JEANSPANJE

Mijn IncredimAIL WERKT OPNIEUW MAAR ALLEEN ALS IK MIJ ALS ADMINISTRATOR AANMELD. HOE KAN IK INSTELLEN DAT IEDEREEN MET 1 KLIK OP DE ENVELOPPE OP DE ONDERSTE MENUBALK MIJN MAILBOX KAN OPENEN, mvg

Mijn Incredimail werkt opnieuw. Ik wacht op UW verdere instructies. MVG

Ik heb Google Chrome opnieuw geinstalleerd en het werkt maar ik krijg toch volgende melding: "Je profiel kan niet worden geopend. Sommige functies zijn wellicht niet beschikbaar. controleer of het profiel bestaat en of je beschikt over lees-en schrijfrechten voor de inhoud van het profiel" Ik heb mij ingelogd met mijn google account en Google Chrome werkt normaal. Ik kan niet controleren echter of mijn profiel (dat wel degelijk bestaat gezien ik kon inloggen) beschikt over alle lees-en schrijfrechten. Ik veronderstel van wel. Mijn Incredimail werkt nog steeds niet en ik wil die behouden. Ik wacht dus op Uw reaktie op mijn zoek.exe van 17/2/2015 die U ontvangen hebt. MVG

Hierbij de analyse van 17/2/2015. In vorig bericht hebt U die van 16/2/2015 ontvangen Sorry voor deze fout. zoek-results 17 februari 2015.txt

Ik kan nu mijn Google Chrome niet meer gebruiken en heb dus INTERNET EXPLORER gebruikt om dit antwoord door te sturen. Nog steeds kan ik mijn binnenkomende en uitgaan de berichten in Incredimail niet lezen. Alleen de titels verschijnen maar "loading failed try later again" blijft maar doordraaien. Wachtend op volgend antwoord van U dank bij voorbaat. zoek-results.txt

o.k sorry voor het geknutsel maar ik werk al meer dan 10 jaar met Iobit en Incredimail zonder problemen. Ik ben geen specialist en excuseer mij voor het onnodig storen. I wacht dus op verdere instructies. Mvg

Ik heb volgende problemen opgelost gekregen: 1. Iobit malware fighter is opnieuw aan het werk. 2. Ik heb opnieuw de volledige versie van INCREDIMAIL2 FREE VERSION geinstalleerd maar als ik op het iccontje klik op het werkblad opent zich niets. Wel als ik dit "ALS ADMINISTRATOR UITVOER" funktionneert alles voor zowel inkomende als uitgaande berichten NU WIL IK DAT IEDEREEN DIE OP HET ICOONTJE KLIKT MIJN MAILS KAN OPENEN. HOE MOET IK DIE "ALS ADMINISTRATOR OPENEN" verwijderen? Dit is het laatste probleempje dat nog open blijft. Kunt U mij hierbij helpen? MVG

OM de "zoek.exe" procedure uit te voeren heb ik mijn anti-virus uitgeschakeld to de computer moest herop gestart worden. Ik had mijn IOBIT MALWARE FIGHTER 3 - FREE VERSION verwijderd omdat ik die niet tijdelijk kon uitschakelen. NU wil ik die FREE VERSION opnieuw installeren maar na het downloaden klik ik op uitvoeren en ik krijg volgend bericht: "Set up ka C:\Users\JEAN\AppData\Temp\is-8B21V.tmp niet maken - FOUT 5: toegang geweigerd. Mijn anti-virus werkt wel perfekt weer. Dit is dus een nieuw bijkomend probleem. Kan ik mijn computer niet terugzetten in de toestand van VOOR IK DE EERSTE MAAL "zoek.exe" uitgevoerd heb d.w.z. op 12/2/2015? Dan zou ik 2 problemen moeten opgelost hebben: 1. Het opnieuw installeren van mijn FREE IOBIT MALWARE FIGHTER 3 mogelijk maken (dit hoop ik althans). 2. Het opnieuw mogelijk maken mijn FREE INCREDIMAIL2 als standaard mailbox kunnen gebruiken. (dit hoop ik ook) Hoe moet ik nu verder want i.p.v. problemen op te lossen komen er steeds meer bij. Computers zijn rare dingen toch hé!! MVG

Hierbij nu de Zoek-results.log in bijlage. Hoe moet ik nu verder? Ik kan nog steeds niet mijn INCREDIMAIL2 mailbox gebruiken. hoe dit oplossen? Ik gebruik mijn WEBMAIL GMAILBOX voorlopig zoek-results.txt Mvg

ik vind in "C:\Zoek-results.log "NIET OP MIJN COMPUTER TERUG Ik begin de procedure opnieuw zolas U bevenvermeld hebt en stuur die dan als bijlage zoals ook uitgelegd is. Mvg

Hallo, Sedert ik bovenstaande uitgevoerd heb en de PC opgestart heb kan iik geen mails meer ontvangen noch verzenden met Incredimail2. Ik krijg wel de titels te zien maar de berichten verschijnen nooit Ik krijg "loading failed: try later again" maar niets krijg ik te zien. Wel kan ik diezelfde mails ontvangen en versturen op mijn webmail gmail box. Ik heb INcredimail setup opnieuw uitgevoerd maar niets helpt. Ik heb geprobeerd een systeemherstel uit te voeren maar dit MISLUKT OOK STEEDS. HOE IS DIT MOGELIJK? MVG

Ik had bij voorgaand bericht de zoek.exe niet volledig laten werken. Nu heb ik dit wel gedaan (neemt een paar uur in beslag) en ik moest de PC opnieuw opstarten hetgeen ik gedaan heb. Hierbij volgt nu de volledige info. Zoek.exe v5.0.0.0 Updated 13-February-2015 Tool run by JEAN on vr 13/02/2015 at 15:50:09,52. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\JEAN\DOWNLOADS\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 13/02/2015 15:58:21 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\AGEIA Technologies deleted successfully C:\Program Files\EZDownloader deleted successfully C:\Program Files\Firetrust deleted successfully C:\Program Files\Reverse Page deleted successfully C:\Program Files\SmartTweak deleted successfully C:\PROGRA~2\Babylon deleted successfully C:\PROGRA~2\eMule deleted successfully C:\PROGRA~2\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted successfully C:\PROGRA~2\{429CAD59-35B1-4DBC-BB6D-1DB246563521} deleted successfully C:\PROGRA~2\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1} deleted successfully C:\PROGRA~2\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully C:\PROGRA~2\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} deleted successfully C:\PROGRA~2\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} deleted successfully C:\Users\JEAN\AppData\Roaming\Firetrust deleted successfully C:\Users\JEAN\AppData\Roaming\PerformerSoft deleted successfully C:\Users\JEAN\AppData\Roaming\Windows Live Writer deleted successfully C:\Users\JEAN\AppData\Local\cache deleted successfully C:\Users\JEAN\AppData\Local\DriverToolkit deleted successfully C:\Users\JEAN\AppData\Local\eSupport.com deleted successfully C:\Users\JEAN\AppData\Local\GGEmpire deleted successfully C:\Users\JEAN\AppData\Local\PackageAware deleted successfully C:\Users\JEAN\AppData\Local\PC_Drivers_Headquarters deleted successfully C:\Users\JEAN\AppData\Local\Pirates deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Classes\VirtualStore\MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{114DB5FA-0AFB-BB92-A75B-F44D3CE875CD} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E2D779C9-4E92-49A0-B86B-8727B4CFDE30} deleted successfully HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Application Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Application Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Application Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Application Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IHProtect Service deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\IHProtect Service deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\IHProtect Service deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\IHProtect Service deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LiveUpdateSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\LiveUpdateSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\LiveUpdateSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\LiveUpdateSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SecureUpdateSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\SecureUpdateSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SecureUpdateSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\SecureUpdateSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SPPD deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\SPPD deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\SPPD deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\SPPD deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\shopperz Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\shopperz Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\shopperz Updater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\shopperz Updater deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoftonicAssistant] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command] @="C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="C:\\Program Files\\Internet Explorer\\iexplore.exe" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "bProtector Start Page"=- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "bProtectorDefaultScope"=- ==== Deleting Files \ Folders ====================== C:\PROGRA~2\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} not found C:\PROGRA~2\{429CAD59-35B1-4DBC-BB6D-1DB246563521} not found C:\PROGRA~2\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1} not found C:\PROGRA~2\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found C:\PROGRA~2\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} not found C:\PROGRA~2\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} not found C:\Program Files\Application Updater deleted C:\Program Files\XTab deleted C:\Program Files\IObit\LiveUpdate deleted C:\Users\JEAN\AppData\Roaming\sparta111 deleted C:\Program Files\SearchProtect deleted C:\Program Files\LuckyTab deleted C:\ProgramData\9118597777377280296 deleted C:\Program Files\unisaallEEs deleted C:\ProgramData\jajnadinkbfcdikcmjenbjamnbcldcpf deleted C:\ProgramData\{dc3a499c-b7a1-1bae-dc3a-a499cb7a2672} deleted C:\Program Files\ConduitEngine deleted C:\Program Files\IncrediMail_MediaBar_2 deleted C:\Users\JEAN\appdata\locallow\IncrediMail_MediaBar_2 deleted C:\Program Files\Plus-HD-9.6 deleted C:\Users\JEAN\AppData\LocalLow\Conduit deleted C:\Users\JEAN\daemonprocess.txt deleted C:\Users\JEAN\.android deleted C:\Program Files\Photo Notifier and Animation Creator deleted C:\Program Files\Conduit deleted C:\Program Files\jZip deleted C:\Program Files\Computer Updater deleted C:\Program Files\SpeedBit Video Downloader deleted C:\Program Files\Registry Mechanic deleted C:\Program Files\SpeedyPC Software deleted C:\Program Files\globalUpdate deleted C:\Program Files\Perion deleted C:\Program Files\SearchPredict deleted C:\Program Files\Common Files\Spigot deleted C:\Program Files\Common Files\AVG Secure Search deleted C:\Program Files\Common Files\SpeedyPC Software deleted C:\Program Files\Common Files\SpeedBit deleted C:\user.js deleted C:\ChCfg.exe deleted C:\DotNetInstaller.exe deleted C:\ieuser.exe deleted C:\launcher.exe deleted C:\Picasa-3.6.79166.exe deleted C:\wmp11-windowsxp-x86-nl-nl (1).exe deleted C:\WMSvc.exe deleted C:\WMSvc_1.exe deleted C:\WUApp32.exe deleted C:\WUApp32_1.exe deleted C:\zipper.exe deleted C:\Users\JEAN\AppData\Roaming\WB.CFG deleted C:\Users\JEAN\AppData\Roaming\newnext.me deleted C:\Users\JEAN\AppData\Roaming\EZDownloader deleted C:\Users\JEAN\AppData\Roaming\ProductData deleted C:\Users\JEAN\AppData\Roaming\SpeedyPC Software deleted C:\Users\JEAN\AppData\Roaming\ParetoLogic deleted C:\Users\JEAN\AppData\Roaming\DriverCure deleted C:\Users\JEAN\AppData\Roaming\Babylon deleted C:\Users\JEAN\AppData\Roaming\Registry Mechanic deleted C:\Users\JEAN\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar deleted C:\Users\JEAN\AppData\Roaming\Systweak deleted C:\Users\JEAN\AppData\Roaming\Optimizer Pro deleted C:\Users\JEAN\AppData\Roaming\OpenCandy deleted C:\PROGRA~2\APN deleted C:\PROGRA~2\SPLCD9D.tmp deleted C:\PROGRA~2\SpeedyPC Software deleted C:\PROGRA~2\Wincert deleted C:\PROGRA~2\IHProtectUpDate deleted C:\PROGRA~2\ParetoLogic deleted C:\PROGRA~2\Uniblue\DriverScanner deleted C:\PROGRA~2\ProductData deleted C:\PROGRA~2\Speedbit deleted C:\PROGRA~2\Uniblue deleted C:\PROGRA~2\Tarma Installer deleted C:\PROGRA~2\WindowsMangerProtect deleted C:\Users\JEAN\AppData\Local\CRE deleted C:\Users\JEAN\AppData\Local\avaxvyvax deleted C:\Users\JEAN\AppData\Local\globalUpdate deleted C:\Users\JEAN\AppData\Local\Slick Savings deleted C:\Users\JEAN\AppData\Local\SearchProtect deleted C:\Users\JEAN\AppData\Local\AVG Secure Search deleted C:\Users\JEAN\AppData\Local\SaveSense deleted C:\Users\JEAN\AppData\Local\SaveSenseLive deleted C:\Users\JEAN\AppData\Local\jZip deleted C:\Users\JEAN\AppData\Local\BearShare deleted C:\Users\JEAN\AppData\Local\iMesh deleted C:\Users\JEAN\AppData\Local\TempDIR deleted C:\Users\JEAN\AppData\Local\Mobogenie deleted C:\Users\JEAN\AppData\Local\Conduit deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedBit Video Downloader deleted C:\Users\JEAN\AppData\LocalLow\BabylonToolbar deleted C:\Users\JEAN\AppData\LocalLow\SweetIM deleted C:\Users\JEAN\AppData\LocalLow\ADSRemoval deleted C:\Users\JEAN\AppData\LocalLow\Search Settings deleted C:\Users\JEAN\AppData\LocalLow\jZip deleted C:\Users\JEAN\AppData\LocalLow\shareazatoolbarguid deleted C:\Users\JEAN\AppData\LocalLow\Softonic deleted C:\Users\JEAN\AppData\LocalLow\DataMngr deleted C:\Users\JEAN\AppData\LocalLow\Toolbar4 deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A} deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\Application Updater deleted C:\Windows\Reimage.ini deleted C:\Windows\tasks\ROC_JAN2013_TB_rmv.job deleted C:\Windows\system32\tasks\ROC_JAN2013_TB_rmv deleted C:\Windows\system32\tasks\RegClean Pro deleted C:\end deleted C:\Windows\AppPatch\Custom\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb deleted C:\Windows\AppPatch\nbin\VC32Loader.dll deleted C:\Windows\System32\drivers\SPPD.sys deleted C:\Windows\System32\drivers\{304c2a7d-b0e5-4752-bc7f-90d4456afe97}t.sys deleted C:\Windows\System32\drivers\{356cd1f9-4be3-4c04-8b4c-9380c6fa34d6}Gt.sys deleted C:\Windows\System32\drivers\{67561ace-c443-4c39-9e16-07f6354b97f2}Gt.sys deleted C:\Windows\System32\drivers\{d0194130-21b3-4618-b5c8-b6dfe1e0bb88}t.sys deleted C:\Windows\system32\roboot.exe deleted C:\Windows\system32\GroupPolicy\Machine deleted C:\Windows\system32\GroupPolicy\gpt.ini deleted C:\Windows\System32\AniGIF.ocx deleted C:\Users\JEAN\BOIE9_NLNL_VIS.exe deleted C:\Users\JEAN\Maint.exe deleted "C:\ProgramData\lxdj" deleted "C:\Program Files\shopperz\csrcc.exe" not deleted "C:\Program Files\shopperz\garrus.dll" not deleted "C:\Program Files\shopperz\grunt.exe" not deleted "C:\Program Files\shopperz\kasumi32.dll" not deleted "C:\Program Files\shopperz\kasumi64.dll" not deleted "C:\Program Files\shopperz\krios.dll" not deleted "C:\Program Files\shopperz\krios64.dll" not deleted "C:\Program Files\shopperz\liara.dll" not deleted "C:\Program Files\shopperz\liara64.dll" not deleted "C:\Program Files\shopperz\mseff32.dll" not deleted "C:\Program Files\shopperz\nseven.exe" not deleted "C:\Program Files\shopperz\prc32.exe" not deleted "C:\Program Files\shopperz\prexec.exe" not deleted "C:\Program Files\shopperz\spdata.dat" not deleted "C:\Program Files\shopperz\tree.js" not deleted "C:\Program Files\shopperz\tsoni.dll" not deleted "C:\Program Files\shopperz\tsoni64.dll" not deleted "C:\Program Files\shopperz\unins000.exe" not deleted "C:\Program Files\shopperz\wrex.exe" not deleted "C:\Program Files\shopperz\wrex64.exe" not deleted "C:\Program Files\shopperz\csrcc.exe" not deleted "C:\Program Files\shopperz\garrus.dll" not deleted "C:\Program Files\shopperz\grunt.exe" not deleted "C:\Program Files\shopperz\kasumi32.dll" not deleted "C:\Program Files\shopperz\kasumi64.dll" not deleted "C:\Program Files\shopperz\krios.dll" not deleted "C:\Program Files\shopperz\krios64.dll" not deleted "C:\Program Files\shopperz\liara.dll" not deleted "C:\Program Files\shopperz\liara64.dll" not deleted "C:\Program Files\shopperz\mseff32.dll" not deleted "C:\Program Files\shopperz\nseven.exe" not deleted "C:\Program Files\shopperz\prc32.exe" not deleted "C:\Program Files\shopperz\prexec.exe" not deleted "C:\Program Files\shopperz\spdata.dat" not deleted "C:\Program Files\shopperz\tree.js" not deleted "C:\Program Files\shopperz\tsoni.dll" not deleted "C:\Program Files\shopperz\tsoni64.dll" not deleted "C:\Program Files\shopperz\unins000.exe" not deleted "C:\Program Files\shopperz\wrex.exe" not deleted "C:\Program Files\shopperz\wrex64.exe" not deleted "C:\PROGRA~2\boost_interprocess\skype_c2c_messaging_mutex" deleted "C:\Program Files\BearShare Applications\BearShare\VSFilter.dll" deleted "C:\Users\JEAN\AppData\LocalLow\Company\Product\1.0\localStorageIE.txt" not deleted "C:\Users\JEAN\AppData\LocalLow\Company\Product\1.0\localStorageIE_backup.txt" not deleted "C:\Users\JEAN\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}\{FBC0652C-7B29-4FB6-8ADA-91F54B267AD4}\1.5\sts.js" not deleted "C:\Program Files\shopperz" not deleted "C:\Program Files\shopperz" not deleted "C:\Program Files\BearShare Applications" not deleted "C:\PROGRA~2\boost_interprocess" not deleted "C:\Users\JEAN\AppData\LocalLow\Company" not deleted "C:\Users\JEAN\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}" not deleted "C:\Program Files\BearShare Applications\BearShare" not deleted "C:\Users\JEAN\AppData\LocalLow\Company\Product" not deleted "C:\Users\JEAN\AppData\LocalLow\Company\Product\1.0" not deleted "C:\Users\JEAN\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}\{FBC0652C-7B29-4FB6-8ADA-91F54B267AD4}" not deleted "C:\Users\JEAN\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}\{FBC0652C-7B29-4FB6-8ADA-91F54B267AD4}\1.5" not deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\JEAN\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== 2015-02-12 09:48:12 1A3778EBE361259C75D5D92D4119DB55 1810944 ----a-w- C:\Windows\System32\jscript9.dll 2015-02-12 09:48:12 10C0DA063EEA438B73B60CE15BF8702B 717824 ----a-w- C:\Windows\System32\jscript.dll 2015-02-11 10:59:21 0D8FBC644E556C40E06B7EB25A73F6E5 564224 ----a-w- C:\Windows\System32\oleaut32.dll 2015-02-11 10:58:47 77036FE328B7A382A88DFBFE05ABBAC8 2063360 ----a-w- C:\Windows\System32\win32k.sys 2015-02-11 10:58:08 55ADC2CB49975A92B954CFEB21C73E2E 974848 ----a-w- C:\Windows\System32\WindowsCodecs.dll 2015-02-11 10:55:26 735B1EB4521724784A6C142CE923DBFC 306176 ----a-w- C:\Windows\System32\scesrv.dll 2015-02-11 10:01:25 C9AEC0B252881C6372D4B252AAEFF1E0 421376 ----a-w- C:\Windows\System32\vbscript.dll 2015-02-11 10:01:25 A1CC68D946EFEDAFCAFCC30F73069E54 176640 ----a-w- C:\Windows\System32\ieui.dll 2015-02-11 10:01:25 90BFECC19CC9B8AD24879AF2D2EDD817 223232 ----a-w- C:\Windows\System32\dxtrans.dll 2015-02-11 10:01:25 79E75447CCEB8522756FCD1EA1B858FF 1129472 ----a-w- C:\Windows\System32\wininet.dll 2015-02-11 10:01:25 009D017C0A32C1D10C1B731185ED7E7B 353792 ----a-w- C:\Windows\System32\dxtmsft.dll 2015-02-11 10:01:24 C3A39726B1AB3EDCD3E71488531D7D62 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2015-02-11 10:01:24 43EFB5C7EE9990A3FE51E38FD1A334EB 367104 ----a-w- C:\Windows\System32\html.iec 2015-02-11 10:01:23 88DFFFE4A1C25C256A74629599292A2D 12371456 ----a-w- C:\Windows\System32\mshtml.dll 2015-02-11 10:01:22 AEEDEE2C22971D086B244B818BC5E789 65024 ----a-w- C:\Windows\System32\jsproxy.dll 2015-02-11 10:01:22 99AB7F4193275F8AA0A2E0CDDD787CCE 10752 ----a-w- C:\Windows\System32\msfeedssync.exe 2015-02-11 10:01:22 8D45045DB8267BB3B86B06712FB676C3 11776 ----a-w- C:\Windows\System32\mshta.exe 2015-02-11 10:01:22 61EFA6B58EBDE66BA4FE54FEC0BE6538 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2015-02-11 10:01:22 1C394C5CFA2769E7C95B99362B1C2131 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll 2015-02-11 10:01:21 F8A000CEB50A46BAED45101065635D84 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2015-02-11 10:01:21 40F6C5763DA273F5BC30E17C4B3B011F 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2015-02-11 10:01:21 14EA1AEF44A601DE1CC0EFD97690DEF1 1139712 ----a-w- C:\Windows\System32\urlmon.dll 2015-02-11 10:01:20 60974C6E6B8456B5908A7650FC7C93DC 1802752 ----a-w- C:\Windows\System32\iertutil.dll 2015-02-11 10:01:20 60652E280588712CFA1624D02C7139AA 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2015-02-11 10:01:20 2B94917978DCC4DF10505FED0C6563F2 231936 ----a-w- C:\Windows\System32\url.dll 2015-02-11 10:01:20 062C13975F34C1BBA43CD3BF01D8C899 9742336 ----a-w- C:\Windows\System32\ieframe.dll 2015-02-09 16:54:50 06C99FCB2C0DED18CB71FA94158A6D09 522 ----a-w- C:\Windows\System32\cc_20150209_175445.reg 2015-02-08 19:11:54 D9E78629A6715BC60897DF8AFC016B2B 506 ----a-w- C:\Windows\System32\cc_20150208_201148.reg 2015-02-06 11:24:57 197B2EE973E3BC2B0E32BED69549E41E 291352 ----a-w- C:\Windows\System32\aswBoot.exe ====== C:\Windows\system32\drivers ===== 2015-02-11 10:55:32 5035EDF1F2E72F78BB1EC5BD9B97463F 440760 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2015-02-02 11:58:25 9D23DE88C3B18BA87CD4587177CA6CEA 24184 ----a-w- C:\Windows\System32\drivers\aswHwid.sys 2015-02-02 11:58:25 98F4C60F5C3E77B4A2CD1F06F7198D49 73480 ----a-w- C:\Windows\System32\drivers\aswmonflt.sys 2015-02-02 11:58:25 6544697080421E62E97AAFBD0A8AA391 49944 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys 2015-02-02 11:58:25 4C0ECF1AFA6992904814C74B99DD36F9 57928 ----a-w- C:\Windows\System32\drivers\aswTdi.sys 2015-02-02 11:58:25 1624D5AD126B8AFE2B2E85E5B8364EB6 423784 ----a-w- C:\Windows\System32\drivers\aswsp.sys 2015-02-02 11:58:25 0EFBC2962B156E8AC267F96D4D93EF06 206248 ----a-w- C:\Windows\System32\drivers\aswVmm.sys 2015-02-02 11:58:25 0926775B8C3B32EE99921CCB0F85378E 55240 ----a-w- C:\Windows\System32\drivers\aswRdr.sys 2015-02-02 11:58:24 E73CBE3420ECFA8FF7D0467E170E335D 787800 ----a-w- C:\Windows\System32\drivers\aswsnx.sys 2015-01-30 09:33:00 533BFC63198762402F5490176F68B1C0 31736 ----a-w- C:\Windows\System32\drivers\bsdriver.sys 2015-01-30 09:32:54 0D08D12AE45EB212F284E3B281197F06 51160 ----a-w- C:\Windows\System32\drivers\cherimoya.sys 2015-01-27 22:29:50 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf 2015-01-27 20:10:43 1E3D32DDBE6BBDC0843432BAD599069F 10681176 ----a-w- C:\Windows\System32\drivers\nvlddmkm.sys 2015-01-27 20:08:01 886CE666A9507E17475C7156B157D181 5804772 ----a-w- C:\Windows\System32\drivers\rtvienna.dat 2015-01-27 20:08:00 19B572DD46F038509846589DCB702B19 3086040 ----a-w- C:\Windows\System32\drivers\RTKVHDA.sys 2015-01-27 20:07:55 4013C8B5C62F7F8E6A027DFB19173A4E 1099203 ----a-w- C:\Windows\System32\drivers\RTAIODAT.DAT 2015-01-27 20:00:05 8E6D3DEF07A671B7079D01947FDE1E58 38768 ----a-w- C:\Windows\System32\drivers\Smb_driver_Intel.sys ====== C:\Windows\Tasks ====== 2015-02-11 10:45:21 60E0C8B072C70A924C86E32F68A0659F 3152 ----a-w- C:\Windows\system32\Tasks\SmartDefrag3_Startup 2015-02-11 10:45:14 33F0D311D6B1942FA265ED70F4F0BE62 3150 ----a-w- C:\Windows\system32\Tasks\SmartDefrag3_Update 2015-02-11 10:38:30 18D6A4A93C36B947AAEC60E57FA8A3CC 3152 ----a-w- C:\Windows\system32\Tasks\ASC8_PerformanceMonitor 2015-02-02 11:58:38 E1E8FD7F25C407C35A91BC8ADC720529 4182 ----a-w- C:\Windows\system32\Tasks\avast! Emergency Update 2015-02-02 11:28:03 45E35D233FDED33A45B3B9B5BA4F40EF 2896 ----a-w- C:\Windows\system32\Tasks\Uninstaller_SkipUac_JEAN 2015-01-31 18:54:02 AFC420589E9E0C0D747F0CBD25417B81 2840 ----a-w- C:\Windows\system32\Tasks\ASC8_SkipUac_JEAN 2015-01-27 19:16:05 A0C35C4AD8968C5E9CFDDE4F573D4A22 3202 ----a-w- C:\Windows\system32\Tasks\Driver Booster Scan 2015-01-27 19:16:05 3DAC6DFDC28A58528DE1867B97F0118A 3146 ----a-w- C:\Windows\system32\Tasks\Driver Booster Update 2015-01-15 10:35:04 AF1E4494FE2AAE793086976D4439789F 3334 ----a-w- C:\Windows\system32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3978713732-936569717-2525818349-1000 ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-02-12 16:37:25 -------- d-----w- C:\Program Files\trend micro 2015-02-03 17:21:06 -------- d-----w- C:\Program Files\Cyti Web 2015-01-30 09:32:53 -------- d-----w- C:\Program Files\shopperz 2015-01-27 22:29:44 -------- d-----w- C:\Program Files\Synaptics 2015-01-26 14:37:33 -------- d-----w- C:\Program Files\ChilliTorrent ======= C: ===== ====== C:\Users\JEAN\AppData\Roaming ====== 2015-02-10 13:02:42 -------- d-----w- C:\Users\JEAN\AppData\Local\Apple 2015-02-09 09:46:53 -------- d-----w- C:\Users\JEAN\AppData\Local\Adobe 2015-02-08 11:55:47 -------- d-----w- C:\Users\JEAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-01-30 09:32:56 -------- d-----w- C:\Users\JEAN\AppData\Locallow\Company 2015-01-30 09:32:56 -------- d-----w- C:\Users\JEAN\AppData\Locallow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A} 2015-01-29 20:00:38 -------- d-----w- C:\Users\JEAN\AppData\Locallow\AdbPlugin 2015-01-29 20:00:32 -------- d-----w- C:\Users\JEAN\AppData\Locallow\SecurePlugin 2015-01-26 17:09:32 -------- d-----w- C:\Users\JEAN\AppData\Roaming\SoftwareUpdater 2015-01-19 21:12:57 -------- d-----w- C:\Users\JEAN\AppData\Local\Apps ====== C:\Users\JEAN ====== 2015-02-12 19:05:17 72DFE906ACB4D2156B788B3F37C862CE 13510056 ----a-w- C:\Users\JEAN\DOWNLOADS\IncrediMailSetup_nl.exe 2015-02-12 16:37:03 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\JEAN\DOWNLOADS\RSIT (1).exe 2015-02-12 16:36:57 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\JEAN\DOWNLOADS\RSIT.exe 2015-02-11 10:23:08 FE4599DDCE5D03D3CA9F96834867C4F9 761624 ----a-w- C:\Users\JEAN\DOWNLOADS\bearshare_gold.exe 2015-01-29 18:55:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8 2015-01-27 19:16:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2 2015-01-27 19:15:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller 2015-01-27 10:03:16 -------- d-----w- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB 2015-01-26 19:23:20 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter 2015-01-26 17:01:50 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\ProgramData\ntuser.pol ====== C: exe-files == === C: other files == 2015-02-13 08:43:14 8C69F521E5F5C03AEEDEE1EDE520D535 96 ---ha-w- C:\Program Files\Common Files\X10\Common\x10prod.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "Advanced SystemCare 5"="C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe /AutoStart" "Advanced SystemCare 7"="C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe /Auto" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1000\Software\Microsoft\Windows\CurrentVersion\Run] "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" [HKEY_USERS\S-1-5-21-3978713732-936569717-2525818349-1003\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "Advanced SystemCare 5"="C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe /AutoStart" "Advanced SystemCare 7"="C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe /Auto" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_Dlls"="C:\\PROGRA~1\\SearchProtect\\SearchProtect\\bin\\VC32Loader.dll" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acrobat Assistant 8.0] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Acrobat Assistant 8.0" "hkey"="HKLM" "command"="\"C:\\Program Files\\Adobe\\Acrobat 11.0\\Acrobat\\Acrotray.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe Reader Speed Launcher" "hkey"="HKLM" "command"="\"C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeAAMUpdater-1.0" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Advanced SystemCare 8] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Advanced SystemCare 8" "hkey"="HKCU" "command"="\"C:\\Program Files\\IObit\\Advanced SystemCare 8\\ASCTray.exe\" /Auto" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Advanced SystemCare Ultimate] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Advanced SystemCare Ultimate" "hkey"="HKCU" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CCleaner Monitoring" "hkey"="HKCU" "command"="\"C:\\Program Files\\CCleaner\\CCleaner.exe\" /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ehTray.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ehTray.exe" "hkey"="HKCU" "command"="C:\\Windows\\ehome\\ehTray.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Skype" "hkey"="HKCU" "command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /minimized /regrun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^JEAN^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^StartUp^Dropbox.lnk] "item"="Dropbox" "backup"="C:\\Windows\\pss\\Dropbox.lnk.Startup" "backupExtension"=".Startup" "command"="C:\\Users\\JEAN\\AppData\\Roaming\\Dropbox\\bin\\Dropbox.exe" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [08/02/2015 11:28] C:\Windows\tasks\DriverToolkit Autorun.job --a------ C:\Program Files\DriverToolkit\DriverToolkit.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [04/12/2014 03:31] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [04/12/2014 03:31] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\ASC8_PerformanceMonitor" [C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe] "C:\Windows\system32\tasks\ASC8_SkipUac_JEAN" ["C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe" /SkipUac] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\Driver Booster Scan" [C:\Program Files\IObit\Driver Booster\Scheduler.exe] "C:\Windows\system32\tasks\Driver Booster SkipUAC (JEAN)" [C:\Program Files\IObit\Driver Booster\DriverBooster.exe] "C:\Windows\system32\tasks\Driver Booster SkipUAC (SYSTEEM)" [C:\Program Files\IObit\Driver Booster\DriverBooster.exe] "C:\Windows\system32\tasks\Driver Booster Update" [C:\Program Files\IObit\Driver Booster\AutoUpdate.exe] "C:\Windows\system32\tasks\DriverToolkit Autorun" [C:\Program Files\DriverToolkit\DriverToolkit.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\JetBoost_AutoUpdate" [C:\Program Files\BlueSprig\JetBoost\AutoUpdate.exe] "C:\Windows\system32\tasks\JetCleanLoginCheckUpdate" [C:\Program Files\BlueSprig\JetClean\AutoUpdate.exe] "C:\Windows\system32\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3978713732-936569717-2525818349-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\system32\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3978713732-936569717-2525818349-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\system32\tasks\RMSmartUpdate" ["C:\Program Files\Registry Mechanic\update.exe"] "C:\Windows\system32\tasks\SmartDefrag3_Startup" [C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe] "C:\Windows\system32\tasks\SmartDefrag3_Update" [C:\Program Files\IObit\Smart Defrag 3\AutoUpdate.exe] "C:\Windows\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files\TuneUp Utilities 2013\OneClick.exe] "C:\Windows\system32\tasks\Uninstaller_SkipUac_JEAN" [C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe] "C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\system32\tasks\NCH Software\DebutReminder" [C:\Program Files\NCH Software\Debut\Debut.exe] "C:\Windows\system32\tasks\NCH Software\ExpressBurnDowngrade" [C:\Program Files\NCH Software\ExpressBurn\ExpressBurn.exe] "C:\Windows\system32\tasks\NCH Software\ExpressBurnReminder" [C:\Program Files\NCH Software\ExpressBurn\ExpressBurn.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [06/02/2015 21:04] ==== Chromium Look ====================== Google Chrome Version: 41.0.2272.12 (Possible outdated, latest Stable version: 40.0.2214.111) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions aanjjkgbodmfkdnkkhcjcghgnibdllak - C:\Users\JEAN\AppData\Local\CRE\aanjjkgbodmfkdnkkhcjcghgnibdllak.crx[] ahilkiibpgjnonbhdfkkgjddddmapala - No path found[] cgiaikfpllchefojlnehlmpekeogihnm - C:\Users\JEAN\AppData\Local\CRE\cgiaikfpllchefojlnehlmpekeogihnm.crx[] dlnembnfbcpjnepmfjmngjenhhajpdfd - No path found[] ebfmlbdgbekinmmpfmpjjkfclcgedhgj - C:\Users\JEAN\AppData\Local\CRE\ebfmlbdgbekinmmpfmpjjkfclcgedhgj.crx[] efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[08/05/2014 14:49] gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[02/02/2015 12:58] hbcennhacfaagdopikcegfcobcadeocj - C:\Program Files\Common Files\Spigot\GC\saebay_1.1.crx[] icdlfehblmklkikfigmjhbmmpmkmpooj - C:\Program Files\Common Files\Spigot\GC\ErrorAssistant_1.3.crx[] idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[29/11/2012 20:35] jcdgjdiieiljkfkdcloehkohchhpekkn - No path found[] jifflliplgeajjdhmkcfnngfpgbjonjg - C:\Program Files\Perion\NewTab\NewTab.crx[] ledcpigomgblcmofccnacobhmcdkpiea - C:\Program Files\SearchPredict\Chrome\SearchPredictChrome.crx[] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[09/04/2012 10:23] mhkaekfpcppmmioggniknbnbdbcigpkk - C:\Program Files\Common Files\Spigot\GC\coupons_2.4.crx[] ndibdjnfmopecpmkdieinmbadjfpblof - No path found[] niapdbllcanepiiimjjndipklodoedlc - No path found[] pfndaklgolladniicklehhancnlgocpp - C:\Program Files\Common Files\Spigot\GC\saamazon_1.0.crx[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions aanjjkgbodmfkdnkkhcjcghgnibdllak - C:\Users\JEAN\AppData\Local\CRE\aanjjkgbodmfkdnkkhcjcghgnibdllak.crx[] ahilkiibpgjnonbhdfkkgjddddmapala - No path found[] cgiaikfpllchefojlnehlmpekeogihnm - C:\Users\JEAN\AppData\Local\CRE\cgiaikfpllchefojlnehlmpekeogihnm.crx[] ebfmlbdgbekinmmpfmpjjkfclcgedhgj - C:\Users\JEAN\AppData\Local\CRE\ebfmlbdgbekinmmpfmpjjkfclcgedhgj.crx[] Avast Online Security - JEAN\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki Domain Error Assistant - JEAN\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj RealDownloader - JEAN\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji New Tab for Chrome - JEAN\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg Skype Click to Call - JEAN\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl YouTube - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Fruit Ninja Extended - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbhjemdpnfpjodjmfmcbfjlcihbgpikk ==== Chromium Startpages ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.google.com", ==== Chromium Fix ====================== C:\Users\JEAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgiaikfpllchefojlnehlmpekeogihnm deleted successfully C:\Users\JEAN\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully C:\Users\JEAN\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg deleted successfully C:\Users\JEAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbhjemdpnfpjodjmfmcbfjlcihbgpikk deleted successfully C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbhjemdpnfpjodjmfmcbfjlcihbgpikk deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/?ocid=EIE9HP&PC=UP50" "Default_Page_URL"="http://www.google.com/" "Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}" "Search Bar"="https://www.google.com/?trackid=sp-006" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" "Search Page"="http://istart.webssearches.com/web/?type=dspp&ts=1422283088&from=key7&uid=WDCXWD5000AACS-00ZUB0_WD-WCASU040912309123&q={searchTerms}" "Default_Page_URL"="http://www.google.com/" "Default_Search_URL"="http://istart.webssearches.com/web/?type=dspp&ts=1422283088&from=key7&uid=WDCXWD5000AACS-00ZUB0_WD-WCASU040912309123&q={searchTerms}" "Search Bar"="https://www.google.com/?trackid=sp-006" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.msn.com/?ocid=EIE9HP&PC=UP50" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {33BB0A4E-99AF-4226-BDF6-49120163DE86} mystartsearch Url="http://www.mystartsearch.com/web/?type=ds&ts=1420884963&from=amt&uid=WDCXWD5000AACS-00ZUB0_WD-WCASU040912309123&q={searchTerms}" {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} Google Url="https://www.google.com/search?trackid=sp-006&q={searchTerms}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\aanjjkgbodmfkdnkkhcjcghgnibdllak deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\cgiaikfpllchefojlnehlmpekeogihnm deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ebfmlbdgbekinmmpfmpjjkfclcgedhgj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ledcpigomgblcmofccnacobhmcdkpiea deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\aanjjkgbodmfkdnkkhcjcghgnibdllak deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cgiaikfpllchefojlnehlmpekeogihnm deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ebfmlbdgbekinmmpfmpjjkfclcgedhgj deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1 deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 8 deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare Ultimate deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\IUSR_NMPR\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\Documents\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\Documents\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\JEAN\Documents\Local\Microsoft\Windows\Temporary Internet Files\Low(1406)\Content.IE5 emptied successfully C:\Users\JEAN\Documents\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\Documents\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\Documents\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\Documents\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\Documents\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\Documents\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\JEAN\Documents\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\Documents\Users\JEAN GELELEENS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\Documents\Users\JEAN GELELEENS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\JEAN\Documents\Users\JEAN GELELEENS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(1406)\Content.IE5 emptied successfully C:\Users\JEAN\Documents\Users\JEAN GELELEENS\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JEAN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\JEAN\AppData\Local\Google\Chrome\User Data\Profile 2\Cache emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2577 folders=451 426053894 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\IUSR_NMPR\AppData\Local\Temp emptied successfully C:\Users\JEAN\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\JEAN\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Program Files\shopperz\csrcc.exe" not deleted "C:\Program Files\shopperz\garrus.dll" not deleted "C:\Program Files\shopperz\grunt.exe" not deleted "C:\Program Files\shopperz\kasumi32.dll" not deleted "C:\Program Files\shopperz\kasumi64.dll" not deleted "C:\Program Files\shopperz\krios.dll" not deleted "C:\Program Files\shopperz\krios64.dll" not deleted "C:\Program Files\shopperz\liara.dll" not deleted "C:\Program Files\shopperz\liara64.dll" not deleted "C:\Program Files\shopperz\mseff32.dll" not deleted "C:\Program Files\shopperz\nseven.exe" not deleted "C:\Program Files\shopperz\prc32.exe" not deleted "C:\Program Files\shopperz\prexec.exe" not deleted "C:\Program Files\shopperz\spdata.dat" not deleted "C:\Program Files\shopperz\tree.js" not deleted "C:\Program Files\shopperz\tsoni.dll" not deleted "C:\Program Files\shopperz\tsoni64.dll" not deleted "C:\Program Files\shopperz\unins000.exe" not deleted "C:\Program Files\shopperz\wrex.exe" not deleted "C:\Program Files\shopperz\wrex64.exe" not deleted "C:\Program Files\shopperz\csrcc.exe" not deleted "C:\Program Files\shopperz\garrus.dll" not deleted "C:\Program Files\shopperz\grunt.exe" not deleted "C:\Program Files\shopperz\kasumi32.dll" not deleted "C:\Program Files\shopperz\kasumi64.dll" not deleted "C:\Program Files\shopperz\krios.dll" not deleted "C:\Program Files\shopperz\krios64.dll" not deleted "C:\Program Files\shopperz\liara.dll" not deleted "C:\Program Files\shopperz\liara64.dll" not deleted "C:\Program Files\shopperz\mseff32.dll" not deleted "C:\Program Files\shopperz\nseven.exe" not deleted "C:\Program Files\shopperz\prc32.exe" not deleted "C:\Program Files\shopperz\prexec.exe" not deleted "C:\Program Files\shopperz\spdata.dat" not deleted "C:\Program Files\shopperz\tree.js" not deleted "C:\Program Files\shopperz\tsoni.dll" not deleted "C:\Program Files\shopperz\tsoni64.dll" not deleted "C:\Program Files\shopperz\unins000.exe" not deleted "C:\Program Files\shopperz\wrex.exe" not deleted "C:\Program Files\shopperz\wrex64.exe" not deleted "C:\Users\JEAN\AppData\LocalLow\Company\Product\1.0\localStorageIE.txt" not found "C:\Users\JEAN\AppData\LocalLow\Company\Product\1.0\localStorageIE_backup.txt" not found "C:\Users\JEAN\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}\{FBC0652C-7B29-4FB6-8ADA-91F54B267AD4}\1.5\sts.js" not deleted "C:\Users\JEAN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Program Files\shopperz" not deleted "C:\Program Files\shopperz" not deleted "C:\Program Files\BearShare Applications" not found "C:\PROGRA~2\boost_interprocess" not deleted "C:\Users\JEAN\AppData\LocalLow\Company" not found "C:\Users\JEAN\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}" not deleted ==== EOF on vr 13/02/2015 at 20:01:09,16 ====================== Ik hoop dat U daarmee de oplossing kunt vorrstellen opm mijn oude mailadres: gmail.com met bijhorende breichten terug te kunnen vinden. Graag Uw reaktie waarvoor mijn oprechte dank

Hierbij het gevonden zoe.exe logje. Zoek.exe v5.0.0.0 Updated 13-February-2015 Tool run by JEAN on vr 13/02/2015 at 15:50:09,52. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\JEAN\DOWNLOADS\zoek.exe [scan all users] [script inserted] [Checkboxes used] ===== Runcheck 15:57:50,60 ===== --- Create Environment Variables 15:57:52,33 --- Create System Restore Point 15:58:00,90 --- Checking Input 15:58:23,02 --- AU AppData Check 15:58:31,75 --- Remove From Windows Installer 15:58:42,88 Hoe moet ik nu verder? Ik ga nu mijn antivirus weer activeren na plaatsing van dit bericht aan U. Graag volgende stappen te ondernemen?

hier mijn antwoorden op Uw vragen.: 1. Ik kan mijn gmailadres niet meer gebruiken om mails te verzenden en te ontvangen. 2. Ik werk met Incredimail2 3. U vraagt op "deze link" te klikken en ik ontvang volgend bericht "VERDACHTE ACTIVITEITEN WAARGENOMEN IN UW ACCOUNT" 4. Ik heb WINDOWS VISTA 32 BITS. 5. iK HEB DUS rsit 32 BITS GEDOWNLOAD EN GEINSTALLEERD. 6. iK KRIJG NU EEN log kladblok MET ALS TITEL 3lOFILE OF RANDOM4S SYSTEM INFORMATION TOOL 1.10 5WRITTEN BY RANDOM/RA Run by JEAN (dit ben ik) at 2015-02-12. Ik zie echter niet "log.txt" en "info.txt" Hieronder stuur ik U dit volledige LOG KLADBLOK Logfile of random's system information tool 1.10 (written by random/random) Run by JEAN at 2015-02-12 17:37:25 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 275 GB (62%) free of 446 GB Total RAM: 3069 MB (46% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:37:44, on 12/02/2015 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16609) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files\CCleaner\CCleaner.exe C:\Program Files\shopperz\wrex.exe C:\Program Files\XTab\cmdshell.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\XTab\HPNotify.exe C:\Program Files\Windows Media Player\wmplayer.exe C:\Program Files\IncrediMail\Bin\IncMail.exe C:\Program Files\IncrediMail\Bin\ImApp.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\JEAN\DOWNLOADS\RSIT.exe C:\Program Files\trend micro\JEAN.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=dspp&ts=1422283088&from=key7&uid=WDCXWD5000AACS-00ZUB0_WD-WCASU040912309123&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=dspp&ts=1422283088&from=key7&uid=WDCXWD5000AACS-00ZUB0_WD-WCASU040912309123&q={searchTerms} R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1me10IE9ENUS/110 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, optimized for Bing and MSN R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O3 - Toolbar: (no name) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - (no file) O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-3978713732-936569717-2525818349-1003\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'IUSR_NMPR') O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 5] "C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart (User 'SYSTEEM') O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 5] "C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart (User 'Default user') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Converteren naar Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Doel van koppeling converteren naar Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Doel van koppeling toevoegen aan bestaande PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Toevoegen aan bestaande PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O10 - Unknown file in Winsock LSP: c:\program files\speedbit video accelerator\lsp3.3.6.3\sblsp.dll O10 - Unknown file in Winsock LSP: c:\program files\speedbit video accelerator\lsp3.3.6.3\sblsp.dll O10 - Unknown file in Winsock LSP: c:\program files\speedbit video accelerator\lsp3.3.6.3\sblsp.dll O10 - Unknown file in Winsock LSP: c:\program files\speedbit video accelerator\lsp3.3.6.3\sblsp.dll O10 - Unknown file in Winsock LSP: c:\program files\speedbit video accelerator\lsp3.3.6.3\sblsp.dll O10 - Unknown file in Winsock LSP: c:\program files\speedbit video accelerator\lsp3.3.6.3\sblsp.dll O10 - Unknown file in Winsock LSP: c:\program files\speedbit video accelerator\lsp3.3.6.3\sblsp.dll O10 - Unknown file in Winsock LSP: c:\program files\speedbit video accelerator\lsp3.3.6.3\sblsp.dll O10 - Unknown file in Winsock LSP: c:\program files\speedbit video accelerator\lsp3.3.6.3\sblsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\PROGRA~1\SearchProtect\SearchProtect\bin\VC32Loader.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: 70F4EEDB-1367-4b4f-8247-3133551A7415 - Unknown owner - C:\Program Files\shopperz\grunt.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files\Application Updater\ApplicationUpdater.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe O23 - Service: csrcc - Unknown owner - C:\Program Files\shopperz\csrcc.exe O23 - Service: Intel® DHTrace Controller (DHTRACE) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: IHProtect Service - XTab system - C:\Program Files\XTab\ProtectService.exe O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: lxdjCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdjserv.exe O23 - Service: lxdj_device - - C:\Windows\system32\lxdjcoms.exe O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NitroPDFReaderDriverCreatorReadSpool3 (NitroReaderDriverReadSpool3) - Nitro PDF Software - C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Intel® NMSCore (NMSCore) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe O23 - Service: Intel® Quality Manager (QualityManager) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Syntek STK1150 Service (StkASSrv) - Syntek America Inc. - C:\Windows\System32\StkASv2K.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: VideoAcceleratorService - SpeedBit Ltd. - C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 12833 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\DriverToolkit Autorun.job - C:\Program Files\DriverToolkit\DriverToolkit.exe --autorun C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\ROC_JAN2013_TB_rmv.job - C:\Program Files\AVG Secure Search\PostInstall\ROC.exe --uninstall=1 ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-02-02 586968] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}] Adobe Acrobat Create PDF Helper - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-05-08 141192] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}] Adobe Acrobat Create PDF from Selection - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-05-08 141192] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-05-08 141192] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-02-02 5227112] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-01-20 5496600] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2014-05-08 3499896] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-10-10 39792] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 8] C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe /Auto [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare Ultimate] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe [2015-01-20 5496600] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe] C:\Windows\ehome\ehTray.exe [2008-01-18 125952] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Program Files\Skype\Phone\Skype.exe [2014-11-27 30524520] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoftonicAssistant] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^JEAN^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^StartUp^Dropbox.lnk] C:\Users\JEAN\AppData\Roaming\Dropbox\bin\Dropbox.exe [2014-11-13 35419192] 骢眅0≶ Adobe Flash Player Updater.job DriverToolkit Autorun.job GoogleUpdateTaskMachineCore.job GoogleUpdateTaskMachineUA.job ImCleanDisabled ROC_JAN2013_TB_rmv.job SA.DAT SCHEDLGU.TXT TaskDisabled ⌡ Adobe Flash Player Updater.job DriverToolkit Autorun.job GoogleUpdateTaskMachineCore.job GoogleUpdateTaskMachineUA.job ImCleanDisabled ROC_JAN2013_TB_rmv.job SA.DAT SCHEDLGU.TXT TaskDisabled [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\PROGRA~1\SearchProtect\SearchProtect\bin\VC32Loader.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 "SoftwareSASGeneration"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "VIDC.I420"=lvcodec2.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "vidc.cvid"=iccvid.dll "MSVideo8"=VfWWDM32.dll "MSVideo"=vfwwdm32.dll "wave2"=wdmaud.drv "mixer2"=wdmaud.drv "wave4"=wdmaud.drv "msacm.siren"=sirenacm.dll "wave3"=wdmaud.drv "mixer3"=wdmaud.drv "wave9"=wdmaud.drv "midi6"=wdmaud.drv "mixer8"=wdmaud.drv "aux6"=wdmaud.drv "wave7"=wdmaud.drv "midi4"=wdmaud.drv "mixer6"=wdmaud.drv "aux4"=wdmaud.drv "wave6"=wdmaud.drv "midi3"=wdmaud.drv "mixer5"=wdmaud.drv "aux3"=wdmaud.drv "wave5"=wdmaud.drv "midi2"=wdmaud.drv "mixer4"=wdmaud.drv "aux2"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave8"=wdmaud.drv "midi5"=wdmaud.drv "mixer7"=wdmaud.drv "aux5"=wdmaud.drv "msacm.dvacm"=C:\PROGRA~1\COMMON~1\ULEADS~1\Vio\Dvacm.acm "msacm.MPEGacm"=C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG\MPEGacm.acm "msacm.ulmp3acm"=C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG\ulmp3acm.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2015-02-12 17:37:25 ----DC---- C:\rsit 2015-02-12 17:37:25 ----D---- C:\Program Files\trend micro 2015-02-12 10:48:12 ----A---- C:\Windows\system32\jscript9.dll 2015-02-12 10:48:12 ----A---- C:\Windows\system32\jscript.dll 2015-02-11 11:59:21 ----A---- C:\Windows\system32\oleaut32.dll 2015-02-11 11:58:47 ----A---- C:\Windows\system32\win32k.sys 2015-02-11 11:58:08 ----A---- C:\Windows\system32\WindowsCodecs.dll 2015-02-11 11:55:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2015-02-11 11:55:26 ----A---- C:\Windows\system32\scesrv.dll 2015-02-11 11:33:36 ----A---- C:\Windows\system32\drivers\{d0194130-21b3-4618-b5c8-b6dfe1e0bb88}t.sys 2015-02-11 11:23:55 ----D---- C:\Users\JEAN\AppData\Roaming\sparta111 2015-02-11 11:01:25 ----A---- C:\Windows\system32\wininet.dll 2015-02-11 11:01:25 ----A---- C:\Windows\system32\vbscript.dll 2015-02-11 11:01:25 ----A---- C:\Windows\system32\ieui.dll 2015-02-11 11:01:25 ----A---- C:\Windows\system32\dxtrans.dll 2015-02-11 11:01:25 ----A---- C:\Windows\system32\dxtmsft.dll 2015-02-11 11:01:24 ----A---- C:\Windows\system32\mshtmled.dll 2015-02-11 11:01:23 ----A---- C:\Windows\system32\mshtml.dll 2015-02-11 11:01:22 ----A---- C:\Windows\system32\mshta.exe 2015-02-11 11:01:22 ----A---- C:\Windows\system32\msfeedssync.exe 2015-02-11 11:01:22 ----A---- C:\Windows\system32\msfeedsbs.dll 2015-02-11 11:01:22 ----A---- C:\Windows\system32\jsproxy.dll 2015-02-11 11:01:21 ----A---- C:\Windows\system32\urlmon.dll 2015-02-11 11:01:21 ----A---- C:\Windows\system32\msfeeds.dll 2015-02-11 11:01:20 ----A---- C:\Windows\system32\url.dll 2015-02-11 11:01:20 ----A---- C:\Windows\system32\ieUnatt.exe 2015-02-11 11:01:20 ----A---- C:\Windows\system32\iertutil.dll 2015-02-11 11:01:20 ----A---- C:\Windows\system32\ieframe.dll 2015-02-10 16:44:20 ----A---- C:\ProgramData\SPLCD9D.tmp 2015-02-06 12:24:57 ----A---- C:\Windows\system32\aswBoot.exe 2015-02-03 18:21:06 ----D---- C:\Program Files\Cyti Web 2015-02-02 12:58:25 ----A---- C:\Windows\system32\drivers\aswVmm.sys 2015-02-02 12:58:25 ----A---- C:\Windows\system32\drivers\aswTdi.sys 2015-02-02 12:58:25 ----A---- C:\Windows\system32\drivers\aswsp.sys 2015-02-02 12:58:25 ----A---- C:\Windows\system32\drivers\aswRvrt.sys 2015-02-02 12:58:25 ----A---- C:\Windows\system32\drivers\aswRdr.sys 2015-02-02 12:58:25 ----A---- C:\Windows\system32\drivers\aswmonflt.sys 2015-02-02 12:58:25 ----A---- C:\Windows\system32\drivers\aswHwid.sys 2015-02-02 12:58:24 ----A---- C:\Windows\system32\drivers\aswsnx.sys 2015-01-31 17:25:13 ----D---- C:\Program Files\SearchProtect 2015-01-30 16:21:34 ----D---- C:\Program Files\CCleaner 2015-01-30 10:39:38 ----A---- C:\Windows\system32\drivers\{67561ace-c443-4c39-9e16-07f6354b97f2}Gt.sys 2015-01-30 10:33:00 ----A---- C:\Windows\system32\drivers\bsdriver.sys 2015-01-30 10:32:54 ----A---- C:\Windows\system32\drivers\cherimoya.sys 2015-01-30 10:32:53 ----D---- C:\Program Files\shopperz 2015-01-30 10:32:39 ----D---- C:\Program Files\LuckyTab 2015-01-29 21:00:34 ----A---- C:\Windows\system32\sqlite3.dll 2015-01-27 23:29:44 ----D---- C:\Program Files\Synaptics 2015-01-27 21:13:24 ----D---- C:\Program Files\AGEIA Technologies 2015-01-27 21:10:45 ----A---- C:\Windows\system32\nvwgf2um.dll 2015-01-27 21:10:44 ----A---- C:\Windows\system32\nvopencl.dll 2015-01-27 21:10:44 ----A---- C:\Windows\system32\nvoglv32.dll 2015-01-27 21:10:43 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys 2015-01-27 21:10:42 ----A---- C:\Windows\system32\nvdispgenco3234052.dll 2015-01-27 21:10:42 ----A---- C:\Windows\system32\nvdispco3234052.dll 2015-01-27 21:10:41 ----A---- C:\Windows\system32\nvd3dum.dll 2015-01-27 21:10:41 ----A---- C:\Windows\system32\nvcuvid.dll 2015-01-27 21:10:41 ----A---- C:\Windows\system32\nvcuda.dll 2015-01-27 21:10:40 ----A---- C:\Windows\system32\nvcompiler.dll 2015-01-27 21:08:06 ----A---- C:\Windows\system32\WavesGUILib.dll 2015-01-27 21:08:05 ----A---- C:\Windows\system32\SStudio.dll 2015-01-27 21:08:03 ----A---- C:\Windows\system32\sltech32.dll 2015-01-27 21:08:03 ----A---- C:\Windows\system32\slprp32.dll 2015-01-27 21:08:02 ----A---- C:\Windows\system32\slcnt32.dll 2015-01-27 21:08:02 ----A---- C:\Windows\system32\sl3apo32.dll 2015-01-27 21:08:01 ----A---- C:\Windows\system32\drivers\rtvienna.dat 2015-01-27 21:08:00 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys 2015-01-27 21:07:59 ----A---- C:\Windows\system32\RtkPgExt.dll 2015-01-27 21:07:59 ----A---- C:\Windows\system32\RtkCoInstII.dll 2015-01-27 21:07:58 ----A---- C:\Windows\system32\RtkApoApi.dll 2015-01-27 21:07:55 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT 2015-01-27 21:07:54 ----A---- C:\Windows\system32\RltkAPO.dll 2015-01-27 21:07:53 ----A---- C:\Windows\system32\RCoRes.dat 2015-01-27 21:07:51 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2015-01-27 21:07:51 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll 2015-01-27 21:07:48 ----A---- C:\Windows\system32\MaxxVoiceAPO30.dll 2015-01-27 21:07:47 ----A---- C:\Windows\system32\MaxxVoiceAPO20.dll 2015-01-27 21:07:47 ----A---- C:\Windows\system32\MaxxSpeechAPO.dll 2015-01-27 21:07:46 ----A---- C:\Windows\system32\MaxxAudioVnN.dll 2015-01-27 21:07:45 ----A---- C:\Windows\system32\MaxxAudioVnA.dll 2015-01-27 21:07:45 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll 2015-01-27 21:07:44 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll 2015-01-27 21:07:44 ----A---- C:\Windows\system32\MaxxAudioEQ.dll 2015-01-27 21:07:44 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll 2015-01-27 21:07:43 ----A---- C:\Windows\system32\MaxxAudioAPO60.dll 2015-01-27 21:07:43 ----A---- C:\Windows\system32\MaxxAudioAPO50.dll 2015-01-27 21:07:43 ----A---- C:\Windows\system32\MaxxAudioAPO40.dll 2015-01-27 21:07:42 ----A---- C:\Windows\system32\ICEsoundAPO.dll 2015-01-27 21:07:40 ----A---- C:\Windows\system32\FMAPO.dll 2015-01-27 21:07:38 ----A---- C:\Windows\system32\DDPP32A.dll 2015-01-27 21:07:38 ----A---- C:\Windows\system32\DDPO32A.dll 2015-01-27 21:07:38 ----A---- C:\Windows\system32\DDPD32A.dll 2015-01-27 21:07:38 ----A---- C:\Windows\system32\DDPA32.dll 2015-01-27 21:07:37 ----A---- C:\Windows\system32\audioLibVc.dll 2015-01-27 21:00:06 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll 2015-01-27 21:00:05 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys 2015-01-27 14:27:29 ----A---- C:\Windows\system32\nitrolocalui2.dll 2015-01-27 14:27:29 ----A---- C:\Windows\system32\nitrolocalmon2.dll 2015-01-27 11:03:16 ----D---- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB 2015-01-26 18:09:32 ----D---- C:\Users\JEAN\AppData\Roaming\SoftwareUpdater 2015-01-26 17:29:17 ----A---- C:\Windows\Reimage.ini 2015-01-26 15:43:54 ----A---- C:\Windows\system32\drivers\{356cd1f9-4be3-4c04-8b4c-9380c6fa34d6}Gt.sys 2015-01-26 15:37:33 ----D---- C:\Program Files\ChilliTorrent 2015-01-26 14:37:16 ----A---- C:\Windows\system32\drivers\{304c2a7d-b0e5-4752-bc7f-90d4456afe97}t.sys 2015-01-26 14:31:58 ----A---- C:\Windows\system32\drivers\SPPD.sys 2015-01-26 14:30:51 ----D---- C:\Program Files\Reverse Page 2015-01-26 14:11:05 ----D---- C:\Users\JEAN\AppData\Roaming\EZDownloader 2015-01-26 14:09:14 ----D---- C:\Program Files\EZDownloader 2015-01-26 14:07:41 ----D---- C:\ProgramData\9118597777377280296 2015-01-26 14:07:41 ----D---- C:\Program Files\unisaallEEs 2015-01-26 14:07:14 ----D---- C:\ProgramData\jajnadinkbfcdikcmjenbjamnbcldcpf 2015-01-26 14:06:37 ----D---- C:\ProgramData\{dc3a499c-b7a1-1bae-dc3a-a499cb7a2672} 2015-01-14 12:50:49 ----A---- C:\Windows\system32\drivers\mrxdav.sys 2015-01-14 12:43:48 ----A---- C:\Windows\system32\nlasvc.dll 2015-01-14 12:43:48 ----A---- C:\Windows\system32\nlaapi.dll 2015-01-14 12:43:48 ----A---- C:\Windows\system32\ncsi.dll 2015-01-14 12:43:31 ----A---- C:\Windows\system32\profsvc.dll ======List of files/folders modified in the last 1 month====== 2015-02-12 17:37:32 ----D---- C:\Windows\Temp 2015-02-12 17:37:25 ----RD---- C:\Program Files 2015-02-12 12:36:36 ----D---- C:\Windows\winsxs 2015-02-12 12:36:35 ----D---- C:\Windows\System32 2015-02-12 12:36:30 ----SHD---- C:\System Volume Information 2015-02-12 12:33:23 ----D---- C:\Program Files\Lx_cats 2015-02-12 12:33:21 ----HD---- C:\ProgramData 2015-02-12 10:48:40 ----D---- C:\Program Files\IObit 2015-02-12 10:43:20 ----D---- C:\Windows\system32\catroot 2015-02-11 19:54:32 ----D---- C:\Users\JEAN\AppData\Roaming\BitTorrent 2015-02-11 12:24:42 ----D---- C:\Windows\system32\migration 2015-02-11 12:24:42 ----D---- C:\Program Files\Internet Explorer 2015-02-11 12:24:40 ----D---- C:\Windows\system32\drivers 2015-02-11 12:24:34 ----D---- C:\Windows 2015-02-11 11:59:55 ----D---- C:\Windows\system32\MRT 2015-02-11 11:59:54 ----D---- C:\Windows\Debug 2015-02-11 11:59:50 ----A---- C:\Windows\system32\mrt.exe 2015-02-11 11:59:21 ----SHD---- C:\Windows\Installer 2015-02-11 11:59:10 ----D---- C:\ProgramData\Microsoft Help 2015-02-11 11:55:52 ----D---- C:\Windows\system32\catroot2 2015-02-11 11:48:25 ----D---- C:\Windows\system32\Tasks 2015-02-11 11:33:35 ----A---- C:\Windows\win.ini 2015-02-11 11:23:55 ----D---- C:\Windows\Prefetch 2015-02-11 10:59:07 ----D---- C:\Users\JEAN\AppData\Roaming\Canon 2015-02-10 17:53:10 ----D---- C:\Windows\Minidump 2015-02-10 13:57:46 ----D---- C:\Windows\SoftwareDistribution 2015-02-09 20:00:30 ----D---- C:\Users\JEAN\AppData\Roaming\Skype 2015-02-09 17:42:22 ----SHD---- C:\Boot 2015-02-09 17:42:21 ----D---- C:\Windows\system32\config 2015-02-08 20:10:29 ----AD---- C:\ProgramData\TEMP 2015-02-08 11:40:11 ----D---- C:\Users\JEAN\AppData\Roaming\vlc 2015-02-08 11:38:42 ----A---- C:\Windows\NeroDigital.ini 2015-02-08 11:28:38 ----A---- C:\Windows\system32\FlashPlayerApp.exe 2015-02-07 16:49:11 ----D---- C:\ProgramData\ProductData 2015-02-07 10:51:26 ----D---- C:\Windows\inf 2015-02-06 23:04:36 ----D---- C:\Windows\system32\wbem 2015-02-06 23:02:13 ----D---- C:\Windows\Tasks 2015-02-06 23:02:13 ----D---- C:\Windows\system32\spool 2015-02-06 23:02:13 ----D---- C:\Users\JEAN\AppData\Roaming\ProductData 2015-02-06 23:02:13 ----D---- C:\Users\JEAN\AppData\Roaming\IObit 2015-02-06 23:02:06 ----D---- C:\Windows\registration 2015-02-06 12:14:44 ----D---- C:\Windows\AppPatch 2015-01-30 10:32:53 ----AC---- C:\user.js 2015-01-30 10:19:40 ----D---- C:\Program Files\Application Updater 2015-01-28 11:49:53 ----RSD---- C:\Windows\Fonts 2015-01-28 11:48:35 ----RD---- C:\Program Files\Adobe 2015-01-27 21:13:24 ----D---- C:\Program Files\NVIDIA Corporation 2015-01-27 21:12:44 ----D---- C:\temp 2015-01-27 21:12:44 ----D---- C:\ProgramData\NVIDIA 2015-01-27 21:10:40 ----A---- C:\Windows\system32\nvapi.dll 2015-01-27 21:09:42 ----D---- C:\Windows\system32\RTCOM 2015-01-27 14:25:31 ----D---- C:\Users\JEAN\AppData\Roaming\Downloaded Installations 2015-01-27 11:15:12 ----D---- C:\ProgramData\Apple 2015-01-27 11:11:44 ----D---- C:\Program Files\Common Files\Apple 2015-01-27 11:10:40 ----DC---- C:\Windows\system32\DRVSTORE 2015-01-26 20:38:38 ----D---- C:\ProgramData\boost_interprocess 2015-01-26 17:31:19 ----D---- C:\Windows\system32\GroupPolicy 2015-01-26 15:38:42 ----D---- C:\Program Files\XTab 2015-01-26 15:08:40 ----D---- C:\Users\JEAN\AppData\Roaming\Nitro PDF 2015-01-24 11:31:15 ----D---- C:\Program Files\Common Files\Adobe AIR 2015-01-19 19:50:27 ----A---- C:\Windows\system32\PerfStringBackup.INI ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-02-02 49944] R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-02-02 206248] R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 330264] R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2014-06-04 18624] R1 {304c2a7d-b0e5-4752-bc7f-90d4456afe97}t;{304c2a7d-b0e5-4752-bc7f-90d4456afe97}t; C:\Windows\system32\drivers\{304c2a7d-b0e5-4752-bc7f-90d4456afe97}t.sys [2015-01-25 55832] R1 {356cd1f9-4be3-4c04-8b4c-9380c6fa34d6}Gt;{356cd1f9-4be3-4c04-8b4c-9380c6fa34d6}Gt; C:\Windows\system32\drivers\{356cd1f9-4be3-4c04-8b4c-9380c6fa34d6}Gt.sys [2015-01-25 55872] R1 {67561ace-c443-4c39-9e16-07f6354b97f2}Gt;{67561ace-c443-4c39-9e16-07f6354b97f2}Gt; C:\Windows\system32\drivers\{67561ace-c443-4c39-9e16-07f6354b97f2}Gt.sys [2015-01-29 55816] R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2015-02-02 55240] R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-02-02 787800] R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-02-02 423784] R1 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2015-02-02 57928] R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2013-04-11 33112] R1 bsdriver;bsdriver; \??\C:\Windows\system32\drivers\bsdriver.sys [2015-01-30 31736] R1 cherimoya;cherimoya; C:\Windows\system32\drivers\cherimoya.sys [2015-01-06 51160] R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO32.SYS [2015-01-10 23840] R1 SbFw;SbFw; C:\Windows\system32\drivers\SbFw.sys [2012-09-20 226080] R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-02-02 24184] R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-02-02 73480] R2 nmsunidr;UniDriver for NMS; C:\Windows\system32\DRIVERS\nmsunidr.sys [2007-02-18 5376] R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-02-02 218192] R3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632] R3 e1express;Intel® PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2013-12-11 232296] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2015-01-27 3086040] R3 IntelDH;IntelDH Driver; C:\Windows\System32\Drivers\IntelDH.sys [2012-01-27 5632] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2009-10-07 25752] R3 LVRS;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs.sys [2009-04-30 265496] R3 netr28u;RT2870 USB Wireless LAN Card Driver for Vista; C:\Windows\system32\DRIVERS\netr28u.sys [2007-09-21 554496] R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-01-27 10681176] R3 pepifilter;Volume Adapter; C:\Windows\system32\DRIVERS\lv302af.sys [2009-04-30 13976] R3 Ph3xIB32;Philips 713x Inbox PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136] R3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV302V32.SYS [2009-04-30 2687512] R3 SBFWIMCLMP;GFI Software Firewall NDIS IM Filter Miniport; C:\Windows\system32\DRIVERS\SBFWIM.sys [2012-09-12 95488] R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2015-01-27 38768] R3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-07-12 73344] R3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328] R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560] R3 X10Hid;X10 Hid Device; C:\Windows\System32\Drivers\x10hid.sys [2006-11-17 13976] R3 XUIF;X10 USB Wireless Transceiver; C:\Windows\System32\Drivers\x10ufx2.sys [2006-11-30 27416] S1 wpnfd_1_10_0_6;wpnfd_1_10_0_6; C:\Windows\system32\drivers\wpnfd_1_10_0_6.sys [] S2 CX23880;Conexant 23880 Video Capture; C:\Windows\system32\drivers\cx88vid_IBV32.sys [2006-11-02 168448] S3 cpuz134;cpuz134; \??\C:\Users\JEAN\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [] S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2012-12-26 23456] S3 FETNDIS;VIA Rhine-Family Fast Ethernet Adapter Driver Service; C:\Windows\system32\DRIVERS\fetnd5.sys [2006-11-02 45568] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 39272] S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016] S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032] S3 SBFWIMCL;GFI Software Firewall NDIS IM Filter Service; C:\Windows\system32\DRIVERS\sbfwim.sys [2012-09-12 95488] S3 sbhips;sbhips; C:\Windows\system32\drivers\sbhips.sys [2012-09-20 94496] S3 sbwtis;sbwtis; C:\Windows\system32\DRIVERS\sbwtis.sys [2012-09-20 75552] S3 SPPD;SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [2015-02-02 18872] S3 StkAMini;Syntek STK1150; C:\Windows\System32\Drivers\StkAMini.sys [2006-09-27 241628] S3 StkScan;Syntek STK1150 Filter Driver; C:\Windows\System32\Drivers\StkScan.sys [2006-08-02 4772] S3 TSHWMDTCP;TSHWMDTCP; \??\C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys [2007-06-27 14552] S3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\UrlFilter.sys [2014-11-10 20944] S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136] S4 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys [2014-11-10 21480] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 70F4EEDB-1367-4b4f-8247-3133551A7415;70F4EEDB-1367-4b4f-8247-3133551A7415; C:\Program Files\shopperz\grunt.exe [2015-01-26 285576] R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088] R2 AlertService;Intel® Alert Service; C:\Program Files\Intel\IntelDH\CCU\AlertService.exe [2007-06-27 223448] R2 Application Updater;Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [2013-12-27 807800] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-02-02 50344] R2 csrcc;csrcc; C:\Program Files\shopperz\csrcc.exe [2015-01-26 1449352] R2 DQLWinService;DQLWinService; C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [2007-02-12 208896] R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-18 21504] R2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-04 354840] R2 IHProtect Service;IHProtect Service; C:\Program Files\XTab\ProtectService.exe [2015-01-16 158896] R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2015-01-13 344864] R2 ISSM;Intel® Software Services Manager; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe [2007-06-27 59096] R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 154136] R2 lxdj_device;lxdj_device; C:\Windows\system32\lxdjcoms.exe [2007-06-11 537520] R2 M1 Server;Intel® Viiv Media Server; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe [2007-06-27 268504] R2 MCLServiceATL;Intel® Application Tracker; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe [2007-06-27 157912] R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288] R2 NitroReaderDriverReadSpool3;NitroPDFReaderDriverCreatorReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [2012-11-13 196624] R2 NMSCore;Intel® NMSCore; C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe [2007-06-27 317656] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 670552] R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-12-03 632792] R2 QualityManager;Intel® Quality Manager; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe [2007-06-27 272600] R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-11-29 38608] R2 Remote UI Service;Intel® Remoting Service; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe [2007-06-27 446680] R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2007-01-09 272024] R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-04-09 3063968] R2 StkASSrv;Syntek STK1150 Service; C:\Windows\System32\StkASv2K.exe [2006-05-24 24576] R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-09-28 49152] R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-18 21504] R2 VideoAcceleratorService;VideoAcceleratorService; C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe [2013-02-08 278184] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536] R2 x10nets;X10 Device Network Service; C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe [2001-11-12 20480] R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-02-02 3192344] S2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-10-07 60744] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-12-04 107912] S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2015-01-16 2724128] S2 lxdjCATSCustConnectService;lxdjCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdjserv.exe [2007-06-11 99248] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-08 267440] S3 DHTRACE;Intel® DHTrace Controller; C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe [2007-06-27 39640] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-12-04 107912] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-11-27 194032] S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-10-15 540968] S3 MatSvc;@%ProgramFiles%\Microsoft Fix it Center\MatsRes.dll,-9000; C:\Program Files\Microsoft Fix it Center\Matsvc.exe [2011-06-13 267568] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856] S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-10-15 382248] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040] -----------------EOF----------------- Graag Uw reaktie en ik hoop mijn oude mailadres: gmail en mijn oude berichten terug te vinden. Ondertussen heb ik een nieuw mail adres ingesteld in Incredimail2 Met vriendelijke groeten PC Helpforum moderator bericht: e-mailadres verwijderd wegens kans op spam

Ik start vandaag mijn PC op en kan geen mails meer ontvangen. Ik, krijg volgende melding: "<b> Aanmeldgegevens:<b> controleren. Ik heb dit gedaan maar het werkt niet. Altijd dezelfde melding. Tevens zie ik op GOOGLE dat: "Google account is uitgeschakeld wegens verdachte activiteiten" Als ik de aangeduide procedure volg zou ik een mail ontvangen met informatie om mijn account opnieuw te activeren. Ik ontvang niets en kan dus ook niet aanmelden op Google chrome met mijn mailadres. Beide problemen zijn gelinkt aan elkaar maar hoe kan ik mijn bestaande mailadres en mijn zelfde Google account opnieuw instellen. Ik heb Windows Vista Home Premium en Google chrome als browser. Met vriendelijke groeten.

Ik heb AVG anti virus 2014 VOLLEDIG VERWIJDERD met AVG REMOVER 2014. Daarna AVG antivirus vanuiT een veilige site (CNET download) opnieuw geinstalleerd. Na volledige installatie heb ik de computer opnieuw opgestart. Na het opstarten verschijnt op het scherm "AVG ANTIVIRUS INERFACE" en daar heb ik Ja geklikt. DIT BEELD WIL IK NIET HEBBEN MAAR AUTOMATISCH HET PICTOGRAM IN HET SYSTEEMVAK PLAATSEN. Pas nu verschijnt het AVG ANTIVIRUS PICTOGRAM in het Systeemvak (rechtsonder) Ik moet dus iedere maal bij het opstarten van de laptop "AVG ANTIVRUS INTERFACE" aanklikken. Nochtans was in het windows verkenner scherm voor het AANPASSEN VAN DE VERBORGEN PICTOGRAMMEN reeds aangeduid naast AVG antivrus "PICTOGRAMMEN EN MELDINGEN WEERGEVEN" maar het pictogram van AVG IS NIET AANWEZIG in de lijst van VERBORGEN PICTOGRAMMEN. Hoe moet ik verder? Mvg - - - Updated - - - Ik heb hetzelfde probleem met het pictogram van INCREDIMAIL. Eerst moet ik op de TAAKBALK incredimail klikken en pas dan verschijnt het pictogram in de SYSTEEM WERKBALK RECHTSONDER. mISSCHIEN HELPT DIT OM BEIDE PROBLEMEN OP TE LOSSEN. Mvg

Ik heb Uw raad gevolgd maar ik krijg steeds hetzelfde probleem. Als ik de computer start verschijnt steeds hjet beeld" AVG USER INTERFACE" en pas als ik JA klik krijg ik het pictogram in het systeemvak. Hoe kan dit AUTOMATISCH gebeuren bij het opstarten van de computer? Hartelijk dank

Ik heb Windows 7 Home Premium en ik heb AVG ANTI VIRUS FREE EDITION 2014 GEINSTALLEERD. Na het opstarten van de laptop verschijnt steeds het beeld "AVG USER INTERFACE" en ik moet dit iedere maal aanklikken om mijn AVG actief te maken. Pas dan ook verschijnt het pictogram AVG in het SYSTEEMVAK rechts onderaan. Hoe kan ik mijn laptop instellen zoadat die 2 bovenstaande dingen automatisch gebeuren. Als ik in het systeemvak op het pijltje klik om de verborgen pictogrammen weer te geven verschijnt HET AVG PICTOGRAM NOOIT ALHOEWEL IK AANGEKRUIST HEB IN DE LIJST MET "AANPASSEN" "pictogrammen en meldingen weergeven". Maar die verschijnen nooit evenals die van INCREDIMAIL2 waarmee ik hetzelfde probleem heb. Vroeger werkte dit perfekt. Hoe kan ik dit herstellen? Mvg

Ik heb zorgvuldig Uw handleiding in het Engels gevolgd want Engels is geen probleem voor mij. Ik stel het volgende vast: 1. De DEFAULT KEY is CORRECT als standaard ingesteld. 2. Exporteren van HKEY-Classes-Root\Folder is niet gelukt. Als ik Excport klik verschijnt een lijst met "MIJN DOCUMENTEN" en onderaan deze blz verschijnt de SUBKEY AANGEKRUIST maar ik kan die niet bedienen en dus niet DOWNLOAD FOLDERFIX.ZIP.FILE bereiken. Moet ik dit doen en zo ja HOE? 3. CCLEANER HEB IK REEDS LANG IN GEBRUIK EN ALLE REGISTERINSTELLINGEN ZIJN MEERMAALS UITGEVOERD MAAR ZONDER SUCCES. Hoe moet ik verder? Dank.

Sorry, maar als ik op nieuwe map klik gebeurt er werkelijk NIETS. Kunt U mij verder helpen? - - - Updated - - - Sorry, maar als ik op NIEUWE MAP klik gebeurt er werkelijk NIETS. Hoe verder u?

Als ik op NIEUWE MAP KLIK gebeurt er niets. Hoe moet ik verder. Alvast bedankt.

Hier vind ik de oplossing niet. Ik wil alleen een "NIEUWE MAP " maken en nooit een "WERKMAP" Hoe moet dit? Mvg

Sindskort heb ik een probleem bij het openen van mijn afbeeldingen (en ook met picasa 3). Ik heb Windows 7 en werk met Google chrome als browser. Als ik mijn map afbeeldingen (en ook met picasa 3) open en een "NIEUWE MAP" wil maken door rechts op de muis te klikken op "mijn afbeeldingen" krijg ik de mogelijkheid om een "NIEUWE WERKMAP' te openen maar ik wil gewoon een "NIEUWE MAP" maken die niet hoeft bewerkt te worden. Hoe kan ik "NIEUWE MAP" bereiken zonder "NIEUWE WERKMAP" te openen? Ik heb maar 1 computer en hoef dus nooit WERKMAPPEN te gebruiken. Mvg.

Ik heb mijn HDMI kabel aangesloten en nu ik heb mijn beeldscherminstellingen nu op 2 gezet en ik heb mijn startfoto nu op TV ook echter zonder de icoontjes. Verder kan ik niets bekijken of bedienen dat mijn TV beeld verandert. Hoe moet ik verder? Dank - - - Updated - - - Sorry, het is mijn VGA kabel die aangesloten is en niet de HDMI.

Ik heb een PC Medion en een TV Medion (beiden buiten garantieperiode) Ik wil mijn PC aansluiten op mijn TV maar dit lukt niet. Ik heb het volgende gedaan: 1. PC EN TV AFSLUITEN. Een VGA kabel aangesloten en TV menu op PC zetten en TV en PC dan opstarten. Ik krijg op TV het microsoft gele balkje dat beweegt van links naar rechts. Als dit stopt krijg ik op TV "GEEN ENTREE PC" te zien en ik kan niet meer verder. 2. PC en TV verbinden met een HDMI kabel. Ik volg bovenstaande procedure maar hier krijg ik NOOIT iets op het TV scherm behalve "GEEN ENTREE PC" Ik heb Medion gebeld en die stelden mij voor om i.p.v. de PC knop op de afstandbediening in te drukken naar het menu te gaan en EXTENSIE 5 te proberen. Ik heb dit gedaan (ook alle andere extensies geprobeerd) maar zonder succes. Hoe kan ik een verbinding tussen mijn PC en mijn TV instellen? Bij voorbaat dank.