ermonneke

Lid

Bekijk profiel Bekijk hun activiteit

Items
40
Registratiedatum
18 januari 2009
Laatst bezocht
9 januari 2017

Inhoudstype

Alle activiteit

Profielen

Forums

Store

Product Reviews

Alles dat geplaatst werd door ermonneke

mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

HitmanPro_20151030_1201vandaag.log
- 30 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

juister dat ben ik nog vergeten te vragen dat logbestand van rsit die blauwe regels en regels met getallen moet ik daar iets mee doen of afblijven
- 29 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

juisterr ik denk dat ik me gaan ophangen want er is niks veranderd ik heb naar twee personen gemaild in Bcc en ze ontvingen het 7 maal ja het is wel geen 20 keer meer maar ik weet niet of dat verschil maakt. en als ik in aan verstuur is alles normaal. Sorry groetjes mon
- 29 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

juisterr ik ga het nu direckt uitproberen
- 29 oktober 2015
- 24 antwoorden
- - 1
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

AdwCleanerC21.txt
- 29 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

zoek-results zoek exe.txt hopelijk heb ik het gevraagde goed gedaan
- 29 oktober 2015
- 24 antwoorden
- - 1
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

Clarkie alvast bedankt voor u geduld met mij
- 28 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

Logfile of random's system information tool 1.10 (written by random/random) Run by hermonneke at 2015-10-28 11:31:00 Microsoft Windows 10 Home System drive C: has 351 GB (78%) free of 449 GB Total RAM: 4044 MB (48% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 11:31:02, on 28-10-2015 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.10240.16412) Boot mode: Normal Running processes: C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files\trend micro\hermonneke.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.bing.com/search?FORM=IE8SRC&q=%s R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O4 - HKCU\..\Run: [Gadwin PrintScreen (64-bit)] "C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen64.exe" /nosplash O4 - HKCU\..\Run: [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO O4 - HKCU\..\Run: [OneDrive] "C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKCU\..\RunOnce: [uninstall C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" O4 - HKCU\..\RunOnce: [uninstall C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64" O4 - HKCU\..\RunOnce: [uninstall C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" O4 - HKCU\..\RunOnce: [uninstall C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64" O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel® Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Online Games Manager (ogmservice) - RealNetworks, Inc. - C:\Program Files (x86)\Online Games Manager\ogmservice.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Samsung AllShare PC (SamsungAllShareV2.0) - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: SimpleSlideShowServer - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) -- End of file - 13649 bytes ======Listing Processes====== C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k RPCSS C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k LocalService "C:\Program Files\IDT\WDM\STacSV64.exe" C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\System32\spoolsv.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork C:\WINDOWS\system32\svchost.exe -k apphost "C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service C:\WINDOWS\System32\svchost.exe -k utcsvc "C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe" dashost.exe {c5ca8b6d-a1ae-4edf-8a5dd333880a9f9f} C:\WINDOWS\system32\mqsvc.exe C:\WINDOWS\system32\svchost.exe -k iissvcs "C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe" C:\WINDOWS\system32\svchost.exe -k appmodel "C:\Program Files (x86)\Online Games Manager\ogmservice.exe" --service-run C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe "C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe" "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c "C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe" "C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" C:\WINDOWS\system32\wbem\wmiprvse.exe "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" C:\WINDOWS\system32\SearchIndexer.exe /Embedding "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe winlogon.exe "dwm.exe" "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE" sihost.exe taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E} C:\Windows\System32\RuntimeBroker.exe -Embedding C:\WINDOWS\Explorer.EXE "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Program Files\IDT\WDM\sttray64.exe" "C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen64.exe" /nosplash "C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup C:\WINDOWS\system32\SettingSyncHost.exe -Embedding C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding "C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13821.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca "C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.5.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe" -ServerName:App.AppXqagq4n4gvy0tjw576pgh6xr601s1h1mv.mca "C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.6228.10041.0_x64__8wekyb3d8bbwe\onenoteim.exe" -ServerName:microsoft.onenoteim.AppXxqb9ypsz6cs1w07e1pmjy4ww4dy9tpqr.mca "C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetServiceDss -RestrictPrivileges -AccessKey 20FC4A33-539A-B1A1-5788-376674801FEA -Reinvoke "C:\Program Files (x86)\Windows Live\Mail\wlmail.exe" "C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe" -Embedding "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca C:\WINDOWS\system32\browser_broker.exe -Embedding "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:8048 CREDAT:140545 EDGEHOST /prefetch:6 "C:\WINDOWS\system32\NOTEPAD.EXE" C:\rsit\info.txt "C:\WINDOWS\system32\NOTEPAD.EXE" C:\rsit\log.txt "fontdrvhost.exe" "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca "C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe" -Embedding "C:\Users\hermonneke\Downloads\RSITx64.exe" "C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe36_ Global\UsGthrCtrlFltPipeMssGthrPipe36 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\WINDOWS\system32\SearchFilterHost.exe" 0 624 628 636 8192 632 ======Scheduled tasks folder====== C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe -boot C:\WINDOWS\tasks\User_Feed_Synchronization-{CFFA2738-98EF-4EE5-B5A4-519659D71B27}.job - C:\Windows\system32\msfeedssync.exe sync =========Mozilla firefox========= ProfilePath - C:\Users\hermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\gvp0nt3e.default-1424006294058 prefs.js - "browser.search.useDBForOrder" - true [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 17.0.0.169 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin] "Description"=Google Earth in your browser "Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56] "Description"=Intel IPT WebApi plugin "Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater] "Description"=This plugin updates Intel WebAPI component "Path"=C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0] "Description"=Microsoft Lync Plug-in for Firefox "Path"=C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0] "Description"=WildTangent Games App V2 Presence Detector Plugin "Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\7\NP_wtapp.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 17.0.0.169 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}] Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04 219304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}] TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-08-19 1761096] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 690392] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}] Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-11 2340472] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}] Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-08-04 153768] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}] TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2011-08-19 1610056] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}] Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12 1733240] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 183216] "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 411056] "Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 453552] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-07-17 3944136] "SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2000-01-01 1703424] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Gadwin PrintScreen (64-bit)"=C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen64.exe [2014-10-15 14439584] "CCleaner"=C:\Program Files\CCleaner\CCleaner64.exe [2015-07-17 8418584] "OneDrive"=C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-10-27 548552] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448] "Uninstall C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448] "Uninstall C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448] "Uninstall C:\Users\hermonneke\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2015-06-01 451584] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableTaskMgr"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DSCAutomationHostEnabled"=2 "SoftwareSASGeneration"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=221 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "EnableShellExecuteHooks"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "midimapper"=midimap.dll "msacm.imaadpcm"=imaadp32.acm "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "msacm.msadpcm"=msadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "vidc.i420"=iyuv_32.dll "vidc.iyuv"=iyuv_32.dll "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvu9"=tsbyuv.dll "vidc.yvyu"=msyuv.dll "wavemapper"=msacm32.drv "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "aux1"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2015-10-28 10:40:29 ----D---- C:\Program Files\trend micro 2015-10-28 10:40:28 ----D---- C:\rsit 2015-10-26 19:48:19 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2015-10-26 19:48:13 ----D---- C:\Program Files (x86)\Mozilla Firefox 2015-10-26 15:05:45 ----D---- C:\Program Files (x86)\Detective Quest - Het Glazen Muiltje 2015-10-24 21:34:19 ----A---- C:\WINDOWS\system32\mshtml.dll 2015-10-24 21:34:18 ----A---- C:\WINDOWS\system32\edgehtml.dll 2015-10-24 21:34:16 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll 2015-10-24 21:34:12 ----A---- C:\WINDOWS\system32\shell32.dll 2015-10-24 21:34:11 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-10-24 21:34:09 ----A---- C:\WINDOWS\system32\ieframe.dll 2015-10-24 21:34:07 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll 2015-10-24 21:34:06 ----A---- C:\WINDOWS\system32\BingMaps.dll 2015-10-24 21:34:05 ----A---- C:\WINDOWS\system32\windows.storage.dll 2015-10-24 21:34:04 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll 2015-10-24 21:34:02 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll 2015-10-24 21:34:01 ----A---- C:\WINDOWS\system32\ntoskrnl.exe 2015-10-24 21:34:00 ----A---- C:\WINDOWS\system32\mos.dll 2015-10-24 21:33:58 ----A---- C:\WINDOWS\SYSWOW64\mos.dll 2015-10-24 21:33:57 ----A---- C:\WINDOWS\system32\Chakra.dll 2015-10-24 21:33:56 ----A---- C:\WINDOWS\system32\jscript9.dll 2015-10-24 21:33:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll 2015-10-24 21:33:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll 2015-10-24 21:33:51 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll 2015-10-24 21:33:51 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-10-24 21:33:48 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll 2015-10-24 21:33:47 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll 2015-10-24 21:33:47 ----A---- C:\WINDOWS\system32\mfcore.dll 2015-10-24 21:33:46 ----A---- C:\WINDOWS\system32\msxml6.dll 2015-10-24 21:33:45 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll 2015-10-24 21:33:45 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll 2015-10-24 21:33:44 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll 2015-10-24 21:33:44 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll 2015-10-24 21:33:43 ----A---- C:\WINDOWS\system32\Windows.Media.dll 2015-10-24 21:33:42 ----A---- C:\WINDOWS\system32\wininet.dll 2015-10-24 21:33:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll 2015-10-24 21:33:41 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll 2015-10-24 21:33:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll 2015-10-24 21:33:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll 2015-10-24 21:33:34 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll 2015-10-24 21:33:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll 2015-10-24 21:33:33 ----A---- C:\WINDOWS\system32\win32kfull.sys 2015-10-24 21:33:33 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys 2015-10-24 21:33:32 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll 2015-10-24 21:33:32 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys 2015-10-24 21:33:31 ----A---- C:\WINDOWS\system32\wlansvc.dll 2015-10-24 21:33:30 ----A---- C:\WINDOWS\system32\winmde.dll 2015-10-24 21:33:30 ----A---- C:\WINDOWS\system32\LicenseManager.dll 2015-10-24 21:33:29 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll 2015-10-24 21:33:29 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll 2015-10-24 21:33:29 ----A---- C:\WINDOWS\system32\UserDataService.dll 2015-10-24 21:33:29 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2015-10-24 21:33:28 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll 2015-10-24 21:33:28 ----A---- C:\WINDOWS\system32\wlidsvc.dll 2015-10-24 21:33:28 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-10-24 21:33:27 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll 2015-10-24 21:33:27 ----A---- C:\WINDOWS\system32\Unistore.dll 2015-10-24 21:33:27 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll 2015-10-24 21:33:25 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll 2015-10-24 21:33:25 ----A---- C:\WINDOWS\system32\wwansvc.dll 2015-10-24 21:33:25 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll 2015-10-24 21:33:25 ----A---- C:\WINDOWS\system32\CoreMessaging.dll 2015-10-24 21:33:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll 2015-10-24 21:33:24 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll 2015-10-24 21:33:24 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll 2015-10-24 21:33:24 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll 2015-10-24 21:33:24 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2015-10-24 21:33:24 ----A---- C:\WINDOWS\system32\TokenBroker.dll 2015-10-24 21:33:24 ----A---- C:\WINDOWS\system32\msxml3.dll 2015-10-24 21:33:23 ----A---- C:\WINDOWS\system32\wuaueng.dll 2015-10-24 21:33:23 ----A---- C:\WINDOWS\system32\mfsvr.dll 2015-10-24 21:33:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-10-24 21:33:22 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll 2015-10-24 21:33:22 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll 2015-10-24 21:33:22 ----A---- C:\WINDOWS\system32\RDXService.dll 2015-10-24 21:33:22 ----A---- C:\WINDOWS\system32\modernexecserver.dll 2015-10-24 21:33:22 ----A---- C:\WINDOWS\system32\esent.dll 2015-10-24 21:33:21 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll 2015-10-24 21:33:21 ----A---- C:\WINDOWS\system32\wpx.dll 2015-10-24 21:33:21 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll 2015-10-24 21:33:21 ----A---- C:\WINDOWS\system32\MBMediaManager.dll 2015-10-24 21:33:21 ----A---- C:\WINDOWS\system32\ContactApis.dll 2015-10-24 21:33:21 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-10-24 21:33:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll 2015-10-24 21:33:20 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll 2015-10-24 21:33:20 ----A---- C:\WINDOWS\system32\kerberos.dll 2015-10-24 21:33:20 ----A---- C:\WINDOWS\system32\jscript.dll 2015-10-24 21:33:20 ----A---- C:\WINDOWS\system32\hevcdecoder.dll 2015-10-24 21:33:19 ----A---- C:\WINDOWS\system32\mfds.dll 2015-10-24 21:33:18 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll 2015-10-24 21:33:18 ----A---- C:\WINDOWS\system32\winload.exe 2015-10-24 21:33:18 ----A---- C:\WINDOWS\system32\MapControlCore.dll 2015-10-24 21:33:17 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll 2015-10-24 21:33:17 ----A---- C:\WINDOWS\system32\bisrv.dll 2015-10-24 21:33:16 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll 2015-10-24 21:33:16 ----A---- C:\WINDOWS\system32\SharedStartModel.dll 2015-10-24 21:33:16 ----A---- C:\WINDOWS\system32\MbaeApi.dll 2015-10-24 21:33:16 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys 2015-10-24 21:33:15 ----A---- C:\WINDOWS\system32\WWanAPI.dll 2015-10-24 21:33:15 ----A---- C:\WINDOWS\system32\directmanipulation.dll 2015-10-24 21:33:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll 2015-10-24 21:33:14 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll 2015-10-24 21:33:14 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll 2015-10-24 21:33:14 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll 2015-10-24 21:33:14 ----A---- C:\WINDOWS\system32\NotificationController.dll 2015-10-24 21:33:14 ----A---- C:\WINDOWS\system32\ngcsvc.dll 2015-10-24 21:33:14 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll 2015-10-24 21:33:13 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll 2015-10-24 21:33:13 ----A---- C:\WINDOWS\SYSWOW64\esent.dll 2015-10-24 21:33:13 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll 2015-10-24 21:33:13 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2015-10-24 21:33:13 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll 2015-10-24 21:33:12 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll 2015-10-24 21:33:12 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll 2015-10-24 21:33:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2015-10-24 21:33:12 ----A---- C:\WINDOWS\system32\win32kbase.sys 2015-10-24 21:33:12 ----A---- C:\WINDOWS\system32\wcmsvc.dll 2015-10-24 21:33:11 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll 2015-10-24 21:33:11 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll 2015-10-24 21:33:11 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll 2015-10-24 21:33:11 ----A---- C:\WINDOWS\system32\Windows.UI.dll 2015-10-24 21:33:11 ----A---- C:\WINDOWS\system32\tileobjserver.dll 2015-10-24 21:33:11 ----A---- C:\WINDOWS\system32\ChatApis.dll 2015-10-24 21:33:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll 2015-10-24 21:33:10 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll 2015-10-24 21:33:10 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll 2015-10-24 21:33:10 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll 2015-10-24 21:33:10 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys 2015-10-24 21:33:10 ----A---- C:\WINDOWS\system32\audiosrv.dll 2015-10-24 21:33:09 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe 2015-10-24 21:33:09 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll 2015-10-24 21:33:09 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll 2015-10-24 21:33:09 ----A---- C:\WINDOWS\system32\winresume.exe 2015-10-24 21:33:09 ----A---- C:\WINDOWS\system32\vbscript.dll 2015-10-24 21:33:09 ----A---- C:\WINDOWS\system32\LockAppBroker.dll 2015-10-24 21:33:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll 2015-10-24 21:33:08 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll 2015-10-24 21:33:08 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2015-10-24 21:33:08 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe 2015-10-24 21:33:08 ----A---- C:\WINDOWS\system32\SensorsApi.dll 2015-10-24 21:33:08 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll 2015-10-24 21:33:07 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll 2015-10-24 21:33:07 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll 2015-10-24 21:33:07 ----A---- C:\WINDOWS\system32\winlogon.exe 2015-10-24 21:33:06 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll 2015-10-24 21:33:06 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2015-10-24 21:33:06 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll 2015-10-24 21:33:06 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2015-10-24 21:33:06 ----A---- C:\WINDOWS\system32\ncsi.dll 2015-10-24 21:33:06 ----A---- C:\WINDOWS\system32\KnobsCsp.dll 2015-10-24 21:33:06 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS 2015-10-24 21:33:06 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys 2015-10-24 21:33:06 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys 2015-10-24 21:33:05 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll 2015-10-24 21:33:05 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll 2015-10-24 21:33:05 ----A---- C:\WINDOWS\system32\workfolderssvc.dll 2015-10-24 21:33:05 ----A---- C:\WINDOWS\system32\mf.dll 2015-10-24 21:33:05 ----A---- C:\WINDOWS\system32\KnobsCore.dll 2015-10-24 21:33:05 ----A---- C:\WINDOWS\system32\EmailApis.dll 2015-10-24 21:33:05 ----A---- C:\WINDOWS\system32\dmenrollengine.dll 2015-10-24 21:33:05 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll 2015-10-24 21:33:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll 2015-10-24 21:33:04 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll 2015-10-24 21:33:04 ----A---- C:\WINDOWS\system32\provengine.dll 2015-10-24 21:33:04 ----A---- C:\WINDOWS\system32\JpMapControl.dll 2015-10-24 21:33:03 ----A---- C:\WINDOWS\SYSWOW64\mf.dll 2015-10-24 21:33:03 ----A---- C:\WINDOWS\system32\wwanconn.dll 2015-10-24 21:33:03 ----A---- C:\WINDOWS\system32\wuuhext.dll 2015-10-24 21:33:03 ----A---- C:\WINDOWS\system32\WUDFx02000.dll 2015-10-24 21:33:03 ----A---- C:\WINDOWS\system32\wcmcsp.dll 2015-10-24 21:33:03 ----A---- C:\WINDOWS\system32\psmsrv.dll 2015-10-24 21:33:03 ----A---- C:\WINDOWS\system32\ngccredprov.dll 2015-10-24 21:33:03 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys 2015-10-24 21:33:03 ----A---- C:\WINDOWS\system32\CellularAPI.dll 2015-10-24 21:33:02 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll 2015-10-24 21:33:02 ----A---- C:\WINDOWS\system32\tetheringservice.dll 2015-10-24 21:33:02 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll 2015-10-24 21:33:02 ----A---- C:\WINDOWS\system32\pnidui.dll 2015-10-24 21:33:02 ----A---- C:\WINDOWS\system32\MapsStore.dll 2015-10-24 21:33:02 ----A---- C:\WINDOWS\system32\cloudAP.dll 2015-10-24 21:33:01 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll 2015-10-24 21:33:01 ----A---- C:\WINDOWS\system32\StoreAgent.dll 2015-10-24 21:33:01 ----A---- C:\WINDOWS\system32\omadmclient.exe 2015-10-24 21:33:01 ----A---- C:\WINDOWS\system32\ncryptprov.dll 2015-10-24 21:33:01 ----A---- C:\WINDOWS\system32\mfps.dll 2015-10-24 21:33:01 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll 2015-10-24 21:33:01 ----A---- C:\WINDOWS\system32\drivers\pdc.sys 2015-10-24 21:33:01 ----A---- C:\WINDOWS\system32\AppointmentApis.dll 2015-10-24 21:33:00 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll 2015-10-24 21:33:00 ----A---- C:\WINDOWS\system32\wwanmm.dll 2015-10-24 21:33:00 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe 2015-10-24 21:33:00 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll 2015-10-24 21:33:00 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll 2015-10-24 21:33:00 ----A---- C:\WINDOWS\system32\fveapi.dll 2015-10-24 21:33:00 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys 2015-10-24 21:32:59 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll 2015-10-24 21:32:59 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll 2015-10-24 21:32:59 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll 2015-10-24 21:32:59 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll 2015-10-24 21:32:59 ----A---- C:\WINDOWS\system32\omadmapi.dll 2015-10-24 21:32:59 ----A---- C:\WINDOWS\system32\ngckeyenum.dll 2015-10-24 21:32:59 ----A---- C:\WINDOWS\system32\MapConfiguration.dll 2015-10-24 21:32:59 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll 2015-10-24 21:32:59 ----A---- C:\WINDOWS\system32\drivers\portcls.sys 2015-10-24 21:32:59 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe 2015-10-24 21:32:59 ----A---- C:\WINDOWS\system32\acmigration.dll 2015-10-24 21:32:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Speech.Pal.dll 2015-10-24 21:32:58 ----A---- C:\WINDOWS\system32\syncutil.dll 2015-10-24 21:32:58 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe 2015-10-24 21:32:58 ----A---- C:\WINDOWS\system32\drivers\ndis.sys 2015-10-24 21:32:57 ----A---- C:\WINDOWS\system32\wwancfg.dll 2015-10-24 21:32:57 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll 2015-10-24 21:32:57 ----A---- C:\WINDOWS\system32\LocationGeofences.dll 2015-10-24 21:32:56 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll 2015-10-24 21:32:56 ----A---- C:\WINDOWS\system32\wpnapps.dll 2015-10-24 21:32:56 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll 2015-10-24 21:32:56 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-10-24 21:32:56 ----A---- C:\WINDOWS\system32\netcenter.dll 2015-10-24 21:32:56 ----A---- C:\WINDOWS\system32\enterprisecsps.dll 2015-10-24 21:32:56 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys 2015-10-24 21:32:56 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS 2015-10-24 21:32:56 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll 2015-10-24 21:32:56 ----A---- C:\WINDOWS\system32\AudioEng.dll 2015-10-24 21:32:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll 2015-10-24 21:32:55 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll 2015-10-24 21:32:55 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll 2015-10-24 21:32:55 ----A---- C:\WINDOWS\system32\LocationPeIP.dll 2015-10-24 21:32:55 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll 2015-10-24 21:32:55 ----A---- C:\WINDOWS\system32\enrollmentapi.dll 2015-10-24 21:32:55 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll 2015-10-24 21:32:55 ----A---- C:\WINDOWS\system32\accountaccessor.dll 2015-10-24 21:32:54 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll 2015-10-24 21:32:54 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll 2015-10-24 21:32:54 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll 2015-10-24 21:32:54 ----A---- C:\WINDOWS\system32\MPSSVC.dll 2015-10-24 21:32:54 ----A---- C:\WINDOWS\system32\Chakradiag.dll 2015-10-24 21:32:53 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll 2015-10-24 21:32:53 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll 2015-10-24 21:32:53 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll 2015-10-24 21:32:53 ----A---- C:\WINDOWS\system32\provops.dll 2015-10-24 21:32:53 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2015-10-24 21:32:52 ----A---- C:\WINDOWS\system32\nlasvc.dll 2015-10-24 21:32:52 ----A---- C:\WINDOWS\system32\LocationFramework.dll 2015-10-24 21:32:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-10-24 21:32:50 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-10-24 21:32:50 ----A---- C:\WINDOWS\system32\mdmregistration.dll 2015-10-24 21:32:50 ----A---- C:\WINDOWS\system32\mdmmigrator.dll 2015-10-24 21:32:50 ----A---- C:\WINDOWS\system32\LocationPeWiFi.dll 2015-10-24 21:32:50 ----A---- C:\WINDOWS\system32\LocationPeCell.dll 2015-10-24 21:32:50 ----A---- C:\WINDOWS\system32\dmcsps.dll 2015-10-24 21:32:50 ----A---- C:\WINDOWS\system32\dmcertinst.exe 2015-10-24 21:32:49 ----A---- C:\WINDOWS\system32\syncmlhook.dll 2015-10-24 21:32:49 ----A---- C:\WINDOWS\system32\provisioningcsp.dll 2015-10-24 21:32:49 ----A---- C:\WINDOWS\system32\configmanager2.dll 2015-10-24 21:07:38 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT 2015-10-24 19:06:04 ----D---- C:\WINDOWS\PCHEALTH 2015-10-09 15:53:00 ----D---- C:\Program Files (x86)\Enchanted Cavern 2 2015-10-08 14:09:18 ----D---- C:\$SysReset 2015-10-07 21:56:42 ----D---- C:\Program Files (x86)\The Rise of Atlantis 2015-10-07 12:35:32 ----D---- C:\Program Files (x86)\ESET ======List of files/folders modified in the last 1 month====== 2015-10-28 11:27:41 ----D---- C:\WINDOWS\Prefetch 2015-10-28 11:22:35 ----D---- C:\WINDOWS\Temp 2015-10-28 11:08:01 ----D---- C:\WINDOWS\system32\sru 2015-10-28 11:07:10 ----D---- C:\Program Files (x86)\Google 2015-10-28 10:40:29 ----RD---- C:\Program Files 2015-10-28 10:35:00 ----D---- C:\WINDOWS\Microsoft.NET 2015-10-28 10:26:57 ----D---- C:\WINDOWS\system32\config 2015-10-28 10:24:56 ----D---- C:\WINDOWS\System32 2015-10-27 20:55:59 ----HD---- C:\OneDriveTemp 2015-10-27 20:45:37 ----D---- C:\WINDOWS\AppReadiness 2015-10-27 18:57:37 ----SHD---- C:\WINDOWS\Installer 2015-10-27 18:55:59 ----D---- C:\WINDOWS\SysWOW64 2015-10-27 18:55:56 ----D---- C:\WINDOWS\system32\Tasks 2015-10-27 18:50:20 ----HD---- C:\Program Files\WindowsApps 2015-10-26 19:48:19 ----RD---- C:\Program Files (x86) 2015-10-26 19:44:55 ----HD---- C:\ProgramData 2015-10-26 19:21:08 ----D---- C:\WINDOWS\INF 2015-10-26 19:21:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2015-10-26 15:34:20 ----AD---- C:\ProgramData\Temp 2015-10-26 15:00:33 ----D---- C:\BigFishCache 2015-10-24 22:49:08 ----D---- C:\Users\hermonneke\AppData\Roaming\vlc 2015-10-24 22:03:46 ----D---- C:\WINDOWS\WinSxS 2015-10-24 22:02:05 ----D---- C:\WINDOWS\system32\drivers 2015-10-24 21:59:50 ----SD---- C:\WINDOWS\SYSWOW64\F12 2015-10-24 21:59:50 ----D---- C:\WINDOWS\SYSWOW64\migration 2015-10-24 21:59:43 ----D---- C:\WINDOWS\system32\WinBioPlugIns 2015-10-24 21:59:43 ----D---- C:\WINDOWS\system32\SystemResetPlatform 2015-10-24 21:59:42 ----SD---- C:\WINDOWS\system32\F12 2015-10-24 21:59:42 ----D---- C:\WINDOWS\system32\migration 2015-10-24 21:59:42 ----D---- C:\WINDOWS\system32\Boot 2015-10-24 21:59:42 ----D---- C:\WINDOWS\system32\appraiser 2015-10-24 21:59:34 ----RD---- C:\WINDOWS\PurchaseDialog 2015-10-24 21:59:34 ----D---- C:\WINDOWS\Provisioning 2015-10-24 21:59:31 ----D---- C:\WINDOWS\system32\CodeIntegrity 2015-10-24 21:59:31 ----D---- C:\WINDOWS\L2Schemas 2015-10-24 21:59:31 ----D---- C:\WINDOWS\AppPatch 2015-10-24 21:59:29 ----D---- C:\WINDOWS\system32\DriverStore 2015-10-24 21:57:39 ----D---- C:\ProgramData\Microsoft Help 2015-10-24 21:57:18 ----D---- C:\WINDOWS\CbsTemp 2015-10-24 21:53:40 ----D---- C:\WINDOWS\system32\MRT 2015-10-24 21:45:40 ----A---- C:\WINDOWS\system32\MRT.exe 2015-10-24 21:27:23 ----D---- C:\WINDOWS\system32\catroot2 2015-10-24 21:05:59 ----D---- C:\WINDOWS\system32\wbem 2015-10-24 21:05:14 ----D---- C:\Program Files\Windows Defender 2015-10-24 21:04:51 ----D---- C:\Windows 2015-10-24 21:01:50 ----D---- C:\WINDOWS\Tasks 2015-10-24 21:01:39 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata 2015-10-24 21:01:39 ----D---- C:\WINDOWS\SYSWOW64\wbem 2015-10-24 21:01:35 ----SD---- C:\WINDOWS\system32\Nui 2015-10-24 21:01:35 ----D---- C:\WINDOWS\system32\WinMetadata 2015-10-24 21:01:35 ----D---- C:\WINDOWS\system32\oobe 2015-10-24 21:01:35 ----D---- C:\WINDOWS\system32\MailContactsCalendarSync 2015-10-24 21:01:34 ----RSD---- C:\WINDOWS\Media 2015-10-24 21:01:26 ----D---- C:\WINDOWS\IME 2015-10-24 21:01:15 ----D---- C:\Zylom Games 2015-10-24 21:01:15 ----D---- C:\Program Files (x86)\Internet Explorer 2015-10-24 21:00:33 ----D---- C:\WINDOWS\system32\Sysprep 2015-10-24 21:00:33 ----D---- C:\WINDOWS\System 2015-10-24 21:00:28 ----D---- C:\WINDOWS\rescache 2015-10-24 21:00:28 ----D---- C:\WINDOWS\nl 2015-10-24 20:57:59 ----D---- C:\ProgramData\panda_url_filtering 2015-10-24 20:57:43 ----D---- C:\ProgramData\Hewlett-Packard 2015-10-24 20:57:07 ----D---- C:\Program Files\Windows Live 2015-10-24 20:57:07 ----D---- C:\Program Files\Common Files\microsoft shared 2015-10-24 20:57:00 ----D---- C:\Program Files (x86)\Windows Live 2015-10-24 20:56:56 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2015-10-24 20:56:56 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-10-24 20:56:56 ----D---- C:\Program Files (x86)\Jewel Quest - The Sleepless Star 2015-10-24 20:56:54 ----D---- C:\Program Files (x86)\Hawaiian Explorer - Lost Island 2015-10-24 20:56:53 ----D---- C:\Program Files (x86)\Fierce Tales - Een Hondenleven 2015-10-24 20:56:53 ----D---- C:\Program Files (x86)\Dreamsdwell Stories 2015-10-24 20:56:52 ----D---- C:\Program Files (x86)\Denda Games 2015-10-24 20:56:51 ----D---- C:\Program Files (x86)\Big City Adventure - New York 2015-10-24 20:56:51 ----D---- C:\Program Files (x86)\Akhra - The Treasures 2015-10-24 20:32:17 ----D---- C:\WINDOWS\registration 2015-10-24 20:24:49 ----D---- C:\WINDOWS\ServiceProfiles 2015-10-24 20:18:49 ----RSD---- C:\WINDOWS\assembly 2015-10-24 19:59:47 ----D---- C:\ProgramData\Panda Security 2015-10-24 19:55:41 ----D---- C:\Program Files (x86)\Panda Security 2015-10-24 19:53:05 ----RHD---- C:\MSOCache 2015-10-24 19:46:45 ----SHD---- C:\System Volume Information 2015-10-22 13:59:30 ----D---- C:\WINDOWS\Logs 2015-10-22 13:01:48 ----D---- C:\WINDOWS\system32\LogFiles 2015-10-21 15:40:26 ----D---- C:\WINDOWS\SoftwareDistribution 2015-10-21 15:32:35 ----D---- C:\WINDOWS\debug 2015-10-19 22:45:13 ----D---- C:\WINDOWS\ModemLogs 2015-10-19 20:04:46 ----D---- C:\Users\hermonneke\AppData\Roaming\dvdcss 2015-10-19 19:50:22 ----D---- C:\WINDOWS\system32\log 2015-10-19 19:33:21 ----D---- C:\AdwCleaner 2015-10-16 04:10:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-11-08 632168] R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968] R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192] R1 NNSNAHSL;@oem1.inf,%NNSNAHSL_Desc%;Network Activity Hook Server LightWeight Filter Driver; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [2014-12-31 48400] R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128] R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952] R3 clwvd;@oem0.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys [2010-07-28 31088] R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176] R3 IntcDAud;@oem15.inf,%IntcDAud.SvcDesc%;Intel® Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2011-12-21 317440] R3 MEIx64;@oem19.inf,%TEE_SvcDesc%;Intel® Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2014-10-10 129312] R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-07-29 175104] R3 netr28x;@oem35.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2015-06-12 2554528] R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-10 587264] R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-07-17 42696] R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10305; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2000-01-01 550912] R3 SynTP;@oem32.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-07-17 614088] S0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2011-04-26 557848] S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800] S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168] S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208] S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720] S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288] S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 36352] S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736] S3 DrvAgent64;DrvAgent64; \??\C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS [2014-11-24 20872] S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232] S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992] S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016] S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800] S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624] S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376] S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128] S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-07-29 934752] S3 RSPCIESTOR;@oem42.inf,%Rts5208%;Realtek PCIE CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPStor.sys [2015-07-29 374016] S3 SWDUMon;SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [2015-09-28 16152] S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952] S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-07-29 46080] S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032] S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088] S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048] S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-14 82128] R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R2 ClickToRunSvc;Microsoft Office ClickToRun Service; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2015-09-11 2774104] R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-09-06 349728] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-11-08 15720] R2 jhi_service;Intel® Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-24 212944] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2014-10-10 409376] R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-07-29 26112] R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848] R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848] R2 ogmservice;Online Games Manager; C:\Program Files (x86)\Online Games Manager\ogmservice.exe [2014-03-27 581568] R2 OneSyncSvc_Session10;Host synchroniseren_Session10; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2000-01-01 333824] R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-07-17 246472] R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696] R3 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128] R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] R3 PimIndexMaintenanceSvc_Session10;Contact Data_Session10; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] R3 UnistoreSvc_Session10;User Data Storage_Session10; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200] S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848] S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S2 OneSyncSvc_Session15;Host synchroniseren_Session15; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S2 OneSyncSvc_Session16;Host synchroniseren_Session16; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-19 268976] S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352] S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 cphs;Intel® Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224] S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136] S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [2011-08-19 260424] S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2015-09-06 209952] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200] S3 HPAuto;HP Auto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-02-16 682040] S3 HPClientSvc;HP Client Services; C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168] S3 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2013-05-13 270624] S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760] S3 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2011-07-11 26680] S3 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-09-01 2425960] S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2006-11-10 99936] S3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-10-15 147624] S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-07-07 150600] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2015-07-07 5132888] S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 PimIndexMaintenanceSvc_Session15;Contact Data_Session15; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 PimIndexMaintenanceSvc_Session16;Contact Data_Session16; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 SamsungAllShareV2.0;Samsung AllShare PC; C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [2012-03-02 25504] S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-07-29 1031680] S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 SimpleSlideShowServer;SimpleSlideShowServer; C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe [2012-03-02 27584] S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856] S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 UnistoreSvc_Session15;User Data Storage_Session15; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] S3 UnistoreSvc_Session16;User Data Storage_Session16; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856] -----------------EOF----------------- Clarkie ik gebruik 64bit versie en windows firewall + windows defender de bestand grote van skisprong 2.90 MB
- 28 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

Hallo Mon Ik heb zojuist je mailtjes bekeken. Helaas is het nog steeds niet goed “De schrik van je leven” ontving ik 5 keer (1 x in postvak in en 4 x bij verwijderde items). “skisprong” kreeg ik 4 keer (1 x in postvak in en 3 x bij verwijderde items). groetjes Georges Clarkie dit heb ik weer terug gekregen van een vriend misschien helpt u dat wat verder. En wat je vroeg hoe groot die bijlagen zijn weet ik niet waar ik dat moet zien ik zie geen melding van GB of MB en antivirus en firewall is van windows : windows defender en windows firewall
- 27 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

Clarkie sorry dat ik niet eerder iets heb kunnen late weten ik ben nu 2dagen terug in de running (probleempje met mijn insuline aanmaak ) maar we zijn er weer door. Dat gezegd zijnde, voor de rest zijn ik nog geen millimeter verder ik heb deze morgen nog eens geprobeerd eerst in Bcc en dan daarna in cc, maar die waar ik dat naar toe stuurde antwoorde al direct dat hij die in Bcc 10 keer ontving en die in cc 18 keer ik denk dat ik mijne laptop met de sloophamer ga bewerken en het probleem is waar moet ik nu weer eerst mee beginnen
- 26 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

ok clarkie dat ga ik dan eerst is bekijken of ik dat vind
- 8 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke reageerde op ermonneke's topic in Archief E-mailprogramma's

clarkie ik gebruik windows firewall en windows defender en hoe groot die bijlages zijn dat weet ik niet en hoe ik de time out instelling moet aanpassen dat ken ik ook niet sorry daarvoor
- 7 oktober 2015
- 24 antwoorden
mails komen 20 of 30 maal aan

ermonneke plaatste een topic in Archief E-mailprogramma's

dag mensen van pc helpforum, ik heb een probleem met mijn mails die worden door de ontvangers wel 10, 20 tot 30 keer ontvangen en ze melden mij ook dat ze de bijlagen niet kunnen openen. ik gebruik windows live mail hp pavilion g7 processor intel ® cor I3 4GB 64 bit x 64 processor : dank bij voorbaat
- 6 oktober 2015
- 24 antwoorden
alles van laptop naar tablet

ermonneke reageerde op ermonneke's topic in Archief Tablet- en Smartphone

Amadeus1966 goeien avond ik heb net u antwoord gelezen ik bedank u voor de fijne uitleg. Ik heb het intussen ongeveer in orde de meeste dingen werken al naar believen, maar zoals u schrijft gaat het niet met alles wat ik nu wel ondervind maar waar ik door uw antwoord dan van weet dat het niet aan mijn onkunde ligt en dat ik nu wel besef dat een tablet geen laptop is.1000x bedankt en groetjes Mon
- 19 april 2014
- 2 antwoorden
alles van laptop naar tablet

ermonneke plaatste een topic in Archief Tablet- en Smartphone

goeden avond mensen van pc helpforum, ik en mijn vrouw zitten op een laptop met elk een apart account nu heeft mijn vrouw een tablet gekocht en nu is mijn vraag hoe zetten we alles van mijn vrouw naar die tablet als dat mogelijk is want ik ben geen groot licht aan de computer. de laptop is een HP pavilion g7 series 64 bits en de tablet is een galaxy tab 3 1.6GHz dual - core cpu misschien kan iemand mij daarbij helpen alvast bedankt groetjes mon
- 18 april 2014
- 2 antwoorden
taal veranderen

ermonneke plaatste een topic in Archief Internet & Netwerk

goeien avond mensen, ik heb een vraagje over windows live mail. alles is in het nederlands alleen lings van het email venster staat gedeelte nederlands en een gedeelte duits bestaat er een manier om dit te wijzigen. wij gebruiken windows 7 windows live mail en heb een laptop HP paviliong series 64 bits 4GB (er staat live moekejose om dat ik dit vraag voor mijn vrouw wij zitten op een computer) alvast bedankt snelle weergave ongelezen e mail ongelezen van contact...... ongelezen feeds Live moekejose postausgang entwurfe gesendete objekt junk e mail gelôste objekt postausgang
- 12 maart 2014
update

ermonneke reageerde op ermonneke's topic in Archief Internet & Netwerk

goede middag jorden ik heb na veel sessies gelezen te hebben van mensen zoals u die er wel iets van weten,heb ik besloten om firefox te installeren en ik heb het deze voormiddag zoal wat geprobeerd en het bevalt me best. dus is mijn probleem ook ineens opgelost. van harte bedankt groetjes mon
- 5 maart 2014
- 2 antwoorden
update

ermonneke plaatste een topic in Archief Internet & Netwerk

goeden avond mensen, ik heb een probleem met van internet explorer ik gebruik IE 9 nu wil ik naar IE 10 maar als ik dat doe downloaden en installeren dat werkt allemaal prima maar ik heb geen google meer dan ik krijg steeds het zelfde berichtje internet explorer werkt niet meer. als ik het er dan weer afgooi dan werkt weer alles goed ik heb ook al geprobeerd naar IE 11 maar dat is het zelfde probleem. Wil iemand van u mij misschien een handje helpen alvast bedankt ik heb een laptop HP pavilion g series windows 7 internet explorer 9
- 3 maart 2014
- 2 antwoorden
dosearches

ermonneke reageerde op ermonneke's topic in Archief Bestrijding malware & virussen

Zoek.exe Version 4.0.0.5 Updated 09-November-2013 Tool run by ermonneke on ma 11/11/2013 at 12:12:12.05. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\ermonneke\AppData\Local\Temp\Temp2_zoek.zip\zoek.com [Quick Scan] [Auto Clean] ==== System Restore Info ====================== 11/11/2013 12:17:19 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Microsoft\Internet Explorer\SearchScopes\{17E847DB-B75D-49B4-923D-B091AC29B3B0} deleted successfully HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Microsoft\Internet Explorer\SearchScopes\{a5b9c0f5-5616-47cd-a95f-e43b488faccf} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BackupStack deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BackupStack deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Yontoo Desktop Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Yontoo Desktop Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WsysSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\WsysSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WsysSvc deleted successfully ==== FireFox Fix ====================== ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\searchplugins prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis03@SpeedAnalysis.com prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="C:\\Program Files\\Internet Explorer\\iexplore.exe" ==== Deleting Files \ Folders ====================== C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF} deleted C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} deleted C:\PROGRA~2\HappyLyrics deleted C:\PROGRA~2\Yontoo deleted C:\PROGRA~2\GamingWonderland deleted C:\PROGRA~2\MyPC Backup deleted C:\Users\ermonneke\AppData\Roaming\PlusWinks deleted C:\Users\ermonneke\AppData\Roaming\Systweak deleted C:\Users\ermonneke\AppData\Roaming\PerformerSoft deleted C:\Users\ermonneke\AppData\Roaming\Optimizer Pro deleted C:\Users\moekejose@live.be\AppData\Roaming\AlawarEntertainment deleted C:\Users\moekejose@live.be\AppData\Roaming\Desk 365 deleted C:\Users\moekejose@live.be\AppData\Roaming\DefaultTab deleted C:\Users\moekejose@live.be\AppData\Roaming\Systweak deleted C:\Users\moekejose@live.be\AppData\Roaming\PerformerSoft deleted C:\ProgramData\eSafe deleted C:\ProgramData\BrowserDefender deleted C:\ProgramData\DSearchLink deleted C:\ProgramData\Babylon deleted C:\ProgramData\Trymedia deleted C:\Users\ermonneke\AppData\Local\avgchrome deleted C:\Users\ermonneke\AppData\Local\AskToolbar deleted C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted C:\Users\moekejose@live.be\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup deleted C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk deleted C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard deleted C:\Windows\SysNative\roboot64.exe deleted C:\windows\SysNative\Tasks\LaunchApp deleted C:\Users\ermonneke\AppData\LocalLow\store-pp.jbs deleted C:\Users\ermonneke\AppData\LocalLow\IAC deleted C:\Users\ermonneke\AppData\LocalLow\Delta deleted C:\Users\moekejose@live.be\AppData\LocalLow\AVG Secure Search deleted C:\Users\moekejose@live.be\AppData\LocalLow\IAC deleted C:\Users\moekejose@live.be\AppData\LocalLow\MapsGalaxy_39 deleted C:\Users\moekejose@live.be\AppData\LocalLow\FromDocToPDF_65 deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\windows\SysNative\tasks\BitGuard deleted C:\Windows\Syswow64\SET3CB1.tmp deleted C:\Windows\Syswow64\SET3D30.tmp deleted C:\Windows\SysWow64\searchplugins deleted C:\Windows\SysWow64\Extensions deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com\extensions\gtffxtbr@GamingWonderland.com deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions\extensions\gtffxtbr@GamingWonderland.com deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail\extensions\gtffxtbr@GamingWonderland.com deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com\extensions\gtffxtbr@GamingWonderland.com deleted "C:\Users\ermonneke\AppData\Roaming\Yontoo\YontooDesktop.exe" deleted "C:\Users\ermonneke\AppData\Roaming\Yontoo\dat\Desktop.OS.Plugin.dll" deleted "C:\ProgramData\Application Data" deleted "C:\Users\ermonneke\AppData\Roaming\Yontoo" deleted "C:\Users\ermonneke\AppData\Roaming\Yontoo\dat" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-10-30 13:48:55 82370C3BAFF5BF1C5DDF7A3E76DEDBE9 424 ----a-w- C:\Windows\MAXLINK.INI 2013-10-12 16:17:41 A2199C8FBBE252614815E5AD62350B17 1424896 ----a-w- C:\Windows\sttray64.exe ====== C:\Users\ERMONN~1\AppData\Local\Temp ==== 2013-11-10 13:25:57 BFF9EF0DDCB93A690ACB4773B0E65E0F 35056288 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\bff9ef0ddcb93a690acb4773b0e65e0f\SkypeSetupFull.exe 2013-11-10 13:25:46 517792A56DBF99B4277B9B573E008EDD 1239536 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\517792a56dbf99b4277b9b573e008edd\wlsetup-web.exe 2013-11-10 13:25:46 30D0AD41CC60C6A62277BB350A1EBE4E 4369632 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\30d0ad41cc60c6a62277bb350a1ebe4e\ccsetup406.exe 2013-11-10 13:15:50 473716CAB64385F1F58D3FDBF24ADF64 2026600 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\ODFsetup.exe 2013-11-10 11:58:26 883DFC791AAF1298FCFC2BCF5471BBFC 46777424 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\SHSetup.exe 2013-11-06 21:11:45 4E1C46E37AF4B3AB0036CB1E85C81608 16896 ----a-w- C:\Users\moekejose@live.be\AppData\Local\Temp\nsmAC37.tmp\uac.dll 2013-11-04 20:53:08 4E1C46E37AF4B3AB0036CB1E85C81608 16896 ----a-w- C:\Users\moekejose@live.be\AppData\Local\Temp\nsv9438.tmp\uac.dll ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-11-10 17:37:20 40E6123132B556BF601C6C0FDE1416D7 277360 ----a-w- C:\Windows\Sysnative\FNTCACHE.DAT 2013-10-30 13:43:03 A759C82C04911E90C1518B55021014B0 17408 ----a-w- C:\Windows\Sysnative\cnco140.dll 2013-10-30 13:43:01 F66D01D2FEA9525407DD51CBAFC09905 90624 ----a-w- C:\Windows\Sysnative\CNCL140.DLL 2013-10-30 13:43:01 90F49086E1344390951174446730B5A9 49664 ----a-w- C:\Windows\Sysnative\CNCI140.DLL 2013-10-30 13:43:00 C8287CA89372467E41A08BB895AFEFFA 1337344 ----a-w- C:\Windows\Sysnative\CNCC140.DLL ====== C:\Windows\Sysnative\drivers ===== 2013-10-31 19:49:16 ACCEA6BC68D0C9A78EB97EE159028B4E 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys 2013-10-31 19:49:15 E73A7A04FDAC9DD46EE2A4257F09E91C 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys 2013-10-31 19:49:15 A83D0EC9AE4C31704442099D40BA2471 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys 2013-10-31 19:49:15 9406D801042FAF859CF81B2C886413DC 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys 2013-10-31 19:49:15 861C197502A5057E68F0AC75D9EFCDD7 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys 2013-10-31 19:49:15 311C1DD1088E55BEAE15954D17F50646 52736 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys 2013-10-31 19:49:15 280E90CBF4B2DDD169F0728CB44D726F 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys 2013-10-12 16:20:45 6E5C3D18C3BCC72AA527DBC5FA61AB8F 339048 ----a-w- C:\Windows\Sysnative\drivers\RtsPStor.sys ====== C:\Windows\Tasks ====== 2013-11-10 19:53:11 090AB6836F3290F626462B94104AF944 3296 ----a-w- C:\Windows\Sysnative\Tasks\{E6C10DED-C82E-45A1-A269-F1369E6271B1} 2013-10-27 17:28:21 095B61E5D5E5759896EDC0900C9E7100 3312 ----a-w- C:\Windows\Sysnative\Tasks\{C180E2BE-6E9D-4051-AB13-A3D3E0F05BED} 2013-10-12 16:30:37 57FAD764268E5F8099AAAE2A6058013B 3158 ----a-w- C:\Windows\Sysnative\Tasks\MirageAgent ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-11-11 07:58:56 -------- d-----w- C:\Program Files\trend micro 2013-11-10 19:40:37 -------- d-----w- C:\Program Files\Fix RegCleaner 2013-10-30 13:42:40 -------- d--h--w- C:\Program Files\CanonBJ 2013-10-12 16:37:27 -------- d-----w- C:\Program Files\Windows Live ======= C:\PROGRA~2 ===== 2013-11-10 13:15:12 -------- d-----w- C:\PROGRA~2\COMMON~1\Common Toolkit Suite 2013-11-10 13:15:11 -------- d-----w- C:\PROGRA~2\Fighters 2013-11-10 11:59:05 -------- d-----w- C:\PROGRA~2\COMMON~1\Wise Installation Wizard 2013-11-06 19:32:39 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype 2013-11-06 19:32:39 -------- d-----r- C:\PROGRA~2\Skype 2013-11-06 14:30:33 -------- d-----w- C:\PROGRA~2\VideoDownloadConverter 2013-11-01 11:33:15 -------- d-----w- C:\PROGRA~2\MSXML 4.0 2013-10-31 19:50:00 -------- d-----w- C:\PROGRA~2\Microsoft CAPICOM 2.1.0.2 2013-10-30 13:48:35 -------- d-----w- C:\PROGRA~2\COMMON~1\ScanSoft Shared 2013-10-30 13:48:00 -------- d-----w- C:\PROGRA~2\ScanSoft 2013-10-29 13:52:00 -------- d-----w- C:\PROGRA~2\SlimDrivers 2013-10-26 04:45:07 -------- d-----w- C:\PROGRA~2\Canon 2013-10-14 13:43:47 -------- d-----w- C:\PROGRA~2\Haali 2013-10-12 16:40:36 -------- d-----w- C:\PROGRA~2\Microsoft SQL Server Compact Edition 2013-10-12 16:28:39 -------- d-----w- C:\PROGRA~2\CyberLink ======= C: ===== ====== C:\Users\ermonneke\AppData\Roaming ====== 2013-11-10 20:31:48 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{AABAAB4F-46A2-4C3F-92C4-16E371AC8397} 2013-11-10 20:22:13 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Fighters 2013-11-10 15:14:29 -------- d-----w- C:\Users\ermonneke\AppData\Local\Apps 2013-11-10 15:10:00 6C0A97AFA8EE7216EEB28EDEE8F5ED74 58944 ----a-w- C:\Users\ermonneke\AppData\Local\GDIPFONTCACHEV1.DAT 2013-11-10 13:47:04 -------- d-----w- C:\Users\ermonneke\AppData\Local\Fighters 2013-11-10 13:15:42 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Fighters 2013-11-10 13:15:29 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\Fighters 2013-11-09 20:59:01 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{DD494A79-F1C2-475D-BF6A-3ABBC9DFBB09} 2013-11-09 20:03:40 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{C5C4E71B-EC1D-4A5C-B56E-D336A26DA14F} 2013-11-08 20:40:00 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{B135B95A-35AA-402A-9B64-286192A782FA} 2013-11-07 20:26:31 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{03E782C2-3E68-435E-974A-F5F42956CDA4} 2013-11-06 21:12:45 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\VendelGAMES 2013-11-06 21:11:47 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Love Chronicles - Het Zwaard en de Roos 2013-11-06 15:03:52 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{BDA3F86A-928B-4840-A5FE-96D48D96992E} 2013-11-04 20:53:11 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flower Paradise 2013-11-04 13:51:42 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{BE6855A6-2000-4412-8482-D10C536B7DE4} 2013-11-02 16:11:34 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{F03CDBAF-FCCB-41C9-AA5C-BBA27D468C47} 2013-11-01 20:22:05 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{4D5FF940-7343-4C5E-AE4F-511D24FA81EB} 2013-10-31 22:09:12 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Gogii Games 2013-10-31 20:14:31 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{F8030CCB-AF64-4782-B0F1-5182F0E936E7} 2013-10-30 20:33:07 -------- d-----w- C:\Users\ermonneke\AppData\Local\Scansoft 2013-10-30 20:22:06 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\Scansoft 2013-10-30 13:48:44 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\ScanSoft 2013-10-30 06:12:38 -------- d-----w- C:\Users\ermonneke\AppData\Local\HP 2013-10-29 20:36:56 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Clockwork Pixels 2013-10-29 20:33:19 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{8274222C-7173-4D3E-92D6-4F70F5B510A7} 2013-10-29 19:49:03 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{42FFF3E1-7EAB-4633-8EAB-304D35FC62DF} 2013-10-29 15:25:36 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Intel Corporation 2013-10-29 14:14:43 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\Intel Corporation 2013-10-28 14:47:31 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{44E2661D-3702-4754-8BBF-216A8C5EC1ED} 2013-10-26 19:35:16 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{A9AAD1A9-D584-451A-88A1-D1736E08F0AF} 2013-10-26 04:44:46 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\CrashDumps 2013-10-25 18:47:32 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{557F5950-A83D-409D-B034-599038ABB774} 2013-10-24 18:52:21 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{A900E24E-FB96-4152-9CBC-5EA3110B528B} 2013-10-23 13:55:56 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{1D4EE044-69FD-4C91-A608-A90ED8009C68} 2013-10-22 20:22:13 -------- d-----w- C:\Users\moekejose@live.be\AppData\Locallow\AdoreGames 2013-10-22 20:09:29 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{D53F512F-3921-48D4-9F6A-9951036A5BEE} 2013-10-21 20:05:42 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{FE7DC150-75C8-4F3E-A935-EA4F10685989} 2013-10-21 08:57:59 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{18A35BD5-2E00-4EB9-9420-9065B105A0EE} 2013-10-20 14:50:45 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{C046D25B-162A-462A-A24D-D40F42CBEEA0} 2013-10-19 20:59:38 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Boomzap 2013-10-19 20:13:16 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Otherworld - Shades of Fall Collectors Edition 2013-10-19 20:10:05 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{5E0E4ACA-D0BB-438C-83F4-367A1DA5A1F5} 2013-10-19 18:56:35 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{26916F34-D46A-40E0-9A39-180110A764FC} 2013-10-18 15:18:13 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{52B53B0A-EBA0-479D-AF22-9CBC4DA55EAC} 2013-10-18 13:57:24 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\Canon 2013-10-17 19:27:16 -------- d-----w- C:\Users\ermonneke\AppData\Locallow\Adblock Plus for IE 2013-10-16 19:09:11 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{624D8961-71C1-43A2-8059-58F75BB9AF02} 2013-10-15 12:42:40 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{C9C9EFDD-1E41-491B-B577-29B358184B14} 2013-10-14 13:29:57 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\SlimCleaner 2013-10-14 09:13:42 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{EEB43F30-CD63-43DB-8022-973F3013D479} 2013-10-13 13:00:52 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{E95A8E22-1F3B-443C-A476-BA4FEC0AB45E} 2013-10-12 20:10:27 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{09AEF23F-D127-4628-AECD-DF2A2A20B560} 2013-10-12 20:10:17 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{95194ABF-E704-4D37-B156-D4E8ABBD737C} ====== C:\Users\ermonneke ====== 2013-11-10 19:40:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix RegCleaner 2013-11-10 13:15:45 -------- d-----w- C:\ProgramData\clp 2013-11-10 13:15:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters 2013-11-10 13:15:10 -------- d-----w- C:\ProgramData\Common Toolkit Suite 2013-11-10 13:12:46 -------- d-----w- C:\ProgramData\Fighters 2013-11-06 19:32:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2013-10-30 13:51:50 -------- d-----w- C:\ProgramData\CanonIJPLM 2013-10-30 13:50:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MP140 series 2013-10-30 13:48:55 -------- d-----w- C:\ProgramData\InstallShield 2013-10-30 13:48:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4 2013-10-30 13:48:35 -------- d-----w- C:\ProgramData\ScanSoft 2013-10-30 13:44:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2013-10-30 13:43:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon IJ Notes for Windows Vista 2013-10-30 13:43:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series Manual 2013-10-30 13:43:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series 2013-10-29 14:14:35 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\Intel 2013-10-29 14:12:50 -------- d-----w- C:\Users\ermonneke\Intel 2013-10-29 13:52:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers 2013-10-22 16:30:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast 2013-10-18 19:56:18 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameHouse 2013-10-14 13:43:50 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter 2013-10-12 16:41:34 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live 2013-10-12 16:30:35 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat ====== C: exe-files == 2013-11-11 07:58:01 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\01553NQS\RSITx64.exe 2013-11-10 19:41:58 4B819423DCE5803F2CCF879D62FB27CE 4283496 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3G7C71AX\FixRegCleaner_Setup.exe 2013-11-10 19:33:43 8A342A95CFDCC90FE1B84F87D3416934 383496 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0MB8MIN6\VideoDownloadConvert.exe 2013-11-10 19:31:45 AC6E821ADB8611982B9C20E4A90A96B3 3671512 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z1BXPTPN\rcpsetup_3335_ggnl.exe 2013-11-10 13:25:57 BFF9EF0DDCB93A690ACB4773B0E65E0F 35056288 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\bff9ef0ddcb93a690acb4773b0e65e0f\SkypeSetupFull.exe 2013-11-10 13:25:46 517792A56DBF99B4277B9B573E008EDD 1239536 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\517792a56dbf99b4277b9b573e008edd\wlsetup-web.exe 2013-11-10 13:25:46 30D0AD41CC60C6A62277BB350A1EBE4E 4369632 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\30d0ad41cc60c6a62277bb350a1ebe4e\ccsetup406.exe 2013-11-10 13:15:50 473716CAB64385F1F58D3FDBF24ADF64 2026600 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\ODFsetup.exe 2013-11-10 11:58:26 883DFC791AAF1298FCFC2BCF5471BBFC 46777424 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\SHSetup.exe 2013-11-07 18:27:53 8BBE63DF6DF1B042E8EFA88E3B358FC8 347304 ----a-w- C:\Documents and Settings\ermonneke\Google Drive\Downloads\MicrosoftFixit.WindowsFirewall.FISC.139307276051362636.1.1.Run.exe 2013-11-06 21:12:29 0C124D8D7AF5FD787BF20FD3DD550591 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3229558521-36535321-3352245702-1004\$ISW4KU0.exe 2013-11-06 21:09:50 AFDCA3BEA71277A030696501F434F3D1 236648 ----a-w- C:\$Recycle.Bin\S-1-5-21-3229558521-36535321-3352245702-1004\$RSW4KU0.exe 2013-11-06 14:30:05 633FF315FB22227FD2DF05A018938C06 3116952 ----a-w- C:\Documents and Settings\ermonneke\Google Drive\Downloads\VideoDownloadConvertCrxSetup.0DA6CA97-EB7D-4507-B6A5-01CC0E44B5C7.exe 2013-11-04 20:53:20 5E44BACDA9E7380D65C671503706C053 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3229558521-36535321-3352245702-1004\$IK3LTYD.exe 2013-11-04 20:52:22 AFDCA3BEA71277A030696501F434F3D1 236648 ----a-w- C:\$Recycle.Bin\S-1-5-21-3229558521-36535321-3352245702-1004\$RK3LTYD.exe === C: other files == 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis03@SpeedAnalysis.com\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\searchplugins\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com\extensions\pricepeep@getpricepeep.com.xpi ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "IE New Window Maximizer"="C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HPConnectionManager"="C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" "HPOSD"="C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" "HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" "HPQuickWebProxy"="C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe" "Everything"="C:\Program Files (x86)\Everything\Everything.exe -startup" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "SSBkgdUpdate"="C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot" "OpwareSE4"="C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe" "CommonToolkitTray"="C:\Program Files (x86)\Fighters\Tray\FightersTray.exe" "SWPROguard"="C:\Program Files (x86)\Fighters\SPYWAREfighter\swprotray.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "IE New Window Maximizer"="C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe" "SetDefault"="C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "IAStorIcon"="C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 60" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" C:\\PROGRA~2\\OPTIMI~1\\OPTPRO~2.DLL" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Yontoo Desktop] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Yontoo Desktop" "hkey"="HKCU" "command"="\"C:\\Users\\ermonneke\\AppData\\Roaming\\Yontoo\\YontooDesktop.exe\"" ==== Startup Folders ====================== 2013-05-29 08:26:05 1931 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/10/2013 14:57] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [23/05/2013 20:42] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [23/05/2013 20:42] C:\Windows\tasks\HPCeeScheduleForermonneke.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [13/09/2010 21:15] C:\Windows\tasks\SlimDrivers Startup.job --a------ C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [24/09/2013 12:49] C:\Windows\tasks\WpsUpdateTask_ermonneke.job --a------ [undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\0" [c:\program files (x86)\internet explorer\iexplore.exe] "C:\Windows\SysNative\tasks\4819" [wscript.exe C:\Users\ERMONN~1\AppData\Local\Temp\launchie.vbs //B] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForermonneke" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe] "C:\Windows\SysNative\tasks\SlimCleaner Run" ["C:\Program Files (x86)\SlimCleaner\SlimCleaner.exe"] "C:\Windows\SysNative\tasks\SlimDrivers Startup" [C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe] "C:\Windows\SysNative\tasks\WpsUpdateTask_ermonneke" [C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "SpecialSavings@SpecialSavings.com"="C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions\SpecialSavings@SpecialSavings.com" [02/06/2013 12:49] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "SpecialSavings@SpecialSavings.com"="C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions\SpecialSavings@SpecialSavings.com" [02/06/2013 12:49] ==== Firefox Extensions ====================== ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\searchplugins - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis03@SpeedAnalysis.com - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ExtDir: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions - 7Go Games - %ExtDir%\7go@7go.com ExtDir: C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions - 7Go Games - C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions\7go@7go.com - Smiley Bar for Facebook - %ExtDir%\pluswinks@PlusWinks - SpecialSavings - %ExtDir%\SpecialSavings@SpecialSavings.com - Speed Analysis 2 - %ExtDir%\speedanalysis02@SpeedAnalysis.com ==== Firefox Plugins ====================== ==== Deleted Firefox Extensions ====================== C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\searchplugins\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis03@SpeedAnalysis.com\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions\SpecialSavings@SpecialSavings.com deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions adldappccjhelkmbkpiibilgnnjakieg - C:\Program Files (x86)\VideoDownloadConverter_4z Chrome Extension\bar\VideoDownloadConvert@mindspark.com.gen1[] bfcpnihmbfoaeoakalclfalkdepgiaje - C:\Users\ermonneke\AppData\Roaming\SpecialSavings\SpecialSavings.crx[] bfmogjcijkfeahcajecmmegieipfbdcc - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx[17/08/2011 22:51] ealchnonpofjocgofjpopjdoegbbkofj - C:\Program Files (x86)\HappyLyrics\Chrome.crx[] gjajpkikblccgefaibcafkfbanllpefi - C:\Users\ermonneke\AppData\Roaming\7go\7go.crx[] jainjonnknhmbbkibcbmhihbopigapdm - C:\Program Files (x86)\Lizardlink\jainjonnknhmbbkibcbmhihbopigapdm.crx[] mocblcnaofikinigmceddfghppkkjbog - C:\Users\ermonneke\AppData\Roaming\PlusWinks\PlusWinks.crx[] niapdbllcanepiiimjjndipklodoedlc - C:\Program Files (x86)\Yontoo\YontooLayers.crx[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions apdfllckaahabafndbhieahigkjlhalf - C:\Users\ERMONN~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx[] Docs - Gast - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Gast - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Website Logon - Gast - Default\Extensions\bfmogjcijkfeahcajecmmegieipfbdcc YouTube - Gast - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Gast - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Gmail - Gast - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Website Logon - moekejose@live.be - Default\Extensions\bfmogjcijkfeahcajecmmegieipfbdcc DefaultTab - C:\Windows\sysWoW64\config\systemprofile - Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc ==== Chrome Fix ====================== C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\ealchnonpofjocgofjpopjdoegbbkofj deleted successfully C:\Users\moekejose@live.be\AppData\Local\Google\Chrome\User Data\Default\Extensions\ealchnonpofjocgofjpopjdoegbbkofj deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" "Default_Page_URL"="Google" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="Google" "Start Page"="Google" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Page_URL"="Google" "Start Page"="Google" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="%s - Bing" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" "Start Page"="Google" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" "Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" "Start Page"="MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="%s - Bing" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633ee93-d776-472f-a0ff-e1416b8b2e3a}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Mozilla\Firefox\Extensions\happylyrics@hpyproductions.net deleted successfully ==== shortcuts on Users Desktops ====================== C:\Users\ermonneke\Desktop\Nieuwe map\avast Free Antivirus.lnk - C:\Users\ermonneke\Desktop\Nieuwe map\Canon IJ Opmerkingen voor Windows Vista.lnk - C:\Program Files (x86)\Canon\IJ Manual\CANON IJ\Dutch\Windows\Vmanual.chm C:\Users\ermonneke\Desktop\Nieuwe map\Corel PaintShop Pro X4.lnk - C:\Program Files (x86)\Corel\Corel PaintShop Pro X4\Corel PaintShop Pro.exe C:\Users\ermonneke\Desktop\Nieuwe map\Easy-PhotoPrint.lnk - C:\Program Files (x86)\Canon\Easy-PhotoPrint\BJEZPRN.EXE C:\Users\ermonneke\Desktop\Nieuwe map\FrostWire 5.6.4.lnk - C:\Program Files (x86)\FrostWire 5\FrostWire.exe C:\Users\ermonneke\Desktop\Nieuwe map\Gebruikersregistratie voor Canon MP140 series.LNK - C:\Program Files (x86)\Canon\IJEREG\MP140 series\IJEREG.exe C:\Users\ermonneke\Desktop\Nieuwe map\Google Drive.lnk - C:\Users\ermonneke\Google Drive C:\Users\ermonneke\Desktop\Nieuwe map\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe C:\Users\ermonneke\Desktop\Nieuwe map\IE New Window Maximizer.lnk - C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe C:\Users\ermonneke\Desktop\Nieuwe map\Kingsoft Presentation.lnk - C:\Program Files (x86)\Kingsoft\Kingsoft Office\office6\wpp.exe /w C:\Users\ermonneke\Desktop\Nieuwe map\Kingsoft Spreadsheets.lnk - C:\Program Files (x86)\Kingsoft\Kingsoft Office\office6\et.exe C:\Users\ermonneke\Desktop\Nieuwe map\Kingsoft Writer.lnk - C:\Program Files (x86)\Kingsoft\Kingsoft Office\office6\wps.exe /w C:\Users\ermonneke\Desktop\Nieuwe map\Meer Fantastische Spellen.lnk - C:\Users\ermonneke\Desktop\Nieuwe map\MP Navigator 3.1.lnk - C:\Program Files (x86)\Canon\MP Navigator 3.1\mpn31.exe C:\Users\ermonneke\Desktop\Nieuwe map\MP140 series On line handleiding.lnk - C:\Program Files (x86)\Canon\IJ Manual\MP140 SERIES\Dutch\Windows\Contents8r.chm C:\Users\ermonneke\Desktop\Nieuwe map\MP150 On-screen Manual.lnk - C:\Program Files (x86)\Canon\IJ Manual\MP150\English\Windows\Contents7k.chm C:\Users\ermonneke\Desktop\Nieuwe map\Scanner Configuration.lnk - C:\Program Files (x86)\ScanWizard 5\Msc.exe C:\Users\ermonneke\Desktop\Nieuwe map\SlimCleaner.lnk - C:\Windows\Installer\{6B8D6199-EE44-4FD7-813A-6D8C62C9B384}\Icon.exe C:\Users\ermonneke\Desktop\Nieuwe map\SlimDrivers.lnk - C:\Windows\Installer\{3CF3DEF4-ED15-4F7B-9320-C3E1081EA4DA}\Icon.exe C:\Users\ermonneke\Desktop\Nieuwe map\Sync Folder.lnk - C:\Users\ermonneke\SyncFolder C:\Users\ermonneke\Desktop\Nieuwe map\Thuisgroep - Snelkoppeling.lnk - C:\Users\ermonneke\Desktop\Nieuwe map\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm C:\Users\ermonneke\Desktop\Nieuwe map\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Users\ermonneke\Desktop\Nieuwe map\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe C:\Users\ermonneke\Desktop\Nieuwe map\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\Users\Gast\Desktop\Gadwin PrintScreen.lnk - C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe C:\Users\Gast\Desktop\IE New Window Maximizer.lnk - C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe C:\Users\moekejose@live.be\Desktop\Windows Live Mail.lnk - C:\Program Files (x86)\Windows Live\Mail\wlmail.exe ==== shortcuts in Users Start Menu ====================== C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe DO SEARCHES C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe DO SEARCHES C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5\FrostWire 5.6.4-SafeMode.lnk - C:\Program Files (x86)\FrostWire 5\frostwire.bat C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5\FrostWire 5.6.4.lnk - C:\Program Files (x86)\FrostWire 5\FrostWire.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5\Uninstall.lnk - C:\Program Files (x86)\FrostWire 5\Uninstall.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk - C:\Users\moekejose@live.be\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flower Paradise\Flower Paradise ontgrendelen.lnk - C:\Program Files (x86)\Flower Paradise\UnlockGame.bfg C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flower Paradise\Flower Paradise verwijderen.lnk - C:\Program Files (x86)\Flower Paradise\Uninstall.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Love Chronicles - Het Zwaard en de Roos\Love Chronicles - Het Zwaard en de Roos ontgrendelen.lnk - C:\Program Files (x86)\Love Chronicles - Het Zwaard en de Roos\UnlockGame.bfg C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Love Chronicles - Het Zwaard en de Roos\Love Chronicles - Het Zwaard en de Roos verwijderen.lnk - C:\Program Files (x86)\Love Chronicles - Het Zwaard en de Roos\Uninstall.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Otherworld - Shades of Fall Collectors Edition\Uninstall Otherworld - Shades of Fall Collectors Edition.lnk - C:\Program Files (x86)\Otherworld - Shades of Fall Collectors Edition\Uninstall.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Otherworld - Shades of Fall Collectors Edition\Unlock Otherworld - Shades of Fall Collectors Edition.lnk - C:\Program Files (x86)\Otherworld - Shades of Fall Collectors Edition\UnlockGame.bfg ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk - C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast\avast Free Antivirus.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon IJ Notes for Windows Vista\Canon IJ Opmerkingen voor Windows Vista.lnk - C:\Program Files (x86)\Canon\IJ Manual\CANON IJ\Dutch\Windows\Vmanual.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon IJ Notes for Windows Vista\Verwijderen.lnk - C:\Program Files (x86)\Canon\IJ Manual\CANON IJ\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series\Leesmij.lnk - C:\Program Files (x86)\CanonBJ\IJPrinter\Canon MP140 series\readme_Dutch.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series\Verwijderen.lnk - C:\Windows\System32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP140_series\DelDrv.exe /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP140_series /L0x0013 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series Manual\MP140 series On line handleiding.lnk - C:\Program Files (x86)\Canon\IJ Manual\MP140 SERIES\Dutch\Windows\Contents8r.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series Manual\Verwijderen.lnk - C:\Program Files (x86)\Canon\IJ Manual\MP140 SERIES\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-LayoutPrint\Easy-LayoutPrint Readme.lnk - C:\Program Files (x86)\Canon\Easy-LayoutPrint\Readme.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-LayoutPrint\Easy-LayoutPrint Uninstall.lnk - C:\Program Files (x86)\Canon\Easy-LayoutPrint\uninst.exe C:\Program Files (x86)\Canon\Easy-LayoutPrint\uninst.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-LayoutPrint\Easy-LayoutPrint.lnk - C:\Program Files (x86)\Canon\Easy-LayoutPrint\CNELMAIN.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint\Easy-PhotoPrint.lnk - C:\Program Files (x86)\Canon\Easy-PhotoPrint\BJEZPRN.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint\Leesmij-bestand van Easy-PhotoPrint.lnk - C:\Program Files (x86)\Canon\Easy-PhotoPrint\Readme.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint\Uninstall van Easy-PhotoPrint.lnk - C:\Program Files (x86)\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files (x86)\Canon\Easy-PhotoPrint\uninst.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator 3.1\Leesmij-bestand bij MP Navigator.lnk - C:\Program Files (x86)\Canon\MP Navigator 3.1\Readme.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator 3.1\MP Navigator 3.1.lnk - C:\Program Files (x86)\Canon\MP Navigator 3.1\mpn31.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator 3.1\Verwijderprogramma voor MP Navigator.lnk - C:\Program Files (x86)\Canon\MP Navigator 3.1\Maint.exe /UninstallRemove C:\Program Files (x86)\Canon\MP Navigator 3.1\uninst.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat\CyberLink YouCam.lnk - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Deïnstalleren.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\OUTDATEfighter.lnk - C:\Program Files (x86)\Fighters\OUTDATEfighter\OUTDATEfighter.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Tools voor Ondersteuning\Verzamel logbestanden.lnk - C:\Program Files (x86)\Fighters\LogFilesCollector.exe /product:DLPRO C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Tools voor Ondersteuning\Vraag Ondersteuning aan.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Support /pcode=DLPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Veelgestelde vragen en Licentieovereenkomst\Licentieovereenkomst.lnk - C:\Program Files (x86)\Fighters\OUTDATEfighter\Documents\EULA.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Veelgestelde vragen en Licentieovereenkomst\Privacy.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Privacy /pcode=DLPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Veelgestelde vragen en Licentieovereenkomst\Veelgestelde Vragen.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Help /pcode=DLPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Deïnstalleren.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Repareren.lnk - C:\Program Files (x86)\Fighters\SPYWAREfighter\Uninstall.exe Reinstall C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\SPYWAREfighter.lnk - C:\Program Files (x86)\Fighters\FighterLauncher.exe SWPRO C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Tools voor Ondersteuning\Logbestanden.lnk - C:\ProgramData\Common Toolkit Suite\AVEngine\Logs C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Tools voor Ondersteuning\Verzamel logbestanden.lnk - C:\Program Files (x86)\Fighters\LogFilesCollector.exe /product:SWPRO C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Tools voor Ondersteuning\Vraag Ondersteuning aan.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Support /pcode=SWPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Veelgestelde vragen en Licentieovereenkomst\Licentieovereenkomst.lnk - C:\Program Files (x86)\Fighters\SPYWAREfighter\Documents\EULA.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Veelgestelde vragen en Licentieovereenkomst\Privacy.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Privacy /pcode=SWPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Veelgestelde vragen en Licentieovereenkomst\Veelgestelde Vragen.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Help /pcode=SWPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix RegCleaner\Fix RegCleaner on the Web.lnk - C:\Program Files\Fix RegCleaner\FixRegCleaner.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix RegCleaner\Fix RegCleanery.lnk - C:\Program Files\Fix RegCleaner\FixRegCleaner.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix RegCleaner\Uninstall Fix RegCleaner.lnk - C:\Program Files\Fix RegCleaner\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MP140 series\Gebruikersregistratie verwijderen.LNK - C:\Program Files (x86)\Canon\IJEREG\MP140 series\UNINST.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MP140 series\Gebruikersregistratie.LNK - C:\Program Files (x86)\Canon\IJEREG\MP140 series\IJEREG.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter\GDSMux.lnk - C:\Program Files (x86)\Haali\MatroskaSplitter\gdsmux.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter\Media Splitter Settings.lnk - C:\Windows\System32\rundll32.exe splitter.ax,Configure C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter\Uninstall.lnk - C:\Program Files (x86)\Haali\MatroskaSplitter\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel Control Center.lnk - C:\Program Files (x86)\Intel\Intel Control Center\IntelControlCenter.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel® Rapid Storage Technology.lnk - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUI.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.130\McUICnt.exe SecurityScanner.dll C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\Verwijderen.lnk - C:\Program Files\McAfee Security Scan\uninstall.exe C:\Program Files\McAfee Security Scan\3.8.130\McAfee.ico C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\OmniPage SE 4.lnk - C:\Program Files (x86)\ScanSoft\OmniPageSE4\OmniPage.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Scanner Setup Wizard.lnk - C:\Program Files (x86)\ScanSoft\OmniPageSE4\ScannerWizard.exe /A [OmniPage SE 4] /L [eng] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Benutzerhandbuch.lnk - C:\Program Files (x86)\ScanSoft\OmniPageSE4\Guide GER.pdf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Guía del usuario.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Manual do usuário.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Manuale d’uso.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Manuel d’utilisation.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\User's Guide.lnk - C:\Program Files (x86)\ScanSoft\OmniPageSE4\Guide ENG.pdf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection\HP SimplePass 2011.lnk - C:\Program Files (x86)\HP SimplePass 2011\Splash.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk - C:\Program Files (x86)\Skype\Phone\Skype.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers\SlimDrivers Help.lnk - C:\Windows\Installer\{A5457401-D56A-43F2-9524-78E54A7FC07A}\Icon.exe -help C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers\SlimDrivers.lnk - C:\Windows\Installer\{A5457401-D56A-43F2-9524-78E54A7FC07A}\Icon.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Mesh.lnk - C:\Program Files (x86)\Windows Live\Mesh\WLSync.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Writer.lnk - C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\Fishdom 3.lnk - C:\Zylom Games\Fishdom 3\ZY-Fishdom 3.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\Namariel Legends - Iron Lord Premium Edition.lnk - C:\Zylom Games\Namariel Legends - Iron Lord Premium Edition\NamarielLegends_IronLord.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\The Saint - Abyss of Despair.lnk - C:\Zylom Games\The Saint - Abyss of Despair\TheSaintAbyssOfDespair.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\Vampire Ventures.lnk - C:\Zylom Games\Vampire Ventures\VampireVentures.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\Vampires - Todd & Jessica's Story.lnk - C:\Zylom Games\Vampires - Todd & Jessica's Story\Vampires.exe ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FrostWire 5.6.4.lnk - C:\Program Files (x86)\FrostWire 5\FrostWire.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe DO SEARCHES C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\OUTDATEfighter.lnk - C:\Program Files (x86)\Fighters\OUTDATEfighter\OUTDATEfighter.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - hp.lnk - C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe /src quicklaunch /dp hpcnb1c12 C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\70f62c6a7f1739bd\pinned.lnk - C:\Windows\system32\rundll32.exe C:\Windows\system32\shell32.dll,Options_RunDLL 1 C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Recommended.LNK - C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe DO SEARCHES C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\My Launch Box.LNK - C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar3.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live Mail.lnk - C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Recommended.LNK - C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gadwin PrintScreen.lnk - C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Recommended.LNK - C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 ==== shortcuts After Repair ====================== C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\adldappccjhelkmbkpiibilgnnjakieg deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bfcpnihmbfoaeoakalclfalkdepgiaje deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ealchnonpofjocgofjpopjdoegbbkofj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\gjajpkikblccgefaibcafkfbanllpefi deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jainjonnknhmbbkibcbmhihbopigapdm deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\apdfllckaahabafndbhieahigkjlhalf deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Yontoo Desktop deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\moekejose@live.be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\moekejose@live.be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0W5WDXBX will be deleted at reboot C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\10KX1U1T will be deleted at reboot C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9N6FTNG4 will be deleted at reboot C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NFO3BL1U will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\moekejose@live.be\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache is not empty, a reboot is needed ==== Empty All Java Cache ====================== No Java Cache Found ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\ERMONN~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc" deleted "C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0W5WDXBX" not found "C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\10KX1U1T" not found "C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9N6FTNG4" not found "C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NFO3BL1U" not found "C:\Users\moekejose@live.be\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L55725VH\a2-25-so.ssl.ucdn.com" not found "C:\Users\moekejose@live.be\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L55725VH\d1wj8vl6qy028n.cloudfront.net" not found "C:\Users\moekejose@live.be\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L55725VH\games2.spele.nl" not found ==== EOF on ma 11/11/2013 at 13:01:38.39 ====================== kweezie wabbit hier zijn ik dan met het volgende wat u vroeg mischien deed ik iets fout want het duurde heel lang (misschien normaal) - - - Updated - - - Zoek.exe Version 4.0.0.5 Updated 09-November-2013 Tool run by ermonneke on ma 11/11/2013 at 12:12:12.05. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\ermonneke\AppData\Local\Temp\Temp2_zoek.zip\zoek.com [Quick Scan] [Auto Clean] ==== System Restore Info ====================== 11/11/2013 12:17:19 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Microsoft\Internet Explorer\SearchScopes\{17E847DB-B75D-49B4-923D-B091AC29B3B0} deleted successfully HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Microsoft\Internet Explorer\SearchScopes\{a5b9c0f5-5616-47cd-a95f-e43b488faccf} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BackupStack deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BackupStack deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Yontoo Desktop Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Yontoo Desktop Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WsysSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\WsysSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WsysSvc deleted successfully ==== FireFox Fix ====================== ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\searchplugins prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis03@SpeedAnalysis.com prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="C:\\Program Files\\Internet Explorer\\iexplore.exe" ==== Deleting Files \ Folders ====================== C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF} deleted C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} deleted C:\PROGRA~2\HappyLyrics deleted C:\PROGRA~2\Yontoo deleted C:\PROGRA~2\GamingWonderland deleted C:\PROGRA~2\MyPC Backup deleted C:\Users\ermonneke\AppData\Roaming\PlusWinks deleted C:\Users\ermonneke\AppData\Roaming\Systweak deleted C:\Users\ermonneke\AppData\Roaming\PerformerSoft deleted C:\Users\ermonneke\AppData\Roaming\Optimizer Pro deleted C:\Users\moekejose@live.be\AppData\Roaming\AlawarEntertainment deleted C:\Users\moekejose@live.be\AppData\Roaming\Desk 365 deleted C:\Users\moekejose@live.be\AppData\Roaming\DefaultTab deleted C:\Users\moekejose@live.be\AppData\Roaming\Systweak deleted C:\Users\moekejose@live.be\AppData\Roaming\PerformerSoft deleted C:\ProgramData\eSafe deleted C:\ProgramData\BrowserDefender deleted C:\ProgramData\DSearchLink deleted C:\ProgramData\Babylon deleted C:\ProgramData\Trymedia deleted C:\Users\ermonneke\AppData\Local\avgchrome deleted C:\Users\ermonneke\AppData\Local\AskToolbar deleted C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted C:\Users\moekejose@live.be\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup deleted C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk deleted C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard deleted C:\Windows\SysNative\roboot64.exe deleted C:\windows\SysNative\Tasks\LaunchApp deleted C:\Users\ermonneke\AppData\LocalLow\store-pp.jbs deleted C:\Users\ermonneke\AppData\LocalLow\IAC deleted C:\Users\ermonneke\AppData\LocalLow\Delta deleted C:\Users\moekejose@live.be\AppData\LocalLow\AVG Secure Search deleted C:\Users\moekejose@live.be\AppData\LocalLow\IAC deleted C:\Users\moekejose@live.be\AppData\LocalLow\MapsGalaxy_39 deleted C:\Users\moekejose@live.be\AppData\LocalLow\FromDocToPDF_65 deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\windows\SysNative\tasks\BitGuard deleted C:\Windows\Syswow64\SET3CB1.tmp deleted C:\Windows\Syswow64\SET3D30.tmp deleted C:\Windows\SysWow64\searchplugins deleted C:\Windows\SysWow64\Extensions deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com\extensions\gtffxtbr@GamingWonderland.com deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions\extensions\gtffxtbr@GamingWonderland.com deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail\extensions\gtffxtbr@GamingWonderland.com deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com\extensions\gtffxtbr@GamingWonderland.com deleted "C:\Users\ermonneke\AppData\Roaming\Yontoo\YontooDesktop.exe" deleted "C:\Users\ermonneke\AppData\Roaming\Yontoo\dat\Desktop.OS.Plugin.dll" deleted "C:\ProgramData\Application Data" deleted "C:\Users\ermonneke\AppData\Roaming\Yontoo" deleted "C:\Users\ermonneke\AppData\Roaming\Yontoo\dat" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-10-30 13:48:55 82370C3BAFF5BF1C5DDF7A3E76DEDBE9 424 ----a-w- C:\Windows\MAXLINK.INI 2013-10-12 16:17:41 A2199C8FBBE252614815E5AD62350B17 1424896 ----a-w- C:\Windows\sttray64.exe ====== C:\Users\ERMONN~1\AppData\Local\Temp ==== 2013-11-10 13:25:57 BFF9EF0DDCB93A690ACB4773B0E65E0F 35056288 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\bff9ef0ddcb93a690acb4773b0e65e0f\SkypeSetupFull.exe 2013-11-10 13:25:46 517792A56DBF99B4277B9B573E008EDD 1239536 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\517792a56dbf99b4277b9b573e008edd\wlsetup-web.exe 2013-11-10 13:25:46 30D0AD41CC60C6A62277BB350A1EBE4E 4369632 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\30d0ad41cc60c6a62277bb350a1ebe4e\ccsetup406.exe 2013-11-10 13:15:50 473716CAB64385F1F58D3FDBF24ADF64 2026600 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\ODFsetup.exe 2013-11-10 11:58:26 883DFC791AAF1298FCFC2BCF5471BBFC 46777424 ----a-w- C:\Users\ermonneke\AppData\Local\Temp\SHSetup.exe 2013-11-06 21:11:45 4E1C46E37AF4B3AB0036CB1E85C81608 16896 ----a-w- C:\Users\moekejose@live.be\AppData\Local\Temp\nsmAC37.tmp\uac.dll 2013-11-04 20:53:08 4E1C46E37AF4B3AB0036CB1E85C81608 16896 ----a-w- C:\Users\moekejose@live.be\AppData\Local\Temp\nsv9438.tmp\uac.dll ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-11-10 17:37:20 40E6123132B556BF601C6C0FDE1416D7 277360 ----a-w- C:\Windows\Sysnative\FNTCACHE.DAT 2013-10-30 13:43:03 A759C82C04911E90C1518B55021014B0 17408 ----a-w- C:\Windows\Sysnative\cnco140.dll 2013-10-30 13:43:01 F66D01D2FEA9525407DD51CBAFC09905 90624 ----a-w- C:\Windows\Sysnative\CNCL140.DLL 2013-10-30 13:43:01 90F49086E1344390951174446730B5A9 49664 ----a-w- C:\Windows\Sysnative\CNCI140.DLL 2013-10-30 13:43:00 C8287CA89372467E41A08BB895AFEFFA 1337344 ----a-w- C:\Windows\Sysnative\CNCC140.DLL ====== C:\Windows\Sysnative\drivers ===== 2013-10-31 19:49:16 ACCEA6BC68D0C9A78EB97EE159028B4E 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys 2013-10-31 19:49:15 E73A7A04FDAC9DD46EE2A4257F09E91C 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys 2013-10-31 19:49:15 A83D0EC9AE4C31704442099D40BA2471 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys 2013-10-31 19:49:15 9406D801042FAF859CF81B2C886413DC 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys 2013-10-31 19:49:15 861C197502A5057E68F0AC75D9EFCDD7 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys 2013-10-31 19:49:15 311C1DD1088E55BEAE15954D17F50646 52736 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys 2013-10-31 19:49:15 280E90CBF4B2DDD169F0728CB44D726F 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys 2013-10-12 16:20:45 6E5C3D18C3BCC72AA527DBC5FA61AB8F 339048 ----a-w- C:\Windows\Sysnative\drivers\RtsPStor.sys ====== C:\Windows\Tasks ====== 2013-11-10 19:53:11 090AB6836F3290F626462B94104AF944 3296 ----a-w- C:\Windows\Sysnative\Tasks\{E6C10DED-C82E-45A1-A269-F1369E6271B1} 2013-10-27 17:28:21 095B61E5D5E5759896EDC0900C9E7100 3312 ----a-w- C:\Windows\Sysnative\Tasks\{C180E2BE-6E9D-4051-AB13-A3D3E0F05BED} 2013-10-12 16:30:37 57FAD764268E5F8099AAAE2A6058013B 3158 ----a-w- C:\Windows\Sysnative\Tasks\MirageAgent ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-11-11 07:58:56 -------- d-----w- C:\Program Files\trend micro 2013-11-10 19:40:37 -------- d-----w- C:\Program Files\Fix RegCleaner 2013-10-30 13:42:40 -------- d--h--w- C:\Program Files\CanonBJ 2013-10-12 16:37:27 -------- d-----w- C:\Program Files\Windows Live ======= C:\PROGRA~2 ===== 2013-11-10 13:15:12 -------- d-----w- C:\PROGRA~2\COMMON~1\Common Toolkit Suite 2013-11-10 13:15:11 -------- d-----w- C:\PROGRA~2\Fighters 2013-11-10 11:59:05 -------- d-----w- C:\PROGRA~2\COMMON~1\Wise Installation Wizard 2013-11-06 19:32:39 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype 2013-11-06 19:32:39 -------- d-----r- C:\PROGRA~2\Skype 2013-11-06 14:30:33 -------- d-----w- C:\PROGRA~2\VideoDownloadConverter 2013-11-01 11:33:15 -------- d-----w- C:\PROGRA~2\MSXML 4.0 2013-10-31 19:50:00 -------- d-----w- C:\PROGRA~2\Microsoft CAPICOM 2.1.0.2 2013-10-30 13:48:35 -------- d-----w- C:\PROGRA~2\COMMON~1\ScanSoft Shared 2013-10-30 13:48:00 -------- d-----w- C:\PROGRA~2\ScanSoft 2013-10-29 13:52:00 -------- d-----w- C:\PROGRA~2\SlimDrivers 2013-10-26 04:45:07 -------- d-----w- C:\PROGRA~2\Canon 2013-10-14 13:43:47 -------- d-----w- C:\PROGRA~2\Haali 2013-10-12 16:40:36 -------- d-----w- C:\PROGRA~2\Microsoft SQL Server Compact Edition 2013-10-12 16:28:39 -------- d-----w- C:\PROGRA~2\CyberLink ======= C: ===== ====== C:\Users\ermonneke\AppData\Roaming ====== 2013-11-10 20:31:48 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{AABAAB4F-46A2-4C3F-92C4-16E371AC8397} 2013-11-10 20:22:13 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Fighters 2013-11-10 15:14:29 -------- d-----w- C:\Users\ermonneke\AppData\Local\Apps 2013-11-10 15:10:00 6C0A97AFA8EE7216EEB28EDEE8F5ED74 58944 ----a-w- C:\Users\ermonneke\AppData\Local\GDIPFONTCACHEV1.DAT 2013-11-10 13:47:04 -------- d-----w- C:\Users\ermonneke\AppData\Local\Fighters 2013-11-10 13:15:42 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Fighters 2013-11-10 13:15:29 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\Fighters 2013-11-09 20:59:01 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{DD494A79-F1C2-475D-BF6A-3ABBC9DFBB09} 2013-11-09 20:03:40 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{C5C4E71B-EC1D-4A5C-B56E-D336A26DA14F} 2013-11-08 20:40:00 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{B135B95A-35AA-402A-9B64-286192A782FA} 2013-11-07 20:26:31 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{03E782C2-3E68-435E-974A-F5F42956CDA4} 2013-11-06 21:12:45 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\VendelGAMES 2013-11-06 21:11:47 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Love Chronicles - Het Zwaard en de Roos 2013-11-06 15:03:52 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{BDA3F86A-928B-4840-A5FE-96D48D96992E} 2013-11-04 20:53:11 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flower Paradise 2013-11-04 13:51:42 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{BE6855A6-2000-4412-8482-D10C536B7DE4} 2013-11-02 16:11:34 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{F03CDBAF-FCCB-41C9-AA5C-BBA27D468C47} 2013-11-01 20:22:05 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{4D5FF940-7343-4C5E-AE4F-511D24FA81EB} 2013-10-31 22:09:12 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Gogii Games 2013-10-31 20:14:31 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{F8030CCB-AF64-4782-B0F1-5182F0E936E7} 2013-10-30 20:33:07 -------- d-----w- C:\Users\ermonneke\AppData\Local\Scansoft 2013-10-30 20:22:06 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\Scansoft 2013-10-30 13:48:44 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\ScanSoft 2013-10-30 06:12:38 -------- d-----w- C:\Users\ermonneke\AppData\Local\HP 2013-10-29 20:36:56 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Clockwork Pixels 2013-10-29 20:33:19 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{8274222C-7173-4D3E-92D6-4F70F5B510A7} 2013-10-29 19:49:03 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{42FFF3E1-7EAB-4633-8EAB-304D35FC62DF} 2013-10-29 15:25:36 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Intel Corporation 2013-10-29 14:14:43 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\Intel Corporation 2013-10-28 14:47:31 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{44E2661D-3702-4754-8BBF-216A8C5EC1ED} 2013-10-26 19:35:16 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{A9AAD1A9-D584-451A-88A1-D1736E08F0AF} 2013-10-26 04:44:46 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\CrashDumps 2013-10-25 18:47:32 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{557F5950-A83D-409D-B034-599038ABB774} 2013-10-24 18:52:21 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{A900E24E-FB96-4152-9CBC-5EA3110B528B} 2013-10-23 13:55:56 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{1D4EE044-69FD-4C91-A608-A90ED8009C68} 2013-10-22 20:22:13 -------- d-----w- C:\Users\moekejose@live.be\AppData\Locallow\AdoreGames 2013-10-22 20:09:29 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{D53F512F-3921-48D4-9F6A-9951036A5BEE} 2013-10-21 20:05:42 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{FE7DC150-75C8-4F3E-A935-EA4F10685989} 2013-10-21 08:57:59 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{18A35BD5-2E00-4EB9-9420-9065B105A0EE} 2013-10-20 14:50:45 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{C046D25B-162A-462A-A24D-D40F42CBEEA0} 2013-10-19 20:59:38 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Boomzap 2013-10-19 20:13:16 -------- d-----w- C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Otherworld - Shades of Fall Collectors Edition 2013-10-19 20:10:05 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{5E0E4ACA-D0BB-438C-83F4-367A1DA5A1F5} 2013-10-19 18:56:35 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{26916F34-D46A-40E0-9A39-180110A764FC} 2013-10-18 15:18:13 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{52B53B0A-EBA0-479D-AF22-9CBC4DA55EAC} 2013-10-18 13:57:24 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\Canon 2013-10-17 19:27:16 -------- d-----w- C:\Users\ermonneke\AppData\Locallow\Adblock Plus for IE 2013-10-16 19:09:11 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{624D8961-71C1-43A2-8059-58F75BB9AF02} 2013-10-15 12:42:40 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{C9C9EFDD-1E41-491B-B577-29B358184B14} 2013-10-14 13:29:57 -------- d-----w- C:\Users\ermonneke\AppData\Roaming\SlimCleaner 2013-10-14 09:13:42 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{EEB43F30-CD63-43DB-8022-973F3013D479} 2013-10-13 13:00:52 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{E95A8E22-1F3B-443C-A476-BA4FEC0AB45E} 2013-10-12 20:10:27 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{09AEF23F-D127-4628-AECD-DF2A2A20B560} 2013-10-12 20:10:17 -------- d-----w- C:\Users\moekejose@live.be\AppData\Local\{95194ABF-E704-4D37-B156-D4E8ABBD737C} ====== C:\Users\ermonneke ====== 2013-11-10 19:40:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix RegCleaner 2013-11-10 13:15:45 -------- d-----w- C:\ProgramData\clp 2013-11-10 13:15:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters 2013-11-10 13:15:10 -------- d-----w- C:\ProgramData\Common Toolkit Suite 2013-11-10 13:12:46 -------- d-----w- C:\ProgramData\Fighters 2013-11-06 19:32:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2013-10-30 13:51:50 -------- d-----w- C:\ProgramData\CanonIJPLM 2013-10-30 13:50:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MP140 series 2013-10-30 13:48:55 -------- d-----w- C:\ProgramData\InstallShield 2013-10-30 13:48:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4 2013-10-30 13:48:35 -------- d-----w- C:\ProgramData\ScanSoft 2013-10-30 13:44:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2013-10-30 13:43:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon IJ Notes for Windows Vista 2013-10-30 13:43:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series Manual 2013-10-30 13:43:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series 2013-10-29 14:14:35 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\Intel 2013-10-29 14:12:50 -------- d-----w- C:\Users\ermonneke\Intel 2013-10-29 13:52:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers 2013-10-22 16:30:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast 2013-10-18 19:56:18 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameHouse 2013-10-14 13:43:50 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter 2013-10-12 16:41:34 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live 2013-10-12 16:30:35 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat ====== C: exe-files == 2013-11-11 07:58:01 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\01553NQS\RSITx64.exe 2013-11-10 19:41:58 4B819423DCE5803F2CCF879D62FB27CE 4283496 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3G7C71AX\FixRegCleaner_Setup.exe 2013-11-10 19:33:43 8A342A95CFDCC90FE1B84F87D3416934 383496 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0MB8MIN6\VideoDownloadConvert.exe 2013-11-10 19:31:45 AC6E821ADB8611982B9C20E4A90A96B3 3671512 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z1BXPTPN\rcpsetup_3335_ggnl.exe 2013-11-10 13:25:57 BFF9EF0DDCB93A690ACB4773B0E65E0F 35056288 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\bff9ef0ddcb93a690acb4773b0e65e0f\SkypeSetupFull.exe 2013-11-10 13:25:46 517792A56DBF99B4277B9B573E008EDD 1239536 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\517792a56dbf99b4277b9b573e008edd\wlsetup-web.exe 2013-11-10 13:25:46 30D0AD41CC60C6A62277BB350A1EBE4E 4369632 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\30d0ad41cc60c6a62277bb350a1ebe4e\ccsetup406.exe 2013-11-10 13:15:50 473716CAB64385F1F58D3FDBF24ADF64 2026600 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\ODFsetup.exe 2013-11-10 11:58:26 883DFC791AAF1298FCFC2BCF5471BBFC 46777424 ----a-w- C:\Documents and Settings\ermonneke\AppData\Local\Temp\SHSetup.exe 2013-11-07 18:27:53 8BBE63DF6DF1B042E8EFA88E3B358FC8 347304 ----a-w- C:\Documents and Settings\ermonneke\Google Drive\Downloads\MicrosoftFixit.WindowsFirewall.FISC.139307276051362636.1.1.Run.exe 2013-11-06 21:12:29 0C124D8D7AF5FD787BF20FD3DD550591 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3229558521-36535321-3352245702-1004\$ISW4KU0.exe 2013-11-06 21:09:50 AFDCA3BEA71277A030696501F434F3D1 236648 ----a-w- C:\$Recycle.Bin\S-1-5-21-3229558521-36535321-3352245702-1004\$RSW4KU0.exe 2013-11-06 14:30:05 633FF315FB22227FD2DF05A018938C06 3116952 ----a-w- C:\Documents and Settings\ermonneke\Google Drive\Downloads\VideoDownloadConvertCrxSetup.0DA6CA97-EB7D-4507-B6A5-01CC0E44B5C7.exe 2013-11-04 20:53:20 5E44BACDA9E7380D65C671503706C053 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3229558521-36535321-3352245702-1004\$IK3LTYD.exe 2013-11-04 20:52:22 AFDCA3BEA71277A030696501F434F3D1 236648 ----a-w- C:\$Recycle.Bin\S-1-5-21-3229558521-36535321-3352245702-1004\$RK3LTYD.exe === C: other files == 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis03@SpeedAnalysis.com\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\searchplugins\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions\extensions\pricepeep@getpricepeep.com.xpi 2013-11-05 19:59:06 67E3CEA9D9D622860F1D8B94AD5F425E 53943 ----a-w- C:\Documents and Settings\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com\extensions\pricepeep@getpricepeep.com.xpi ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "IE New Window Maximizer"="C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HPConnectionManager"="C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" "HPOSD"="C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" "HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" "HPQuickWebProxy"="C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe" "Everything"="C:\Program Files (x86)\Everything\Everything.exe -startup" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "SSBkgdUpdate"="C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot" "OpwareSE4"="C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe" "CommonToolkitTray"="C:\Program Files (x86)\Fighters\Tray\FightersTray.exe" "SWPROguard"="C:\Program Files (x86)\Fighters\SPYWAREfighter\swprotray.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "IE New Window Maximizer"="C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe" "SetDefault"="C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "IAStorIcon"="C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 60" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" C:\\PROGRA~2\\OPTIMI~1\\OPTPRO~2.DLL" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Yontoo Desktop] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Yontoo Desktop" "hkey"="HKCU" "command"="\"C:\\Users\\ermonneke\\AppData\\Roaming\\Yontoo\\YontooDesktop.exe\"" ==== Startup Folders ====================== 2013-05-29 08:26:05 1931 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/10/2013 14:57] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [23/05/2013 20:42] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [23/05/2013 20:42] C:\Windows\tasks\HPCeeScheduleForermonneke.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [13/09/2010 21:15] C:\Windows\tasks\SlimDrivers Startup.job --a------ C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [24/09/2013 12:49] C:\Windows\tasks\WpsUpdateTask_ermonneke.job --a------ [undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\0" [c:\program files (x86)\internet explorer\iexplore.exe] "C:\Windows\SysNative\tasks\4819" [wscript.exe C:\Users\ERMONN~1\AppData\Local\Temp\launchie.vbs //B] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForermonneke" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe] "C:\Windows\SysNative\tasks\SlimCleaner Run" ["C:\Program Files (x86)\SlimCleaner\SlimCleaner.exe"] "C:\Windows\SysNative\tasks\SlimDrivers Startup" [C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe] "C:\Windows\SysNative\tasks\WpsUpdateTask_ermonneke" [C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "SpecialSavings@SpecialSavings.com"="C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions\SpecialSavings@SpecialSavings.com" [02/06/2013 12:49] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "SpecialSavings@SpecialSavings.com"="C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions\SpecialSavings@SpecialSavings.com" [02/06/2013 12:49] ==== Firefox Extensions ====================== ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\searchplugins - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ProfilePath: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis03@SpeedAnalysis.com - PricePeep - %ProfilePath%\extensions\pricepeep@getpricepeep.com.xpi ExtDir: C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions - 7Go Games - %ExtDir%\7go@7go.com ExtDir: C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions - 7Go Games - C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions\7go@7go.com - Smiley Bar for Facebook - %ExtDir%\pluswinks@PlusWinks - SpecialSavings - %ExtDir%\SpecialSavings@SpecialSavings.com - Speed Analysis 2 - %ExtDir%\speedanalysis02@SpeedAnalysis.com ==== Firefox Plugins ====================== ==== Deleted Firefox Extensions ====================== C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\7go@7go.com\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Extensions\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\Mail\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\searchplugins\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis02@SpeedAnalysis.com\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Firefox\Profiles\speedanalysis03@SpeedAnalysis.com\extensions\pricepeep@getpricepeep.com.xpi deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions\SpecialSavings@SpecialSavings.com deleted C:\Users\ermonneke\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions adldappccjhelkmbkpiibilgnnjakieg - C:\Program Files (x86)\VideoDownloadConverter_4z Chrome Extension\bar\VideoDownloadConvert@mindspark.com.gen1[] bfcpnihmbfoaeoakalclfalkdepgiaje - C:\Users\ermonneke\AppData\Roaming\SpecialSavings\SpecialSavings.crx[] bfmogjcijkfeahcajecmmegieipfbdcc - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx[17/08/2011 22:51] ealchnonpofjocgofjpopjdoegbbkofj - C:\Program Files (x86)\HappyLyrics\Chrome.crx[] gjajpkikblccgefaibcafkfbanllpefi - C:\Users\ermonneke\AppData\Roaming\7go\7go.crx[] jainjonnknhmbbkibcbmhihbopigapdm - C:\Program Files (x86)\Lizardlink\jainjonnknhmbbkibcbmhihbopigapdm.crx[] mocblcnaofikinigmceddfghppkkjbog - C:\Users\ermonneke\AppData\Roaming\PlusWinks\PlusWinks.crx[] niapdbllcanepiiimjjndipklodoedlc - C:\Program Files (x86)\Yontoo\YontooLayers.crx[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions apdfllckaahabafndbhieahigkjlhalf - C:\Users\ERMONN~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx[] Docs - Gast - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Gast - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Website Logon - Gast - Default\Extensions\bfmogjcijkfeahcajecmmegieipfbdcc YouTube - Gast - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Gast - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Gmail - Gast - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Website Logon - moekejose@live.be - Default\Extensions\bfmogjcijkfeahcajecmmegieipfbdcc DefaultTab - C:\Windows\sysWoW64\config\systemprofile - Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc ==== Chrome Fix ====================== C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\ealchnonpofjocgofjpopjdoegbbkofj deleted successfully C:\Users\moekejose@live.be\AppData\Local\Google\Chrome\User Data\Default\Extensions\ealchnonpofjocgofjpopjdoegbbkofj deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" "Default_Page_URL"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.bing.com/search?FORM=IE8SRC&q=%s" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633ee93-d776-472f-a0ff-e1416b8b2e3a}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-3229558521-36535321-3352245702-1001\Software\Mozilla\Firefox\Extensions\happylyrics@hpyproductions.net deleted successfully ==== shortcuts on Users Desktops ====================== C:\Users\ermonneke\Desktop\Nieuwe map\avast Free Antivirus.lnk - C:\Users\ermonneke\Desktop\Nieuwe map\Canon IJ Opmerkingen voor Windows Vista.lnk - C:\Program Files (x86)\Canon\IJ Manual\CANON IJ\Dutch\Windows\Vmanual.chm C:\Users\ermonneke\Desktop\Nieuwe map\Corel PaintShop Pro X4.lnk - C:\Program Files (x86)\Corel\Corel PaintShop Pro X4\Corel PaintShop Pro.exe C:\Users\ermonneke\Desktop\Nieuwe map\Easy-PhotoPrint.lnk - C:\Program Files (x86)\Canon\Easy-PhotoPrint\BJEZPRN.EXE C:\Users\ermonneke\Desktop\Nieuwe map\FrostWire 5.6.4.lnk - C:\Program Files (x86)\FrostWire 5\FrostWire.exe C:\Users\ermonneke\Desktop\Nieuwe map\Gebruikersregistratie voor Canon MP140 series.LNK - C:\Program Files (x86)\Canon\IJEREG\MP140 series\IJEREG.exe C:\Users\ermonneke\Desktop\Nieuwe map\Google Drive.lnk - C:\Users\ermonneke\Google Drive C:\Users\ermonneke\Desktop\Nieuwe map\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe C:\Users\ermonneke\Desktop\Nieuwe map\IE New Window Maximizer.lnk - C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe C:\Users\ermonneke\Desktop\Nieuwe map\Kingsoft Presentation.lnk - C:\Program Files (x86)\Kingsoft\Kingsoft Office\office6\wpp.exe /w C:\Users\ermonneke\Desktop\Nieuwe map\Kingsoft Spreadsheets.lnk - C:\Program Files (x86)\Kingsoft\Kingsoft Office\office6\et.exe C:\Users\ermonneke\Desktop\Nieuwe map\Kingsoft Writer.lnk - C:\Program Files (x86)\Kingsoft\Kingsoft Office\office6\wps.exe /w C:\Users\ermonneke\Desktop\Nieuwe map\Meer Fantastische Spellen.lnk - C:\Users\ermonneke\Desktop\Nieuwe map\MP Navigator 3.1.lnk - C:\Program Files (x86)\Canon\MP Navigator 3.1\mpn31.exe C:\Users\ermonneke\Desktop\Nieuwe map\MP140 series On line handleiding.lnk - C:\Program Files (x86)\Canon\IJ Manual\MP140 SERIES\Dutch\Windows\Contents8r.chm C:\Users\ermonneke\Desktop\Nieuwe map\MP150 On-screen Manual.lnk - C:\Program Files (x86)\Canon\IJ Manual\MP150\English\Windows\Contents7k.chm C:\Users\ermonneke\Desktop\Nieuwe map\Scanner Configuration.lnk - C:\Program Files (x86)\ScanWizard 5\Msc.exe C:\Users\ermonneke\Desktop\Nieuwe map\SlimCleaner.lnk - C:\Windows\Installer\{6B8D6199-EE44-4FD7-813A-6D8C62C9B384}\Icon.exe C:\Users\ermonneke\Desktop\Nieuwe map\SlimDrivers.lnk - C:\Windows\Installer\{3CF3DEF4-ED15-4F7B-9320-C3E1081EA4DA}\Icon.exe C:\Users\ermonneke\Desktop\Nieuwe map\Sync Folder.lnk - C:\Users\ermonneke\SyncFolder C:\Users\ermonneke\Desktop\Nieuwe map\Thuisgroep - Snelkoppeling.lnk - C:\Users\ermonneke\Desktop\Nieuwe map\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm C:\Users\ermonneke\Desktop\Nieuwe map\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Users\ermonneke\Desktop\Nieuwe map\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe C:\Users\ermonneke\Desktop\Nieuwe map\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\Users\Gast\Desktop\Gadwin PrintScreen.lnk - C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe C:\Users\Gast\Desktop\IE New Window Maximizer.lnk - C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe C:\Users\moekejose@live.be\Desktop\Windows Live Mail.lnk - C:\Program Files (x86)\Windows Live\Mail\wlmail.exe ==== shortcuts in Users Start Menu ====================== C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.dosearches.com/?utm_source=b&utm_medium=adks&utm_campaign=rg&utm_content=sc&from=adks&uid=ST9500325AS_S2W938XK&ts=1383766396 C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.dosearches.com/?utm_source=b&utm_medium=adks&utm_campaign=rg&utm_content=sc&from=adks&uid=ST9500325AS_S2W938XK&ts=1383766396 C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5\FrostWire 5.6.4-SafeMode.lnk - C:\Program Files (x86)\FrostWire 5\frostwire.bat C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5\FrostWire 5.6.4.lnk - C:\Program Files (x86)\FrostWire 5\FrostWire.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5\Uninstall.lnk - C:\Program Files (x86)\FrostWire 5\Uninstall.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk - C:\Users\moekejose@live.be\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flower Paradise\Flower Paradise ontgrendelen.lnk - C:\Program Files (x86)\Flower Paradise\UnlockGame.bfg C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flower Paradise\Flower Paradise verwijderen.lnk - C:\Program Files (x86)\Flower Paradise\Uninstall.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Love Chronicles - Het Zwaard en de Roos\Love Chronicles - Het Zwaard en de Roos ontgrendelen.lnk - C:\Program Files (x86)\Love Chronicles - Het Zwaard en de Roos\UnlockGame.bfg C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Love Chronicles - Het Zwaard en de Roos\Love Chronicles - Het Zwaard en de Roos verwijderen.lnk - C:\Program Files (x86)\Love Chronicles - Het Zwaard en de Roos\Uninstall.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Otherworld - Shades of Fall Collectors Edition\Uninstall Otherworld - Shades of Fall Collectors Edition.lnk - C:\Program Files (x86)\Otherworld - Shades of Fall Collectors Edition\Uninstall.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Otherworld - Shades of Fall Collectors Edition\Unlock Otherworld - Shades of Fall Collectors Edition.lnk - C:\Program Files (x86)\Otherworld - Shades of Fall Collectors Edition\UnlockGame.bfg ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk - C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast\avast Free Antivirus.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon IJ Notes for Windows Vista\Canon IJ Opmerkingen voor Windows Vista.lnk - C:\Program Files (x86)\Canon\IJ Manual\CANON IJ\Dutch\Windows\Vmanual.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon IJ Notes for Windows Vista\Verwijderen.lnk - C:\Program Files (x86)\Canon\IJ Manual\CANON IJ\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series\Leesmij.lnk - C:\Program Files (x86)\CanonBJ\IJPrinter\Canon MP140 series\readme_Dutch.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series\Verwijderen.lnk - C:\Windows\System32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP140_series\DelDrv.exe /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP140_series /L0x0013 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series Manual\MP140 series On line handleiding.lnk - C:\Program Files (x86)\Canon\IJ Manual\MP140 SERIES\Dutch\Windows\Contents8r.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP140 series Manual\Verwijderen.lnk - C:\Program Files (x86)\Canon\IJ Manual\MP140 SERIES\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-LayoutPrint\Easy-LayoutPrint Readme.lnk - C:\Program Files (x86)\Canon\Easy-LayoutPrint\Readme.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-LayoutPrint\Easy-LayoutPrint Uninstall.lnk - C:\Program Files (x86)\Canon\Easy-LayoutPrint\uninst.exe C:\Program Files (x86)\Canon\Easy-LayoutPrint\uninst.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-LayoutPrint\Easy-LayoutPrint.lnk - C:\Program Files (x86)\Canon\Easy-LayoutPrint\CNELMAIN.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint\Easy-PhotoPrint.lnk - C:\Program Files (x86)\Canon\Easy-PhotoPrint\BJEZPRN.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint\Leesmij-bestand van Easy-PhotoPrint.lnk - C:\Program Files (x86)\Canon\Easy-PhotoPrint\Readme.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint\Uninstall van Easy-PhotoPrint.lnk - C:\Program Files (x86)\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files (x86)\Canon\Easy-PhotoPrint\uninst.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator 3.1\Leesmij-bestand bij MP Navigator.lnk - C:\Program Files (x86)\Canon\MP Navigator 3.1\Readme.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator 3.1\MP Navigator 3.1.lnk - C:\Program Files (x86)\Canon\MP Navigator 3.1\mpn31.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator 3.1\Verwijderprogramma voor MP Navigator.lnk - C:\Program Files (x86)\Canon\MP Navigator 3.1\Maint.exe /UninstallRemove C:\Program Files (x86)\Canon\MP Navigator 3.1\uninst.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat\CyberLink YouCam.lnk - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Deïnstalleren.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\OUTDATEfighter.lnk - C:\Program Files (x86)\Fighters\OUTDATEfighter\OUTDATEfighter.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Tools voor Ondersteuning\Verzamel logbestanden.lnk - C:\Program Files (x86)\Fighters\LogFilesCollector.exe /product:DLPRO C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Tools voor Ondersteuning\Vraag Ondersteuning aan.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Support /pcode=DLPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Veelgestelde vragen en Licentieovereenkomst\Licentieovereenkomst.lnk - C:\Program Files (x86)\Fighters\OUTDATEfighter\Documents\EULA.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Veelgestelde vragen en Licentieovereenkomst\Privacy.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Privacy /pcode=DLPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\OUTDATEfighter\Veelgestelde vragen en Licentieovereenkomst\Veelgestelde Vragen.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Help /pcode=DLPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Deïnstalleren.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Repareren.lnk - C:\Program Files (x86)\Fighters\SPYWAREfighter\Uninstall.exe Reinstall C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\SPYWAREfighter.lnk - C:\Program Files (x86)\Fighters\FighterLauncher.exe SWPRO C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Tools voor Ondersteuning\Logbestanden.lnk - C:\ProgramData\Common Toolkit Suite\AVEngine\Logs C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Tools voor Ondersteuning\Verzamel logbestanden.lnk - C:\Program Files (x86)\Fighters\LogFilesCollector.exe /product:SWPRO C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Tools voor Ondersteuning\Vraag Ondersteuning aan.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Support /pcode=SWPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Veelgestelde vragen en Licentieovereenkomst\Licentieovereenkomst.lnk - C:\Program Files (x86)\Fighters\SPYWAREfighter\Documents\EULA.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Veelgestelde vragen en Licentieovereenkomst\Privacy.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Privacy /pcode=SWPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters\SPYWAREfighter\Veelgestelde vragen en Licentieovereenkomst\Veelgestelde Vragen.lnk - C:\Program Files (x86)\Fighters\ShortcutLauncher.exe "C:\Program Files (x86)\Fighters\FighterLauncher.exe" "/goto=Help /pcode=SWPRO" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix RegCleaner\Fix RegCleaner on the Web.lnk - C:\Program Files\Fix RegCleaner\FixRegCleaner.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix RegCleaner\Fix RegCleanery.lnk - C:\Program Files\Fix RegCleaner\FixRegCleaner.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix RegCleaner\Uninstall Fix RegCleaner.lnk - C:\Program Files\Fix RegCleaner\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MP140 series\Gebruikersregistratie verwijderen.LNK - C:\Program Files (x86)\Canon\IJEREG\MP140 series\UNINST.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon MP140 series\Gebruikersregistratie.LNK - C:\Program Files (x86)\Canon\IJEREG\MP140 series\IJEREG.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter\GDSMux.lnk - C:\Program Files (x86)\Haali\MatroskaSplitter\gdsmux.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter\Media Splitter Settings.lnk - C:\Windows\System32\rundll32.exe splitter.ax,Configure C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter\Uninstall.lnk - C:\Program Files (x86)\Haali\MatroskaSplitter\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel Control Center.lnk - C:\Program Files (x86)\Intel\Intel Control Center\IntelControlCenter.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel® Rapid Storage Technology.lnk - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUI.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.130\McUICnt.exe SecurityScanner.dll C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\Verwijderen.lnk - C:\Program Files\McAfee Security Scan\uninstall.exe C:\Program Files\McAfee Security Scan\3.8.130\McAfee.ico C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\OmniPage SE 4.lnk - C:\Program Files (x86)\ScanSoft\OmniPageSE4\OmniPage.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Scanner Setup Wizard.lnk - C:\Program Files (x86)\ScanSoft\OmniPageSE4\ScannerWizard.exe /A [OmniPage SE 4] /L [eng] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Benutzerhandbuch.lnk - C:\Program Files (x86)\ScanSoft\OmniPageSE4\Guide GER.pdf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Guía del usuario.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Manual do usuário.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Manuale d’uso.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\Manuel d’utilisation.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft OmniPage SE 4\Guide\User's Guide.lnk - C:\Program Files (x86)\ScanSoft\OmniPageSE4\Guide ENG.pdf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection\HP SimplePass 2011.lnk - C:\Program Files (x86)\HP SimplePass 2011\Splash.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk - C:\Program Files (x86)\Skype\Phone\Skype.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers\SlimDrivers Help.lnk - C:\Windows\Installer\{A5457401-D56A-43F2-9524-78E54A7FC07A}\Icon.exe -help C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers\SlimDrivers.lnk - C:\Windows\Installer\{A5457401-D56A-43F2-9524-78E54A7FC07A}\Icon.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Mesh.lnk - C:\Program Files (x86)\Windows Live\Mesh\WLSync.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Writer.lnk - C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\Fishdom 3.lnk - C:\Zylom Games\Fishdom 3\ZY-Fishdom 3.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\Namariel Legends - Iron Lord Premium Edition.lnk - C:\Zylom Games\Namariel Legends - Iron Lord Premium Edition\NamarielLegends_IronLord.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\The Saint - Abyss of Despair.lnk - C:\Zylom Games\The Saint - Abyss of Despair\TheSaintAbyssOfDespair.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\Vampire Ventures.lnk - C:\Zylom Games\Vampire Ventures\VampireVentures.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom\Vampires - Todd & Jessica's Story.lnk - C:\Zylom Games\Vampires - Todd & Jessica's Story\Vampires.exe ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FrostWire 5.6.4.lnk - C:\Program Files (x86)\FrostWire 5\FrostWire.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.dosearches.com/?utm_source=b&utm_medium=adks&utm_campaign=rg&utm_content=sc&from=adks&uid=ST9500325AS_S2W938XK&ts=1383766396 C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\OUTDATEfighter.lnk - C:\Program Files (x86)\Fighters\OUTDATEfighter\OUTDATEfighter.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - hp.lnk - C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe /src quicklaunch /dp hpcnb1c12 C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\70f62c6a7f1739bd\pinned.lnk - C:\Windows\system32\rundll32.exe C:\Windows\system32\shell32.dll,Options_RunDLL 1 C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Recommended.LNK - C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.dosearches.com/?utm_source=b&utm_medium=adks&utm_campaign=rg&utm_content=sc&from=adks&uid=ST9500325AS_S2W938XK&ts=1383766396 C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\My Launch Box.LNK - C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar3.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live Mail.lnk - C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Recommended.LNK - C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gadwin PrintScreen.lnk - C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Recommended.LNK - C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\moekejose@live.be\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 ==== shortcuts After Repair ====================== C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\adldappccjhelkmbkpiibilgnnjakieg deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bfcpnihmbfoaeoakalclfalkdepgiaje deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ealchnonpofjocgofjpopjdoegbbkofj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\gjajpkikblccgefaibcafkfbanllpefi deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jainjonnknhmbbkibcbmhihbopigapdm deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\apdfllckaahabafndbhieahigkjlhalf deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Yontoo Desktop deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\moekejose@live.be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\moekejose@live.be\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0W5WDXBX will be deleted at reboot C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\10KX1U1T will be deleted at reboot C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9N6FTNG4 will be deleted at reboot C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NFO3BL1U will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\moekejose@live.be\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache is not empty, a reboot is needed ==== Empty All Java Cache ====================== No Java Cache Found ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\ERMONN~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc" deleted "C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0W5WDXBX" not found "C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\10KX1U1T" not found "C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\9N6FTNG4" not found "C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NFO3BL1U" not found "C:\Users\moekejose@live.be\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L55725VH\a2-25-so.ssl.ucdn.com" not found "C:\Users\moekejose@live.be\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L55725VH\d1wj8vl6qy028n.cloudfront.net" not found "C:\Users\moekejose@live.be\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\L55725VH\games2.spele.nl" not found ==== EOF on ma 11/11/2013 at 13:01:38.39 ====================== kweezie wabbit hier zijn ik dan met het volgende wat u vroeg mischien deed ik iets fout want het duurde heel lang (misschien normaal)
- 11 november 2013
- 7 antwoorden
dosearches

ermonneke reageerde op ermonneke's topic in Archief Bestrijding malware & virussen

Logfile of random's system information tool 1.09 (written by random/random) Run by ermonneke at 2013-11-11 08:58:55 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 393 GB (87%) free of 449 GB Total RAM: 4044 MB (48% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 8:59:03, on 11/11/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16720) Boot mode: Normal Running processes: C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe C:\Program Files (x86)\Everything\Everything.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe C:\Program Files (x86)\Fighters\Tray\FightersTray.exe C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe C:\Users\ermonneke\AppData\Roaming\Yontoo\YontooDesktop.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files\trend micro\ermonneke.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = %s - Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe O4 - HKLM\..\Run: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe" O4 - HKLM\..\Run: [Everything] "C:\Program Files (x86)\Everything\Everything.exe" -startup O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe" O4 - HKLM\..\Run: [CommonToolkitTray] C:\Program Files (x86)\Fighters\Tray\FightersTray.exe O4 - HKLM\..\Run: [sWPROguard] C:\Program Files (x86)\Fighters\SPYWAREfighter\swprotray.exe O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart O4 - HKCU\..\Run: [iE New Window Maximizer] C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: MyPC Backup.lnk = C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Web Snapshot - {954A224B-F501-4911-A8BF-6709A048FD77} - C:\Program Files (x86)\Gadwin Systems\WebSnapshot\WebSnapshot.dll (HKCU) O9 - Extra 'Tools' menuitem: Web Snapshot - {954A224B-F501-4911-A8BF-6709A048FD77} - C:\Program Files (x86)\Gadwin Systems\WebSnapshot\WebSnapshot.dll (HKCU) O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AV Engine Scanning Service - Preventon Technologies Limited - C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe O23 - Service: AV Watch Service - Preventon Technologies Limited - C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVWatchService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Computer Backup (MyPC Backup) (BackupStack) - Just Develop It - C:\Program Files (x86)\MyPC Backup\BackupStack.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Everything - Unknown owner - C:\Program Files (x86)\Everything\Everything.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Online Games Manager (ogmservice) - RealNetworks, Inc. - C:\Program Files (x86)\Online Games Manager\ogmservice.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe O23 - Service: Suite Service - SPAMfighter ApS - C:\Program Files (x86)\Fighters\FighterSuiteService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 14447 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch "C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe" C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs "C:\Program Files\IDT\WDM\STacSV64.exe" C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe" "C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVWatchService.exe" "C:\Program Files (x86)\MyPC Backup\BackupStack.exe" taskeng.exe {0CB97F3E-2460-4AE2-83A5-C1009C849927} "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe" "C:\Program Files (x86)\Everything\Everything.exe" -svc C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe" "C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe" -boot "C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE" "C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe" -Embedding "C:\Program Files\Intel\iCLS Client\HeciServer.exe" "C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe" taskeng.exe {E0D3B73A-89FB-431A-912B-4D78A52DD98C} "C:\Program Files (x86)\Online Games Manager\ogmservice.exe" --service-run "C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe" "C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\Fighters\FighterSuiteService.exe" "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" WLIDSvcM.exe 1340 "C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe" "C:\Users\ermonneke\AppData\Roaming\Yontoo\YontooDesktop.exe" C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files\IDT\WDM\sttray64.exe" "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe" "C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar3.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe" "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun "C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe" "C:\Program Files (x86)\Everything\Everything.exe" -startup "C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui "C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe" "C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe" "C:\Program Files (x86)\Fighters\Tray\FightersTray.exe" "C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe" C:\Users\ermonneke\AppData\Roaming\Yontoo\YontooDesktop.exe "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\unsecapp.exe -Embedding "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" "C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" C:\Windows\System32\svchost.exe -k secsvcs "C:\Program Files\Windows Media Player\wmpnetwk.exe" -Minimized "C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7} "C:\Program Files (x86)\Windows Live\Mail\wlmail.exe" C:\Windows\system32\svchost.exe -k SDRSVC "C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe" -Embedding "C:\Program Files\Internet Explorer\iexplore.exe" http://sourceforge.net/user/updates/confirm?hash=34abf7275059beaf7a80c62b8d95c5c2&usertest "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3564 CREDAT:267521 /prefetch:2 "C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe" C:\Windows\system32\svchost.exe -k WbioSvcGroup "C:\Program Files\Internet Explorer\iexplore.exe" Windows 7 dosearches "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5732 CREDAT:267521 /prefetch:2 C:\Windows\system32\Macromed\Flash\FlashUtil64_11_9_900_117_ActiveX.exe -Embedding "C:\Users\ermonneke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\01553NQS\RSITx64.exe" "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe12_ Global\UsGthrCtrlFltPipeMssGthrPipe12 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540 C:\Windows\system32\wbem\wmiprvse.exe taskeng.exe {79774AA6-CD39-4DDB-9317-C1760C063743} ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\HPCeeScheduleForermonneke.job C:\Windows\tasks\SlimDrivers Startup.job C:\Windows\tasks\WpsUpdateTask_ermonneke.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-10-22 1567016] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}] TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-08-19 1761096] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-10-10 256080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}] MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll [2013-09-06 95648] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}] TrueSuite Website Log On - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2011-08-19 1610056] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-10-22 606544] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-10 194640] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-10-22 1567016] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-10-10 256080] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-10-22 606544] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-10 194640] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-09-08 1424896] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-10-14 2837288] "SetDefault"=C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [2011-09-30 43320] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-06-19 167704] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-06-19 392472] "Persistence"=C:\Windows\system32\igfxpers.exe [2013-06-19 416024] "IAStorIcon"=C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe [2013-03-22 36352] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2013-11-05 21720] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart [] "IE New Window Maximizer"=C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe [2005-02-08 356352] "swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2013-06-10 39408] "Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-02-28 18642024] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Yontoo Desktop] C:\Users\ermonneke\AppData\Roaming\Yontoo\YontooDesktop.exe [2013-05-21 47392] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-09-13 103992] "HPOSD"=C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [2011-08-19 379960] ""= [] "HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-03-05 578944] "HPQuickWebProxy"=C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-10-08 169528] "Everything"=C:\Program Files (x86)\Everything\Everything.exe [2013-06-26 1010176] "AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-10-23 3567800] "SSBkgdUpdate"=C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472] "OpwareSE4"=C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400] "CommonToolkitTray"=C:\Program Files (x86)\Fighters\Tray\FightersTray.exe [2013-09-05 1659424] "SWPROguard"=C:\Program Files (x86)\Fighters\SPYWAREfighter\swprotray.exe [2013-09-05 1260072] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe C:\Users\ermonneke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup MyPC Backup.lnk - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2013-06-19 390144] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "MSVideo8"=VfWWDM32.dll "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-11-11 08:58:56 ----D---- C:\Program Files\trend micro 2013-11-11 08:58:55 ----D---- C:\rsit 2013-11-10 20:40:37 ----D---- C:\Program Files\Fix RegCleaner 2013-11-10 18:37:20 ----A---- C:\Windows\system32\FNTCACHE.DAT 2013-11-10 14:15:45 ----D---- C:\ProgramData\clp 2013-11-10 14:15:29 ----D---- C:\Users\ermonneke\AppData\Roaming\Fighters 2013-11-10 14:15:11 ----D---- C:\Program Files (x86)\Fighters 2013-11-10 14:15:10 ----D---- C:\ProgramData\Common Toolkit Suite 2013-11-10 14:12:46 ----D---- C:\ProgramData\Fighters 2013-11-10 12:59:08 ----D---- C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP 2013-11-06 20:39:38 ----D---- C:\Users\ermonneke\AppData\Roaming\Optimizer Pro 2013-11-06 20:32:39 ----RD---- C:\Program Files (x86)\Skype 2013-11-06 15:30:33 ----D---- C:\Program Files (x86)\VideoDownloadConverter 2013-11-01 20:45:12 ----D---- C:\Program Files\McAfee Security Scan 2013-11-01 12:33:15 ----D---- C:\Program Files (x86)\MSXML 4.0 2013-10-31 20:50:00 ----D---- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 2013-10-31 20:49:16 ----A---- C:\Windows\system32\drivers\usbccgp.sys 2013-10-31 20:49:15 ----A---- C:\Windows\system32\drivers\usbuhci.sys 2013-10-31 20:49:15 ----A---- C:\Windows\system32\drivers\usbport.sys 2013-10-31 20:49:15 ----A---- C:\Windows\system32\drivers\usbohci.sys 2013-10-31 20:49:15 ----A---- C:\Windows\system32\drivers\usbhub.sys 2013-10-31 20:49:15 ----A---- C:\Windows\system32\drivers\usbehci.sys 2013-10-31 20:49:15 ----A---- C:\Windows\system32\drivers\usbd.sys 2013-10-30 14:51:50 ----D---- C:\ProgramData\CanonIJPLM 2013-10-30 14:48:55 ----D---- C:\ProgramData\InstallShield 2013-10-30 14:48:55 ----A---- C:\Windows\MAXLINK.INI 2013-10-30 14:48:44 ----D---- C:\Users\ermonneke\AppData\Roaming\ScanSoft 2013-10-30 14:48:35 ----D---- C:\ProgramData\ScanSoft 2013-10-30 14:48:00 ----D---- C:\Program Files (x86)\ScanSoft 2013-10-30 14:43:22 ----HD---- C:\Windows\system32\CanonIJ Uninstaller Information 2013-10-30 14:43:03 ----A---- C:\Windows\system32\cnco140.dll 2013-10-30 14:43:01 ----A---- C:\Windows\system32\CNCL140.DLL 2013-10-30 14:43:01 ----A---- C:\Windows\system32\CNCI140.DLL 2013-10-30 14:43:00 ----A---- C:\Windows\system32\CNCC140.DLL 2013-10-30 14:42:40 ----HD---- C:\Program Files\CanonBJ 2013-10-29 15:14:43 ----D---- C:\Users\ermonneke\AppData\Roaming\Intel Corporation 2013-10-29 14:52:00 ----D---- C:\Program Files (x86)\SlimDrivers 2013-10-26 05:45:07 ----D---- C:\Program Files (x86)\Canon 2013-10-22 17:33:19 ----D---- C:\Users\ermonneke\AppData\Roaming\AVAST Software 2013-10-18 20:56:15 ----D---- C:\GameHouse Games 2013-10-18 14:57:24 ----D---- C:\Users\ermonneke\AppData\Roaming\Canon 2013-10-18 14:16:23 ----A---- C:\Windows\system32\CNMLM8R.DLL 2013-10-14 14:44:08 ----D---- C:\ProgramData\BitGuard 2013-10-14 14:44:04 ----D---- C:\ProgramData\DSearchLink 2013-10-14 14:43:47 ----D---- C:\Program Files (x86)\Haali 2013-10-14 14:29:57 ----D---- C:\Users\ermonneke\AppData\Roaming\SlimCleaner 2013-10-12 17:42:22 ----D---- C:\Windows\de 2013-10-12 17:41:30 ----D---- C:\Windows\nl 2013-10-12 17:41:25 ----D---- C:\Windows\fr 2013-10-12 17:41:18 ----D---- C:\Windows\en 2013-10-12 17:40:36 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2013-10-12 17:37:27 ----D---- C:\Program Files\Windows Live 2013-10-12 17:36:56 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll 2013-10-12 17:36:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll 2013-10-12 17:36:55 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll 2013-10-12 17:36:55 ----A---- C:\Windows\system32\d3dx10_42.dll 2013-10-12 17:28:39 ----D---- C:\Program Files (x86)\CyberLink 2013-10-12 17:20:45 ----A---- C:\Windows\system32\drivers\RtsPStor.sys 2013-10-12 17:20:43 ----A---- C:\Windows\SYSWOW64\RtsPStorIcon.dll 2013-10-12 17:18:29 ----D---- C:\Intel 2013-10-12 17:17:42 ----A---- C:\Windows\system32\idt64mp1.exe 2013-10-12 17:17:41 ----A---- C:\Windows\system32\stlang64.dll 2013-10-12 17:17:41 ----A---- C:\Windows\sttray64.exe 2013-10-12 17:17:28 ----A---- C:\Windows\system32\staco64.dll ======List of files/folders modified in the last 1 month====== 2013-11-11 08:59:03 ----D---- C:\Windows\Temp 2013-11-11 08:58:56 ----RD---- C:\Program Files 2013-11-11 08:49:06 ----D---- C:\Windows\system32\config 2013-11-11 08:41:54 ----D---- C:\Windows\system32\NDF 2013-11-11 08:41:54 ----D---- C:\Users\ermonneke\AppData\Roaming\Skype 2013-11-11 08:41:15 ----A---- C:\Windows\SYSWOW64\log.txt 2013-11-11 08:40:16 ----D---- C:\Windows\system32\drivers 2013-11-10 21:26:09 ----D---- C:\Users\ermonneke\AppData\Roaming\Everything 2013-11-10 20:54:27 ----RD---- C:\Program Files (x86) 2013-11-10 20:53:11 ----D---- C:\Windows\system32\Tasks 2013-11-10 19:52:24 ----D---- C:\Users\ermonneke\AppData\Roaming\Yontoo 2013-11-10 19:48:54 ----D---- C:\Windows\system32\wbem 2013-11-10 19:48:54 ----D---- C:\Windows 2013-11-10 19:48:34 ----D---- C:\Windows\system32\LogFiles 2013-11-10 19:47:53 ----D---- C:\Program Files (x86)\Common Files 2013-11-10 19:47:51 ----D---- C:\Program Files\CCleaner 2013-11-10 19:47:49 ----D---- C:\ProgramData\Norton 2013-11-10 19:47:49 ----D---- C:\ProgramData\McAfee Security Scan 2013-11-10 19:47:34 ----SHD---- C:\Windows\Installer 2013-11-10 19:47:34 ----D---- C:\Windows\inf 2013-11-10 19:47:34 ----D---- C:\Windows\AppCompat 2013-11-10 19:47:33 ----D---- C:\Windows\Tasks 2013-11-10 19:47:33 ----D---- C:\Windows\SysWOW64 2013-11-10 19:47:33 ----D---- C:\Windows\system32\DriverStore 2013-11-10 19:47:33 ----D---- C:\Windows\system32\drivers\etc 2013-11-10 19:47:33 ----D---- C:\Windows\system32\CodeIntegrity 2013-11-10 19:47:33 ----D---- C:\Windows\system32\catroot2 2013-11-10 19:47:33 ----D---- C:\Windows\System32 2013-11-10 19:47:33 ----D---- C:\Windows\registration 2013-11-10 19:37:50 ----SHD---- C:\System Volume Information 2013-11-10 18:37:13 ----SHD---- C:\Config.Msi 2013-11-10 18:35:03 ----D---- C:\Program Files (x86)\Yontoo 2013-11-10 18:35:03 ----D---- C:\Program Files (x86)\FrostWire 5 2013-11-10 15:00:57 ----D---- C:\ProgramData\eSafe 2013-11-10 14:38:40 ----D---- C:\Program Files (x86)\Google 2013-11-10 14:33:44 ----D---- C:\Windows\Prefetch 2013-11-10 14:32:19 ----D---- C:\ProgramData\Skype 2013-11-10 14:18:54 ----SD---- C:\Users\ermonneke\AppData\Roaming\Microsoft 2013-11-10 14:15:45 ----HD---- C:\ProgramData 2013-11-10 14:15:32 ----D---- C:\Windows\system32\catroot 2013-11-09 19:44:23 ----D---- C:\Program Files (x86)\RealArcade 2013-11-09 19:41:13 ----D---- C:\Zylom Games 2013-11-09 19:39:22 ----D---- C:\ProgramData\Big Fish 2013-11-09 19:39:17 ----D---- C:\BigFishCache 2013-11-09 19:38:45 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2013-11-09 19:38:45 ----D---- C:\Program Files (x86)\ScanWizard 5 2013-11-08 19:55:37 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-11-08 18:58:33 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt 2013-11-07 18:56:27 ----D---- C:\Program Files\Common Files 2013-11-06 22:52:54 ----AD---- C:\ProgramData\Temp 2013-11-06 20:02:29 ----D---- C:\Program Files (x86)\SlimCleaner 2013-11-06 19:29:57 ----D---- C:\Windows\Logs 2013-11-01 23:58:07 ----D---- C:\Windows\winsxs 2013-10-30 14:48:34 ----D---- C:\Windows\Downloaded Program Files 2013-10-30 14:43:21 ----D---- C:\Windows\twain_32 2013-10-29 20:36:33 ----D---- C:\Windows\SYSWOW64\LogFiles 2013-10-29 15:15:51 ----D---- C:\Program Files (x86)\Intel 2013-10-29 15:14:49 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI 2013-10-29 15:14:31 ----D---- C:\ProgramData\Intel 2013-10-29 15:14:21 ----D---- C:\Program Files\Intel 2013-10-29 15:14:07 ----RSD---- C:\Windows\assembly 2013-10-29 15:12:45 ----D---- C:\SWSetup 2013-10-25 19:34:19 ----D---- C:\Users\ermonneke\AppData\Roaming\Hewlett-Packard 2013-10-25 19:34:18 ----D---- C:\Windows\Hewlett-Packard 2013-10-25 10:47:24 ----SD---- C:\ProgramData\Microsoft 2013-10-22 17:30:09 ----A---- C:\Windows\system32\aswBoot.exe 2013-10-22 17:27:49 ----D---- C:\ProgramData\AVAST Software 2013-10-21 21:00:22 ----D---- C:\Windows\rescache 2013-10-20 18:45:11 ----D---- C:\Windows\pss 2013-10-18 15:50:08 ----D---- C:\Windows\Microsoft.NET 2013-10-18 14:49:49 ----RSD---- C:\Windows\Media 2013-10-14 14:56:59 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2013-10-14 14:48:48 ----D---- C:\Users\ermonneke\AppData\Roaming\PerformerSoft 2013-10-13 18:32:01 ----D---- C:\Windows\Panther 2013-10-13 18:32:00 ----D---- C:\Windows\debug 2013-10-13 12:25:40 ----D---- C:\Program Files\Symantec 2013-10-12 17:43:17 ----D---- C:\Program Files (x86)\Hewlett-Packard 2013-10-12 17:43:01 ----D---- C:\Program Files (x86)\Microsoft 2013-10-12 17:41:56 ----D---- C:\Program Files (x86)\Windows Live 2013-10-12 17:37:13 ----D---- C:\Program Files\Common Files\Microsoft Shared 2013-10-12 17:33:35 ----D---- C:\Program Files (x86)\HP SimplePass 2011 2013-10-12 17:32:58 ----D---- C:\ProgramData\Downloaded Installations 2013-10-12 17:32:49 ----D---- C:\Users\ermonneke\AppData\Roaming\hpqLog 2013-10-12 17:32:14 ----D---- C:\ProgramData\Hewlett-Packard 2013-10-12 17:22:40 ----D---- C:\Windows\SYSWOW64\Adobe 2013-10-12 17:21:24 ----D---- C:\Program Files (x86)\Realtek 2013-10-12 17:21:02 ----D---- C:\Windows\SYSWOW64\sda 2013-10-12 17:17:52 ----D---- C:\Program Files\IDT ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-10-22 65776] R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-10-22 205320] R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848] R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-03-22 678384] R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-03-22 28656] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-10-22 92544] R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-10-22 1032416] R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-08 409832] R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-10-22 65264] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-10-22 38984] R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-10-22 84328] R3 AVFSFilter;AVFSFilter; C:\Windows\system32\DRIVERS\avfsfilter.sys [2013-09-05 13720] R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2010-07-28 31088] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-06-19 12310112] R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-06-19 317440] R3 MEIx64;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2000-01-01 62784] R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-02-22 2426672] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-08-24 565352] R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10305; C:\Windows\system32\DRIVERS\stwrt64.sys [2011-09-08 535040] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-10-14 396848] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232] S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 iscFlash;iscFlash; \??\C:\swsetup\sp60864\iscflashx64.sys [2013-06-19 49216] S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456] S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2011-09-02 339048] S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056] S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864] S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312] S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864] S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2013-11-11 16152] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640] R2 AV Engine Scanning Service;AV Engine Scanning Service; C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe [] R2 AV Watch Service;AV Watch Service; C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVWatchService.exe [] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-10-22 50344] R2 BackupStack;Computer Backup (MyPC Backup); C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2013-09-19 38440] R2 Everything;Everything; C:\Program Files (x86)\Everything\Everything.exe [2013-06-26 1010176] R2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [2011-08-19 260424] R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528] R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-09-06 197536] R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-03-05 35200] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-03-22 15344] R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-09-01 2425960] R2 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2006-11-10 99936] R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-19 634632] R2 jhi_service;Intel® Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-23 212944] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2000-01-01 277824] R2 ogmservice;Online Games Manager; C:\Program Files (x86)\Online Games Manager\ogmservice.exe [2013-08-08 559552] R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-10 189728] R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-09-08 305152] R2 Suite Service;Suite Service; C:\Program Files (x86)\Fighters\FighterSuiteService.exe [2013-08-21 1279520] R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2000-01-01 365376] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096] R2 Yontoo Desktop Updater;Yontoo Desktop Updater; C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe [2013-05-21 23552] R3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-09-13 1098296] R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-09-06 1001376] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-23 116648] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-14 257416] S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376] S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-23 116648] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-06-10 194032] S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [2013-09-06 288776] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-05-24 1255736] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] -----------------EOF----------------- kweezie wabbit goeie morgen ik heb hopelijk gedaan wat u vroeg groetjes Mon
- 11 november 2013
- 7 antwoorden
dosearches

ermonneke plaatste een topic in Archief Bestrijding malware & virussen

goeien avond mensen van PC Helpforum ik heb een probleem met google het is feitelijk niet meer google maar dosearches die daar op zit en ik heb malwarebites- Ccleaner- spyware fither al laten scannen maar niks helpt ik weet niet of ik dat scannen goed doe, ik open dat program en klik op scannen en dan wacht ik tot het gedaan is, kan een van jullie mij misschien helpen alvast bedankt.ik heb een laptop HP pavilion G series en ik gebruik windows 7 en google is mijn standaard zoek maschiene: groetjes Mon
- 10 november 2013
- 7 antwoorden
fotos van pc naar tv

ermonneke reageerde op ermonneke's topic in Archief Hardware algemeen

Asus wel bedankt voor den uitleg en hulp ik had niet gedacht dat de oplossing zo simpel kon zijn.Bedankt en tot nogeens groetjes Mon
- 25 juni 2012
- 4 antwoorden
fotos van pc naar tv

ermonneke reageerde op ermonneke's topic in Archief Hardware algemeen

dag Asus ik zal u geven wat ik heb hopelijk is het genoeg:hp pavilion g7 nootbook:miroprocessor intel®cori3-2330mcpu@2.20ghz:4GB: slots 1 4GBsodinn other 1333mhzadata technologie:huidige resolutie1600x900:vernieuwingsnelheid 60 systeemkaart1671 09.49: systeem bios f.42: netwerk interface rolink RT5390 802.11b/g/n wifi adapter :draadloos netwerk: nu de tv:smart led tv samsung :(5series) beeldresolutie 1920x1080: tv systeem analoog:B/G, D/K, L, I (afhankelijk van de landkeuze) Digitaal: DVB-T/DVB-C/DVB-S2, schermformaat 94cm, geluid 10Wx2:de modum van belgacom is b-box2: en eenHD decorder van belgacom Asus meer kan ik niet vinden groetjes mon
- 22 juni 2012
- 4 antwoorden
fotos van pc naar tv

ermonneke plaatste een topic in Archief Hardware algemeen

dag mensen van help forum ik heb een vraag om dat ik er niks van ken ik zou graag fotos van mijn pc naar de tv krijgen. ik heb een laptop hp draadloos en een smart tv ook draadloos. men eerste vraag is heb ik nog andere zaken nodig omdit tot stand te brengen en ten tweede hoe moet ik het doen. als iemand mij wil helpen een zeer simpele uitleg iendien mogelijk a u b
- 20 juni 2012
- 4 antwoorden
foutmelding

ermonneke reageerde op ermonneke's topic in Archief Windows Algemeen

dag kurtt die foutmelding komt er ongeveer een maand op
- 23 mei 2012
- 6 antwoorden

Inloggen

Profielen

Forums

Store

Alles dat geplaatst werd door ermonneke

OVER ONS

SITEMAP

Belangrijke informatie