MellaBella3
-
Items
13 -
Registratiedatum
-
Laatst bezocht
MellaBella3's prestaties
-
Laptop geformatteerd geen nu geen draadloos internet
MellaBella3 reageerde op MellaBella3's topic in Archief Internet & Netwerk
Ik kijk nu naar de probleemrapporten en er staat "framework voor netwerkcontrole-netwerkproblemen kunnen niet worden vastgesteld of gerepareerd" en "windows installer- werkt niet meer". Dus dat klinkt niet echt goed. Kan dat het zijn? -
Laptop geformatteerd geen nu geen draadloos internet
MellaBella3 plaatste een topic in Archief Internet & Netwerk
Hai, Ik heb gisteren mn laptop ( E-machines van Acer) geformatteerd en heb sindsdien geen draadloze internet verbinding. Het gaat om Windows Vista home basic. Ik heb al bij apparaatbeheer gezocht naar eventuele uitroeptekens maar die zijn er niet. Alles werkt naar behoren staat er. Dus wat kan het zijn??? Ben blij dat ie nu weer leeg is maar nu mn internet nog -
Nou alles is klaar en mn laptop werkt weer als vanouds! Heel erg bedankt voor uw hulp!!
-
Nee gewoon een vraag naar de toekomst toe.
-
Dus hierna is mijn laptop weer schoon??? en wat moet ik doen als een website openen moeizaam gaat en lang laadt?
-
# AdwCleaner v3.013 - Report created 01/12/2013 at 18:15:52 # Updated 24/11/2013 by Xplode # Operating System : Windows Vista Home Basic Service Pack 2 (32 bits) # Username : Mel - PC_VAN_MEL # Running from : C:\Users\Mel\Desktop\adwcleaner (1).exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\Inbox Folder Deleted : C:\ProgramData\NCH Software Folder Deleted : C:\Program Files\NCH Software Folder Deleted : C:\Users\Mel\AppData\Roaming\NCH Software File Deleted : C:\Users\Public\Desktop\iMesh.lnk File Deleted : C:\Windows\Uninstall.exe ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKCU\Software\Classes\pokki Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1 Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1 Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine Key Deleted : HKLM\SOFTWARE\Classes\driverscanner Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1 Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol Key Deleted : HKLM\SOFTWARE\Classes\S Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1 Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1 Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2269050 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2865317 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3027459 Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{503E067F-2914-4EDD-8432-2D6C52635E23} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3ED53C5-7AD5-4DF5-9734-AFB6E7E5D9DB} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{503E067F-2914-4EDD-8432-2D6C52635E23} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{503E067F-2914-4EDD-8432-2D6C52635E23} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{503E067F-2914-4EDD-8432-2D6C52635E23} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7B405FD-AF1B-4D10-B7D7-587987B76649} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4F11ACBB-393F-4C86-A214-FF3D0D155CC3}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] Key Deleted : HKCU\Software\AVG Secure Search Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\Cr_Installer Key Deleted : HKCU\Software\DataMngr Key Deleted : HKCU\Software\DataMngr_Toolbar Key Deleted : HKCU\Software\Imesh Key Deleted : HKCU\Software\InstallCore Key Deleted : HKCU\Software\NCH Software Key Deleted : HKCU\Software\ParetoLogic Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKCU\Software\AppDataLow\Toolbar Key Deleted : HKCU\Software\AppDataLow\Software\Conduit Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar Key Deleted : HKLM\Software\AVG Secure Search Key Deleted : HKLM\Software\AVG Security Toolbar Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\conduitEngine Key Deleted : HKLM\Software\GamesBarSetup Key Deleted : HKLM\Software\iMeshSRTB Key Deleted : HKLM\Software\NCH Software Key Deleted : HKLM\Software\ParetoLogic Key Deleted : HKLM\Software\Uniblue Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1 Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856 Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494 ***** [ Browsers ] ***** -\\ Internet Explorer v9.0.8112.16520 -\\ Google Chrome v31.0.1650.57 [ File : C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [11996 octets] - [01/12/2013 17:23:08] AdwCleaner[s0].txt - [11885 octets] - [01/12/2013 18:15:52] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [11946 octets] ##########
-
Nou de snelheid gaat wel. T loopt steeds vast bij t openen van iets. De melding van uniblue heb ik idd niet meer voorbij zien komen sinds gisteren! - - - Updated - - - Nou, eigenlijk is de snelheid wel toegenomen hoor!!! Betekent dit trouwens dat de virus eraf is of heeft u nog opdrachten voor mij?
-
Zoek.exe Version 4.0.0.5 Updated 30-November-2013 Tool run by Mel on zo 01-12-2013 at 11:17:24,23. Microsoft® Windows Vista™ Home Basic 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Mel\Desktop\zoek.exe [script inserted] ==== Older Logs ====================== C:\zoek-results2013-11-30-200738.log 32464 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Windows\system32\tasks\{1877F859-7EE3-4221-B282-F152720CA28D} deleted C:\Windows\system32\tasks\{3912CB55-6503-4F18-8F91-A59486C775C5} deleted C:\Windows\system32\tasks\{412763AC-AA11-4ABF-9420-105EFC6EB248} deleted C:\Windows\system32\tasks\{685C647F-C9FF-4886-B84D-84553ADB524B} deleted C:\Windows\system32\tasks\{7389AF99-20C4-4147-BC0E-065C6CC11D06} deleted C:\Windows\system32\tasks\{A1D404D9-5183-4215-A141-601CC5E86897} deleted C:\Windows\system32\tasks\{A5A37518-4D34-43AB-AF2E-3E59670581D8} deleted C:\Windows\system32\tasks\{B7DA7F00-B22E-401E-BAC6-3E7E9C73627B} deleted C:\Windows\system32\tasks\{FE477C1C-1D85-46AF-ACF1-B0D9585BA005} deleted "C:\Users\Mel\Downloads\RSIT (1).exe" deleted "C:\Users\Mel\Downloads\vlc-2.1.1-win32 (1).exe" deleted "C:\Users\Mel\Downloads\avast_free_antivirus_setup_online (1).exe" deleted ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"="C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5" [09-06-2013 15:08] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[30-11-2013 14:38] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02-10-2012 12:14] nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[06-05-2013 09:12] avast Online Security - Mel - Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Skype Click to Call - Mel - Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.nl/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.nl/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {4F11ACBB-393F-4c86-A214-FF3D0D155CC3} Burn4Free CD and DVD Werkbalk Url="http://search.burn4free-toolbar.com/search?p=Q&ts=ne&w={searchTerms}&csrc=search-field" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\TEMP.PC_van_Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Mel\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted ==== EOF on zo 01-12-2013 at 12:52:04,32 ======================
-
Zoek.exe Version 4.0.0.5 Updated 24-November-2013 Tool run by Mel on za 30-11-2013 at 18:33:29,57. Windows Vista Home Basic 6.0.6002 Service Pack 2 x86 WMI=failure Running in: Normal Mode Internet Access Detected Launched: C:\Users\Mel\Desktop\zoek.exe [script inserted] [Checkboxes used] ==== System Restore Info ====================== 30-11-2013 19:11:37 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\Gamenext deleted successfully C:\Program Files\iMesh Applications deleted successfully C:\Program Files\MSXML 4.0 deleted successfully C:\Program Files\SlySoft deleted successfully C:\Program Files\Webteh deleted successfully C:\ProgramData\Big Fish Games deleted successfully C:\ProgramData\Browser Manager deleted successfully C:\ProgramData\NtiDvdCopy deleted successfully C:\ProgramData\Oracle deleted successfully C:\ProgramData\Real deleted successfully C:\Users\Mel\AppData\Roaming\Solvusoft deleted successfully C:\Users\Mel\AppData\Roaming\Ukky deleted successfully C:\Users\Mel\AppData\Roaming\WinRAR deleted successfully C:\Users\Mel\AppData\Roaming\Xilisoft deleted successfully C:\Users\Mel\AppData\Local\Conduit deleted successfully C:\Users\Mel\AppData\Local\PackageAware deleted successfully C:\Users\Mel\AppData\Local\Real deleted successfully C:\Users\Mel\AppData\Local\WMTools Downloaded Files deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\SearchScopes\{41396b1b-447e-473b-a34b-bb583136c7fc} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} deleted successfully HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully HKEY_CLASSES_ROOT\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_CLASSES_ROOT\CLSID\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CC450D71-CC90-424C-8638-1F2DBAC87A54} deleted successfully HKEY_CLASSES_ROOT\CLSID\{CC450D71-CC90-424C-8638-1F2DBAC87A54} deleted successfully HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PCTAVSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater17.1.2 deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "OurBabyMaker_27bar Uninstall"=- "InstallShieldSetup"=- "BrandClearStubs"=- "NoIE4StubProcessing"=- "aswredemption.dll"=- "removeiMeshdatamngr"=- "InstallShieldSetup1"=- ==== Deleting Files \ Folders ====================== C:\Program Files\PC Tools AntiVirus not found C:\Program Files\ConduitEngine deleted C:\Program Files\Common Files\DVDVideoSoft deleted C:\Program Files\Common Files\BOONTY Shared deleted C:\found.008 deleted C:\found.007 deleted C:\Program Files\Uniblue\SpeedUpMyPC deleted C:\Program Files\ParetoLogic deleted C:\Program Files\Common Files\ParetoLogic deleted C:\Program Files\LAVMediaCodec deleted C:\Program Files\GamesBar deleted C:\extensions deleted C:\found.000 deleted C:\found.001 deleted C:\found.002 deleted C:\found.003 deleted C:\found.004 deleted C:\found.005 deleted C:\found.006 deleted C:\Users\Mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DriverScanner.lnk deleted C:\Users\Mel\AppData\Roaming\Alawar deleted C:\Users\Mel\AppData\Roaming\LimeWirePlus deleted C:\Users\Mel\AppData\Roaming\eIntaller deleted C:\Users\Mel\AppData\Roaming\DVDVideoSoftIEHelpers deleted C:\Users\Mel\AppData\Roaming\DriverCure deleted C:\ProgramData\DriverCure deleted C:\ProgramData\boost_interprocess deleted C:\ProgramData\ParetoLogic deleted C:\ProgramData\Uniblue\DriverScanner deleted C:\ProgramData\AVG Secure Search deleted C:\ProgramData\Trymedia deleted C:\Users\Mel\AppData\Local\AVG Secure Search deleted C:\Users\Mel\AppData\Local\Pokki deleted C:\Users\Mel\AppData\Local\SwvUpdater deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\DriverScanner deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParetoLogic deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue deleted C:\Users\Mel\Downloads\avg_free_stb_all_2014_4116_cnet.exe deleted C:\Users\Mel\Downloads\HKV-Coupon-970653 (1).pdf deleted C:\Users\Mel\Downloads\HKV-Coupon-970653.pdf deleted C:\Users\Mel\Downloads\FreeYouTubeToMP3Converter.exe deleted C:\Users\Mel\AppData\LocalLow\AVG Secure Search deleted C:\Users\Mel\AppData\LocalLow\boost_interprocess deleted C:\Users\Mel\AppData\LocalLow\searchresultstb deleted C:\Users\Mel\AppData\LocalLow\DataMngr deleted C:\Users\Mel\AppData\LocalLow\PriceGong deleted C:\Users\Mel\AppData\LocalLow\Conduit deleted C:\Users\Mel\AppData\LocalLow\ConduitEngine deleted C:\Users\Mel\AppData\LocalLow\Toolbar4 deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\Windows\wininit.ini deleted C:\Windows\tasks\ParetoLogic Registration.job deleted C:\Windows\tasks\ParetoLogic Registration3.job deleted C:\Windows\tasks\ParetoLogic Update Version2.job deleted C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job deleted C:\Windows\tasks\ParetoLogic Update Version3.job deleted C:\Windows\system32\tasks\RunAsStdUser Task deleted C:\Windows\tasks\dsmonitor.job deleted C:\END deleted C:\Windows\system32\roboot.exe deleted C:\Users\Public\Desktop\DriverScanner.lnk deleted "C:\Windows\tasks\DriverCure.job" deleted "C:\Windows\tasks\DriverScanner.job" deleted "C:\Users\Mel\AppData\Roaming\Anna\ynegz.kec" deleted "C:\Users\Mel\AppData\Roaming\Akviqe\ocky.irh" deleted "C:\Users\Mel\AppData\Roaming\Anabel\save_00.sav" deleted "C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe" deleted "C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe" deleted "C:\Program Files\AVG Secure Search\vprot.exe" deleted "C:\Program Files\AVG Secure Search\vprot.exe" deleted "C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.0.12\SiteSafety.dll" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\log4cplusU.dll" deleted "C:\Users\Mel\AppData\Roaming\Uniblue\DriverScanner\monitor.log" deleted "C:\Users\Mel\AppData\Roaming\Anna" deleted "C:\Users\Mel\AppData\Roaming\Akviqe" deleted "C:\Users\Mel\AppData\Roaming\Anabel" deleted "C:\Program Files\Uniblue\DriverScanner" deleted "C:\Program Files\Uniblue\DriverScanner" deleted "C:\Program Files\AVG Secure Search" deleted "C:\Program Files\AVG Secure Search" deleted "C:\Program Files\Common Files\AVG Secure Search" deleted "C:\Users\Mel\AppData\Roaming\Uniblue" deleted "C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater" deleted "C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.0.12" deleted "C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2" deleted "C:\Users\Mel\AppData\Roaming\Uniblue\DriverScanner" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-11-30 13:38:40 466094E637732A9834710230CF700DC4 43152 ----a-w- C:\Windows\avastSS.scr ====== C:\Users\Mel\AppData\Local\Temp ==== 2013-11-30 13:09:31 EFC281118CB8A07F10A93E16C1438AC3 466948 ----a-w- C:\Users\Mel\AppData\Local\Temp\uninst.exe 2013-11-30 13:06:08 17EE902D65EF1E2E2BFFC0FE2094EDC6 451152 ----a-w- C:\Users\Mel\AppData\Local\Temp\.zylominstallertemp1385816768\ZylomGameInstallerTemp.exe ====== Java Cache ===== ====== C:\Windows\system32 ===== 2013-11-30 14:17:12 9223A2810B73069F4A03A636052EF14A 264616 ----a-w- C:\Windows\System32\javaws.exe 2013-11-30 14:15:32 9BF46C7F21E75FA0BB03AA93368CC66C 94632 ----a-w- C:\Windows\System32\WindowsAccessBridge.dll 2013-11-30 14:15:31 DC1342498BEE7EF1646E9D63138B69CC 175016 ----a-w- C:\Windows\System32\javaw.exe 2013-11-30 14:15:27 658633D255FEF154EA1CB8705B4468C5 174504 ----a-w- C:\Windows\System32\java.exe ====== C:\Windows\system32\drivers ===== 2013-11-30 13:39:19 BADA8FD627F1D0E22308211C33F0BDB5 178304 ----a-w- C:\Windows\System32\drivers\aswVmm.sys 2013-11-30 13:39:19 AB499F3325E62E157F8E8302065B1B30 57672 ----a-w- C:\Windows\System32\drivers\aswTdi.sys 2013-11-30 13:39:18 259E864BFB9268CD7CEFA5849A3B374B 403440 ----a-w- C:\Windows\System32\drivers\aswSP.sys 2013-11-30 13:39:17 F385467DF95D0A73775CB3B076B8B969 49944 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys 2013-11-30 13:39:16 BB27A67D7F465D2720D74B5223DD91E4 774392 ----a-w- C:\Windows\System32\drivers\aswSnx.sys 2013-11-30 13:39:14 AA3397F034871DE76A74585774029580 70384 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys 2013-11-30 13:39:13 74202D5A696A412733B387BD18400E4C 35656 ----a-w- C:\Windows\System32\drivers\aswFsBlk.sys 2013-11-30 13:39:12 9F597676EDA29D6619C5E76F523892D7 54832 ----a-w- C:\Windows\System32\drivers\aswRdr.sys 2013-11-05 20:50:48 9C7C45DE9E167F6268D32D6D10133F7D 120600 ----a-w- C:\Windows\System32\drivers\avgdiskx.sys 2013-11-04 20:57:30 C66B17D93F94622293608C2FB91C5806 209176 ----a-w- C:\Windows\System32\drivers\avgidsdriverx.sys 2013-10-31 22:00:28 578ECC3D911897B2C5B760EDAF8ED6CA 176952 ----a-w- C:\Windows\System32\drivers\avgldx86.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-11-30 15:50:09 -------- dc----w- C:\Program Files\trend micro ======= C: ===== ====== C:\Users\Mel\AppData\Roaming ====== 2013-11-29 08:21:38 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Trusteer 2013-11-21 17:28:21 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Temp 2013-11-21 17:28:21 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Microsoft Help 2013-11-21 17:28:21 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Microsoft 2013-11-21 17:28:21 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Google 2013-11-21 17:28:20 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Trusteer 2013-11-21 17:28:19 -------- d-s---w- C:\Users\TEMP.PC_van_Mel\AppData\Roaming\Microsoft 2013-11-21 17:28:19 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Roaming\TuneUp Software 2013-11-21 17:28:19 -------- d-----r- C:\Users\TEMP.PC_van_Mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-11-21 17:28:19 -------- d-----r- C:\Users\TEMP.PC_van_Mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories ====== C:\Users\Mel ====== 2013-11-30 15:42:13 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Mel\Downloads\RSIT (1).exe 2013-11-30 15:17:55 964F8D66B750F97A36309158EB4968E2 742313 ----a-w- C:\Users\Mel\Downloads\RSIT.exe 2013-11-30 14:26:05 7E89844169E755775F09AA4724680281 24489269 ----a-w- C:\Users\Mel\Downloads\vlc-2.1.1-win32 (1).exe 2013-11-30 14:15:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2013-11-30 13:57:59 58A1735CBCDB7171FF7AC31A00BC9A8B 24423733 ----a-w- C:\Users\Mel\Downloads\vlc-2.1.1-win32.exe 2013-11-30 13:57:19 AC924370C3A3EF6FCFEB4156356EB482 29040552 ----a-w- C:\Users\Mel\Downloads\jre-7u45-windows-i586.exe 2013-11-30 13:41:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast 2013-11-30 13:30:57 DA273435D552A5C346D65BD1CD1E56C8 4733592 ----a-w- C:\Users\Mel\Downloads\avast_free_antivirus_setup_online (1).exe 2013-11-30 13:03:22 CE2E04C5B0C4820E129886A874D92C03 4618136 ----a-w- C:\Users\Mel\Downloads\ccsetup408.exe 2013-11-28 08:13:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2013-11-21 18:09:07 -------- d-----r- C:\Windows\system32\config\systemprofile\Favorites 2013-11-21 18:08:35 -------- d-----r- C:\Windows\system32\config\systemprofile\Desktop 2013-11-21 17:28:18 -------- d--h--w- C:\Users\TEMP.PC_van_Mel\AppData 2013-11-21 17:28:18 -------- d-----w- C:\Users\TEMP.PC_van_Mel\Saved Games 2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Videos 2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Pictures 2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Music 2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Links 2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Favorites 2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Downloads 2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Documents 2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Desktop ====== C: exe-files == 2013-11-30 15:50:16 9A2347903D6EDB84C10F288BC0578C1C 388608 -c--a-w- C:\Program Files\trend micro\Mel.exe 2013-11-30 14:14:20 555651269833A415E1F9E594E8DD829F 146344 -c--a-w- C:\Program Files\Java\jre7\bin\unpack200.exe 2013-11-30 14:14:20 54A30377949D4984EE72C5510C58B83D 16296 -c--a-w- C:\Program Files\Java\jre7\bin\tnameserv.exe 2013-11-30 14:14:19 CC27986F45EF9FD700BC347355B002B3 15784 -c--a-w- C:\Program Files\Java\jre7\bin\rmid.exe 2013-11-30 14:14:19 738AF811C60870FB218D47C628D350AA 15784 -c--a-w- C:\Program Files\Java\jre7\bin\rmiregistry.exe 2013-11-30 14:14:19 707BFE32E04720B9D50562669A30F86C 49064 -c--a-w- C:\Program Files\Java\jre7\bin\ssvagent.exe 2013-11-30 14:14:19 3FB1EAAB3CD35126D1F3B9A0A5B7B2DC 15784 -c--a-w- C:\Program Files\Java\jre7\bin\policytool.exe 2013-11-30 14:14:19 15EBB4D4B54FCE42D8CB116145BB7EBA 15784 -c--a-w- C:\Program Files\Java\jre7\bin\servertool.exe 2013-11-30 14:14:18 5FA3FFE74E893E8A9443C2CF3DFA7A64 15784 -c--a-w- C:\Program Files\Java\jre7\bin\pack200.exe 2013-11-30 14:14:18 464358DE0429ABB319DFE3F5E5C85F77 15784 -c--a-w- C:\Program Files\Java\jre7\bin\orbd.exe 2013-11-30 14:14:17 CE10E75E10EB6952A7D813FA587EC632 15784 -c--a-w- C:\Program Files\Java\jre7\bin\ktab.exe 2013-11-30 14:14:17 CBFE91C51D4FA69FE9D140ABEB7E51DC 15784 -c--a-w- C:\Program Files\Java\jre7\bin\kinit.exe 2013-11-30 14:14:17 7814B0A3E6FE8FFF31B7108D16FC4591 15784 -c--a-w- C:\Program Files\Java\jre7\bin\keytool.exe 2013-11-30 14:14:17 5721DA732075E01569A287767CBCFA5A 15784 -c--a-w- C:\Program Files\Java\jre7\bin\klist.exe 2013-11-30 14:14:16 80A79264302910C7C24BA7E44267EFEF 182696 -c--a-w- C:\Program Files\Java\jre7\bin\jqs.exe 2013-11-30 14:14:14 7F55715977ECF32633857F16980F008E 52648 -c--a-w- C:\Program Files\Java\jre7\bin\jp2launcher.exe 2013-11-30 14:14:10 DC1342498BEE7EF1646E9D63138B69CC 175016 -c--a-w- C:\Program Files\Java\jre7\bin\javaw.exe 2013-11-30 14:14:10 9223A2810B73069F4A03A636052EF14A 264616 -c--a-w- C:\Program Files\Java\jre7\bin\javaws.exe 2013-11-30 14:14:09 83D790AA563347A026771D50E3D07A9B 66984 -c--a-w- C:\Program Files\Java\jre7\bin\javacpl.exe 2013-11-30 14:14:07 658633D255FEF154EA1CB8705B4468C5 174504 -c--a-w- C:\Program Files\Java\jre7\bin\java.exe 2013-11-30 14:14:07 2F7EBCD8FB6557997F0583508FFFE6B1 15784 -c--a-w- C:\Program Files\Java\jre7\bin\java-rmi.exe 2013-11-30 14:14:05 A9743D2D69B80800FEA5F24E7C4B02B3 48040 -c--a-w- C:\Program Files\Java\jre7\bin\jabswitch.exe 2013-11-28 08:01:12 1616A89B0034F53FC6760B9DB7185B33 5927000 -c--a-w- C:\Program Files\AVG\AVG2014\avgmfapx.exe === C: other files == 2013-11-30 17:42:02 0BE568FD1E7D6C6D64D2272649F5C716 111 ----a-w- C:\Users\Mel\AppData\Local\Temp\scripttest.vbs 2013-11-30 14:14:21 0A35B7026416325DE4A3EEC131F6EE2C 18636 -c--a-w- C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip 2013-11-30 13:24:58 52627B676BDB5F8E928CB66C79908B6B 3103 ----a-w- C:\Users\Mel\AppData\Local\Temp\kill_PokkiDownloadHelper.vbs 2013-11-27 08:02:05 1CA4E115735C35D23945B5DF9B61A2F6 87923 ----a-w- C:\ProgramData\AVG2014\IDS\outbox\tmp_60c4d542-4948-47d3-9dd7-d157aaaad865.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Apoint"="C:\Program Files\Apoint2K\Apoint.exe" "RtHDVCpl"="RtHDVCpl.exe" "Skytel"="Skytel.exe" "RIMBBLaunchAgent.exe"="C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "DivXUpdate"="C:\Program Files\DivX\DivX Update\DivXUpdate.exe /CHECKNOW" "AVG_UI"="C:\Program Files\AVG\AVG2014\avgui.exe /TRAYONLY" "vProt"="C:\Program Files\AVG Secure Search\vprot.exe" "snp2uvc"="C:\Windows\vsnp2uvc.exe" "tsnp2uvc"="C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "ITSecMng"="%ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "BrowserBallot"="browserchoice.exe" "aswAhAScr.dll"="C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\AhAScr.dll" "aswasOutExt.dll"="C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\asOutExt.dll" "aswaswOtl.dll"="C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\aswOtl.dll" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" C:\\PROGRA~1\\Google\\GOOGLE~1\\GOEC62~1.DLL" ==== Startup Folders ====================== 2009-03-07 22:54:15 1030 ----a-w- C:\Users\Mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0 .lnk 2009-12-23 18:21:46 821 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk 2013-05-17 17:35:44 1913 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [30-11-2013 15:08] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [03-04-2009 14:46] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [03-04-2009 14:46] C:\Windows\tasks\Norton Security Scan for Mel.job --ah----- C:SC:\Program Files\Norton Security Scan\Norton Security Scan\Engine\2.7.3.34\Nss.exe [] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\Norton Security Scan for Mel" [C:\Program Files\Norton Security Scan\Norton Security Scan\Engine\2.7.3.34\Nss.exe] "C:\Windows\system32\tasks\RunAsStdUser Task for VeohWebPlayer" [C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe] "C:\Windows\system32\tasks\{1877F859-7EE3-4221-B282-F152720CA28D}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype "C:\Windows\system32\tasks\{3912CB55-6503-4F18-8F91-A59486C775C5}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype "C:\Windows\system32\tasks\{412763AC-AA11-4ABF-9420-105EFC6EB248}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.124.259/nl/go/help.faq.installer?source=lightinstaller&LastError=1618] "C:\Windows\system32\tasks\{685C647F-C9FF-4886-B84D-84553ADB524B}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype "C:\Windows\system32\tasks\{7389AF99-20C4-4147-BC0E-065C6CC11D06}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.124.259/nl/go/help.faq.installer?source=lightinstaller&LastError=1618] "C:\Windows\system32\tasks\{A1D404D9-5183-4215-A141-601CC5E86897}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype "C:\Windows\system32\tasks\{A5A37518-4D34-43AB-AF2E-3E59670581D8}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.124.259/nl/go/help.faq.installer?source=lightinstaller&LastError=1618] "C:\Windows\system32\tasks\{B7DA7F00-B22E-401E-BAC6-3E7E9C73627B}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype "C:\Windows\system32\tasks\{FE477C1C-1D85-46AF-ACF1-B0D9585BA005}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"="C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5" [09-06-2013 15:08] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[30-11-2013 14:38] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02-10-2012 12:14] ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Secure Search\ChromeExt\17.1.2.1\avg.crx[] nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[06-05-2013 09:12] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[] Skype Click to Call - Mel - Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl DVDVideoSoft Browser Extension - Mel - Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp Google Wallet - Mel - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda DivX Plus Web Player HTML5 \u003Cvideo\u003E - Mel - Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm ==== Chrome Fix ====================== C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.nl/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://nl.woofi.info/" "Default_Page_URL"="http://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=&Br=EM&Loc=DUT_DE&Sys=PTB&M=eMachines E510" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.nl/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {4F11ACBB-393F-4c86-A214-FF3D0D155CC3} Burn4Free CD and DVD Werkbalk Url="http://search.burn4free-toolbar.com/search?p=Q&ts=ne&w={searchTerms}&csrc=search-field" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Reset Google Chrome ====================== C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1 deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Mel\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mel\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\TEMP.PC_van_Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QHET3B51 will be deleted at reboot C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Mel\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QHET3B51" not found ==== EOF on za 30-11-2013 at 21:07:38,04 ======================
-
Hallo, Als ik op 'uitvoeren als administrator' klik dan verschijnt dit schermpje van Windows script host: Kan script-engine VBScript voor script C:\Users\Mel\Appdata\Local\Temp\drt.vbs niet vinden doe ik iets verkeerd? - - - Updated - - - Ik heb het scherm al hoor, ik moet dus geen administrator gebruiken.
-
Hallo, Dit stond er in het log- kladblok: Logfile of random's system information tool 1.09 (written by random/random) Run by Mel at 2013-11-30 16:50:03 Microsoft® Windows Vista™ Home Basic Service Pack 2 System drive C: has 5 GB (5%) free of 104 GB Total RAM: 1013 MB (18% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:52:57, on 30-11-2013 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16520) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe C:\Windows\system32\taskeng.exe C:\Program Files\Trusteer\Rapport\bin\RapportService.exe C:\Program Files\Apoint2K\Apoint.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\AVG\AVG2014\avgui.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Windows\vsnp2uvc.exe C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe C:\Program Files\OpenOffice.org 3\program\soffice.exe C:\Program Files\OpenOffice.org 3\program\soffice.bin C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe C:\Program Files\Apoint2K\ApMsgFwd.exe C:\Program Files\Apoint2K\Apntex.exe C:\Windows\system32\conime.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\system32\sdclt.exe C:\Windows\system32\DllHost.exe C:\Program Files\AVAST Software\Avast\avastUi.exe C:\Users\Mel\Downloads\RSIT (1).exe C:\Program Files\trend micro\Mel.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = E510 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://nl.woofi.info/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe O1 - Hosts: ::1 localhost O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (file missing) O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [iTSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe O4 - HKLM\..\Run: [tsnp2uvc] C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\RunOnce: [browserBallot] browserchoice.exe O4 - HKLM\..\RunOnce: [aswAhAScr.dll] "C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe" "C:\Program Files\Alwil Software\Avast5\AhAScr.dll" O4 - HKLM\..\RunOnce: [OurBabyMaker_27bar Uninstall] rundll32 C:\PROGRA~1\27UNIN~1.DLL,O -3 O4 - HKLM\..\RunOnce: [aswasOutExt.dll] "C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe" "C:\Program Files\Alwil Software\Avast5\asOutExt.dll" O4 - HKLM\..\RunOnce: [aswaswOtl.dll] "C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe" "C:\Program Files\Alwil Software\Avast5\aswOtl.dll" O4 - HKLM\..\RunOnce: [installShieldSetup] C:\PROGRA~1\INSTAL~1\{785A6~1\setup.exe -rebootC:\PROGRA~1\INSTAL~1\{785A6~1\reboot.ini -l0x0409 O4 - HKLM\..\RunOnce: [brandClearStubs] RUNDLL32 IEDKCS32.DLL,BrandCleanInstallStubs >{B7573B6B-D52D-425C-A5D6-B4D2460150B8} O4 - HKLM\..\RunOnce: [NoIE4StubProcessing] C:\Windows\system32\reg.exe DELETE "HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" /v "NoIE4StubProcessing" /f O4 - HKLM\..\RunOnce: [aswredemption.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\redemption.dll" O4 - HKLM\..\RunOnce: [removeiMeshdatamngr] cmd.exe /c RD /S /Q "C:\Program Files\iMesh Applications\Mediabar" O4 - HKLM\..\RunOnce: [installShieldSetup1] C:\PROGRA~1\INSTAL~1\{399C3~1\setup.exe -rebootC:\PROGRA~1\INSTAL~1\{399C3~1\reboot.ini -l0x13 O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: OpenOffice.org 3.0 .lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Azada/Images/armhelper.ocx O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.0.12\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate1c9b462bb812ed0) (gupdate1c9b462bb812ed0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - Unknown owner - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe (file missing) O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: vToolbarUpdater17.1.2 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe -- End of file - 13368 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\DriverCure.job C:\Windows\tasks\DriverScanner.job C:\Windows\tasks\dsmonitor.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\Norton Security Scan for Mel.job C:\Windows\tasks\ParetoLogic Registration.job C:\Windows\tasks\ParetoLogic Registration3.job C:\Windows\tasks\ParetoLogic Update Version2.job C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job C:\Windows\tasks\ParetoLogic Update Version3.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}] MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll [2013-02-05 94112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}] DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-11-30 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-30 606544] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] AVG Security Toolbar - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll [2013-09-17 3122864] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-09 194640] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-10-02 4119744] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-11-30 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] DVDVideoSoft WebPageAdjuster Class - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2013-04-05 280224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776] {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-30 606544] {95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll [2013-09-17 3122864] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-09 194640] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2007-07-21 159744] "RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-04-24 6111232] "Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816] "ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2007-09-28 75136] "RIMBBLaunchAgent.exe"=C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [2011-02-18 79192] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2013-02-13 1263952] "AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2013-11-07 4956176] "vProt"=C:\Program Files\AVG Secure Search\vprot.exe [2013-11-11 2420248] "snp2uvc"=C:\Windows\vsnp2uvc.exe [2009-08-12 662016] "tsnp2uvc"=C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe [2010-09-20 321024] "AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-30 3568312] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "BrowserBallot"=C:\Windows\system32\browserchoice.exe [2010-02-12 293376] "aswAhAScr.dll"=C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\AhAScr.dll [] "OurBabyMaker_27bar Uninstall"=rundll32 C:\PROGRA~1\27UNIN~1.DLL,O -3 [] "aswasOutExt.dll"=C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\asOutExt.dll [] "aswaswOtl.dll"=C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\aswOtl.dll [] "InstallShieldSetup"=C:\PROGRA~1\INSTAL~1\{785A6~1\setup.exe -rebootC:\PROGRA~1\INSTAL~1\{785A6~1\reboot.ini -l0x0409 [] "BrandClearStubs"=RUNDLL32 IEDKCS32.DLL,BrandCleanInstallStubs >{B7573B6B-D52D-425C-A5D6-B4D2460150B8} [] "NoIE4StubProcessing"=C:\Windows\system32\reg.exe [2009-04-11 61952] "aswredemption.dll"=C:\Program Files\AVAST Software\Avast\aswRegSvr.exe C:\Program Files\AVAST Software\Avast\redemption.dll [] "removeiMeshdatamngr"=cmd.exe /c RD /S /Q C:\Program Files\iMesh Applications\Mediabar [] "InstallShieldSetup1"=C:\PROGRA~1\INSTAL~1\{399C3~1\setup.exe [2013-08-22 460248] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-01-02 39408] "Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-10-21 20549280] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe C:\Users\Mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup OpenOffice.org 3.0 .lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2008-01-22 200704] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\Users\Mel\AppData\Local\Temp\refr03.10.exe"="C:\Users\Mel\AppData\Local\Temp\refr03.10.exe:*:Enabled:Windows Application Service" "C:\Users\Mel\AppData\Local\Temp\cm25.09.exe"="C:\Users\Mel\AppData\Local\Temp\cm25.09.exe:*:Enabled:Windows Application Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave2"=wdmaud.drv "midi1"=wdmaud.drv "mixer2"=wdmaud.drv "wave3"=wdmaud.drv "midi2"=wdmaud.drv "mixer3"=wdmaud.drv "wave4"=wdmaud.drv "midi3"=wdmaud.drv "mixer4"=wdmaud.drv "msacm.siren"=sirenacm.dll "wave5"=wdmaud.drv "midi4"=wdmaud.drv "mixer5"=wdmaud.drv "aux1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-11-30 16:50:09 ----DC---- C:\Program Files\trend micro 2013-11-30 16:50:03 ----DC---- C:\rsit 2013-11-30 15:19:32 ----D---- C:\ProgramData\Oracle 2013-11-30 15:17:12 ----A---- C:\Windows\system32\javaws.exe 2013-11-30 15:15:32 ----A---- C:\Windows\system32\WindowsAccessBridge.dll 2013-11-30 15:15:31 ----A---- C:\Windows\system32\javaw.exe 2013-11-30 15:15:27 ----A---- C:\Windows\system32\java.exe 2013-11-30 14:44:47 ----D---- C:\Users\Mel\AppData\Roaming\AVAST Software 2013-11-30 14:39:19 ----A---- C:\Windows\system32\drivers\aswVmm.sys 2013-11-30 14:39:19 ----A---- C:\Windows\system32\drivers\aswTdi.sys 2013-11-30 14:39:18 ----A---- C:\Windows\system32\drivers\aswSP.sys 2013-11-30 14:39:17 ----A---- C:\Windows\system32\drivers\aswRvrt.sys 2013-11-30 14:39:16 ----A---- C:\Windows\system32\drivers\aswSnx.sys 2013-11-30 14:39:14 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys 2013-11-30 14:39:13 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys 2013-11-30 14:39:12 ----A---- C:\Windows\system32\drivers\aswRdr.sys 2013-11-30 14:38:40 ----A---- C:\Windows\avastSS.scr 2013-11-30 14:10:25 ----DC---- C:\Program Files\CCleaner 2013-11-28 09:16:49 ----SHDC---- C:\Config.Msi 2013-11-21 19:07:37 ----A---- C:\Windows\ntbtlog.txt 2013-11-20 07:53:19 ----SHD---- C:\found.008 2013-11-15 06:41:47 ----A---- C:\Windows\system32\vbscript.dll 2013-11-15 06:41:47 ----A---- C:\Windows\system32\mshtmled.dll 2013-11-15 06:41:44 ----A---- C:\Windows\system32\jsproxy.dll 2013-11-15 06:41:44 ----A---- C:\Windows\system32\ieui.dll 2013-11-15 06:41:43 ----A---- C:\Windows\system32\msfeeds.dll 2013-11-15 06:41:43 ----A---- C:\Windows\system32\ieUnatt.exe 2013-11-15 06:41:42 ----A---- C:\Windows\system32\wininet.dll 2013-11-15 06:41:41 ----A---- C:\Windows\system32\jscript9.dll 2013-11-15 06:41:41 ----A---- C:\Windows\system32\jscript.dll 2013-11-15 06:41:40 ----A---- C:\Windows\system32\url.dll 2013-11-15 06:41:40 ----A---- C:\Windows\system32\iertutil.dll 2013-11-15 06:41:37 ----A---- C:\Windows\system32\urlmon.dll 2013-11-15 06:41:35 ----A---- C:\Windows\system32\ieframe.dll 2013-11-15 06:41:34 ----A---- C:\Windows\system32\mshtml.dll 2013-11-14 10:05:46 ----A---- C:\Windows\system32\gdi32.dll 2013-11-14 10:05:35 ----A---- C:\Windows\system32\IKEEXT.DLL 2013-11-14 10:05:34 ----A---- C:\Windows\system32\FWPUCLNT.DLL 2013-11-14 10:05:20 ----A---- C:\Windows\system32\crypt32.dll 2013-11-08 14:12:27 ----SHD---- C:\found.007 2013-11-05 21:50:48 ----A---- C:\Windows\system32\drivers\avgdiskx.sys 2013-11-04 21:57:30 ----A---- C:\Windows\system32\drivers\avgidsdriverx.sys 2013-10-31 23:00:28 ----A---- C:\Windows\system32\drivers\avgldx86.sys 2013-10-31 22:30:08 ----A---- C:\Windows\system32\drivers\avglogx.sys ======List of files/folders modified in the last 1 month====== 2013-11-30 16:52:04 ----D---- C:\Windows\Temp 2013-11-30 16:50:09 ----RDC---- C:\Program Files 2013-11-30 16:48:41 ----D---- C:\Users\Mel\AppData\Roaming\Skype 2013-11-30 15:27:23 ----D---- C:\Windows\Prefetch 2013-11-30 15:20:07 ----SHD---- C:\Windows\Installer 2013-11-30 15:20:01 ----DC---- C:\Program Files\Common Files\Java 2013-11-30 15:19:32 ----HD---- C:\ProgramData 2013-11-30 15:17:12 ----D---- C:\Windows\System32 2013-11-30 15:13:38 ----DC---- C:\Program Files\Java 2013-11-30 15:08:23 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2013-11-30 15:07:59 ----SHD---- C:\System Volume Information 2013-11-30 14:40:22 ----D---- C:\Windows\system32\Tasks 2013-11-30 14:39:19 ----D---- C:\Windows\system32\drivers 2013-11-30 14:39:01 ----D---- C:\Windows\winsxs 2013-11-30 14:38:54 ----D---- C:\Windows 2013-11-30 14:38:40 ----A---- C:\Windows\system32\aswBoot.exe 2013-11-30 14:31:32 ----D---- C:\ProgramData\AVAST Software 2013-11-30 14:24:49 ----DC---- C:\Program Files\Common Files 2013-11-30 14:21:42 ----D---- C:\ProgramData\Apple 2013-11-30 14:15:22 ----D---- C:\Windows\system32\catroot2 2013-11-30 14:11:36 ----DC---- C:\Program Files\NCH Swift Sound 2013-11-30 14:08:03 ----D---- C:\Program Files\Zylom Games 2013-11-30 11:02:32 ----D---- C:\ProgramData\MFAData 2013-11-29 09:46:19 ----D---- C:\Users\Mel\AppData\Roaming\uTorrent 2013-11-29 09:40:31 ----D---- C:\Windows\Tasks 2013-11-27 09:26:55 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-11-27 09:26:53 ----D---- C:\Windows\inf 2013-11-21 18:28:13 ----RD---- C:\Users 2013-11-17 16:13:19 ----D---- C:\ProgramData\Skype 2013-11-17 16:13:04 ----RD---- C:\Program Files\Skype 2013-11-15 07:46:33 ----D---- C:\Windows\rescache 2013-11-15 07:04:03 ----D---- C:\Windows\system32\migration 2013-11-15 07:03:54 ----DC---- C:\Program Files\Internet Explorer 2013-11-15 07:03:47 ----D---- C:\Windows\system32\nl-NL 2013-11-15 06:43:07 ----D---- C:\Windows\system32\catroot 2013-11-15 06:39:14 ----D---- C:\Windows\system32\MRT 2013-11-15 06:24:36 ----A---- C:\Windows\system32\mrt.exe 2013-11-11 10:24:13 ----DC---- C:\Program Files\AVG Secure Search 2013-11-06 16:16:15 ----SD---- C:\Users\Mel\AppData\Roaming\Microsoft 2013-11-01 19:09:53 ----D---- C:\Windows\system32\LogFiles ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-11-30 178304] R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2013-10-24 147768] R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2013-10-31 222520] R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2013-10-01 102712] R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2013-09-10 27448] R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-07-12 305176] R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2011-10-04 45744] R0 RapportKELL;RapportKELL; C:\Windows\System32\Drivers\RapportKELL.sys [2013-09-10 97008] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2008-12-25 715248] R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2012-08-21 18544] R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr.sys [2013-11-30 54832] R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-11-30 774392] R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-30 403440] R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-11-30 57672] R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2013-11-05 120600] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2013-11-04 209176] R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2013-09-17 22840] R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2013-10-31 176952] R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2013-08-01 193848] R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2013-10-01 37664] R1 RapportCerberus_56758;RapportCerberus_56758; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_56758.sys [2013-08-20 330960] R1 RapportEI;RapportEI; \??\C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [2013-09-10 148688] R1 RapportPG;RapportPG; \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [2013-09-10 222416] R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2007-10-02 64128] R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-11-30 35656] R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-11-30 70384] R2 int15;int15; \??\C:\Windows\system32\drivers\int15.sys [2008-04-03 15392] R2 RMCAST;RMCAST (Pgm)-protocolstuurprogramma; C:\Windows\system32\DRIVERS\RMCAST.sys [2009-04-11 113664] R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-12-11 163376] R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-01-22 2016256] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-04-24 2126688] R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848] R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2008-12-01 47360] R3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial.sys [2009-01-09 27136] R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-21 8192] R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2008-03-25 41472] R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2008-03-25 131712] R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2007-11-29 36608] R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2008-03-19 74112] R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-10-18 41856] R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560] S0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-30 49944] S1 DritekPortIO;Dritek General Port I/O; \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys [] S3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-08-18 921600] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632] S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016] S3 NCHSSVAD;SoundTap Recorder; C:\Windows\system32\drivers\nchssvad.sys [2009-06-28 27136] S3 RimUsb;BlackBerry Smartphone; C:\Windows\System32\Drivers\RimUsb.sys [2011-02-16 64000] S3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2010-09-13 3563776] S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2005-08-30 58320] S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2005-08-30 8304] S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2005-08-30 94000] S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320] S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\Windows\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336] S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\Windows\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000] S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-07 18612] S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2008-01-22 54144] S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [] S3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-07-12 73344] S3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272] S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136] S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656] S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-30 50344] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2013-11-11 3478544] R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2013-09-24 348008] R2 BUNAgentSvc;NTI Backup Now 5 Agent Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384] R2 ETService;Empowering Technology Service; C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe [2008-04-03 24576] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504] R2 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-06 50424] R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-04 131072] R2 RapportMgmtService;Rapport Management Service; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2013-09-10 1435928] R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136] R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-02 3064000] R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-09-28 128360] R2 vToolbarUpdater17.1.2;vToolbarUpdater17.1.2; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe [2013-11-11 1734680] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate1c9b462bb812ed0;Google Updateservice (gupdate1c9b462bb812ed0); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-03 133104] S2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-07-12 354840] S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440] S2 PCTAVSvc;PC Tools AntiVirus Engine; C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe [] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-09-05 171680] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-30 257416] S3 Boonty Games;Boonty Games; C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe [2008-09-25 69120] S3 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-05-22 29744] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-03 133104] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-23 194032] S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856] S4 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-02-05 235216] -----------------EOF----------------- En dit in info-kladblok: info.txt logfile of random's system information tool 1.09 2013-11-30 16:53:16 ======Uninstall list====== -->"C:\Program Files\InstallShield Installation Information\{8F1B6239-FEA0-450A-A950-B05276CE177C}\setup.exe" -runfromtemp -l0x0013 -removeonly Aangifte inkomstenbelasting 2010-->C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2010\ib2010u.exe Aangifte inkomstenbelasting 2011-->C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2011\ib2011u.exe Aangifte inkomstenbelasting 2012-->C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2012\ib2012u.exe Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall Adobe AIR-->MsiExec.exe /I{A0087DDE-69D0-11E2-AD57-43CA6188709B} Adobe Download Assistant-->msiexec /qb /x {5E21B617-F52E-BB10-92F9-C8AB2C799A8A} Adobe Download Assistant-->MsiExec.exe /I{5E21B617-F52E-BB10-92F9-C8AB2C799A8A} Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe -maintain activex Adobe Flash Player 11 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_152_Plugin.exe -maintain plugin Adobe Reader X (10.1.8) - Nederlands-->MsiExec.exe /I{AC76BA86-7AD7-1043-7B44-AA1000000001} Adobe Shockwave Player 11.5-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe" ALPS Touch Pad Driver-->C:\Program Files\Apoint2K\Uninstap.exe ADDREMOVE avast! Free Antivirus-->C:\Program Files\AVAST Software\Avast\Setup\Instup.exe /control_panel AVG 2014-->"C:\Program Files\AVG\AVG2014\avgmfapx.exe" /AppMode=SETUP /Uninstall AVG 2014-->MsiExec.exe /I{3B97ADB7-3DA1-4964-BC10-68384BA6A66F} AVG 2014-->MsiExec.exe /I{EEAFDDCF-0B0E-44DB-995B-886FB139CF1F} AVG Security Toolbar-->C:\Program Files\AVG Secure Search\UNINSTALL.exe /PROMPT /UNINSTALL BlackBerry App World Browser Plugin-->MsiExec.exe /X{8DE03F6E-FCD2-4497-A8FF-F6C4430618B6} BlackBerry Desktop Software 6.1-->MsiExec.exe /I{75157F34-02C6-4831-BD66-3BC49E7A8394} BlackBerry Desktop Software 6.1-->MsiExec.exe /i{75157F34-02C6-4831-BD66-3BC49E7A8394} BlackBerry Device Software Updater-->MsiExec.exe /X{12BAA98C-F8DD-4BC9-BBE6-1C8463114197} Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6} Browser Address Error Redirector-->regsvr32 /u /s "c:\windows\system32\BAE.dll" CCleaner-->"C:\Program Files\CCleaner\uninst.exe" Conduit Engine-->C:\Program Files\ConduitEngine\ConduitEngineUninstall.exe ConvertXtoDVD 3.0.0.1-->"C:\Program Files\VSO\ConvertX\3\unins000.exe" D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF} DivX Setup-->C:\ProgramData\DivX\Setup\DivXSetup.exe /uninstall DriverScanner-->"C:\Program Files\Uniblue\DriverScanner\unins000.exe" eMachines Recovery Management-->"C:\Program Files\InstallShield Installation Information\{7F811A54-5A09-4579-90E1-C93498E230D9}\setup.exe" -runfromtemp -l0x0013 -removeonly eMachines-->"C:\Program Files\Oberon Media\eMachines\Uninstall.exe" "C:\Program Files\Oberon Media\eMachines\install.log" Express Burn-->C:\Program Files\NCH Swift Sound\ExpressBurn\uninst.exe Free YouTube to MP3 Converter version 3.12.1.320-->C:\Program Files\Common Files\DVDVideoSoft\lib\Uninstall.exe GameHouse-->"C:\Program Files\RealArcade\Installer\bin\gameinstaller.exe" "C:\Program Files\RealArcade\Installer\installerMain.clf" "C:\Program Files\RealArcade\Installer\uninstall\GameHouse.rguninst" "AddRemove" Google Chrome-->"C:\Program Files\Google\Chrome\Application\31.0.1650.57\Installer\setup.exe" --uninstall --multi-install --chrome --system-level Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall Google Drive-->MsiExec.exe /X{192A227B-A8C8-4C6D-B939-21FAEB007E1E} Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_08875ABF44579E20.exe" /uninstall Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} GPL MPEG-1/2 DirectShow Decoder Filter-->MsiExec.exe /I{870815CA-6B60-47B6-88DD-A67F42D2F03E} Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" Intel® Graphics Media Accelerator Driver-->C:\Windows\system32\igxpun.exe -uninstall Intel® Matrix Storage Manager-->C:\Windows\System32\Imsmudlg.exe Java 7 Update 45-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217045FF} Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} LAVMediaCodec 1.0.1-->"C:\Program Files\LAVMediaCodec\unins000.exe" McAfee Security Scan Plus-->"C:\Program Files\McAfee Security Scan\uninstall.exe" Microsoft .NET Framework 3.5 Language Pack SP1 - nld-->MsiExec.exe /I{101738D7-D805-37A9-BB91-1F2C351782BF} Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft .NET Framework 4 Client Profile NLD Language Pack-->MsiExec.exe /X{2617FA1F-0C04-3ABB-AF64-7D5B6620C341} Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6} Microsoft Search Enhancement Pack-->MsiExec.exe /X{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80} Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} Microsoft SQL Server Compact 3.5 SP2 ENU-->MsiExec.exe /I{3A9FC03D-C685-4831-94CF-4EDFD3749497} Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909} Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218-->MsiExec.exe /X{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942} Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F} Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} Microsoft Works-->MsiExec.exe /I{A2A0A82F-025F-458D-A0CD-9BB2320804B5} MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} Norton Security Scan-->C:\Program Files\NortonInstaller\{397E31AA-0D78-4649-A01C-339D73A2ED35}\NSS\LicenseType\2.7.3.34\InstStub.exe /X NTI Backup Now 5-->C:\Program Files\InstallShield Installation Information\{12EFA1A4-AC3B-443C-8143-237EDE760403}\setup.exe -runfromtemp -l0x0413 OpenOffice.org 3.2-->MsiExec.exe /I{F578F3FA-1AFC-422F-BDF1-817E1E0C78BC} ParetoLogic DriverCure-->C:\Program Files\ParetoLogic\DriverCure\uninstall.exe Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe" Rapport-->MsiExec.exe /X{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215} Real Alternative 1.7.5-->"C:\Program Files\Real Alternative\unins000.exe" Realtek High Definition Audio Driver-->RtlUpd.exe -r -m -nrg2709 SAMSUNG CDMA Modem Driver Set-->C:\Windows\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe SAMSUNG Mobile USB Modem 1.0 Software-->C:\Windows\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe SAMSUNG Mobile USB Modem Software-->C:\Windows\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe Samsung PC Studio 3 USB Driver Installer-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x13 -removeonly Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {94EFE014-E577-310B-B2D5-6973A21D8A90} /qb+ REBOOTPROMPT="" Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {939AF4BC-EC42-38D1-AE82-91D4A7ED8911} /qb+ REBOOTPROMPT="" Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8433C01-319F-3370-850E-87C35496299A} /qb+ REBOOTPROMPT="" Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {48B0C142-A0F4-3263-90E1-1984CBB8DD18} /qb+ REBOOTPROMPT="" Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {3E0806DB-3085-378A-840A-F0D3AE3609D1} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {9EC88EA8-4ABE-393C-87BD-90EABB1C4C9B} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {86BB5A25-8CC3-33CE-A393-CF28901682B2} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {16EEC04A-B924-37E0-97CF-422DCEFC1B63} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {C4D978AA-2668-3404-96DE-96E2AFC62FD7} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CD6D9B8A-BBC4-3FA7-B24D-D74CE90630CF} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B7C20E16-9A3A-3F05-A6B5-E15AA09200E0} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CF581973-77E0-3093-A1AC-A03130DE990F} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {80774950-A707-386B-9C9B-D052D20BD54B} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {576C07F8-777C-3981-B8BF-063A6B57254E} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {90EA7C4E-7F03-31FD-BE27-B1A9B4AE56BD} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {1E88AFAE-CEF7-3540-8FF6-6D00877B2767} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8BA4E34D-95C5-3907-87E4-62FBB31A2190} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {21AEAFE4-6F0E-3169-A09C-9FB37C77E555} /parameterfolder Client Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder ClientLP Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder ClientLP Segoe UI-->MsiExec.exe /I{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA} Skype Click to Call-->MsiExec.exe /I{B6CF2967-C81E-40C0-9815-C05774FEF120} Skype™ 6.10-->MsiExec.exe /X{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D} Spelling Dictionaries Support For Adobe Reader 8-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-800000000003} Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\setup.exe Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1043 /parameterfolder ClientLP Trust Webcam-->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x0013 -removeonly Trusteer Eindpuntbeveiliging-->msiexec /x{1DD81E7D-0D28-4ceb-87B2-C041A4FCB215} /lvx+ "C:\ProgramData\Trusteer\Rapport\logs\uninstall.log" Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client Update for Microsoft .NET Framework 4 Client Profile (KB2836939)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {0160BA31-409C-3FD0-9C87-C7D95BF46986} /parameterfolder Client Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {D5B80B17-2443-3296-A700-792FAA0748BD} /parameterfolder Client VC80CRTRedist - 8.0.50727.6195-->MsiExec.exe /I{933B4015-4618-4716-A828-5289FC03165F} VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027} Verzoek of wijziging voorlopige aanslag 2013-->C:\Program Files\Belastingdienst\Verzoek of wijziging voorlopige aanslag\2013\va2013u.exe Visual Studio 2012 x86 Redistributables-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8} VLC media player 2.1.1-->C:\Program Files\VideoLAN\VLC\uninstall.exe Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066} Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe Windows Live Essentials-->MsiExec.exe /I{2A07C35B-8384-4DA4-9A95-442B6C89A073} Windows Live ID Sign-in Assistant-->MsiExec.exe /I{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F} Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917} Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30} Windows Live Mail-->MsiExec.exe /I{D588365A-AE39-4F27-BDAE-B4E72C8E900C} Windows Live Messenger-->MsiExec.exe /X{48294D95-EE9A-4377-8213-44FC4265FB27} Windows Live Messenger-->MsiExec.exe /X{E5B21F11-6933-4E0B-A25C-7963E3C07D11} Windows Live MIME IFilter-->MsiExec.exe /I{AF844339-2F8A-4593-81B3-9F4C54038C4E} Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38} Windows Live Movie Maker-->MsiExec.exe /X{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92} Windows Live Photo Common-->MsiExec.exe /X{9BD262D0-B788-4546-A0A5-F4F56EC3834B} Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3} Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1} Windows Live Photo Gallery-->MsiExec.exe /X{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA} Windows Live PIMT Platform-->MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F} Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F} Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4} Windows Live Sync-->MsiExec.exe /X{E34F703A-1C9D-4B1F-ABBE-D7E8800B860D} Windows Live UX Platform Language Pack-->MsiExec.exe /I{D6F25CF9-4E87-43EB-B324-C12BE9CDD668} Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} Windows Live Writer Resources-->MsiExec.exe /X{14B441B7-774D-4170-98EA-A13667AE6218} Windows Live Writer-->MsiExec.exe /X{7E017923-16F8-4E32-94EF-0A150BD196FE} Windows Live Writer-->MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04} Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF} WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe ======Security center information====== AS: Windows Defender ======System event log====== Computer Name: PC_van_Mel Event Code: 7036 Message: De Microsoft Software Shadow Copy Provider-service heeft nu de status gestopt. Record Number: 404636 Source Name: Service Control Manager Time Written: 20130709073708.000000-000 Event Type: Informatie User: Computer Name: PC_van_Mel Event Code: 7036 Message: De Google Updateservice (gupdate1c9b462bb812ed0)-service heeft nu de status gestopt. Record Number: 404635 Source Name: Service Control Manager Time Written: 20130709073649.000000-000 Event Type: Informatie User: Computer Name: PC_van_Mel Event Code: 7036 Message: De Google Updateservice (gupdate1c9b462bb812ed0)-service heeft nu de status wordt uitgevoerd. Record Number: 404634 Source Name: Service Control Manager Time Written: 20130709073612.000000-000 Event Type: Informatie User: Computer Name: PC_van_Mel Event Code: 10029 Message: DCOM heeft de service gupdate1c9b462bb812ed0 met argumenten "/comsvc" gestart om de server te kunnen uitvoeren: {4EB61BAC-A3B6-4760-9581-655041EF4D69} Record Number: 404633 Source Name: Microsoft-Windows-DistributedCOM Time Written: 20130709073611.000000-000 Event Type: Informatie User: Computer Name: PC_van_Mel Event Code: 19 Message: Installatie voltooid: de volgende update is geïnstalleerd: Definition Update for Windows Defender - KB915597 (Definition 1.153.1573.0) Record Number: 404632 Source Name: Microsoft-Windows-WindowsUpdateClient Time Written: 20130709073550.546311-000 Event Type: Informatie User: NT AUTHORITY\SYSTEEM =====Application event log===== Computer Name: PC_VAN_MEL Event Code: 100 Message: Record Number: 110427 Source Name: Bonjour Service Time Written: 20130404103530.000000-000 Event Type: Fout User: Computer Name: PC_VAN_MEL Event Code: 100 Message: Record Number: 110426 Source Name: Bonjour Service Time Written: 20130404103530.000000-000 Event Type: Fout User: Computer Name: PC_VAN_MEL Event Code: 100 Message: Record Number: 110425 Source Name: Bonjour Service Time Written: 20130404103530.000000-000 Event Type: Fout User: Computer Name: PC_VAN_MEL Event Code: 100 Message: Record Number: 110424 Source Name: Bonjour Service Time Written: 20130404103529.000000-000 Event Type: Fout User: Computer Name: PC_VAN_MEL Event Code: 100 Message: Record Number: 110423 Source Name: Bonjour Service Time Written: 20130404103529.000000-000 Event Type: Fout User: =====Security event log===== Computer Name: PC_van_Mel Event Code: 4648 Message: Poging tot aanmelden met expliciete referenties. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: PC_VAN_MEL$ Accountdomein: WORKGROUP Aanmeldings-id: 0x3e7 Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Account waarvan de referenties zijn gebruikt: Accountnaam: SYSTEEM Accountdomein: NT AUTHORITY Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Doelserver: Naam van doelserver: localhost Aanvullende gegevens: localhost Procesgegevens: Proces-id: 0x324 Procesnaam: C:\Windows\System32\services.exe Netwerkgegevens: Netwerkadres: - Poort: - Deze gebeurtenis wordt gegenereerd wanneer een proces probeert zich op een account aan te melden door expliciet de referenties van die account op te geven. Meestal gebeurt dit in batchconfiguraties zoals geplande taken, of bij gebruik van de opdracht Uitvoeren als. Record Number: 105562 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130321063656.499405-000 Event Type: Controle geslaagd User: Computer Name: PC_van_Mel Event Code: 4672 Message: Speciale bevoegdheden toegewezen aan nieuwe aanmelding. Onderwerp: Beveiligings-id: S-1-5-21-2573614616-3536340799-1106661244-1000 Accountnaam: Mel Accountdomein: PC_van_Mel Aanmeldings-id: 0x2fe5b Bevoegdheden: SeSecurityPrivilege SeTakeOwnershipPrivilege SeLoadDriverPrivilege SeBackupPrivilege SeRestorePrivilege SeDebugPrivilege SeSystemEnvironmentPrivilege SeImpersonatePrivilege Record Number: 105561 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130321063647.981805-000 Event Type: Controle geslaagd User: Computer Name: PC_van_Mel Event Code: 4624 Message: Er is een account aangemeld. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: PC_VAN_MEL$ Accountdomein: WORKGROUP Aanmeldings-id: 0x3e7 Aanmeldingstype: 2 Nieuwe aanmelding: Beveiligings-id: S-1-5-21-2573614616-3536340799-1106661244-1000 Accountnaam: Mel Accountdomein: PC_van_Mel Aanmeldings-id: 0x2feae Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Procesgegevens: Proces-id: 0x314 Naam proces: C:\Windows\System32\winlogon.exe Netwerkgegevens: Naam van werkstation: PC_VAN_MEL Netwerkadres van bron: 127.0.0.1 Poort van bron: 0 Gedetailleerde verificatiegegevens: Aanmeldingsproces: User32 Verificatiepakket: Negotiate Doorgezette services: - Pakketnaam (alleen NTLM): - Sleutellengte: 0 Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen. De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe. In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk). Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld. In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn. De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag. - Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis. - In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt. - Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt. - Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd. Record Number: 105560 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130321063647.981805-000 Event Type: Controle geslaagd User: Computer Name: PC_van_Mel Event Code: 4624 Message: Er is een account aangemeld. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: PC_VAN_MEL$ Accountdomein: WORKGROUP Aanmeldings-id: 0x3e7 Aanmeldingstype: 2 Nieuwe aanmelding: Beveiligings-id: S-1-5-21-2573614616-3536340799-1106661244-1000 Accountnaam: Mel Accountdomein: PC_van_Mel Aanmeldings-id: 0x2fe5b Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Procesgegevens: Proces-id: 0x314 Naam proces: C:\Windows\System32\winlogon.exe Netwerkgegevens: Naam van werkstation: PC_VAN_MEL Netwerkadres van bron: 127.0.0.1 Poort van bron: 0 Gedetailleerde verificatiegegevens: Aanmeldingsproces: User32 Verificatiepakket: Negotiate Doorgezette services: - Pakketnaam (alleen NTLM): - Sleutellengte: 0 Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen. De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe. In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk). Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld. In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn. De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag. - Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis. - In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt. - Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt. - Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd. Record Number: 105559 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130321063647.981805-000 Event Type: Controle geslaagd User: Computer Name: PC_van_Mel Event Code: 4648 Message: Poging tot aanmelden met expliciete referenties. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: PC_VAN_MEL$ Accountdomein: WORKGROUP Aanmeldings-id: 0x3e7 Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Account waarvan de referenties zijn gebruikt: Accountnaam: Mel Accountdomein: PC_van_Mel Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Doelserver: Naam van doelserver: localhost Aanvullende gegevens: localhost Procesgegevens: Proces-id: 0x314 Procesnaam: C:\Windows\System32\winlogon.exe Netwerkgegevens: Netwerkadres: 127.0.0.1 Poort: 0 Deze gebeurtenis wordt gegenereerd wanneer een proces probeert zich op een account aan te melden door expliciet de referenties van die account op te geven. Meestal gebeurt dit in batchconfiguraties zoals geplande taken, of bij gebruik van de opdracht Uitvoeren als. Record Number: 105558 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20130321063647.981805-000 Event Type: Controle geslaagd User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "Path"=C:\Program Files\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Smart Projects\IsoBuster;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Windows Live\Shared "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC "PROCESSOR_ARCHITECTURE"=x86 "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "USERNAME"=SYSTEM "windir"=%SystemRoot% "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 22 Stepping 1, GenuineIntel "PROCESSOR_REVISION"=1601 "NUMBER_OF_PROCESSORS"=1 "TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat "DFSTRACINGON"=FALSE "Pathtem"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "NTIPath"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\NewTech Infosystems\NTI Backup Now 5\; "PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\ -----------------EOF-----------------
-
Oke, ik ga er direct mee beginnen, alleen loopt mn lappie al een kwartier vast.
-
Hoi, Ik heb een dringende vraag/verzoek, Mn laptop werkt nu echt extreeeeemmm traag. Bij het opstarten geeft t al aan dat er een probleem is met de host en dan ik contact op moet nemen met Uniblue. Al geprobeerd maar geen enkele respons. Dan crasht mn flashplayer steeds en laatst kon ik bijnan niet eens mn lappie meeer in! Ik had me aangemeld en opeens stond er dat er een probleem was en dat ik me niet kon aanmelden. Dat heb ik dmv een windowspage opgelost, maar mn laptop doet zooo traag en alles crasht steeds. Eigenlijk geen twijfel dat dit een virus is he? Dus mijn vraag en verzoek zijn: Is er sprake van een virus en wat is de schade?? En hoe verwijder ik deze van mn laptop? Had mn tel aangesloten op mn lappie en die doet nu ook irritant. Dus help me please?? Ben verslaafd aan mn lappie... Bij voorbaat dank!!!
