Ga naar inhoud

nonika

Lid
  • Items

    10
  • Registratiedatum

  • Laatst bezocht

Alles dat geplaatst werd door nonika

  1. ok, heb removal tool niet gevonden, kan dit wel ev. weldoen via configuratiescherm, programma's..enz. maar vroeg me af of die dan terug geinstalleerd kan worden met het bestaande abonnement? Wellicht wel, maar wou het toch zeker zijn. In ieder geval heb ik eerst de kans gekregen via Avast om de Safe-zone waardes terug naar beginwaarden te herzetten en nu komen die vervelende berichten er niet meer op en werkt het prima. Alleen blijft het zo dat ik de pc moet heropstarten wanneer ik de safe-zone verlaten heb en uit het avast-programma ga. Wanneer ik dan op internet wil of een ander programma wil openen, blijft de pc aanduiden dat hij met een bewerking bezig is (cursor blijft maar cirkelen) en zelfs na halfuur wachten is het nog steeds niet geopend en blijft hij aanduiden dat hij bezig is.
  2. Ik weer, was er enkele dagen tussenuit maar nu even wat feedback : bankverrichtingen gaan goed, dit werkt duidelijk beter, maar eens uit avast is het nog niet helemaal opgelost. IE open gaat, naar bepaalde snelkoppelingen gaat het nog steeds niet. Nu heb ik gemerkt dat, wanneer ik in de Avast Safezone kom, er steeds een melding komt dat er een map niet bestaat of verplaatst is en of die map wel/niet moet gemaakt worden. Wanneer ik dan 'ja' of 'neen' klik of gewoon het venster sluit komt er steeds weer een andere melding van een niet bestaande map, alleen is het nummer anders. Er staat ook bij 'laatste wijziging' van 24/01/2014 (dit is ongeveer de datum waarop het abonnement vernieuwd werd). Zou dit mogelijks de oorzaak van het probleem zijn? Het is alleen moeilijk om dit duidelijk uit te leggen. Ben in ieder geval al blij dat die bankverrichtingen goed gaan. Alvast bedankt.
  3. Heb de indruk dat er nu al een en ander wat vlugger gaat, heb de bankverrichtingen nog niet geprobeerd. Morgen en overmorgen wordt dit wat moeilijk maar zal je zeker op de hoogte houden naar eind van week toe of die ook beter werken. Alvast een dikke merci. Vraagje nog, is het dan nuttig dit laatste programma (Adwcleaner) bij te houden en regelmatig te gebruiken? Je zult wel gemerkt hebben dat deze laptop vooral voor spelletjes gebruikt wordt en dus veel kans heeft op dergelijke besmettingen.
  4. [ATTACH]33088[/ATTACH] Ok, had een probleempje, je link naar Adwcleaner geeft 'webpagina kan niet weergegeven worden'. Heb dan gegoogled en een nederlandstalige versie ervan gevonden v3.212, heb deze gedownload en gebruikt. Twijfelde dan nog even voor het opkuisen of al wat aangevinkt was zo moest blijven maar ben er uiteindelijk toch voor gegaan en na opstart is de volgende log verschenen. AdwCleaner[S0].txt
  5. Goeienavond, ik weer, heb klein probleempje : de link naar AdwCleaner werkt niet (geen internetverbinding) maar ik heb die gegoogled en ben bij zo'n versie v3.212 , nederlandstalig terecht gekomen. Ik heb laten scannen en kan het log ervan oproepen maar om op te kuisen vraagt hij om de bestanden af te vinken die behouden moeten worden. Alles staat aangevinkt bij 'mappen', 'bestanden' en 'register' moet dit dus zo blijven?
  6. [ATTACH]33061[/ATTACH] Goeiemiddag, heb je laatste berichtje uitgevoerd en hopelijk dit keer op de goede manier geupload en toegevoegd. Alvast bedankt, Véronique zoek-results.txt
  7. sorry, ik was blijkbaar toch wat te ongeduldig. Ondertussen is alles uitgevoerd en de pc heropgestart. Mag het antivirusprogramma terug 'aan' of moet het uit blijven? Zoek.exe v5.0.0.0 Updated 02-June-2014 Tool run by luve on za 14/06/2014 at 19:37:52,87. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 14/06/2014 19:43:44 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\Age of Enigma - The Secret of the Sixth Ghost deleted successfully C:\Program Files\Angelica Weaver - Catch Me When You Can deleted successfully C:\Program Files\Awakening - Moonfell Wood deleted successfully C:\Program Files\Barn Yarn deleted successfully C:\Program Files\Behind the Reflection 2 - Witch's Revenge deleted successfully C:\Program Files\Botanica - Earthbound Collector's Edition deleted successfully C:\Program Files\Christmas Adventure - Candy Storm deleted successfully C:\Program Files\Danger Next Door - Miss Teri Tale's Adventure deleted successfully C:\Program Files\Dark Dimensions - Wax Beauty Collector's Edition deleted successfully C:\Program Files\Death Upon an Austrian Sonata - A Dana Knightstone Novel Collector's Edition deleted successfully C:\Program Files\Dracula - Love Kills deleted successfully C:\Program Files\Drawn - Dark Flight Collector's Edition deleted successfully C:\Program Files\Dream Chronicles - The Book of Water deleted successfully C:\Program Files\Dream Day Wedding Bella Italia deleted successfully C:\Program Files\Enlightenus II - The Timeless Tower deleted successfully C:\Program Files\Escape the Museum 2 deleted successfully C:\Program Files\Eternal Journey - New Atlantis deleted successfully C:\Program Files\Fantastic Creations - House of Brass deleted successfully C:\Program Files\Fantastic Creations - House of Brass Collector's Edition deleted successfully C:\Program Files\Flower of Immortality deleted successfully C:\Program Files\Ghost Whisperer deleted successfully C:\Program Files\Grim Facade - A Wealth of Betrayal Collectors Edition deleted successfully C:\Program Files\Grim Facade - Sinister Obsession Collector’s Edition deleted successfully C:\Program Files\Haunted Halls - Green Hills Sanitarium Collector's Edition deleted successfully C:\Program Files\Hidden Mysteries - Royal Family Secrets deleted successfully C:\Program Files\I Spy Spooky Mansion Deluxe deleted successfully C:\Program Files\Incredible Adventures of my Mom deleted successfully C:\Program Files\Jigsaw Boom 2 deleted successfully C:\Program Files\Living Legends - Frozen Beauty Collectors Edition deleted successfully C:\Program Files\Magic Academy II deleted successfully C:\Program Files\Magic Heroes - Save Our Park deleted successfully C:\Program Files\Midnight Macabre - Mystery of the Elephant deleted successfully C:\Program Files\Million Dollar Quest deleted successfully C:\Program Files\MSXML 4.0 deleted successfully C:\Program Files\My Beautiful Vacation deleted successfully C:\Program Files\Mystery Case Files - Escape from Ravenhearst deleted successfully C:\Program Files\Mystery Case Files - Shadow Lake Collector's Edition deleted successfully C:\Program Files\Mystery of the Ancients - Three Guardians deleted successfully C:\Program Files\Mystery of the Missing Brigantine deleted successfully C:\Program Files\Mystery Trackers - Raincliff Collector's Edition deleted successfully C:\Program Files\Mystery Trackers - Silent Hollow Collector's Edition deleted successfully C:\Program Files\Myths of the World - Chinese Healer Collector's Edition deleted successfully C:\Program Files\Night In The Opera deleted successfully C:\Program Files\Odysseus - Long Way Home deleted successfully C:\Program Files\Order of the Light - The Deathly Artisan deleted successfully C:\Program Files\Paprikari deleted successfully C:\Program Files\PlayPond deleted successfully C:\Program Files\Princess Isabella - Return of the Curse Collector's Edition deleted successfully C:\Program Files\Redemption Cemetery - Bitter Frost deleted successfully C:\Program Files\Sacra Terra - Angelic Night Collector's Edition deleted successfully C:\Program Files\Secrets of the Seas - Flying Dutchman deleted successfully C:\Program Files\Shiver - Poltergeist Collector's Edition deleted successfully C:\Program Files\Strange Discoveries - Aurora Peak Collector's Edition deleted successfully C:\Program Files\Stray Souls - Stolen Memories Collector's Edition deleted successfully C:\Program Files\The Agency of Anomalies - The Last Performance deleted successfully C:\Program Files\The Book of Desires deleted successfully C:\Program Files\The Keepers - Lost Progeny deleted successfully C:\Program Files\The Keepers - The Order's Last Secret Collector's Edition deleted successfully C:\Program Files\The Others deleted successfully C:\Program Files\The Return of Monte Cristo deleted successfully C:\Program Files\The Saint - Abyss of Despair deleted successfully C:\Program Files\The Secret Order - Ancient Times Collectors Edition deleted successfully C:\Program Files\The Snow deleted successfully C:\Program Files\The Tiny Bang Story deleted successfully C:\Program Files\TomTom DesktopSuite deleted successfully C:\Program Files\Trial of the Gods - Ariadnes Journey deleted successfully C:\Program Files\Undiscovered deleted successfully C:\Program Files\Vampire Legends - The True Story of Kisilova deleted successfully C:\Program Files\Vampire Saga - Break Out deleted successfully C:\Program Files\Web of Deceit - Black Widow deleted successfully C:\Program Files\Whispers - Revelation deleted successfully C:\PROGRA~2\Babylon deleted successfully C:\PROGRA~2\boost_interprocess deleted successfully C:\PROGRA~2\Oracle deleted successfully C:\PROGRA~2\Product deleted successfully C:\Users\luve\AppData\Roaming\BEGINNIN deleted successfully C:\Users\luve\AppData\Roaming\Fanda Games deleted successfully C:\Users\luve\AppData\Roaming\iScreensaver deleted successfully C:\Users\luve\AppData\Roaming\Monkey Barrel Games deleted successfully C:\Users\luve\AppData\Roaming\Phantasmat_real_ce deleted successfully C:\Users\luve\AppData\Roaming\WinRAR deleted successfully C:\Users\luve\AppData\Local\Buried In Time deleted successfully C:\Users\luve\AppData\Local\STARGAZE_IMAGE_CACHE deleted successfully C:\Users\luve\AppData\Local\Vast Studios deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4597F846-6EE9-4766-BE06-C8E67F4E91E7} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{684A97FC-5F4D-4F0E-9AD0-95CA48746552} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6CF82D0E-88AD-6205-BC69-EBB0A35C4A0C} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_CLASSES_ROOT\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully HKEY_CLASSES_ROOT\CLSID\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MyWebSearchService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\MyWebSearchService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\MyWebSearchService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\MyWebSearchService deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804}] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "MyWebSearch Email Plugin"=- ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Simajo The Travel Móstery Game not found C:\Program Files\MyWebSearch deleted C:\Program Files\Common Files\BOONTY Shared deleted C:\Users\luve\AppData\Roaming\AlawarEntertainment deleted C:\ProgramData\AlawarWrapper deleted C:\Windows\system32\appdata deleted C:\Program Files\Zynga deleted C:\Users\luve\AppData\Local\Zynga deleted C:\Users\luve\appdata\locallow\Zynga deleted C:\Users\luve\appdata\locallow\MyWebSearch deleted C:\Program Files\Mozilla Firefox\user.js deleted C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com deleted C:\Program Files\Alawar deleted C:\Program Files\Alawar.co.nl deleted C:\Program Files\Mystery Case Files - Escape from Ravenhearst Collector's Edition deleted C:\Program Files\Mystery Case Files - Fates Carnival Collectors Edition deleted C:\Program Files\Conduit deleted C:\Program Files\FunWebProducts deleted C:\Users\luve\AppData\Roaming\quickclick deleted C:\Users\luve\AppData\Roaming\Alawar deleted C:\Users\luve\AppData\Roaming\Alawar Entertainment deleted C:\Users\luve\AppData\Roaming\Alawar Stargaze deleted C:\Users\luve\AppData\Roaming\Babylon deleted C:\Users\luve\AppData\Roaming\YoudaGames deleted C:\Users\luve\AppData\Roaming\iWin deleted C:\Users\luve\AppData\Roaming\In search of the Lost Temple deleted C:\PROGRA~2\Ask deleted C:\PROGRA~2\Alawar deleted C:\PROGRA~2\Alawar Entertainment deleted C:\PROGRA~2\Alawar Stargaze deleted C:\PROGRA~2\AlawarEntertainment deleted C:\PROGRA~2\AlawarGameBox deleted C:\PROGRA~2\APN deleted C:\PROGRA~2\hpqp.txt deleted C:\PROGRA~2\log.txt deleted C:\PROGRA~2\InstallMate deleted C:\PROGRA~2\Premium deleted C:\PROGRA~2\Trymedia deleted C:\Users\luve\AppData\Local\Ilivid Player deleted C:\Users\luve\AppData\Local\APN deleted C:\Users\luve\AppData\Local\Babylon deleted C:\Users\luve\AppData\Local\Conduit deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files - Escape from Ravenhearst Collector's Edition deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files - Fates Carnival Collectors Edition deleted C:\Users\luve\AppData\LocalLow\Conduit deleted C:\Users\luve\AppData\LocalLow\FunWebProducts deleted C:\Windows\system32\tasks\RunAsStdUser Task deleted C:\user.js deleted C:\Users\Public\Documents\AlawarGameBox deleted C:\Users\Public\Documents\AlawarWrapper deleted C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YZ0YA81S\TheBookofDesires_10344.exe deleted C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6LYYVE8U\CruelGamesRedRidingHood_10344.exe deleted "C:\Users\luve\AppData\Local\{4AF93633-A9DE-4148-B27B-AEABC9D79F8F}" deleted "C:\Program Files\Alawar Elements\AddonsFramework.Typelib.dll" deleted "C:\Program Files\Alawar Elements\BackgroundHost.exe" deleted "C:\Program Files\Alawar Elements\ButtonSite.dll" deleted "C:\Program Files\Alawar Elements\AddonsFramework.Typelib.dll" deleted "C:\Program Files\Alawar Elements\BackgroundHost.exe" deleted "C:\Program Files\Alawar Elements\ButtonSite.dll" deleted "C:\Program Files\Alawar Elements" deleted "C:\Program Files\Alawar Elements" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\luve\AppData\Local\Temp ==== 2014-06-09 21:34:46 3616AB4898E6880F3D1DD128A3FE858C 352496 ----a-w- C:\Users\luve\AppData\Local\Temp\uninstaller-WTA-4ea3a3c4-dce5-408c-80d9-abcc904a99b7\uninstaller.exe 2014-06-09 21:34:24 3616AB4898E6880F3D1DD128A3FE858C 352496 ----a-w- C:\Users\luve\AppData\Local\Temp\uninstaller-WTA-c6059d30-fa51-4868-ac0c-9edd8ba64719\uninstaller.exe 2014-06-09 05:23:41 47239EB4A793EA0DC7C283A71F401493 112352 ----a-w- C:\Users\luve\AppData\Local\Temp\Low\UnityWebPlayer\UnityWebPlayerUpdate.exe ====== Java Cache ===== 2014-06-11 21:26:28 527287EBEA8B0B11B6BF15ADDE57B928 21543 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\251ffa0b-304960cf 2014-05-29 20:12:44 E5BA3F731BD58505AA17B8FD2C4DE494 38788 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\5ca9a5cd-2c6ca58a 2014-06-11 21:26:28 20DEDB44C5891181E12B91DFC4A4046A 3719 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\60208350-76fe45e7 2014-06-11 21:26:27 378DBF34C7C585237D6800B401F73972 1142 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\1beead91-3b153825 2014-06-11 21:26:28 24B65BAFF42A5463CD20C8552C61C4BB 4252 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\40b55292-6d8d877d 2014-06-11 21:26:28 11CD5CBA22EE2099129F07C83F14D12E 857 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\1c005d55-65024053 2014-06-11 21:26:28 C7595A34F83AA7C2E904F813B138437E 13717 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\31489656-3995e7fe 2014-06-11 21:26:24 EB5E11FDD5A826E3081D3856A8AE12AF 550796 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\68254157-2a43820d 2014-06-11 21:26:26 9B5E05C5BFDFAC47CD8662EBF672444F 5694 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\26908598-653b9f20 2014-06-11 21:26:27 4811EADC97F83D17EA7B95FF4F224EA5 5088 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\526b698-3e45e334 2014-06-11 21:26:28 C4FCEA123FB7E46D47D00A95C476C5A5 4720 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\7e3d80db-5508bb60 2014-06-11 21:26:30 9587AE807FD773861608B16F75606DAB 291 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\18d8bf5c-234cf65c 2014-06-11 21:26:27 69DA970DBC4A5CB99A72E038B1E054CC 142 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\779d1cc3-1cf876e9 2014-06-11 21:26:30 9566201EBD2648C45407D04F867844B8 4307 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\150b3020-25be6da0 2014-06-11 21:26:27 1BF1E4FBE023BF0477260F3FBF8A4211 14884 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\6970d1e0-2c57336e 2014-06-11 21:26:30 0055834E92CFB8B2B1F1E1D2708811F3 2431 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\11b7a561-3fd07500 2014-06-11 21:26:28 D1016A06D98900D8A15EFA7511D516B8 927 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\3ca56b61-761349a1 2014-05-22 20:11:00 69C84B7EE2D91923A9B24CABB20045B0 93 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\2998e763-98582d4279bdc578572883ea02d5e6a000b6309434ca9abbd2ded69c09745c8c-6.0.lap 2014-06-11 21:26:26 B30747862AEAC7E65DBF4FE3D84EB54C 1757 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\39689e66-4f564c32 2014-06-11 21:26:30 4B11BAF0634D556327EFBA2D5DFA4B00 22392 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\767d712a-4f0e4b70 2014-06-11 21:26:28 485F1EFCDD0997ABC8736119164A5E12 51276 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\714f9b2b-4bf76c60 2014-06-11 21:26:30 FC1E9CCFEA05623306EFCA6B86F6A921 2024 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\625d5aad-4dd1bffe 2014-06-11 21:26:30 B4FE1B2F647E787F0EF3D7CD11F0341E 2209 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\62f49330-5affc188 2014-06-11 21:26:30 B7C15FF56F61F8D20FC3751C19200095 1058 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\46c4d0b1-5c0e4b4b 2014-06-11 21:26:27 C2462EDFC7219E2DFFA3AA5453A8646E 61138 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5cef6372-243adc8e 2014-06-11 21:26:30 04C27D58BA5B1EC9097F695A73C3175A 7868 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\604b335-374c22e3 2014-06-11 21:26:29 0F9DF91B2BE775C455D35E76EA445FD2 810 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\be58c35-32405fe5 2014-06-11 21:26:30 BB1F1AC48AC87EF413FC7B58CC8BC406 468 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\30eb02b6-7bcb7d0d 2014-06-11 21:26:28 5FFA4EF27909D96DAF978BF7159CA391 4863 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\735fe7f7-6c70008b 2014-06-11 21:26:27 9235026D8D6A9BA03AD5652D2F8CE677 41273 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\16a4c078-614a11b9 2014-06-11 21:26:29 832B6E065FDF0FE600727E79DD177851 22065 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\1e2271b8-113163d3 2014-06-11 21:26:29 3BB7C5A99575C23072FACDBB24A03A3C 394 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3045ca38-345641ca 2014-06-11 21:26:28 A231BD19375F9D51CCB6B180B7D8D01D 3724 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\4fe128b8-58ff98d4 2014-06-11 21:26:28 206A17008540D557AD6F271CC9F35059 13570 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\652eef38-58866bed 2014-06-11 21:26:29 4B787AA4AC7CC61E01EFF06C1FA6319E 4751 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\8cfa738-10c01514 2014-06-11 21:26:26 0A5A0F9DE00C8861999CAB0B69DC19BE 500 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\16612d79-1695098f 2014-06-11 21:26:26 0D93DFC7B0162B03D3AB10D9CE4DAFF8 10859 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\52fda3b9-4f8960b1 2014-05-29 20:12:43 893625E0961BCE5DFD36DB6C662D15C4 38 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\23b3ecfd-80f5061de5afba23a34f47785a3f9c68a1742d08eb8888124b9d3d48e7882bb4-6.0.lap 2014-06-11 21:26:27 F60D0C2A404DA4DE7B1FA858FF432FA4 4323 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\70fddbe-6e790640 2014-06-11 21:26:28 2FE75D74A75465A172AF24B60F5EF83C 1514 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\7104edfe-7658cd55 2014-06-11 21:26:29 9B00BC6E4C847228CA075D39B4CDA3BF 829 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\734fb708-7a46ccc6 ====== C:\Windows\system32 ===== 2014-06-12 10:49:43 FB3E5FD7F74BFC301AD3FB7DE670EDCB 502784 ----a-w- C:\Windows\System32\usp10.dll 2014-06-12 10:49:39 D0D44370770D491E6BA472C855883422 1248768 ----a-w- C:\Windows\System32\msxml3.dll 2014-06-12 10:49:39 1E06779EDB55D035DD3F4A2B7432A291 1401344 ----a-w- C:\Windows\System32\msxml6.dll 2014-06-12 10:49:37 9F5AC4090D7C9F2591060DAC310FD294 1106432 ----a-w- C:\Windows\System32\urlmon.dll 2014-06-12 10:49:37 74DD13DF9DC59CCC5AE5528ECFA29BE9 10752 ----a-w- C:\Windows\System32\msfeedssync.exe 2014-06-12 10:49:37 0D7B6A0829874B057FF9D35F612B44F5 11776 ----a-w- C:\Windows\System32\mshta.exe 2014-06-12 10:49:36 B50E34870FC8F8CA79BCC2DC3183D691 421376 ----a-w- C:\Windows\System32\vbscript.dll 2014-06-12 10:49:36 B2D65154D4D36D6CA22BB586C016C1C1 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-06-12 10:49:36 AA5456C16D7F4B73177FD46AD63A12C4 1796096 ----a-w- C:\Windows\System32\iertutil.dll 2014-06-12 10:49:36 0A3EF805B406103971F27B9597EB98BC 231936 ----a-w- C:\Windows\System32\url.dll 2014-06-12 10:49:35 BA7CC0D3170EB03FA610BA8EA3A01E9D 65536 ----a-w- C:\Windows\System32\jsproxy.dll 2014-06-12 10:49:35 60D2396F470C110B7FAB1CFA4AC0D34B 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-06-12 10:49:35 4439087A375EFDD297DC470C3214D7D6 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll 2014-06-12 10:49:34 CFD26829131439B71D0109F9D5345573 1129472 ----a-w- C:\Windows\System32\wininet.dll 2014-06-12 10:49:34 947DA106EE001900969D42425FBDA183 717824 ----a-w- C:\Windows\System32\jscript.dll 2014-06-12 10:49:34 23330909BD92B7611815365559860952 1810432 ----a-w- C:\Windows\System32\jscript9.dll 2014-06-12 10:49:33 61F727795CAA98C3FCDB48379B78E370 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2014-06-12 10:49:33 32FE42E13195DEAF78D1E348F51A5AEE 353792 ----a-w- C:\Windows\System32\dxtmsft.dll 2014-06-12 10:49:32 3829D7D8B098F87C454E468DCAAE4912 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2014-06-12 10:49:29 2DCB8AEC38AE1427CB1CFE2432D05107 223232 ----a-w- C:\Windows\System32\dxtrans.dll 2014-06-12 10:49:29 148B2F103FD322A4B8AEB82D7B35D0AF 176640 ----a-w- C:\Windows\System32\ieui.dll 2014-06-12 10:49:28 AD2C67A381CC7148BB98A66BB04DDF5B 9711104 ----a-w- C:\Windows\System32\ieframe.dll 2014-06-12 10:49:28 9000CE8689BD16819AF8AFDB83B94CCE 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2014-06-12 10:49:26 B7363143940197BD9F16FD957B4F8131 12356608 ----a-w- C:\Windows\System32\mshtml.dll ====== C:\Windows\system32\drivers ===== 2014-06-12 10:49:42 C7B0746FCD576D7EEBA6A2530B0B2966 905664 ----a-w- C:\Windows\System32\drivers\tcpip.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-06-14 09:11:21 -------- d-----w- C:\Program Files\trend micro 2014-06-13 19:14:51 -------- d-----w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition 2014-06-08 10:58:38 -------- d-----w- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition 2014-06-07 10:37:06 -------- d-----w- C:\Program Files\Midnight Castle 2014-06-06 19:48:34 -------- d-----w- C:\Program Files\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition 2014-06-01 10:48:19 -------- d-----w- C:\Program Files\Awakening - The Redleaf Forest Collectors Edition 2014-05-30 11:42:48 -------- d-----w- C:\Program Files\Haunted Hotel - Ancient Bane Collector's Edition ======= C: ===== ====== C:\Users\luve\AppData\Roaming ====== 2014-06-13 19:14:51 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rite of Passage - Hide and Seek Collectors Edition 2014-06-08 10:58:38 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Myths of the World - Of Fiends and Fairies Collectors Edition 2014-06-07 10:37:06 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Midnight Castle 2014-06-06 19:48:34 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition 2014-06-05 17:35:27 -------- d-----w- C:\Users\luve\AppData\Roaming\Koolhaus Games 2014-06-01 10:48:19 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Awakening - The Redleaf Forest Collectors Edition 2014-05-30 11:42:48 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haunted Hotel - Ancient Bane Collector's Edition 2014-05-20 16:42:34 -------- d-----w- C:\Users\luve\AppData\Roaming\Ambers Tales ====== C:\Users\luve ====== 2014-06-13 19:14:51 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rite of Passage - Hide and Seek Collectors Edition 2014-06-08 10:58:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Myths of the World - Of Fiends and Fairies Collectors Edition 2014-06-07 10:37:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Midnight Castle 2014-06-06 19:48:34 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition 2014-06-01 10:48:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Awakening - The Redleaf Forest Collectors Edition 2014-05-30 11:42:48 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haunted Hotel - Ancient Bane Collector's Edition 2014-05-20 16:42:34 -------- d-----w- C:\ProgramData\Ambers Tales ====== C: exe-files == 2014-06-14 09:11:22 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\luve.exe 2014-06-13 19:15:11 0062277CC82D370CB6CB8638264A39A1 85179 ----a-w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\Uninstall.exe 2014-06-12 10:49:37 D14CBA888EF2A88C28CB5E6396A295DA 22528 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe 2014-06-12 10:49:35 7BA5B7DEDE25D44F3E664D5BA067E3CD 758000 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-06-12 10:49:34 77AEB4008A5E1015599A4DC6AE50C33B 223232 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-06-12 10:49:32 054E45A74734CDBDDEFB503CBBA0E0DF 469504 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-06-11 20:44:18 EBB5A7EBB316B48FDD89CED1D296ECFB 5572896 ---h--w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\RiteOfPassage_HideAndSeek_CE.exe 2014-06-11 20:44:16 3A01707E9184C6378B5F09B5A8741F51 2341152 ----a-w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\hwjfqjw.exe 2014-06-08 20:31:07 E9F6D06CAFA19D432AE418F13DC8960A 5923808 ----a-w- C:\GameHouse Games\Tales of the Orient - The Rising Sun\TalesoftheOrient_TheRisingSun.exe 2014-06-08 10:58:55 6CD64E650A2DC27AE493922664A7326B 85716 ----a-w- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition\Uninstall.exe === C: other files == 2014-06-14 17:29:41 441AF5E104D952CBA2646F3A954A0EF7 120602 ----a-w- C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\URK2U2MW\player_xml[2].zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Run] "LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "Google Update"="C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c" "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "QPService"="C:\Program Files\HP\QuickPlay\QPService.exe" "UpdateLBPShortCut"="C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\LabelPrint UpdateWithCreateOnce Software\CyberLink\LabelPrint\2.5" "UpdatePSTShortCut"="C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\DVD Suite UpdateWithCreateOnce Software\CyberLink\PowerStarter" "UCam_Menu"="C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\YouCam UpdateWithCreateOnce Software\CyberLink\YouCam\2.0" "QlbCtrl.exe"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start" "UpdatePDIRShortCut"="C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerDirector UpdateWithCreateOnce SOFTWARE\CyberLink\PowerDirector\7.0" "HP Health Check Scheduler"="c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" "WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" "NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup" "NvMediaCenter"="RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit" "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" "SysTrayApp"="%ProgramFiles%\IDT\WDM\sttray.exe " [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "Google Update"="C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c" "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14/06/2014 00:07] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [14/01/2010 17:13] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core.job --a------ C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe [12/09/2011 13:10] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA.job --a------ [undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core" [C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA" [C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\HP Health Check" ["c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"] "C:\Windows\system32\tasks\RealUpgradeLogonTaskS-1-5-21-4172665234-3387394907-3032361431-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\system32\tasks\RealUpgradeScheduledTaskS-1-5-21-4172665234-3387394907-3032361431-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{14B924BC-77F3-4260-8C2B-CB5CC06A13CD}" [C:\Windows\system32\msfeedssync.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "m3ffxtbr@mywebsearch.com"="C:\Program Files\MyWebSearch\bar\1.bin" [] ==== Firefox Extensions ====================== ProfilePath: C:\Users\luve\AppData\Roaming\TomTom\HOME\Profiles\i8opfco0.default - Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions - Downandsave - %ExtDir%\crossriderapp12331@crossrider.com ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles - Downandsave - %ExtDir%\extensions\crossriderapp12331@crossrider.com ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Extensions - Downandsave - C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\crossriderapp12331@crossrider.com ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jfmjfhklogoienhpfnppmbcbjfjnkonk - No path found[] avast Online Security - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki fIRST lOVE - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\lighpcanjnomdcjmfficdanifpdmgmhp Gamebox - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mibfbmhijjgpkmobcfdlelpccpeafoom Google Wallet - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Chrome Fix ====================== C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mywebface.dl.mywebsearch.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mywebface.dl.mywebsearch.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_addictedto.criminalcasegame.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_addictedto.criminalcasegame.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_imabigfanof.criminalcasegame.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_imabigfanof.criminalcasegame.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pioneertrail.gamebonuschecker.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pioneertrail.gamebonuschecker.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamersunite.coolchaser.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamersunite.coolchaser.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_onthenews.net_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_onthenews.net_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_slog.thestranger.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_slog.thestranger.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.addictinggames.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.addictinggames.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gamezebo.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gamezebo.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luvinthemommyhood.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luvinthemommyhood.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.theblaze.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.theblaze.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thepetitionsite.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thepetitionsite.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thesun.co.uk_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thesun.co.uk_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\databases\http_www.beautyoftheweb.com_0 deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page Restore"="http://www.facebook.com/?ref=hp" "Start Page"="https://www.google.be/" "Default_Page_URL"="Telenet.be" "Search Bar"="Bing" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="Search" "Default_Page_URL"="Telenet.be" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Bar"="Bing" "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!" "Start Page Restore"="https://www.google.be/" "Start Page"="https://www.google.be/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!" "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{DDB9C78B-2095-41CF-A885-14A2B6A0F24C}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {1B30CBCF-74C8-4AF0-832C-BBD5D5DB3C32} Unknown Url="Not_Found" {54272A0D-4963-4CA3-8071-124107DC9959} Wikipedia (en) Url="{searchTerms - Search results - Wikipedia, the free encyclopedia}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" {903926A8-0C7D-4185-A2B4-D9D7171F5F87} Bing Url="{searchTerms} - Bing?}" {DDB9C78B-2095-41CF-A885-14A2B6A0F24C} Web Search Url="Web - {searchTerms - Gamers Unite!}" {FC9DCCBC-99B1-4369-A39E-40F720DD8583} AOL Zoeken Url="{searchTerms} - AOL Search resultaten" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{1B30CBCF-74C8-4AF0-832C-BBD5D5DB3C32} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\m3ffxtbr@mywebsearch.com deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{100B94DD-5DFF-263B-3E8C-309744764A31} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D13B3C-F261-4E0E-9916-78044C0535CC} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2235047F-1B25-EC94-5B2B-B9DB735882F5} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{319C4157-F353-B85D-4043-26A394915D88} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3757637D-5529-DCA1-427D-093D23BDF155} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5312301A-A02F-4E0F-BDFE-EA4A10FCFC5E} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{62660BD7-36BE-1529-E760-E33064C2F033} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{704FE2CA-E988-6360-FC0C-A9613E870FF9} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{842BA723-F4E1-552C-0F6F-5B4305A662ED} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{969E4976-03B8-5FE4-A85C-7D6C579FE40A} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C99A8918-3BD2-88A2-BA7A-A1BE4A13AD61} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Zynga Toolbar deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\luve\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\luve\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0 will be deleted at reboot C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\luve\AppData\Local\Chromium\User Data\Default\Cache emptied successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=39482 folders=2864 3449435733 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\luve\AppData\Local\Temp will be emptied at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\luve\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0" not found ==== EOF on za 14/06/2014 at 20:47:34,87 ====================== - - - Updated - - - sorry, ik was blijkbaar toch wat te ongeduldig. Ondertussen is alles uitgevoerd en de pc heropgestart. Mag het antivirusprogramma terug 'aan' of moet het uit blijven? Zoek.exe v5.0.0.0 Updated 02-June-2014 Tool run by luve on za 14/06/2014 at 19:37:52,87. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 14/06/2014 19:43:44 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\Age of Enigma - The Secret of the Sixth Ghost deleted successfully C:\Program Files\Angelica Weaver - Catch Me When You Can deleted successfully C:\Program Files\Awakening - Moonfell Wood deleted successfully C:\Program Files\Barn Yarn deleted successfully C:\Program Files\Behind the Reflection 2 - Witch's Revenge deleted successfully C:\Program Files\Botanica - Earthbound Collector's Edition deleted successfully C:\Program Files\Christmas Adventure - Candy Storm deleted successfully C:\Program Files\Danger Next Door - Miss Teri Tale's Adventure deleted successfully C:\Program Files\Dark Dimensions - Wax Beauty Collector's Edition deleted successfully C:\Program Files\Death Upon an Austrian Sonata - A Dana Knightstone Novel Collector's Edition deleted successfully C:\Program Files\Dracula - Love Kills deleted successfully C:\Program Files\Drawn - Dark Flight Collector's Edition deleted successfully C:\Program Files\Dream Chronicles - The Book of Water deleted successfully C:\Program Files\Dream Day Wedding Bella Italia deleted successfully C:\Program Files\Enlightenus II - The Timeless Tower deleted successfully C:\Program Files\Escape the Museum 2 deleted successfully C:\Program Files\Eternal Journey - New Atlantis deleted successfully C:\Program Files\Fantastic Creations - House of Brass deleted successfully C:\Program Files\Fantastic Creations - House of Brass Collector's Edition deleted successfully C:\Program Files\Flower of Immortality deleted successfully C:\Program Files\Ghost Whisperer deleted successfully C:\Program Files\Grim Facade - A Wealth of Betrayal Collectors Edition deleted successfully C:\Program Files\Grim Facade - Sinister Obsession Collector’s Edition deleted successfully C:\Program Files\Haunted Halls - Green Hills Sanitarium Collector's Edition deleted successfully C:\Program Files\Hidden Mysteries - Royal Family Secrets deleted successfully C:\Program Files\I Spy Spooky Mansion Deluxe deleted successfully C:\Program Files\Incredible Adventures of my Mom deleted successfully C:\Program Files\Jigsaw Boom 2 deleted successfully C:\Program Files\Living Legends - Frozen Beauty Collectors Edition deleted successfully C:\Program Files\Magic Academy II deleted successfully C:\Program Files\Magic Heroes - Save Our Park deleted successfully C:\Program Files\Midnight Macabre - Mystery of the Elephant deleted successfully C:\Program Files\Million Dollar Quest deleted successfully C:\Program Files\MSXML 4.0 deleted successfully C:\Program Files\My Beautiful Vacation deleted successfully C:\Program Files\Mystery Case Files - Escape from Ravenhearst deleted successfully C:\Program Files\Mystery Case Files - Shadow Lake Collector's Edition deleted successfully C:\Program Files\Mystery of the Ancients - Three Guardians deleted successfully C:\Program Files\Mystery of the Missing Brigantine deleted successfully C:\Program Files\Mystery Trackers - Raincliff Collector's Edition deleted successfully C:\Program Files\Mystery Trackers - Silent Hollow Collector's Edition deleted successfully C:\Program Files\Myths of the World - Chinese Healer Collector's Edition deleted successfully C:\Program Files\Night In The Opera deleted successfully C:\Program Files\Odysseus - Long Way Home deleted successfully C:\Program Files\Order of the Light - The Deathly Artisan deleted successfully C:\Program Files\Paprikari deleted successfully C:\Program Files\PlayPond deleted successfully C:\Program Files\Princess Isabella - Return of the Curse Collector's Edition deleted successfully C:\Program Files\Redemption Cemetery - Bitter Frost deleted successfully C:\Program Files\Sacra Terra - Angelic Night Collector's Edition deleted successfully C:\Program Files\Secrets of the Seas - Flying Dutchman deleted successfully C:\Program Files\Shiver - Poltergeist Collector's Edition deleted successfully C:\Program Files\Strange Discoveries - Aurora Peak Collector's Edition deleted successfully C:\Program Files\Stray Souls - Stolen Memories Collector's Edition deleted successfully C:\Program Files\The Agency of Anomalies - The Last Performance deleted successfully C:\Program Files\The Book of Desires deleted successfully C:\Program Files\The Keepers - Lost Progeny deleted successfully C:\Program Files\The Keepers - The Order's Last Secret Collector's Edition deleted successfully C:\Program Files\The Others deleted successfully C:\Program Files\The Return of Monte Cristo deleted successfully C:\Program Files\The Saint - Abyss of Despair deleted successfully C:\Program Files\The Secret Order - Ancient Times Collectors Edition deleted successfully C:\Program Files\The Snow deleted successfully C:\Program Files\The Tiny Bang Story deleted successfully C:\Program Files\TomTom DesktopSuite deleted successfully C:\Program Files\Trial of the Gods - Ariadnes Journey deleted successfully C:\Program Files\Undiscovered deleted successfully C:\Program Files\Vampire Legends - The True Story of Kisilova deleted successfully C:\Program Files\Vampire Saga - Break Out deleted successfully C:\Program Files\Web of Deceit - Black Widow deleted successfully C:\Program Files\Whispers - Revelation deleted successfully C:\PROGRA~2\Babylon deleted successfully C:\PROGRA~2\boost_interprocess deleted successfully C:\PROGRA~2\Oracle deleted successfully C:\PROGRA~2\Product deleted successfully C:\Users\luve\AppData\Roaming\BEGINNIN deleted successfully C:\Users\luve\AppData\Roaming\Fanda Games deleted successfully C:\Users\luve\AppData\Roaming\iScreensaver deleted successfully C:\Users\luve\AppData\Roaming\Monkey Barrel Games deleted successfully C:\Users\luve\AppData\Roaming\Phantasmat_real_ce deleted successfully C:\Users\luve\AppData\Roaming\WinRAR deleted successfully C:\Users\luve\AppData\Local\Buried In Time deleted successfully C:\Users\luve\AppData\Local\STARGAZE_IMAGE_CACHE deleted successfully C:\Users\luve\AppData\Local\Vast Studios deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4597F846-6EE9-4766-BE06-C8E67F4E91E7} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{684A97FC-5F4D-4F0E-9AD0-95CA48746552} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6CF82D0E-88AD-6205-BC69-EBB0A35C4A0C} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_CLASSES_ROOT\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully HKEY_CLASSES_ROOT\CLSID\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{00A6FAF6-072E-44cf-8957-5838F569A31D} deleted successfully HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{E33FF41E-53CB-4D93-885A-FFEFA04CD804} deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MyWebSearchService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\MyWebSearchService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\MyWebSearchService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\MyWebSearchService deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804}] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "MyWebSearch Email Plugin"=- ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Simajo The Travel Móstery Game not found C:\Program Files\MyWebSearch deleted C:\Program Files\Common Files\BOONTY Shared deleted C:\Users\luve\AppData\Roaming\AlawarEntertainment deleted C:\ProgramData\AlawarWrapper deleted C:\Windows\system32\appdata deleted C:\Program Files\Zynga deleted C:\Users\luve\AppData\Local\Zynga deleted C:\Users\luve\appdata\locallow\Zynga deleted C:\Users\luve\appdata\locallow\MyWebSearch deleted C:\Program Files\Mozilla Firefox\user.js deleted C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com deleted C:\Program Files\Alawar deleted C:\Program Files\Alawar.co.nl deleted C:\Program Files\Mystery Case Files - Escape from Ravenhearst Collector's Edition deleted C:\Program Files\Mystery Case Files - Fates Carnival Collectors Edition deleted C:\Program Files\Conduit deleted C:\Program Files\FunWebProducts deleted C:\Users\luve\AppData\Roaming\quickclick deleted C:\Users\luve\AppData\Roaming\Alawar deleted C:\Users\luve\AppData\Roaming\Alawar Entertainment deleted C:\Users\luve\AppData\Roaming\Alawar Stargaze deleted C:\Users\luve\AppData\Roaming\Babylon deleted C:\Users\luve\AppData\Roaming\YoudaGames deleted C:\Users\luve\AppData\Roaming\iWin deleted C:\Users\luve\AppData\Roaming\In search of the Lost Temple deleted C:\PROGRA~2\Ask deleted C:\PROGRA~2\Alawar deleted C:\PROGRA~2\Alawar Entertainment deleted C:\PROGRA~2\Alawar Stargaze deleted C:\PROGRA~2\AlawarEntertainment deleted C:\PROGRA~2\AlawarGameBox deleted C:\PROGRA~2\APN deleted C:\PROGRA~2\hpqp.txt deleted C:\PROGRA~2\log.txt deleted C:\PROGRA~2\InstallMate deleted C:\PROGRA~2\Premium deleted C:\PROGRA~2\Trymedia deleted C:\Users\luve\AppData\Local\Ilivid Player deleted C:\Users\luve\AppData\Local\APN deleted C:\Users\luve\AppData\Local\Babylon deleted C:\Users\luve\AppData\Local\Conduit deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files - Escape from Ravenhearst Collector's Edition deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Case Files - Fates Carnival Collectors Edition deleted C:\Users\luve\AppData\LocalLow\Conduit deleted C:\Users\luve\AppData\LocalLow\FunWebProducts deleted C:\Windows\system32\tasks\RunAsStdUser Task deleted C:\user.js deleted C:\Users\Public\Documents\AlawarGameBox deleted C:\Users\Public\Documents\AlawarWrapper deleted C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YZ0YA81S\TheBookofDesires_10344.exe deleted C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6LYYVE8U\CruelGamesRedRidingHood_10344.exe deleted "C:\Users\luve\AppData\Local\{4AF93633-A9DE-4148-B27B-AEABC9D79F8F}" deleted "C:\Program Files\Alawar Elements\AddonsFramework.Typelib.dll" deleted "C:\Program Files\Alawar Elements\BackgroundHost.exe" deleted "C:\Program Files\Alawar Elements\ButtonSite.dll" deleted "C:\Program Files\Alawar Elements\AddonsFramework.Typelib.dll" deleted "C:\Program Files\Alawar Elements\BackgroundHost.exe" deleted "C:\Program Files\Alawar Elements\ButtonSite.dll" deleted "C:\Program Files\Alawar Elements" deleted "C:\Program Files\Alawar Elements" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\luve\AppData\Local\Temp ==== 2014-06-09 21:34:46 3616AB4898E6880F3D1DD128A3FE858C 352496 ----a-w- C:\Users\luve\AppData\Local\Temp\uninstaller-WTA-4ea3a3c4-dce5-408c-80d9-abcc904a99b7\uninstaller.exe 2014-06-09 21:34:24 3616AB4898E6880F3D1DD128A3FE858C 352496 ----a-w- C:\Users\luve\AppData\Local\Temp\uninstaller-WTA-c6059d30-fa51-4868-ac0c-9edd8ba64719\uninstaller.exe 2014-06-09 05:23:41 47239EB4A793EA0DC7C283A71F401493 112352 ----a-w- C:\Users\luve\AppData\Local\Temp\Low\UnityWebPlayer\UnityWebPlayerUpdate.exe ====== Java Cache ===== 2014-06-11 21:26:28 527287EBEA8B0B11B6BF15ADDE57B928 21543 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\251ffa0b-304960cf 2014-05-29 20:12:44 E5BA3F731BD58505AA17B8FD2C4DE494 38788 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\5ca9a5cd-2c6ca58a 2014-06-11 21:26:28 20DEDB44C5891181E12B91DFC4A4046A 3719 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\60208350-76fe45e7 2014-06-11 21:26:27 378DBF34C7C585237D6800B401F73972 1142 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\1beead91-3b153825 2014-06-11 21:26:28 24B65BAFF42A5463CD20C8552C61C4BB 4252 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\40b55292-6d8d877d 2014-06-11 21:26:28 11CD5CBA22EE2099129F07C83F14D12E 857 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\1c005d55-65024053 2014-06-11 21:26:28 C7595A34F83AA7C2E904F813B138437E 13717 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\31489656-3995e7fe 2014-06-11 21:26:24 EB5E11FDD5A826E3081D3856A8AE12AF 550796 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\68254157-2a43820d 2014-06-11 21:26:26 9B5E05C5BFDFAC47CD8662EBF672444F 5694 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\26908598-653b9f20 2014-06-11 21:26:27 4811EADC97F83D17EA7B95FF4F224EA5 5088 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\526b698-3e45e334 2014-06-11 21:26:28 C4FCEA123FB7E46D47D00A95C476C5A5 4720 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\7e3d80db-5508bb60 2014-06-11 21:26:30 9587AE807FD773861608B16F75606DAB 291 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\18d8bf5c-234cf65c 2014-06-11 21:26:27 69DA970DBC4A5CB99A72E038B1E054CC 142 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\779d1cc3-1cf876e9 2014-06-11 21:26:30 9566201EBD2648C45407D04F867844B8 4307 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\150b3020-25be6da0 2014-06-11 21:26:27 1BF1E4FBE023BF0477260F3FBF8A4211 14884 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\6970d1e0-2c57336e 2014-06-11 21:26:30 0055834E92CFB8B2B1F1E1D2708811F3 2431 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\11b7a561-3fd07500 2014-06-11 21:26:28 D1016A06D98900D8A15EFA7511D516B8 927 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\3ca56b61-761349a1 2014-05-22 20:11:00 69C84B7EE2D91923A9B24CABB20045B0 93 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\2998e763-98582d4279bdc578572883ea02d5e6a000b6309434ca9abbd2ded69c09745c8c-6.0.lap 2014-06-11 21:26:26 B30747862AEAC7E65DBF4FE3D84EB54C 1757 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\39689e66-4f564c32 2014-06-11 21:26:30 4B11BAF0634D556327EFBA2D5DFA4B00 22392 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\767d712a-4f0e4b70 2014-06-11 21:26:28 485F1EFCDD0997ABC8736119164A5E12 51276 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\714f9b2b-4bf76c60 2014-06-11 21:26:30 FC1E9CCFEA05623306EFCA6B86F6A921 2024 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\625d5aad-4dd1bffe 2014-06-11 21:26:30 B4FE1B2F647E787F0EF3D7CD11F0341E 2209 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\62f49330-5affc188 2014-06-11 21:26:30 B7C15FF56F61F8D20FC3751C19200095 1058 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\46c4d0b1-5c0e4b4b 2014-06-11 21:26:27 C2462EDFC7219E2DFFA3AA5453A8646E 61138 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5cef6372-243adc8e 2014-06-11 21:26:30 04C27D58BA5B1EC9097F695A73C3175A 7868 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\604b335-374c22e3 2014-06-11 21:26:29 0F9DF91B2BE775C455D35E76EA445FD2 810 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\be58c35-32405fe5 2014-06-11 21:26:30 BB1F1AC48AC87EF413FC7B58CC8BC406 468 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\30eb02b6-7bcb7d0d 2014-06-11 21:26:28 5FFA4EF27909D96DAF978BF7159CA391 4863 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\735fe7f7-6c70008b 2014-06-11 21:26:27 9235026D8D6A9BA03AD5652D2F8CE677 41273 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\16a4c078-614a11b9 2014-06-11 21:26:29 832B6E065FDF0FE600727E79DD177851 22065 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\1e2271b8-113163d3 2014-06-11 21:26:29 3BB7C5A99575C23072FACDBB24A03A3C 394 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3045ca38-345641ca 2014-06-11 21:26:28 A231BD19375F9D51CCB6B180B7D8D01D 3724 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\4fe128b8-58ff98d4 2014-06-11 21:26:28 206A17008540D557AD6F271CC9F35059 13570 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\652eef38-58866bed 2014-06-11 21:26:29 4B787AA4AC7CC61E01EFF06C1FA6319E 4751 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\8cfa738-10c01514 2014-06-11 21:26:26 0A5A0F9DE00C8861999CAB0B69DC19BE 500 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\16612d79-1695098f 2014-06-11 21:26:26 0D93DFC7B0162B03D3AB10D9CE4DAFF8 10859 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\52fda3b9-4f8960b1 2014-05-29 20:12:43 893625E0961BCE5DFD36DB6C662D15C4 38 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\23b3ecfd-80f5061de5afba23a34f47785a3f9c68a1742d08eb8888124b9d3d48e7882bb4-6.0.lap 2014-06-11 21:26:27 F60D0C2A404DA4DE7B1FA858FF432FA4 4323 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\70fddbe-6e790640 2014-06-11 21:26:28 2FE75D74A75465A172AF24B60F5EF83C 1514 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\7104edfe-7658cd55 2014-06-11 21:26:29 9B00BC6E4C847228CA075D39B4CDA3BF 829 ----a-w- C:\Users\luve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\734fb708-7a46ccc6 ====== C:\Windows\system32 ===== 2014-06-12 10:49:43 FB3E5FD7F74BFC301AD3FB7DE670EDCB 502784 ----a-w- C:\Windows\System32\usp10.dll 2014-06-12 10:49:39 D0D44370770D491E6BA472C855883422 1248768 ----a-w- C:\Windows\System32\msxml3.dll 2014-06-12 10:49:39 1E06779EDB55D035DD3F4A2B7432A291 1401344 ----a-w- C:\Windows\System32\msxml6.dll 2014-06-12 10:49:37 9F5AC4090D7C9F2591060DAC310FD294 1106432 ----a-w- C:\Windows\System32\urlmon.dll 2014-06-12 10:49:37 74DD13DF9DC59CCC5AE5528ECFA29BE9 10752 ----a-w- C:\Windows\System32\msfeedssync.exe 2014-06-12 10:49:37 0D7B6A0829874B057FF9D35F612B44F5 11776 ----a-w- C:\Windows\System32\mshta.exe 2014-06-12 10:49:36 B50E34870FC8F8CA79BCC2DC3183D691 421376 ----a-w- C:\Windows\System32\vbscript.dll 2014-06-12 10:49:36 B2D65154D4D36D6CA22BB586C016C1C1 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-06-12 10:49:36 AA5456C16D7F4B73177FD46AD63A12C4 1796096 ----a-w- C:\Windows\System32\iertutil.dll 2014-06-12 10:49:36 0A3EF805B406103971F27B9597EB98BC 231936 ----a-w- C:\Windows\System32\url.dll 2014-06-12 10:49:35 BA7CC0D3170EB03FA610BA8EA3A01E9D 65536 ----a-w- C:\Windows\System32\jsproxy.dll 2014-06-12 10:49:35 60D2396F470C110B7FAB1CFA4AC0D34B 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-06-12 10:49:35 4439087A375EFDD297DC470C3214D7D6 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll 2014-06-12 10:49:34 CFD26829131439B71D0109F9D5345573 1129472 ----a-w- C:\Windows\System32\wininet.dll 2014-06-12 10:49:34 947DA106EE001900969D42425FBDA183 717824 ----a-w- C:\Windows\System32\jscript.dll 2014-06-12 10:49:34 23330909BD92B7611815365559860952 1810432 ----a-w- C:\Windows\System32\jscript9.dll 2014-06-12 10:49:33 61F727795CAA98C3FCDB48379B78E370 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2014-06-12 10:49:33 32FE42E13195DEAF78D1E348F51A5AEE 353792 ----a-w- C:\Windows\System32\dxtmsft.dll 2014-06-12 10:49:32 3829D7D8B098F87C454E468DCAAE4912 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2014-06-12 10:49:29 2DCB8AEC38AE1427CB1CFE2432D05107 223232 ----a-w- C:\Windows\System32\dxtrans.dll 2014-06-12 10:49:29 148B2F103FD322A4B8AEB82D7B35D0AF 176640 ----a-w- C:\Windows\System32\ieui.dll 2014-06-12 10:49:28 AD2C67A381CC7148BB98A66BB04DDF5B 9711104 ----a-w- C:\Windows\System32\ieframe.dll 2014-06-12 10:49:28 9000CE8689BD16819AF8AFDB83B94CCE 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2014-06-12 10:49:26 B7363143940197BD9F16FD957B4F8131 12356608 ----a-w- C:\Windows\System32\mshtml.dll ====== C:\Windows\system32\drivers ===== 2014-06-12 10:49:42 C7B0746FCD576D7EEBA6A2530B0B2966 905664 ----a-w- C:\Windows\System32\drivers\tcpip.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-06-14 09:11:21 -------- d-----w- C:\Program Files\trend micro 2014-06-13 19:14:51 -------- d-----w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition 2014-06-08 10:58:38 -------- d-----w- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition 2014-06-07 10:37:06 -------- d-----w- C:\Program Files\Midnight Castle 2014-06-06 19:48:34 -------- d-----w- C:\Program Files\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition 2014-06-01 10:48:19 -------- d-----w- C:\Program Files\Awakening - The Redleaf Forest Collectors Edition 2014-05-30 11:42:48 -------- d-----w- C:\Program Files\Haunted Hotel - Ancient Bane Collector's Edition ======= C: ===== ====== C:\Users\luve\AppData\Roaming ====== 2014-06-13 19:14:51 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rite of Passage - Hide and Seek Collectors Edition 2014-06-08 10:58:38 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Myths of the World - Of Fiends and Fairies Collectors Edition 2014-06-07 10:37:06 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Midnight Castle 2014-06-06 19:48:34 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition 2014-06-05 17:35:27 -------- d-----w- C:\Users\luve\AppData\Roaming\Koolhaus Games 2014-06-01 10:48:19 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Awakening - The Redleaf Forest Collectors Edition 2014-05-30 11:42:48 -------- d-----w- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haunted Hotel - Ancient Bane Collector's Edition 2014-05-20 16:42:34 -------- d-----w- C:\Users\luve\AppData\Roaming\Ambers Tales ====== C:\Users\luve ====== 2014-06-13 19:14:51 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rite of Passage - Hide and Seek Collectors Edition 2014-06-08 10:58:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Myths of the World - Of Fiends and Fairies Collectors Edition 2014-06-07 10:37:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Midnight Castle 2014-06-06 19:48:34 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition 2014-06-01 10:48:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Awakening - The Redleaf Forest Collectors Edition 2014-05-30 11:42:48 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haunted Hotel - Ancient Bane Collector's Edition 2014-05-20 16:42:34 -------- d-----w- C:\ProgramData\Ambers Tales ====== C: exe-files == 2014-06-14 09:11:22 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\luve.exe 2014-06-13 19:15:11 0062277CC82D370CB6CB8638264A39A1 85179 ----a-w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\Uninstall.exe 2014-06-12 10:49:37 D14CBA888EF2A88C28CB5E6396A295DA 22528 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe 2014-06-12 10:49:35 7BA5B7DEDE25D44F3E664D5BA067E3CD 758000 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-06-12 10:49:34 77AEB4008A5E1015599A4DC6AE50C33B 223232 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-06-12 10:49:32 054E45A74734CDBDDEFB503CBBA0E0DF 469504 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-06-11 20:44:18 EBB5A7EBB316B48FDD89CED1D296ECFB 5572896 ---h--w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\RiteOfPassage_HideAndSeek_CE.exe 2014-06-11 20:44:16 3A01707E9184C6378B5F09B5A8741F51 2341152 ----a-w- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition\hwjfqjw.exe 2014-06-08 20:31:07 E9F6D06CAFA19D432AE418F13DC8960A 5923808 ----a-w- C:\GameHouse Games\Tales of the Orient - The Rising Sun\TalesoftheOrient_TheRisingSun.exe 2014-06-08 10:58:55 6CD64E650A2DC27AE493922664A7326B 85716 ----a-w- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition\Uninstall.exe === C: other files == 2014-06-14 17:29:41 441AF5E104D952CBA2646F3A954A0EF7 120602 ----a-w- C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\URK2U2MW\player_xml[2].zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Windows\CurrentVersion\Run] "LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "Google Update"="C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c" "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "QPService"="C:\Program Files\HP\QuickPlay\QPService.exe" "UpdateLBPShortCut"="C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\LabelPrint UpdateWithCreateOnce Software\CyberLink\LabelPrint\2.5" "UpdatePSTShortCut"="C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\DVD Suite UpdateWithCreateOnce Software\CyberLink\PowerStarter" "UCam_Menu"="C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\YouCam UpdateWithCreateOnce Software\CyberLink\YouCam\2.0" "QlbCtrl.exe"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start" "UpdatePDIRShortCut"="C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerDirector UpdateWithCreateOnce SOFTWARE\CyberLink\PowerDirector\7.0" "HP Health Check Scheduler"="c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" "WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" "NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup" "NvMediaCenter"="RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit" "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" "SysTrayApp"="%ProgramFiles%\IDT\WDM\sttray.exe " [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "Google Update"="C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c" "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14/06/2014 00:07] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [14/01/2010 17:13] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core.job --a------ C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe [12/09/2011 13:10] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA.job --a------ [undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core" [C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA" [C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\HP Health Check" ["c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"] "C:\Windows\system32\tasks\RealUpgradeLogonTaskS-1-5-21-4172665234-3387394907-3032361431-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\system32\tasks\RealUpgradeScheduledTaskS-1-5-21-4172665234-3387394907-3032361431-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{14B924BC-77F3-4260-8C2B-CB5CC06A13CD}" [C:\Windows\system32\msfeedssync.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "m3ffxtbr@mywebsearch.com"="C:\Program Files\MyWebSearch\bar\1.bin" [] ==== Firefox Extensions ====================== ProfilePath: C:\Users\luve\AppData\Roaming\TomTom\HOME\Profiles\i8opfco0.default - Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions - Downandsave - %ExtDir%\crossriderapp12331@crossrider.com ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles - Downandsave - %ExtDir%\extensions\crossriderapp12331@crossrider.com ExtDir: C:\Users\luve\AppData\Roaming\Mozilla\Extensions - Downandsave - C:\Users\luve\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\crossriderapp12331@crossrider.com ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jfmjfhklogoienhpfnppmbcbjfjnkonk - No path found[] avast Online Security - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki fIRST lOVE - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\lighpcanjnomdcjmfficdanifpdmgmhp Gamebox - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mibfbmhijjgpkmobcfdlelpccpeafoom Google Wallet - luve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Chrome Fix ====================== C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mywebface.dl.mywebsearch.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mywebface.dl.mywebsearch.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_addictedto.criminalcasegame.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_addictedto.criminalcasegame.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_imabigfanof.criminalcasegame.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_imabigfanof.criminalcasegame.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pioneertrail.gamebonuschecker.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pioneertrail.gamebonuschecker.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamersunite.coolchaser.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_gamersunite.coolchaser.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_onthenews.net_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_onthenews.net_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_slog.thestranger.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_slog.thestranger.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.addictinggames.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.addictinggames.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gamezebo.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gamezebo.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luvinthemommyhood.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luvinthemommyhood.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.theblaze.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.theblaze.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thepetitionsite.com_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thepetitionsite.com_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thesun.co.uk_0.localstorage deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.thesun.co.uk_0.localstorage-journal deleted successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\databases\http_www.beautyoftheweb.com_0 deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page Restore"="http://www.facebook.com/?ref=hp" "Start Page"="https://www.google.be/" "Default_Page_URL"="http://www.telenet.be" "Search Bar"="http://www.bing.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://start.alawar.com/" "Default_Page_URL"="http://www.telenet.be" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page Restore"="https://www.google.be/" "Start Page"="https://www.google.be/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{DDB9C78B-2095-41CF-A885-14A2B6A0F24C}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {1B30CBCF-74C8-4AF0-832C-BBD5D5DB3C32} Unknown Url="Not_Found" {54272A0D-4963-4CA3-8071-124107DC9959} Wikipedia (en) Url="http://en.wikipedia.org/w/index.php?title=Special:Search&search={searchTerms}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {903926A8-0C7D-4185-A2B4-D9D7171F5F87} Bing Url="http://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}" {DDB9C78B-2095-41CF-A885-14A2B6A0F24C} Web Search Url="http://ws.infospace.com/gamers_brw/ws/redir?_iceUrl=true&user_id=%userid&tool_id=%toolid&qkw={searchTerms}" {FC9DCCBC-99B1-4369-A39E-40F720DD8583} AOL Zoeken Url="http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1547&query={searchTerms}&invocationType=tb50hpcnnbie7-nl-be" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-4172665234-3387394907-3032361431-1000\Software\Microsoft\Internet Explorer\SearchScopes\{1B30CBCF-74C8-4AF0-832C-BBD5D5DB3C32} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\m3ffxtbr@mywebsearch.com deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{100B94DD-5DFF-263B-3E8C-309744764A31} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D13B3C-F261-4E0E-9916-78044C0535CC} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2235047F-1B25-EC94-5B2B-B9DB735882F5} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{319C4157-F353-B85D-4043-26A394915D88} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3757637D-5529-DCA1-427D-093D23BDF155} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5312301A-A02F-4E0F-BDFE-EA4A10FCFC5E} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{62660BD7-36BE-1529-E760-E33064C2F033} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{704FE2CA-E988-6360-FC0C-A9613E870FF9} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{842BA723-F4E1-552C-0F6F-5B4305A662ED} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{969E4976-03B8-5FE4-A85C-7D6C579FE40A} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C99A8918-3BD2-88A2-BA7A-A1BE4A13AD61} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Zynga Toolbar deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\luve\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\luve\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0 will be deleted at reboot C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\luve\AppData\Local\Chromium\User Data\Default\Cache emptied successfully C:\Users\luve\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=39482 folders=2864 3449435733 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\luve\AppData\Local\Temp will be emptied at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\luve\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0" not found ==== EOF on za 14/06/2014 at 20:47:34,87 ======================
  8. Goeienavond, hierbij het log na de vorige handelingen. Was er niet helemaal zeker van of het volledig is. Zoek.exe v5.0.0.0 Updated 02-June-2014 Tool run by luve on za 14/06/2014 at 19:37:52,87. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SRC9ZXK0\zoek.exe [scan all users] [script inserted] [Checkboxes used] ===== Runcheck 19:42:45,79 ===== --- Create Environment Variables 19:42:47,07 --- Create System Restore Point 19:43:03,76 --- Checking Input 19:43:45,28 --- AU AppData Check 19:43:49,18 --- Remove From Windows Installer 19:44:06,84 --- Empty Folders Check 19:45:30,10 --- IE Startpage Check 19:50:46,80 --- Program Files DB Check 19:51:38,33 --- C:\Users\Default\AppData\Roaming DB Check 19:52:28,65 --- C:\Users\Default User\AppData\Roaming DB Check 19:52:28,65 --- C:\Users\luve\AppData\Roaming DB Check 19:52:28,65 --- C:\Windows\system32\config\systemprofile\AppData\Roaming DB Check 19:52:28,65 --- C:\Windows\serviceprofiles\networkservice\AppData\Roaming DB Check 19:52:28,65 --- C:\Windows\serviceprofiles\Localservice\AppData\Roaming DB Check 19:52:28,65 --- C:\Users\luve DB Check 19:54:19,59 --- C:\PROGRA~2 DB Check 19:54:48,89 --- C:\Users\Default\AppData\Local DB Check 19:54:50,63 --- C:\Users\Default User\AppData\Local DB Check 19:54:50,63 --- C:\Users\luve\AppData\Local DB Check 19:54:50,63 --- C:\Windows\system32\config\systemprofile\AppData\Local DB Check 19:54:50,63 --- C:\Windows\serviceprofiles\networkservice\AppData\Local DB Check 19:54:50,63 --- C:\Windows\serviceprofiles\Localservice\AppData\Local DB Check 19:54:50,63 --- C:\ProgramData\Microsoft\Windows\Start Menu\Programs DB Check 19:56:03,76 --- C:\Users\luve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs DB Check 19:56:12,88 --- Tasks DB Check 19:56:18,32 --- Downloads DB Check 19:56:21,70 --- C:\Users\luve\AppData\LocalLow DB Check 19:56:29,39 --- C:\Windows\system32\config\systemprofile\AppData\LocalLow DB Check 19:56:29,39 --- C:\Windows\serviceprofiles\networkservice\AppData\LocalLow DB Check 19:56:29,39 --- Tasks2 DB Check 19:57:06,98 --- Documents DB Check 19:57:29,05 --- C:\Users\luve\AppData\Roaming\TomTom\HOME\Profiles\i8opfco0.default DB Check 19:57:32,82 --- C:\Users\luve\Desktop DB Check 19:57:36,24 --- Services DB Check 19:57:49,04 --- FF prefs.js DB Check 19:58:11,63 --- Del by CLSID 19:58:43,56 --- Delete Services 19:59:35,33 --- Registry Fix 20:00:06,34 --- Delete files\folders 20:00:06,39 --- Create Backups 20:00:06,45
  9. Goeiemorgen, hieronder het gevraagde RSIT bestand Logfile of random's system information tool 1.10 (written by random/random) Run by luve at 2014-06-14 11:11:21 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 272 GB (58%) free of 466 GB Total RAM: 3038 MB (52% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 11:12:42, on 14/06/2014 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16555) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HP\QuickPlay\QPService.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe C:\Program Files\Alwil Software\Avast5\avastui.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\IDT\WDM\sttray.exe C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\Users\luve\AppData\Local\Google\Update\1.3.24.7\GoogleCrashHandler.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Windows Mail\WinMail.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Alawar Elements\BackgroundHost.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_14_0_0_125_ActiveX.exe C:\Users\luve\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\URK2U2MW\RSIT.exe C:\Program Files\trend micro\luve.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Telenet.be R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Telenet.be R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Telenet Internet R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file) R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL (file missing) R3 - URLSearchHook: (no name) - - (no file) O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Zynga - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file) O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5825.1100\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O2 - BHO: Alawar Elements - {E33FF41E-53CB-4D93-885A-FFEFA04CD804} - C:\Program Files\Alawar Elements\ScriptHost.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: (no name) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file) O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe" O4 - HKLM\..\Run: [updateLBPShortCut] "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" O4 - HKLM\..\Run: [updatePSTShortCut] "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [updatePDIRShortCut] "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0" O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [sysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/IWONBarInitialSetup1.0.1.1.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_b9d13b43\aestsrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\Alwil Software\Avast5\afwServ.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files\WildTangent Games\App\GamesAppIntegrationService.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files\WildTangent Games\App\GamesAppService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: My Web Search Service (MyWebSearchService) - MyWebSearch.com - C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: Online Games Manager (ogmservice) - RealNetworks, Inc. - C:\Program Files\Online Games Manager\ogmservice.exe O23 - Service: Recovery Service for Windows - Unknown owner - C:\Program Files\SMINST\BLService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_b9d13b43\STacSV.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- End of file - 12318 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000Core.job - C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4172665234-3387394907-3032361431-1000UA.job - C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-14 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2014-05-07 436600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}] Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08 393600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-10-27 256112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5825.1100\swg.dll [2012-08-25 841880] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}] Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-10-27 458736] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33FF41E-53CB-4D93-885A-FFEFA04CD804}] Alawar Elements - C:\Program Files\Alawar Elements\ScriptHost.dll [2013-11-27 442528] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-10-27 256112] {7b13ec3e-999a-4b70-b9cb-2617b8323822} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-12-05 1410344] "QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2008-09-23 468264] "UpdateLBPShortCut"=C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2008-06-13 210216] "UpdatePSTShortCut"=C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [2008-12-24 210216] "UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2008-12-03 218408] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184] "QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-10-10 206128] "UpdatePDIRShortCut"=C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [2008-06-13 210216] "HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09 75008] "WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-12-08 432432] "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-01-15 13605408] "NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2009-01-15 92704] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576] "AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2014-06-05 3890208] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-02-23 483420] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-06-09 2363392] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-10-27 39408] "TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2013-08-27 248208] "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952] "MyWebSearch Email Plugin"=C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe [] "Google Update"=C:\Users\luve\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-12 136176] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [] "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "msacm.l3codecp"=l3codecp.acm "msacm.siren"=sirenacm.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-06-14 11:11:21 ----D---- C:\rsit 2014-06-14 11:11:21 ----D---- C:\Program Files\trend micro 2014-06-13 21:14:51 ----D---- C:\Program Files\Rite of Passage - Hide and Seek Collectors Edition 2014-06-12 12:49:43 ----A---- C:\Windows\system32\usp10.dll 2014-06-12 12:49:42 ----A---- C:\Windows\system32\drivers\tcpip.sys 2014-06-12 12:49:39 ----A---- C:\Windows\system32\msxml6.dll 2014-06-12 12:49:39 ----A---- C:\Windows\system32\msxml3.dll 2014-06-12 12:49:37 ----A---- C:\Windows\system32\urlmon.dll 2014-06-12 12:49:37 ----A---- C:\Windows\system32\mshta.exe 2014-06-12 12:49:37 ----A---- C:\Windows\system32\msfeedssync.exe 2014-06-12 12:49:36 ----A---- C:\Windows\system32\vbscript.dll 2014-06-12 12:49:36 ----A---- C:\Windows\system32\url.dll 2014-06-12 12:49:36 ----A---- C:\Windows\system32\ieUnatt.exe 2014-06-12 12:49:36 ----A---- C:\Windows\system32\iertutil.dll 2014-06-12 12:49:35 ----A---- C:\Windows\system32\msfeedsbs.dll 2014-06-12 12:49:35 ----A---- C:\Windows\system32\jsproxy.dll 2014-06-12 12:49:34 ----A---- C:\Windows\system32\wininet.dll 2014-06-12 12:49:34 ----A---- C:\Windows\system32\jscript9.dll 2014-06-12 12:49:34 ----A---- C:\Windows\system32\jscript.dll 2014-06-12 12:49:33 ----A---- C:\Windows\system32\msfeeds.dll 2014-06-12 12:49:33 ----A---- C:\Windows\system32\dxtmsft.dll 2014-06-12 12:49:29 ----A---- C:\Windows\system32\ieui.dll 2014-06-12 12:49:29 ----A---- C:\Windows\system32\dxtrans.dll 2014-06-12 12:49:28 ----A---- C:\Windows\system32\mshtmled.dll 2014-06-12 12:49:28 ----A---- C:\Windows\system32\ieframe.dll 2014-06-12 12:49:26 ----A---- C:\Windows\system32\mshtml.dll 2014-06-08 12:58:38 ----D---- C:\Program Files\Myths of the World - Of Fiends and Fairies Collectors Edition 2014-06-07 12:37:06 ----D---- C:\Program Files\Midnight Castle 2014-06-06 21:48:34 ----D---- C:\Program Files\Shadow Wolf Mysteries - Under the Crimson Moon Collectors Edition 2014-06-05 19:35:27 ----D---- C:\Users\luve\AppData\Roaming\Koolhaus Games 2014-06-01 12:48:19 ----D---- C:\Program Files\Awakening - The Redleaf Forest Collectors Edition 2014-05-30 13:42:48 ----D---- C:\Program Files\Haunted Hotel - Ancient Bane Collector's Edition 2014-05-20 18:42:34 ----D---- C:\Users\luve\AppData\Roaming\Ambers Tales 2014-05-20 18:42:34 ----D---- C:\ProgramData\Ambers Tales 2014-05-15 16:00:28 ----D---- C:\Program Files\Common Files\DESIGNER ======List of files/folders modified in the last 1 month====== 2014-06-14 11:12:20 ----D---- C:\Windows\Temp 2014-06-14 11:11:21 ----D---- C:\Program Files 2014-06-14 11:09:51 ----A---- C:\ProgramData\HPWALog.txt 2014-06-14 11:09:50 ----SHD---- C:\System Volume Information 2014-06-14 10:37:51 ----HD---- C:\ProgramData 2014-06-14 10:37:37 ----A---- C:\ProgramData\hpqp.ini 2014-06-14 00:07:12 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2014-06-13 23:53:22 ----AD---- C:\ProgramData\Temp 2014-06-13 21:16:39 ----D---- C:\Users\luve\AppData\Roaming\Mad Head Games 2014-06-13 21:10:37 ----D---- C:\BigFishCache 2014-06-13 07:40:03 ----D---- C:\Windows\system32\drivers 2014-06-13 07:40:03 ----D---- C:\Windows\System32 2014-06-13 07:40:01 ----D---- C:\Windows\system32\migration 2014-06-13 07:39:52 ----D---- C:\Program Files\Internet Explorer 2014-06-13 07:36:40 ----D---- C:\Windows\winsxs 2014-06-13 07:36:35 ----SHD---- C:\Windows\Installer 2014-06-13 07:36:09 ----D---- C:\ProgramData\Microsoft Help 2014-06-13 07:24:59 ----D---- C:\Windows\system32\MRT 2014-06-13 07:24:53 ----A---- C:\Windows\system32\mrt.exe 2014-06-13 07:09:42 ----D---- C:\Windows\system32\catroot2 2014-06-12 12:49:10 ----D---- C:\Windows\system32\catroot 2014-06-10 20:50:41 ----D---- C:\ProgramData\AlawarGameBox 2014-06-08 22:30:37 ----D---- C:\GameHouse Games 2014-06-08 22:30:33 ----D---- C:\Program Files\RealArcade 2014-06-08 12:59:57 ----D---- C:\Users\luve\AppData\Roaming\Eipix 2014-06-07 13:45:29 ----D---- C:\Zylom Games 2014-06-07 13:35:43 ----D---- C:\Program Files\Common Files\Ahead 2014-06-07 13:35:38 ----D---- C:\Windows\ehome 2014-06-07 13:35:37 ----D---- C:\Windows 2014-06-06 21:59:10 ----D---- C:\Users\luve\AppData\Roaming\ERS Game Studios 2014-06-01 12:52:22 ----D---- C:\Users\luve\AppData\Roaming\Boomzap 2014-05-31 18:21:36 ----D---- C:\Users\luve\AppData\Roaming\Gogii 2014-05-31 18:15:03 ----D---- C:\Windows\Prefetch 2014-05-31 18:00:35 ----D---- C:\Users\luve\AppData\Roaming\Elephant Games 2014-05-29 20:12:52 ----D---- C:\Users\luve\AppData\Roaming\AlawarEntertainment 2014-05-29 20:12:44 ----D---- C:\ProgramData\AlawarWrapper 2014-05-25 15:57:35 ----D---- C:\Users\luve\AppData\Roaming\Top Evidence 2014-05-25 15:57:35 ----D---- C:\ProgramData\Top Evidence 2014-05-19 17:05:05 ----D---- C:\Program Files\Atarata Games 2014-05-18 12:10:39 ----D---- C:\Users\luve\AppData\Roaming\Deep Shadows 2014-05-15 16:26:39 ----D---- C:\Windows\Microsoft.NET 2014-05-15 16:25:30 ----RSD---- C:\Windows\assembly 2014-05-15 16:00:28 ----D---- C:\Program Files\Common Files ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2010-01-09 12112] R0 aswNdis2;avast! Firewall NDIS Driver; C:\Windows\system32\drivers\aswNdis2.sys [2014-05-07 252464] R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-05-07 49944] R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-05-07 180632] R0 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616] R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2014-04-07 26136] R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2014-05-15 54832] R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 777488] R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 411680] R1 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2014-05-07 57672] R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-05-07 24184] R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-05-07 67824] R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-09-30 1184768] R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768] R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2008-09-24 45600] R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-01-15 7543200] R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-12-23 138240] R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt.sys [2009-02-23 394240] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-12-05 204976] R3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272] R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632] S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 39272] S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520] S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016] S3 NETw3v32;Intel® PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2008-01-21 2225664] S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2008-05-02 17536] S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2008-05-02 20864] S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576] S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2008-05-02 8064] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328] S3 usbser;Nokia USB Serial Port; C:\Windows\system32\DRIVERS\usbser.sys [2013-08-29 27648] S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2008-05-02 8064] S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136] S3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2006-11-02 194048] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_b9d13b43\aestsrv.exe [2009-02-12 81920] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-05-07 50344] R2 avast! Firewall;avast! Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2014-05-07 109048] R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2008-01-21 21504] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504] R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-10-09 94208] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-06-09 73728] R2 MyWebSearchService;My Web Search Service; C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe [2010-12-26 28762] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-01-15 203296] R2 ogmservice;Online Games Manager; C:\Program Files\Online Games Manager\ogmservice.exe [2014-03-27 581568] R2 Recovery Service for Windows;Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [2008-12-23 365952] R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2008-11-26 247152] R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_b9d13b43\STacSV.exe [2009-02-23 254034] R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-12-04 222512] R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-10-23 223232] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-14 135664] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-14 262320] S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S3 Boonty Games;Boonty Games; C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe [2011-06-22 69120] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840] S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-29 227904] S3 GamesAppService;GamesAppService; C:\Program Files\WildTangent Games\App\GamesAppService.exe [2014-04-29 203344] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-14 135664] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-27 182768] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168] S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040] -----------------EOF-----------------
  10. sedert vele jaren gebruikt ik op onze pc's Avast als antivirusprogramma, eerst de gratis versie, sedert een aantal jaren via abonnement, telkens per 2 jaar. Ik ben er altijd zeer tevreden van geweest en gebruikte de safezone bij bankverrichtingen en betalingen, steeds zonder problemen. Het huidig abonnement loopt tot 2015 maar sedert de laatste updates is er toch een en ander veranderd en werkt het niet meer zo goed ttz, een heel stuk trager. Bankverrichtingen lukken nog maar waar je vroeger makkelijk verschillende overschrijvingen na mekaar kon invoeren duurt het nu soms 5 min. vooraleer de bewerking gelukt is en je een tweede verrichting kan uitvoeren en eens de safe zone verlaten en avast programma afgesloten moet ik telkens de pc afsluiten en terug opstarten vooraleer ik naar een ander programma kan gaan omdat hij steeds vastloopt. Volgens mij (maar ik ben eigenlijk een leek op dat gebied) heeft het met bep. instellingen te maken en heb ik het gevoel dat er een aantal programma's mekaar tegenwerken maar ik weet er niet genoeg van om te weten wat precies. Kan er iemand mij helpen aub ?
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.