FB4E6958E8FAB6 219072 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-08-20 06:38:03 -------- d-----w- C:\Program Files\trend micro 2014-08-09 17:51:16 -------- d-----w- C:\Program Files\TeamViewer 2014-08-07 18:33:51 -------- d-----w- C:\Program Files\Common Files\Skype ======= C: ===== ====== C:\Users\pc\AppData\Roaming ====== 2014-08-13 20:50:04 C3AD71C846ECDA1450D5248E51E367B1 117528 ----a-w- C:\Users\pc\AppData\Local\GDIPFONTCACHEV1.DAT 2014-08-09 17:51:27 -------- d-----w- C:\Users\pc\AppData\Roaming\TeamViewer ====== C:\Users\pc ====== 2014-08-20 06:37:56 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\pc\Downloads\RSIT.exe ====== C: exe-files == 2014-08-20 06:38:03 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\pc.exe 2014-08-20 06:37:56 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\pc\Downloads\RSIT.exe 2014-08-20 06:37:27 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HE4D0WDK\RSIT.exe 2014-08-15 02:11:47 C56CB929FDC62BA6AFA025C0DF95CA73 1836624 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\36.0.1985.143\36.0.1985.143_36.0.1985.125_chrome_updater.exe 2014-08-13 20:49:56 1BD4BE37E56C7BE2C0B21D7638CB5892 1355776 ----a-w- C:\Windows\Temp\set5CA.tmp.exe 2014-08-13 17:54:45 59632669E2ADB61DF0E878881BE1117F 2600960 ----a-w- C:\Windows\Temp\setFE0F.tmp.exe 2014-08-13 15:57:23 E6619660A1903A2AFD3BEED33B414BDC 2818048 ----a-w- C:\Windows\Temp\set89C7.tmp.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1577482832-1229427741-2884412449-1003\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 - Windows Help /build:7601" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-21-1577482832-1229427741-2884412449-1003\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 - Windows Help /build:7601" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="APSDaemon" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BCSSync" "hkey"="HKLM" "command"="\"C:\\Program Files\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BlueStacks Agent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BlueStacks Agent" "hkey"="HKLM" "command"="C:\\Program Files\\BlueStacks\\HD-Agent.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4" "hkey"="HKCU" "command"="\"C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe\" --no-startup-window" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NextLive] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NextLive" "hkey"="HKCU" "command"="C:\\Windows\\system32\\rundll32.exe \"C:\\Users\\pc\\AppData\\Roaming\\newnext.me\\nengine.dll\",EntryPoint -m l" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvBackend] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvBackend" "hkey"="HKLM" "command"="\"C:\\Program Files\\NVIDIA Corporation\\Update Core\\NvBackend.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="QuickTime Task" "hkey"="HKLM" "command"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Remote Control Server] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Remote Control Server" "hkey"="HKCU" "command"="C:\\Program Files\\Remote Control Server\\Remote Control Server.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SUPERAntiSpyware] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SUPERAntiSpyware" "hkey"="HKCU" "command"="C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="uTorrent" "hkey"="HKCU" "command"="\"C:\\Users\\pc\\AppData\\Roaming\\uTorrent\\uTorrent.exe\" /MINIMIZED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\VDownloader] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="VDownloader" "hkey"="HKLM" "command"="C:\\Program Files\\VDownloader\\VDownloader.exe /silent" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^RocketDock.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\RocketDock.lnk" "backup"="C:\\Windows\\pss\\RocketDock.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\Program Files\\Elune Skin Pack\\RocketDock\\RocketDock.exe " "item"="RocketDock" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SkinPackMenu.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\SkinPackMenu.lnk" "backup"="C:\\Windows\\pss\\SkinPackMenu.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\Program Files\\Elune Skin Pack\\SP.exe " "item"="SkinPackMenu" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^pc^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk] "path"="C:\\Users\\pc\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OpenOffice.org 3.4.1.lnk" "backup"="C:\\Windows\\pss\\OpenOffice.org 3.4.1.lnk.Startup" "backupExtension"=".Startup" "command"="C:\\PROGRA~1\\OPENOF~1.ORG\\program\\QUICKS~1.EXE " "item"="OpenOffice.org 3.4.1" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14-08-2014 17:18] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [13-07-2013 02:30] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [13-07-2013 02:30] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1577482832-1229427741-2884412449-1000Core.job --a------ C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe [06-12-2013 03:41] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1577482832-1229427741-2884412449-1000UA.job --a------ C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe [06-12-2013 03:41] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\0" [c:\program files\internet explorer\iexplore.exe] "C:\Windows\system32\tasks\4392" [wscript.exe C:\Users\pc\AppData\Local\Temp\launchie.vbs //B] "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1577482832-1229427741-2884412449-1000Core" [C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-1577482832-1229427741-2884412449-1000UA" [C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "quick_start@gmail.com"="C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default\extensions\quick_start@gmail.com" [] ==== Firefox Extensions ====================== AppDir: C:\Program Files\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\d1b8qf9x.default 0CA4180B21C6B728578F3B0433BB740E - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin 99407FF47487D59D749545B93CDCE4D3 - C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll - Java Platform SE 8 U11 F42962C2257294BE4AB0CB6038D9E477 - C:\Program Files\Java\jre8\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.110.12 4390CCD3790F8D9C427C0C29590C62D7 - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash FB5621842FDABF9F8359775573498FBC - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll - Google Update B5269A90EB2C747C4802E2FE0527C5D2 - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa 893BF7D2261C56C24F813405D9D018E0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In 14365399E83D7BC15760E8676E890C87 - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat 14365399E83D7BC15760E8676E890C87 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat 14365399E83D7BC15760E8676E890C87 - C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll - Adobe Acrobat 5596E40701BE8A4AEC399F57DBCE289E - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.5 5596E40701BE8A4AEC399F57DBCE289E - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.5 87FCE1D38F135B923EEC502825B5C7F6 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.5 87FCE1D38F135B923EEC502825B5C7F6 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.5 5A2AF08FEF626D3825AA7923B0A9DFF5 - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.5 5A2AF08FEF626D3825AA7923B0A9DFF5 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.5 B033D1486EAD65BE7857114DFAFD8429 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.5 B033D1486EAD65BE7857114DFAFD8429 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.5 DA632EC5CCC16F0B0FAC9BB21C10B2C3 - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7.5 DA632EC5CCC16F0B0FAC9BB21C10B2C3 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll - QuickTime Plug-in 7.7.5 4B12052DEA1DEA28FFADBC27C6D5CB20 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll - NVIDIA 3D Vision B573EFC0DAD162E35FC11258C0496E70 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll - NVIDIA 3D VISION D6ED6EB98E759460AD8C66DE23070132 - C:\Program Files\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll - Microsoft Office 2013 68BCBB241EF254BC5100D9E6C06ECC71 - C:\Users\pc\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll - Google Talk Plugin Video Accelerator 99FE6AFE80EB7FE3EEB75DC504A326A3 - C:\Users\pc\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer AF42019A3B0EDBFA6878F75B9377A792 - C:\Users\pc\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin B674373AED09BDC9C4150B5762FD4360 - C:\Program Files\Logitech\Harmony Remote Driver\NprtHarmonyPlugin.dll - Harmony Firefox Plugin 99F97C9FE748C37528C338A423577FCB - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin 8DA2ED6B04EA33F2EAE8BA883F903729 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gpicboiclhmnllnjdcfcffifpoaebgkm - C:\Program Files\Freecorder extension\Freecorder.crx[] omaonpoimgkmbllpdihbnmgphjoipdhf - C:\Program Files\Logitech\Harmony Remote Driver\harmony_chrome.crx[01-05-2012 21:45] pelmeidfhdlhlbjimpabfcbnnojbboma - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx[] Google Docs - pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Freecorder - pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpicboiclhmnllnjdcfcffifpoaebgkm Hangouts - pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd Google Wallet - pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "Google", "startup_urls": [ "Google" ], ==== Chrome Fix ====================== C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpicboiclhmnllnjdcfcffifpoaebgkm deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" "Default_Page_URL"="V9" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.awesomehp.com/web/?type=ds&ts=1393198871&from=amt&uid=ST3750640AS_3QD0HHC5XXXX3QD0HHC5&q={searchTerms}" "Default_Page_URL"="V9" "Start Page"="V9" "Search Page"="http://www.awesomehp.com/web/?type=ds&ts=1393198871&from=amt&uid=ST3750640AS_3QD0HHC5XXXX3QD0HHC5&q={searchTerms}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!" "Start Page"="Google" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="Bing" "Search Page"="Bing" "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!" "Start Page"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="{searchTerms - Google Search}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\quick_start@gmail.com deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\gpicboiclhmnllnjdcfcffifpoaebgkm deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader deleted successfully ==== HijackThis Entries ====================== O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre8\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office15\URLREDIR.DLL O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~1\MICROS~4\Office15\GROOVEEX.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre8\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-1577482832-1229427741-2884412449-1003\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-1577482832-1229427741-2884412449-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 - Windows Help" /build:7601 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"Troubleshoot problems installing Service Pack 1 (SP1) for Windows 7 and Windows Server 2008 R2 - Windows Help" /build:7601 (User 'Default user') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~4\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office15\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-Service.exe O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-LogRotatorService.exe O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-UpdaterService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe ==== Empty IE Cache ====================== C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0B33H25Z will be deleted at reboot C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DQYOU9WS will be deleted at reboot C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HE4D0WDK will be deleted at reboot C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KWMCQ3S1 will be deleted at reboot C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RH2EPB2O will be deleted at reboot C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UI7G7RVN will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2116 folders=319 372486289 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\pc\AppData\Local\Temp will be emptied at reboot C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\Users\UpdatusUser.pc-PC\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\pc\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0B33H25Z" not found "C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DQYOU9WS" not found "C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HE4D0WDK" not found "C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KWMCQ3S1" not found "C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RH2EPB2O" not found "C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UI7G7RVN" not found ==== EOF on wo 20-08-2014 at 12:35:05,60 ======================
