ricardo425

Lid

Bekijk profiel Bekijk hun activiteit

Items
797
Registratiedatum
12 januari 2010
Laatst bezocht
20 november 2023

Inhoudstype

Alle activiteit

Profielen

Forums

Store

Product Reviews

Alles dat geplaatst werd door ricardo425

Reclame

ricardo425 reageerde op ricardo425's topic in Archief Bestrijding malware & virussen

# AdwCleaner v4.204 - Logbestand aangemaakt 17/05/2015 op 11:24:12 # Laatste update 12/05/2015 door Xplode # Database : 2015-05-12.2 [server] # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (x64) # Gebruikersnaam : Richard - RICHARD-PC # Gestart vanuit : C:\Users\Richard\Downloads\adwcleaner_4.204(1).exe # Optie : Scannen ***** [ Services ] ***** ***** [ Bestanden / Mappen ] ***** ***** [ Geplande taken ] ***** ***** [ Snelkoppelingen ] ***** ***** [ Register ] ***** ***** [ Webbrowsers ] ***** -\\ Internet Explorer v11.0.9600.17801 -\\ Mozilla Firefox v37.0.2 (x86 nl) ************************* AdwCleaner[R0].txt - [12357 bytes] - [15/05/2015 05:54:59] AdwCleaner[R1].txt - [724 bytes] - [17/05/2015 11:24:12] AdwCleaner[s0].txt - [11304 bytes] - [15/05/2015 05:57:11] ########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [842 bytes] ##########
- 17 mei 2015
- 26 antwoorden
Reclame

ricardo425 reageerde op ricardo425's topic in Archief Bestrijding malware & virussen

Blijkbaar is dat in orde. Bedankt daarvoor. Maar heb nu een ander probleem. Wanneer ik de pc opstart is mijn achtergrondfoto van het bureaublad verdwenen. Heb deze al teruggeplaatst maar verdwijnt steeds bij de opstart. Ook wanneer ik naar mijn afbeeldingen wil gaan dan zie ik geen gele mappen meer. wel de omschrijving en kan ik wel de foto's bekijken.
- 17 mei 2015
- 26 antwoorden
Reclame

ricardo425 reageerde op ricardo425's topic in Archief Bestrijding malware & virussen

Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by Richard on za 16/05/2015 at 9:31:28,66. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Richard\Downloads\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2015-05-15-045233.log 53827 bytes C:\zoek-results2015-05-15-222344.log 48293 bytes ==== Empty Folders Check ====================== C:\Users\Richard\AppData\Local\DataSafeOnline deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137\extensions\{E42AC5EF-EAFC-E69C-365F-EF5AF17A5D4D not found C:\Program Files\Web Assistant\Firefox not found C:\Windows\SysNative\tasks\{1110D5EC-E363-45ED-89C5-920752F24C5D} deleted C:\Windows\SysNative\tasks\{755BF4F0-5808-4C54-9202-B114B124B895} deleted "C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi" deleted ==== Firefox Extensions Registry ====================== [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "{e4f94d1e-2f53-401e-8885-681602c0ddd8}"="C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi" [04/04/2014 12:36] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 - Undetermined - %ProfilePath%\extensions\{E42AC5EF-EAFC-E69C-365F-EF5AF17A5D4D} ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default - Undetermined - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - Undetermined - C:\Program Files\Web Assistant\Firefox - Undetermined - C:\Program Files (x86)\McAfee\SiteAdvisor AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\74puhl63.default-1426413179001 CF25FDD7CA6BC88442A58F74DBB6CFA6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll - Shockwave for Director / Shockwave for Director 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 2E661988463BCFA1B95D4DAAB9B0B6FA - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll - Shockwave Flash 341B3AE026B143DBC17BA1E1E0BAE3D6 - C:\Users\Richard\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player 3CD19649B2C3023D65E67C056457A2BC - C:\Users\Richard\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin 15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System ==== Chromium Look ====================== ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Richard\AppData\Local\Mozilla\Firefox\Profiles\74puhl63.default-1426413179001\cache2 emptied successfully ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1051 folders=189 651065951 bytes) ==== Empty Temp Folders ====================== C:\Users\AppData\AppData\Local\Temp emptied successfully C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Public\AppData\Local\Temp emptied successfully C:\Users\Richard\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Richard\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on za 16/05/2015 at 9:54:36,91 ======================
- 16 mei 2015
- 26 antwoorden
Reclame

ricardo425 reageerde op ricardo425's topic in Archief Bestrijding malware & virussen

Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by Richard on vr 15/05/2015 at 18:54:30,35. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Richard\Downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2015-05-15-045233.log 53827 bytes ==== Empty Folders Check ====================== C:\Users\Richard\AppData\Local\DataSafeOnline deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "Wondershare Helper Compact.exe"=- "vProt"=- ""=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe] ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\Common Files\DVDVideoSoft not found C:\Program Files (x86)\Common Files\Wondershare not found C:\Users\Richard\AppData\Roaming\DVDVideoSoft not found C:\Program Files (x86)\DVDVideoSoft not found "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" not found ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Richard\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2015-05-14 01:02:10 858EB73F68B20A2A5C66B6C000D1C0DD 102608 ----a-w- C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-05-13 12:03:53 D0CA74BE380498A0111A73EB9C76CF8F 342016 ----a-w- C:\Windows\SysWOW64\certcli.dll 2015-05-13 12:03:53 2665A3D34D1C62DF303723422215B001 248832 ----a-w- C:\Windows\SysWOW64\schannel.dll 2015-05-13 12:03:47 CFCB89C0FE8EF502A7934C0D20E5DBD6 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2015-05-13 12:03:47 C3120D99E6DA7878A1DD2D88138AC60A 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2015-05-13 12:03:47 9025CA7BCD6B7956366FC90B3D6E3933 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2015-05-13 12:03:47 8C00AB01B1BC1E2F69765776BBC5A5D1 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2015-05-13 12:03:46 D74445161E58644309F858342F5E265C 19691008 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2015-05-13 12:03:46 C2EB0AA5570CF8BC881B36EE55A59337 688640 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2015-05-13 12:03:46 C1A32612710492D0C3339E46EC15E333 504320 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2015-05-13 12:03:46 AA2F2D55DEF98007839D0189D721D70B 1310208 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2015-05-13 12:03:46 7B4FA4B41FBDBB12C5038FCB6E6652AA 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2015-05-13 12:03:46 746BBC86351D07859D8B40056447F7B2 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-05-13 12:03:46 6388FC82897DDDA607BBE3580D75AE15 342736 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2015-05-13 12:03:45 F2DB87F164BC13AB8EF90FBF5D866B65 664576 ----a-w- C:\Windows\SysWOW64\jscript.dll 2015-05-13 12:03:45 E993B5E929F46A52E9F4EB68A7855CDF 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2015-05-13 12:03:45 CC4974FCF9387F32A0FF87BCE093A5AD 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2015-05-13 12:03:45 C525258A00ECFB4CE089F54C163268C3 2278400 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2015-05-13 12:03:45 63A2E3E9C771B1D4D7D84942D6FCB661 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2015-05-13 12:03:45 3CE5DE0730C22A54FE783DB8A989E8BD 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2015-05-13 12:03:45 28313FF0DE83EAD8F5EF1B963D9078C3 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2015-05-13 12:03:45 1BBC9CFD29A62D80FB77BB69BFF7513C 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2015-05-13 12:03:45 136687227F11CE928CB05F4FD90319AC 2052608 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2015-05-13 12:03:44 BCFA71A878903B5F92A7AFEFCCC5CA97 478208 ----a-w- C:\Windows\SysWOW64\ieui.dll 2015-05-13 12:03:44 5AAC24BF6C4A54DA526CC6244DEBE227 418304 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2015-05-13 12:03:44 0E22CD36FC3292CB812CC46CBCFD8444 12828672 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2015-05-13 12:03:43 6E2B4875B968324E5844F35A37A79260 4305920 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2015-05-13 12:03:43 1C5C5B5EF9CFDFC897D4549A2385DB3A 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2015-05-13 12:03:42 CB5F450D21B9D76B7F01D006E4AEDB40 1882112 ----a-w- C:\Windows\SysWOW64\wininet.dll 2015-05-13 12:03:42 37625FC1DAF886F1980E2D8F315B93AC 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll 2015-05-13 12:03:42 07E82A31808C8BC053D1DE547082C58F 341504 ----a-w- C:\Windows\SysWOW64\html.iec 2015-05-13 12:03:17 D0F574320615303ADECDCB452EBB8930 635392 ----a-w- C:\Windows\SysWOW64\tdh.dll 2015-05-13 12:03:17 A44680B810977EA64E280523E96F2EA9 1310744 ----a-w- C:\Windows\SysWOW64\ntdll.dll 2015-05-13 12:03:17 8D50ED3F0FBE3590AB0D43BF7B60E57A 3989440 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2015-05-13 12:03:17 0A66C88B087249742381924AB8F9EFCC 3934144 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2015-05-13 12:03:16 EB058143B57ED460AC4F2DFBA104BBFF 364544 ----a-w- C:\Windows\SysWOW64\tracerpt.exe 2015-05-13 12:03:16 C6D2D384B6232B0B800234C03C50979F 82944 ----a-w- C:\Windows\SysWOW64\logman.exe 2015-05-13 12:03:16 8C45A65ED20B487085B79EEFCC08D160 92160 ----a-w- C:\Windows\SysWOW64\sechost.dll 2015-05-13 12:03:16 850F756363237A2EB069B9B25EF8BEC3 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll 2015-05-13 12:03:16 7F99900705E249E9D5C55E490B7D076E 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2015-05-13 12:03:16 7A5824DC9A85FCE4334F57FF0795853E 641536 ----a-w- C:\Windows\SysWOW64\advapi32.dll 2015-05-13 12:03:16 66D6A06936088E412E29A182679F0D71 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll 2015-05-13 12:03:16 54A01CC4BC47B31C5CD082D064AB37BC 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll 2015-05-13 12:03:16 1569F20BB9DB9FDC87A6D3C8A3726ABF 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll 2015-05-13 12:03:16 0B6E937863837BA3383E9CE9200DDF1E 221184 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2015-05-13 12:03:15 74C0EC1257698176E288DA282F318E1C 40448 ----a-w- C:\Windows\SysWOW64\typeperf.exe 2015-05-13 12:03:14 FCB1C8345C794FE89ABA03B4CA3131BB 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll 2015-05-13 12:03:14 F286528898342F0F1EB402606750C391 17408 ----a-w- C:\Windows\SysWOW64\diskperf.exe 2015-05-13 12:03:14 D9E25B4BD2120CC5183CCCE9421C7AFE 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2015-05-13 12:03:14 AFFE5747054D03F8CEE18A8518A9AA34 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe 2015-05-13 12:03:14 ABA025664F9F42C568B2C022AADCB18F 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll 2015-05-13 12:03:14 99A508910BB06DFBE99D9AF7D6B4E950 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2015-05-13 12:03:14 97B30711DC6CA0EA4EACEDCE8080A3B4 37888 ----a-w- C:\Windows\SysWOW64\relog.exe 2015-05-13 12:03:14 79AF005633B7E41B7A194A7E7B9D3D93 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll 2015-05-13 12:03:14 741DB93796E7D4F3F804C13537FB40F4 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2015-05-13 12:03:14 3346701038E55BD366F3D5CE31F55483 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll 2015-05-13 12:03:13 F43CB86F9536B17E5C7CFCFB48ACBE54 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2015-05-13 12:03:13 D9716B488CC27652C12B1B5E0944987E 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2015-05-13 12:03:13 D079A408CC3E22A09D1260A6F18FC0FD 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll 2015-05-13 12:03:13 BF9BB4113E9FCDABD4C703DDD06293F3 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll 2015-05-13 12:03:13 9638DA21E965E23C85C4319F3F66D824 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll 2015-05-13 12:03:13 86B2AC15999BB4F8B5C84AB6154A1783 686080 ----a-w- C:\Windows\SysWOW64\adtschema.dll 2015-05-13 12:03:13 6BB13D5E12C5C4D829C1D640DF269EA0 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll 2015-05-13 12:03:00 C22AB1781BC6F0BB1C9B352CF66DBFFC 1250816 ----a-w- C:\Windows\SysWOW64\DWrite.dll 2015-05-13 12:02:57 418AEC0CE89A13200F2820079B9CDFD9 216064 ----a-w- C:\Windows\SysWOW64\InkEd.dll 2015-05-13 12:02:55 744AB3C1A73A57DEED49D631F1BDEA1D 2311168 ----a-w- C:\Windows\SysWOW64\wpdshext.dll 2015-05-13 12:02:54 C489D8B4D8C64F20CC75A93F541F7D91 123904 ----a-w- C:\Windows\SysWOW64\poqexec.exe 2015-05-13 12:02:53 DCA2C6E7990771209CDD8E9DA90ED0E2 5120 ----a-w- C:\Windows\SysWOW64\shimeng.dll 2015-05-13 12:02:53 D3E8C7FADB758E5D222C639CC65790AD 295936 ----a-w- C:\Windows\SysWOW64\apphelp.dll 2015-05-13 12:02:53 715C060150D969B0DE5DD5B365A712AF 20992 ----a-w- C:\Windows\SysWOW64\sdbinst.exe ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-05-14 01:02:10 189FB45D7442083AE8A2E4E612233EF7 124112 ----a-w- C:\Windows\Sysnative\PresentationCFFRasterizerNative_v0300.dll 2015-05-13 12:03:55 8AD8D17425C75D2621B2CDFE0DEABD21 342016 ----a-w- C:\Windows\Sysnative\schannel.dll 2015-05-13 12:03:53 ED4B980701D081AC42F7B121C1E42149 460800 ----a-w- C:\Windows\Sysnative\certcli.dll 2015-05-13 12:03:47 E802824B9B4A16355A5233A7B8215ECE 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2015-05-13 12:03:47 9DCD15027A13195ABA68B40A5EB26691 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2015-05-13 12:03:47 70EDB996FE1BCB699232A15CB0D0FA32 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2015-05-13 12:03:46 6D2787CD32595A91969502A399E7BA48 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2015-05-13 12:03:46 5EDC6AF7589B65C89CB1154B3377D0C4 720384 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2015-05-13 12:03:46 1122DD841CCB7E07EF41039CBD66A29E 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll 2015-05-13 12:03:45 ED4EB5A0CDD251A17B946C515CB94D70 1547264 ----a-w- C:\Windows\Sysnative\urlmon.dll 2015-05-13 12:03:45 D7B9EEF960F68DC18724BB5F89A464DD 389840 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2015-05-13 12:03:45 010F562B961AB8CAEC7A0C72F8FDD690 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2015-05-13 12:03:44 F28577138120BA7E5423820D4B4C4727 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll 2015-05-13 12:03:44 EB9FCD39D65E23380CB2C2F0E6F2ED53 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2015-05-13 12:03:44 E20B5098C8707B2CF0858024568234FF 801280 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2015-05-13 12:03:44 49B1935F131A44CD29857D6900CB643F 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2015-05-13 12:03:44 2A2CDE78F9E9019AD0E4D804A02688A3 968704 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2015-05-13 12:03:43 F918BE3C5ACA0B6485D725CC1A5348DC 2125824 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2015-05-13 12:03:43 B85ECB91C88F6E74045061B7F7DDEFA2 584192 ----a-w- C:\Windows\Sysnative\vbscript.dll 2015-05-13 12:03:43 843D063E75B19188759CBEC82828BCB1 2885120 ----a-w- C:\Windows\Sysnative\iertutil.dll 2015-05-13 12:03:42 E061B5A1D0F9BBACA41149201ADF4A3B 14401536 ----a-w- C:\Windows\Sysnative\ieframe.dll 2015-05-13 12:03:42 CA0369799519F33DDE8FD26F5D87D014 490496 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2015-05-13 12:03:42 29BBA65402DD568F49C837533F269482 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2015-05-13 12:03:42 1D610F215769E4FF56C7B1847DE4B86D 633856 ----a-w- C:\Windows\Sysnative\ieui.dll 2015-05-13 12:03:42 0B4E78E6E65D1FD2CE55C93CF1EFD623 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2015-05-13 12:03:41 FFC30231459FC44FD73E07532C707791 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2015-05-13 12:03:41 DC1200D3C3AC1E69A4DAD053BC26BF0D 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2015-05-13 12:03:41 79A4C71CD8B610DE9F66B72B5654C450 6025728 ----a-w- C:\Windows\Sysnative\jscript9.dll 2015-05-13 12:03:41 63061A0826839DE8F5B4713976C99F1B 816640 ----a-w- C:\Windows\Sysnative\jscript.dll 2015-05-13 12:03:41 1921A72BF1273BED72E569EF1F1A0611 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2015-05-13 12:03:40 F0289B3A341429117696F0279DA977B6 2352128 ----a-w- C:\Windows\Sysnative\wininet.dll 2015-05-13 12:03:38 C1D6BD834E69E8F77C8B4DDFCEE073F6 417792 ----a-w- C:\Windows\Sysnative\html.iec 2015-05-13 12:03:34 F2A1718334172C0F4E231E998F6CB8AB 199680 ----a-w- C:\Windows\Sysnative\msrating.dll 2015-05-13 12:03:34 5A18ACE782C215300BE1C82D9EDC565B 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2015-05-13 12:03:33 C31D57F7A58FACDA2671075CEBA75199 24971776 ----a-w- C:\Windows\Sysnative\mshtml.dll 2015-05-13 12:03:29 71C85477DF9347FE8E7BC55768473FCA 328704 ----a-w- C:\Windows\Sysnative\services.exe 2015-05-13 12:03:20 D449C36379EBEFD3CCDAEC328002BB5B 36864 ----a-w- C:\Windows\Sysnative\UtcResources.dll 2015-05-13 12:03:19 EA8A3E8C674B03CB4AFA1D344DBD7BC1 1254400 ----a-w- C:\Windows\Sysnative\diagtrack.dll 2015-05-13 12:03:18 A985325F4FE72FB003749A2FBBA9952E 5569984 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2015-05-13 12:03:18 8453010B6512DAEAFC61CC0836FA137E 1728960 ----a-w- C:\Windows\Sysnative\ntdll.dll 2015-05-13 12:03:17 B01B21E15671ACD3F0AD131DC4CABFC7 879104 ----a-w- C:\Windows\Sysnative\advapi32.dll 2015-05-13 12:03:17 1C9F2F4A2C603739BD8CC8C64310AFD7 1162752 ----a-w- C:\Windows\Sysnative\kernel32.dll 2015-05-13 12:03:17 10D39E74B0D5011A8C199B9646579C3F 879104 ----a-w- C:\Windows\Sysnative\tdh.dll 2015-05-13 12:03:16 FE60A67032A5C94F6ACE483C8FE84105 47104 ----a-w- C:\Windows\Sysnative\typeperf.exe 2015-05-13 12:03:16 FDF1E0FD74DED0034BA6FFB665E0641E 424448 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2015-05-13 12:03:16 EE27E1D639E3807229C15AF94320CF0A 404992 ----a-w- C:\Windows\Sysnative\tracerpt.exe 2015-05-13 12:03:16 E55A72876BC5E244D0A8F7F07862A939 338432 ----a-w- C:\Windows\Sysnative\conhost.exe 2015-05-13 12:03:16 DA8B541825991F6699790E617FF0FF60 1461760 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2015-05-13 12:03:16 DA5EF2CC0764BE7097BAFA9CAF903FE8 112640 ----a-w- C:\Windows\Sysnative\smss.exe 2015-05-13 12:03:16 D17DD01601460F5899E5C154B3FD0BFA 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll 2015-05-13 12:03:16 CCAB9BE9C9100C5F54A5A8F355730841 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll 2015-05-13 12:03:16 A0BCD6A64281492EFAE02AC144A335F1 243712 ----a-w- C:\Windows\Sysnative\wow64.dll 2015-05-13 12:03:16 9C5DBA74D0C641C2A4ABDC79969B7BEF 104448 ----a-w- C:\Windows\Sysnative\logman.exe 2015-05-13 12:03:16 52935C072F8D5A92508AA3A3CC9133C7 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe 2015-05-13 12:03:16 52146DBFE253B83FAB1980AA704C7974 113664 ----a-w- C:\Windows\Sysnative\sechost.dll 2015-05-13 12:03:16 408A8232E84515E4AA819E0C95E65257 314880 ----a-w- C:\Windows\Sysnative\msv1_0.dll 2015-05-13 12:03:16 2292CD8500725B94B7D2E3C0C84F2D19 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll 2015-05-13 12:03:16 0CD609B1143961F5C3BA691729A6A5DA 503808 ----a-w- C:\Windows\Sysnative\srcore.dll 2015-05-13 12:03:15 CD3770C78AFFC223A3B9D38F27B7A309 309760 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2015-05-13 12:03:14 E1B0C7042BA7B8903D60DF3885F2DFE7 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll 2015-05-13 12:03:14 D2602AC48B38FA10956E32D18E7143B0 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll 2015-05-13 12:03:14 BB7BAF9532DBA5AB4009E981687D1EA6 19456 ----a-w- C:\Windows\Sysnative\diskperf.exe 2015-05-13 12:03:14 ADC2D7B5BFF277E5A9FACE6A21A24ABC 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll 2015-05-13 12:03:14 ACE24D86D2714FCC1639F890DF54951B 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll 2015-05-13 12:03:14 A3DCC3D8BB57E31EA07949313CC3A3CF 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll 2015-05-13 12:03:14 9262D6E2C239EDD6D87B080F2BCCEC9F 31232 ----a-w- C:\Windows\Sysnative\lsass.exe 2015-05-13 12:03:14 8C711AF30BE3991050D0D011D92CFBE0 50176 ----a-w- C:\Windows\Sysnative\srclient.dll 2015-05-13 12:03:14 79F036EB691ABBA84E8EB1715E5F2B17 43008 ----a-w- C:\Windows\Sysnative\relog.exe 2015-05-13 12:03:14 50EBA6640805F6D5EF4A0DCEF2D180AB 22016 ----a-w- C:\Windows\Sysnative\credssp.dll 2015-05-13 12:03:14 4DD0098FFAB4664DB979537C48AE055F 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe 2015-05-13 12:03:14 40C5EA47D4AEC96249B09BF0C076A60C 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll 2015-05-13 12:03:14 0D9BDBE780DD81757AC5AF87E8B1EBEC 28160 ----a-w- C:\Windows\Sysnative\secur32.dll 2015-05-13 12:03:13 D205305FB0E352A9D4CF922D6A016BF4 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll 2015-05-13 12:03:13 AF278DB00C43E925E58C8CA2C0CF4C71 686080 ----a-w- C:\Windows\Sysnative\adtschema.dll 2015-05-13 12:03:13 90DC7B112F946B412C9CDC6F459F4053 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll 2015-05-13 12:03:13 90293AAC2AB0908BFF98ADB89CEBC931 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll 2015-05-13 12:03:13 7A448B8CED7F7348C36159D5CC8E19ED 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll 2015-05-13 12:03:01 E612E86FA15EA1EF9A52433A2743C447 1179136 ----a-w- C:\Windows\Sysnative\FntCache.dll 2015-05-13 12:03:01 D858C33B133740D5F1F1CF71C33F6355 3204608 ----a-w- C:\Windows\Sysnative\win32k.sys 2015-05-13 12:03:01 490505F6E53EF046EC70A353BC9CD615 1647104 ----a-w- C:\Windows\Sysnative\DWrite.dll 2015-05-13 12:02:57 6B0F962B1EE486FFE7BCABBC9C736976 24576 ----a-w- C:\Windows\Sysnative\jnwmon.dll 2015-05-13 12:02:57 2B36E0C5C262437E1B098344DEFA55F8 275456 ----a-w- C:\Windows\Sysnative\InkEd.dll 2015-05-13 12:02:56 E5404072A5A9E0B452ADDF1D1339176C 2543104 ----a-w- C:\Windows\Sysnative\wpdshext.dll 2015-05-13 12:02:54 C7E50B04623FC6FF54EAF88938A8936E 142336 ----a-w- C:\Windows\Sysnative\poqexec.exe 2015-05-13 12:02:53 F55F287810AAF708618793764AF7D1BB 23552 ----a-w- C:\Windows\Sysnative\sdbinst.exe 2015-05-13 12:02:53 83BFCCAC53795E8A5055A93672D0C46C 72192 ----a-w- C:\Windows\Sysnative\aelupsvc.dll 2015-05-13 12:02:53 7E21D3072EB20D5400919D435D549A9B 6656 ----a-w- C:\Windows\Sysnative\shimeng.dll 2015-05-13 12:02:53 31D260ADAF1CCFEFC49DB9FBCE9986DA 342016 ----a-w- C:\Windows\Sysnative\apphelp.dll 2015-05-07 20:07:15 D5D9ADE778937C4866D9AEBAF1E8FFFE 763912 ------w- C:\Windows\Sysnative\HPDiscoPMC211.dll ====== C:\Windows\Sysnative\drivers ===== 2015-05-13 12:03:16 F7DFAE6040AC910B7C64EE208A34157D 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2015-05-13 12:03:16 8FE94F2EF9BF444E93E35D87E210D02F 155584 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2015-04-27 13:04:39 F61634BEC53F73702A10DE69F6DCAF57 754688 ----a-w- C:\Windows\Sysnative\drivers\http.sys ====== C:\Windows\Tasks ====== 2015-05-11 18:28:31 8A7F1944AF33FC5525BF6AFA560DCD74 3152 ----a-w- C:\Windows\Sysnative\Tasks\{092511DF-BE76-45C1-89A2-154F7408A4B6} 2015-05-07 20:07:23 EAB23F53D14B5CB68564120CB6CF655C 3626 ----a-w- C:\Windows\Sysnative\Tasks\HPCustParticipation HP Deskjet 2540 series ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2015-05-14 14:30:24 -------- d-----w- C:\PROGRA~2\Free Codec Pack 2015-05-11 18:28:01 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2015-05-07 20:07:39 -------- d-----w- C:\PROGRA~2\Hewlett-Packard 2015-05-07 20:07:35 -------- d-----w- C:\PROGRA~2\HP Photo Creations ======= C: ===== ====== C:\Users\Richard\AppData\Roaming ====== 2015-05-15 04:52:33 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2015-05-15 04:52:33 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2015-05-15 04:52:33 -------- d-----w- C:\Users\Richard\AppData\Local\Temp 2015-05-15 04:52:33 -------- d-----w- C:\Users\Public\AppData\Local\Temp 2015-05-15 04:52:33 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2015-05-15 04:52:33 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2015-05-15 04:52:33 -------- d-----w- C:\Users\AppData\AppData\Local\Temp 2015-05-14 14:30:04 -------- d-----w- C:\Users\Richard\AppData\Roaming\RPEng 2015-05-07 20:07:25 -------- d-----w- C:\Users\Richard\AppData\Roaming\HpUpdate 2015-05-07 20:05:09 -------- d-----w- C:\Users\Richard\AppData\Local\HP ====== C:\Users\Richard ====== 2015-05-15 03:54:34 33C195F50AAECA7337A7B493359E91F3 2209792 ----a-w- C:\Users\Richard\Downloads\adwcleaner_4.204.exe 2015-05-14 15:15:16 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Richard\Downloads\RSITx64.exe 2015-05-11 18:28:04 EAD05FEECC6FF24284970827330BC564 561248 ----a-w- C:\Users\Richard\Downloads\jxpiinstall(1).exe 2015-05-11 18:26:43 EAD05FEECC6FF24284970827330BC564 561248 ----a-w- C:\Users\Richard\Downloads\jxpiinstall.exe 2015-05-07 20:07:35 -------- d-----w- C:\ProgramData\Visan 2015-05-07 20:07:35 -------- d-----w- C:\ProgramData\HP Photo Creations 2015-05-07 20:07:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2015-05-07 20:06:09 7DB1D3B85C66663957FB68A935219D84 57 ----a-w- C:\ProgramData\Ament.ini 2015-05-07 18:22:17 5EC81E559DF45D1E6B2EE0DB921EED94 17385800 ----a-w- C:\Users\Richard\Downloads\picasa39-setup.exe ====== C: exe-files == 2015-05-15 14:52:40 A72B5DEFB7B3180F9BA495ED446E4C85 22992 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgrdtestx.exe 2015-05-15 14:52:40 907630704D5D11F0048D1F3F980B57B1 24016 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgrdtesta.exe 2015-05-15 14:52:40 1D055447F781F89576B5587195C333C7 70096 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avguirux.exe 2015-05-15 14:52:40 1B8DB7B913D7EBC6CCB3284D5C197CA0 6472584 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe 2015-05-15 03:54:34 33C195F50AAECA7337A7B493359E91F3 2209792 ----a-w- C:\Users\Richard\Downloads\adwcleaner_4.204.exe 2015-05-14 15:15:16 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Richard\Downloads\RSITx64.exe 2015-05-14 14:51:28 7E6AF204B17ED7DB3684F3AB86A95228 16296 ----a-w- C:\Program Files\Vuze\jre\bin\policytool.exe 2015-05-14 14:51:28 6A4344D74CD86CB8D1513B06759C7FF9 180648 ----a-w- C:\Program Files\Vuze\jre\bin\unpack200.exe 2015-05-14 14:51:28 4BA67B1C3A59E6A067B679917F06996C 16296 ----a-w- C:\Program Files\Vuze\jre\bin\rmid.exe 2015-05-14 14:51:28 4B0F0C0960EDF40EEBCB612180EB46D6 16808 ----a-w- C:\Program Files\Vuze\jre\bin\orbd.exe 2015-05-14 14:51:28 336648FE93553602450FAD7EC496B314 16296 ----a-w- C:\Program Files\Vuze\jre\bin\servertool.exe 2015-05-14 14:51:28 1DB5E3DA62C7779C483A9342B4062B97 16808 ----a-w- C:\Program Files\Vuze\jre\bin\tnameserv.exe 2015-05-14 14:51:28 17FAA3B7354E295CCEDAD5465A058043 16296 ----a-w- C:\Program Files\Vuze\jre\bin\rmiregistry.exe 2015-05-14 14:51:28 178B7B16132101F0E76846F057215A09 16296 ----a-w- C:\Program Files\Vuze\jre\bin\pack200.exe 2015-05-14 14:51:28 14A11637C4433733DB82533611C82F34 65448 ----a-w- C:\Program Files\Vuze\jre\bin\ssvagent.exe 2015-05-14 14:51:22 B8B5F1D8A5FC183EF3B5B2A01A341709 16296 ----a-w- C:\Program Files\Vuze\jre\bin\kinit.exe 2015-05-14 14:51:22 384246BD9F2F9DE34F3E1A5075B24737 16296 ----a-w- C:\Program Files\Vuze\jre\bin\keytool.exe 2015-05-14 14:51:22 2D1BBE0708B369E54F97B94FB07DAFCD 16296 ----a-w- C:\Program Files\Vuze\jre\bin\ktab.exe 2015-05-14 14:51:22 085C51D1F3746BEB5FCA54ABC1248F46 16296 ----a-w- C:\Program Files\Vuze\jre\bin\klist.exe 2015-05-14 14:51:21 F53D3667918A1B0B508F6D3C10C0526D 76200 ----a-w- C:\Program Files\Vuze\jre\bin\javacpl.exe 2015-05-14 14:51:21 E0021ACA0D9B81E3AEDD7C45F59A62D0 189352 ----a-w- C:\Program Files\Vuze\jre\bin\javaw.exe 2015-05-14 14:51:21 7C5C6B1072471DD3E3EE73049077E287 99240 ----a-w- C:\Program Files\Vuze\jre\bin\jp2launcher.exe 2015-05-14 14:51:21 025E1A8F3AE4271E98AE46B6475DFEA6 189352 ----a-w- C:\Program Files\Vuze\jre\bin\java.exe 2015-05-14 14:51:03 4EDCA88283864C23B5E7FC4FE9DC5616 55720 ----a-w- C:\Program Files\Vuze\jre\bin\jabswitch.exe 2015-05-14 14:30:25 EFEBA7B08CC277A4011187DCE1E0B823 357376 ----a-w- C:\Program Files (x86)\Free Codec Pack\Haali\gdsmux.exe 2015-05-14 14:30:25 E0F1E384D2A644BEC77DF32EF8760874 480768 ----a-w- C:\Program Files (x86)\Free Codec Pack\Haali\gdsmux.x64.exe 2015-05-14 14:30:25 36A36D38B5A7A2F0B697057F26142699 160768 ----a-w- C:\Program Files (x86)\Free Codec Pack\Haali\mkv2vfr.x64.exe 2015-05-14 14:30:25 1449B922DC29EDE8912F43521E5E6D62 137728 ----a-w- C:\Program Files (x86)\Free Codec Pack\Haali\mkv2vfr.exe 2015-05-14 14:30:24 AEBBD973D81C98EAB112E126A61F1C34 136704 ----a-w- C:\Program Files (x86)\Free Codec Pack\Haali\dsmux.x64.exe 2015-05-14 14:30:24 A8411EC5384293B9559F5BDD763CD397 113152 ----a-w- C:\Program Files (x86)\Free Codec Pack\Haali\dsmux.exe 2015-05-14 14:30:05 99B18A631959C2323A3D3B6A19483648 47753016 ----a-w- C:\Users\Richard\AppData\Roaming\RPEng\1427BC3BB78945E488AE58742404919E\AVG-PC-TuneUp2015_2200601_nl.exe 2015-05-13 12:03:47 9DCD15027A13195ABA68B40A5EB26691 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe 2015-05-13 12:03:46 5EDC6AF7589B65C89CB1154B3377D0C4 720384 ----a-w- C:\Windows\System32\ie4uinit.exe 2015-05-13 12:03:46 4B3D652AACEE4FE636F74CB8015BF00E 221184 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2015-05-13 12:03:45 EC75F14CC85659C780A0DC575F7B1242 815304 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2015-05-13 12:03:45 A2A98DBD9E13B81AB68FB6A699A157CB 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2015-05-13 12:03:45 2AA6685FC67CDD231BA0345112DFEE89 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2015-05-13 12:03:45 1BBC9CFD29A62D80FB77BB69BFF7513C 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2015-05-13 12:03:44 2A2CDE78F9E9019AD0E4D804A02688A3 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2015-05-13 12:03:43 CDBB6EFC96D0567951A13A6ABDCA1FDE 484864 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2015-05-13 12:03:43 ABE6FDB01D22FD63BB190BF95F5BC9B6 813776 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2015-05-13 12:03:42 29BBA65402DD568F49C837533F269482 144384 ----a-w- C:\Windows\System32\ieUnatt.exe 2015-05-13 12:03:29 71C85477DF9347FE8E7BC55768473FCA 328704 ----a-w- C:\Windows\System32\services.exe 2015-05-13 12:03:18 A985325F4FE72FB003749A2FBBA9952E 5569984 ----a-w- C:\Windows\System32\ntoskrnl.exe 2015-05-13 12:03:17 8D50ED3F0FBE3590AB0D43BF7B60E57A 3989440 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2015-05-13 12:03:17 0A66C88B087249742381924AB8F9EFCC 3934144 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2015-05-13 12:03:16 FE60A67032A5C94F6ACE483C8FE84105 47104 ----a-w- C:\Windows\System32\typeperf.exe 2015-05-13 12:03:16 EE27E1D639E3807229C15AF94320CF0A 404992 ----a-w- C:\Windows\System32\tracerpt.exe 2015-05-13 12:03:16 EB058143B57ED460AC4F2DFBA104BBFF 364544 ----a-w- C:\Windows\SysWOW64\tracerpt.exe 2015-05-13 12:03:16 E55A72876BC5E244D0A8F7F07862A939 338432 ----a-w- C:\Windows\System32\conhost.exe 2015-05-13 12:03:16 DA5EF2CC0764BE7097BAFA9CAF903FE8 112640 ----a-w- C:\Windows\System32\smss.exe 2015-05-13 12:03:16 C6D2D384B6232B0B800234C03C50979F 82944 ----a-w- C:\Windows\SysWOW64\logman.exe 2015-05-13 12:03:16 9C5DBA74D0C641C2A4ABDC79969B7BEF 104448 ----a-w- C:\Windows\System32\logman.exe 2015-05-13 12:03:16 52935C072F8D5A92508AA3A3CC9133C7 296960 ----a-w- C:\Windows\System32\rstrui.exe 2015-05-13 12:03:15 74C0EC1257698176E288DA282F318E1C 40448 ----a-w- C:\Windows\SysWOW64\typeperf.exe 2015-05-13 12:03:14 F286528898342F0F1EB402606750C391 17408 ----a-w- C:\Windows\SysWOW64\diskperf.exe 2015-05-13 12:03:14 D9E25B4BD2120CC5183CCCE9421C7AFE 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2015-05-13 12:03:14 BB7BAF9532DBA5AB4009E981687D1EA6 19456 ----a-w- C:\Windows\System32\diskperf.exe 2015-05-13 12:03:14 AFFE5747054D03F8CEE18A8518A9AA34 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe 2015-05-13 12:03:14 97B30711DC6CA0EA4EACEDCE8080A3B4 37888 ----a-w- C:\Windows\SysWOW64\relog.exe 2015-05-13 12:03:14 9262D6E2C239EDD6D87B080F2BCCEC9F 31232 ----a-w- C:\Windows\System32\lsass.exe 2015-05-13 12:03:14 79F036EB691ABBA84E8EB1715E5F2B17 43008 ----a-w- C:\Windows\System32\relog.exe 2015-05-13 12:03:14 4DD0098FFAB4664DB979537C48AE055F 64000 ----a-w- C:\Windows\System32\auditpol.exe 2015-05-13 12:03:13 F43CB86F9536B17E5C7CFCFB48ACBE54 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2015-05-13 12:03:13 D9716B488CC27652C12B1B5E0944987E 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2015-05-13 12:02:57 D5E35700566B225CBF8ECD7F92C460C8 2164224 ----a-w- C:\Program Files\Windows Journal\Journal.exe 2015-05-13 12:02:57 0DBC9BB05703CA0D8792E2075D62B3C3 51200 ----a-w- C:\Program Files\Windows Journal\PDIALOG.exe 2015-05-13 12:02:54 C7E50B04623FC6FF54EAF88938A8936E 142336 ----a-w- C:\Windows\System32\poqexec.exe 2015-05-13 12:02:54 C489D8B4D8C64F20CC75A93F541F7D91 123904 ----a-w- C:\Windows\SysWOW64\poqexec.exe 2015-05-13 12:02:53 F55F287810AAF708618793764AF7D1BB 23552 ----a-w- C:\Windows\System32\sdbinst.exe 2015-05-13 12:02:53 715C060150D969B0DE5DD5B365A712AF 20992 ----a-w- C:\Windows\SysWOW64\sdbinst.exe 2015-05-11 18:28:04 EAD05FEECC6FF24284970827330BC564 561248 ----a-w- C:\Users\Richard\Downloads\jxpiinstall(1).exe 2015-05-11 18:27:36 EED888394AC81A663F12C6EC43AB2838 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2015-05-11 18:27:36 4586CD8F1C929EF184098A22FE31A857 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2015-05-11 18:27:36 1E2E159D0621A466CFA7CE06E4DA9CAE 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2015-05-11 18:27:31 FF589C55E0CB6A0A1BD9570217BB1A42 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\tnameserv.exe 2015-05-11 18:27:31 FD8978875A992C876AF430B35DF9CFA7 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\pack200.exe 2015-05-11 18:27:31 F16868F20E4701142FAEF8C9FA847D27 30304 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jabswitch.exe 2015-05-11 18:27:31 EF66D96BC42BCE52686A7635AB11D8DD 68192 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\javacpl.exe 2015-05-11 18:27:31 EED888394AC81A663F12C6EC43AB2838 191072 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\javaw.exe 2015-05-11 18:27:31 D3DA34876B7F6D06D26D29CA77BD25A2 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\ktab.exe 2015-05-11 18:27:31 CF683290B3369A1491A5B8B4D19F79B3 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jjs.exe 2015-05-11 18:27:31 C57CA849D13177E1F43CFEF51374F1EE 159328 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\unpack200.exe 2015-05-11 18:27:31 B66ED84383EA6C6218CA47BC49C15615 50784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssvagent.exe 2015-05-11 18:27:31 A1A1BC927541346D840BBB511F557848 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\policytool.exe 2015-05-11 18:27:31 98903A3C01AA820E7FCC19A0A60126C0 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\klist.exe 2015-05-11 18:27:31 88FFC43B0E3BB3E30F70CB7B08D499B4 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\java-rmi.exe 2015-05-11 18:27:31 5DF39BE82C777B7EDAD34E3A7A7EADB7 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\rmid.exe 2015-05-11 18:27:31 4EA6A4DD2EB584C4C2BF39A9A7D0D580 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\keytool.exe 2015-05-11 18:27:31 4586CD8F1C929EF184098A22FE31A857 271968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\javaws.exe 2015-05-11 18:27:31 3C0A1F0D13A8998E9A1825A853FF3B39 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\kinit.exe 2015-05-11 18:27:31 2682BB5D60C30DCB5A2BC414D01D6764 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\rmiregistry.exe 2015-05-11 18:27:31 1F29E31C6B9A487FF32006C4E223BA4F 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\orbd.exe 2015-05-11 18:27:31 1E2E159D0621A466CFA7CE06E4DA9CAE 190560 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\java.exe 2015-05-11 18:27:31 1CCD26E1E9FC582ABAA5D5FD1FA47A6B 76384 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2launcher.exe 2015-05-11 18:27:31 134D4B0A753808F8F8645DCF3FA00173 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\servertool.exe 2015-05-11 18:26:43 EAD05FEECC6FF24284970827330BC564 561248 ----a-w- C:\Users\Richard\Downloads\jxpiinstall.exe === C: other files == 2015-05-14 14:52:19 CEA63CF3AEEE97632317166FB63B8017 620902 ----a-w- C:\Users\Richard\AppData\Roaming\Azureus\plugins\xmwebui\xmwebui_0.5.9.zip 2015-05-14 14:52:17 DE0CB7E262DBD57C556B341030FE8992 209755 ----a-w- C:\Users\Richard\AppData\Roaming\Azureus\plugins\mlab\mlab_0.2.zip 2015-05-14 14:51:28 01E2BA4C7C9E238D5887A2E84FDD973C 18633 ----a-w- C:\Program Files\Vuze\jre\lib\deploy\ffjcext.zip 2015-05-14 14:30:21 107DAFCB592148E1436198218DDD31D6 38626 ----a-w- C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi 2015-05-13 12:03:16 F7DFAE6040AC910B7C64EE208A34157D 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2015-05-13 12:03:16 8FE94F2EF9BF444E93E35D87E210D02F 155584 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2015-05-13 12:03:01 D858C33B133740D5F1F1CF71C33F6355 3204608 ----a-w- C:\Windows\System32\win32k.sys 2015-05-11 18:27:31 5DDC15149346900F16B38C65502BACA9 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\lib\deploy\ffjcext.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Dell DataSafe Online"="C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe /m" "PDVDDXSrv"="C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" "Desktop Disc Tool"="c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" "NBAgent"="C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe /WinStart" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" " ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe " ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2010-06-07 10:38:53 2000 ----a-w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk 2010-06-07 10:38:53 2000 ----a-w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk 2015-05-07 20:09:05 1938 ----a-w- C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/05/2015 05:02] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000Core.job --a------ C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/06/2013 18:51] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000UA.job --a------ C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/06/2013 18:51] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe Reader and Acrobat Manager" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Richard-PC-Richard" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files (x86)\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000Core" [C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000UA" [C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\HPCustParticipation HP Deskjet 2540 series" ["C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe"] "C:\Windows\SysNative\tasks\Java Platform SE Auto Updater" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\PCDEventLauncher" ["C:\Program Files\Dell Support Center\sessionchecker.exe"] "C:\Windows\SysNative\tasks\Richard NBAgent 5 4" ["C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe"] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\{0D1F5378-CE5F-4070-A060-8C3F15A7F9CF}" [C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe] "C:\Windows\SysNative\tasks\{1110D5EC-E363-45ED-89C5-920752F24C5D}" [C:\Program Files (x86)\Webteh\BSplayer\bsplayer.exe] "C:\Windows\SysNative\tasks\{1D821C4C-874D-4298-B939-A66C634E60BB}" ["c:\program files (x86)\mozilla firefox\firefox.exe"] "C:\Windows\SysNative\tasks\{49D6CC22-8EF2-4D0C-89F8-3B2F592BC7E5}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\{755BF4F0-5808-4C54-9202-B114B124B895}" [C:\Program Files (x86)\Webteh\BSplayer\bsplayer.exe] "C:\Windows\SysNative\tasks\{85500AFC-EC88-438B-985D-6B002A97E5C4}" [C:\Users\Richard\Videos\TETRIS.EXE] "C:\Windows\SysNative\tasks\{A3B3BB82-1528-4018-96B0-E85CFC970F1B}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\{DEA86D37-B63B-4EA6-B545-3589D3C3AB5A}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] ==== Firefox Extensions Registry ====================== [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "{e4f94d1e-2f53-401e-8885-681602c0ddd8}"="C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi" [04/04/2014 12:36] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\0 - DVDVideoSoft YouTube MP3 and Video Download - %ProfilePath%\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 - Undetermined - %ProfilePath%\extensions\{E42AC5EF-EAFC-E69C-365F-EF5AF17A5D4D} ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default - Undetermined - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - Undetermined - C:\Program Files\Web Assistant\Firefox - Undetermined - C:\Program Files (x86)\McAfee\SiteAdvisor AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\74puhl63.default-1426413179001 CF25FDD7CA6BC88442A58F74DBB6CFA6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll - Shockwave for Director / Shockwave for Director 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 2E661988463BCFA1B95D4DAAB9B0B6FA - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll - Shockwave Flash 341B3AE026B143DBC17BA1E1E0BAE3D6 - C:\Users\Richard\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player 3CD19649B2C3023D65E67C056457A2BC - C:\Users\Richard\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin 15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System ==== Chromium Look ====================== ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1G2ZA49V will be deleted at reboot C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDAGJE82 will be deleted at reboot C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZRP4Z1CF will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\Richard\AppData\Local\Mozilla\Firefox\Profiles\74puhl63.default-1426413179001\cache2 emptied successfully ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1048 folders=189 651020842 bytes) ==== Empty Temp Folders ====================== C:\Users\AppData\AppData\Local\Temp emptied successfully C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Public\AppData\Local\Temp emptied successfully C:\Users\Richard\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Richard\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\PROGRA~2\AVG Web TuneUp" not found "C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1G2ZA49V" not found "C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDAGJE82" not found "C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZRP4Z1CF" not found ==== EOF on za 16/05/2015 at 0:23:44,49 ======================
- 15 mei 2015
- 26 antwoorden
Reclame

ricardo425 reageerde op ricardo425's topic in Archief Bestrijding malware & virussen
- 15 mei 2015
- 26 antwoorden
Reclame

ricardo425 plaatste een topic in Archief Bestrijding malware & virussen

Hallo beste vrienden, Ik krijg steeds reclame bij het openen van één of andere website. Daarom vraag ik of jullie er me vanaf kunnen helpen. Met dank bij voorbaat log.txt
- 14 mei 2015
- 26 antwoorden
Samsung GT-C3590

ricardo425 reageerde op ricardo425's topic in Archief Andere software

Sorry dat ik niet meer antwoorde. Totaal vergeten. Heb ondertussen een ander gekocht. Nogmaals mijn exuses. Gr R
- 20 april 2015
- 10 antwoorden
Samsung GT-C3590

ricardo425 reageerde op ricardo425's topic in Archief Andere software

Inderdaad, onderaan is er een aansluiting om op te laden en ook voor met usb naar laptop of pc aan te sluiten. maar krijg geen verbinding. Bedankt voor deze reacties.
- 31 maart 2015
- 10 antwoorden
Samsung GT-C3590

ricardo425 plaatste een topic in Archief Andere software

Hallo beste vrienden, IK kan geen verbinding meer maken met mijn gsm op mijn laptop. Toch heb ik dat vroeger wel nog gedaan. Het is wel al een periode geleden,maar toch. Heb het al geprobeerd met usb-kabel en met kaartlezer. En geen van beiden lukt. Ik wil een foto op mijn laptop zetten. Dank bij voorbaat voorde hulp.
- 30 maart 2015
- 10 antwoorden
Blauw scherm bij opstart

ricardo425 reageerde op ricardo425's topic in Archief Windows 8

@Yannick. Geen nieuwe software of andere programma's opgezet. Was direct een blauw scherm
- 10 januari 2015
- 6 antwoorden
Blauw scherm bij opstart

ricardo425 reageerde op ricardo425's topic in Archief Windows 8

Bedankt voor de vlugge reactie. De opstartgeluiden zijn zoals normaal. Heb uw raad opgevolgd en alles blijkt weer normaal te zijn. Voor de rest van de dag ben ik niet thuis en zal de laptop gewoon afsluiten en vanavond terug opstarten. Laat je dan weten of alles nog normaal functioneert. Dank bij voorbaat
- 10 januari 2015
- 6 antwoorden
- - 1
Blauw scherm bij opstart

ricardo425 plaatste een topic in Archief Windows 8

Hallo beste vrienden, Bij het opstarten van onze laptop DELL krijg ik alleen maar een blauw scherm. Geen foutmelding of andere berichten. Kan verder niks doen. Gisteren was alles nog normaal en heb ik deze ook gewoon afgesloten zoals steeds. Bij het opstarten deze morgen krijg ik alleen een blauw scherm. Wat kan de oorzaak zijn en wat doe ik om weer met de laptop te kunnen werken. Dank bij voorbaat
- 10 januari 2015
- 6 antwoorden
trage laptop

ricardo425 reageerde op ricardo425's topic in Archief Bestrijding malware & virussen

Logfile of random's system information tool 1.10 (written by random/random) Run by Stefan at 2014-08-25 19:11:36 Microsoft Windows 8 System drive C: has 247 GB (85%) free of 289 GB Total RAM: 3682 MB (58% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:11:48, on 25/08/2014 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v10.0 (10.00.9200.17028) Boot mode: Normal Running processes: C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files\trend micro\Stefan.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\IPS\IPSBHO.DLL O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe O4 - HKCU\..\Run: [browserChoice] "C:\Windows\BrowserChoice\browserchoice.exe" /run O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Connected Remote Service (HPConnectedRemote) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 7743 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe "dwm.exe" C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted atieclxx C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe" "C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService C:\Windows\system32\svchost.exe -k apphost "C:\Program Files\Bonjour\mDNSResponder.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe" "C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe" C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted taskhostex.exe C:\Windows\Explorer.EXE C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\Windows\BrowserChoice\browserchoice.exe" /run "C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE" "C:\Windows\System32\WWAHost.exe" -ServerName:Windows.BrowserChoice "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" "C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe" "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\RuntimeBroker.exe -Embedding "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe" "C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\diMaster.dll" /prefetch:1 "C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe" /c /a /s UserSession C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe taskhost.exe $(Arg0) taskhost.exe C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF} "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "http://www.pchelpforum.be/" "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe11_ Global\UsGthrCtrlFltPipeMssGthrPipe11 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Windows\system32\SearchFilterHost.exe" 0 568 572 580 65536 576 "C:\Users\Stefan\Downloads\RSITx64.exe" "C:\Users\Stefan\Downloads\RSITx64.exe" "C:\Users\Stefan\Downloads\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe ======Scheduled tasks folder====== C:\Windows\tasks\HPCeeScheduleForStefan.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForStefan (null) =========Mozilla firefox========= ProfilePath - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\e6un0jm0.default [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}] Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll [2014-04-29 510816] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}] Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\IPS\IPSBHO.DLL [2013-04-09 387040] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}] HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll [2014-04-29 510816] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-08-22 6839952] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-25 2916152] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "BrowserChoice"=C:\Windows\BrowserChoice\browserchoice.exe [2012-08-15 86696] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-09-12 642216] "CLVirtualDrive"=C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2012-09-10 491632] "RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-07-13 93296] "HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-09-07 581024] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "VIDC.YUY2"=msyuv.dll "vidc.i420"=iyuv_32.dll "msacm.msgsm610"=msgsm32.acm "msacm.msg711"=msg711.acm "VIDC.YVYU"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "wavemapper"=msacm32.drv "midimapper"=midimap.dll "VIDC.UYVY"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "vidc.msvc"=msvidc32.dll "MSVideo8"=VfWWDM32.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-08-25 19:11:37 ----D---- C:\Program Files\trend micro 2014-08-25 19:11:36 ----D---- C:\rsit 2014-08-25 12:18:48 ----D---- C:\Windows\LastGood 2014-08-25 08:34:36 ----D---- C:\Users\Stefan\AppData\Roaming\Mozilla 2014-08-25 08:34:01 ----D---- C:\ProgramData\Mozilla 2014-08-25 08:33:59 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2014-08-25 08:33:40 ----D---- C:\Program Files (x86)\Mozilla Firefox 2014-08-25 07:01:14 ----D---- C:\Users\Stefan\AppData\Roaming\CyberLink 2014-08-14 21:46:35 ----A---- C:\Windows\system32\FNTCACHE.DAT 2014-08-14 21:40:09 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2014-08-14 21:28:56 ----SD---- C:\Windows\system32\CompatTel 2014-08-14 21:27:57 ----RD---- C:\Windows\BrowserChoice 2014-08-11 15:34:46 ----D---- C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F} 2014-07-29 22:51:24 ----D---- C:\Windows\system32\MRT 2014-07-29 22:51:09 ----A---- C:\Windows\system32\MRT.exe 2014-07-29 20:58:32 ----A---- C:\Windows\system32\dwmcore.dll 2014-07-29 20:58:30 ----A---- C:\Windows\SYSWOW64\dwmcore.dll 2014-07-29 20:58:30 ----A---- C:\Windows\explorer.exe 2014-07-29 20:58:28 ----A---- C:\Windows\SYSWOW64\explorer.exe 2014-07-29 20:58:28 ----A---- C:\Windows\system32\mfasfsrcsnk.dll 2014-07-29 20:58:23 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll 2014-07-29 20:58:22 ----A---- C:\Windows\system32\samsrv.dll 2014-07-29 20:58:20 ----A---- C:\Windows\system32\mfcore.dll 2014-07-29 20:58:19 ----A---- C:\Windows\SYSWOW64\mfcore.dll 2014-07-29 20:58:19 ----A---- C:\Windows\system32\drivers\volsnap.sys 2014-07-29 20:58:17 ----A---- C:\Windows\system32\winload.exe 2014-07-29 20:58:17 ----A---- C:\Windows\system32\vds.exe 2014-07-29 20:58:16 ----A---- C:\Windows\system32\winresume.exe 2014-07-29 20:58:16 ----A---- C:\Windows\system32\mscms.dll 2014-07-29 20:58:15 ----A---- C:\Windows\SYSWOW64\mscms.dll 2014-07-29 20:58:15 ----A---- C:\Windows\system32\samlib.dll 2014-07-29 20:58:15 ----A---- C:\Windows\system32\audiosrv.dll 2014-07-29 20:58:14 ----A---- C:\Windows\system32\MbaeParserTask.exe 2014-07-29 20:58:14 ----A---- C:\Windows\system32\DeviceSetupManager.dll 2014-07-29 20:58:12 ----A---- C:\Windows\system32\vdsutil.dll 2014-07-29 20:58:10 ----A---- C:\Windows\SYSWOW64\samlib.dll 2014-07-29 20:58:07 ----A---- C:\Windows\system32\drivers\BthAvrcpTg.sys 2014-07-29 20:57:58 ----A---- C:\Windows\system32\drivers\ndis.sys 2014-07-29 20:57:14 ----A---- C:\Windows\SYSWOW64\wusa.exe 2014-07-29 20:57:14 ----A---- C:\Windows\system32\wusa.exe 2014-07-29 20:57:14 ----A---- C:\Windows\system32\drivers\srv2.sys 2014-07-29 20:57:14 ----A---- C:\Windows\system32\drivers\Classpnp.sys 2014-07-29 20:56:07 ----A---- C:\Windows\system32\drivers\ntfs.sys 2014-07-29 20:55:59 ----A---- C:\Windows\system32\mstscax.dll 2014-07-29 20:55:58 ----A---- C:\Windows\SYSWOW64\mstscax.dll 2014-07-29 20:55:57 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll 2014-07-29 20:55:57 ----A---- C:\Windows\SYSWOW64\WSDApi.dll 2014-07-29 20:55:57 ----A---- C:\Windows\system32\XpsGdiConverter.dll 2014-07-29 20:55:57 ----A---- C:\Windows\system32\WSDApi.dll 2014-07-29 20:55:57 ----A---- C:\Windows\system32\drivers\storport.sys 2014-07-29 20:55:57 ----A---- C:\Windows\system32\drivers\msiscsi.sys 2014-07-29 20:55:56 ----A---- C:\Windows\system32\drivers\dfsc.sys 2014-07-29 20:38:36 ----A---- C:\Windows\system32\devinv.dll 2014-07-29 20:38:36 ----A---- C:\Windows\system32\aepic.dll 2014-07-29 20:38:36 ----A---- C:\Windows\system32\aepdu.dll 2014-07-29 20:38:35 ----A---- C:\Windows\system32\aeinv.dll 2014-07-29 20:20:33 ----A---- C:\Windows\system32\wuaueng.dll 2014-07-29 20:20:30 ----A---- C:\Windows\system32\oleaut32.dll 2014-07-29 20:20:29 ----A---- C:\Windows\SYSWOW64\oleaut32.dll 2014-07-29 20:20:29 ----A---- C:\Windows\system32\wucltux.dll 2014-07-29 20:20:29 ----A---- C:\Windows\system32\wuapi.dll 2014-07-29 20:20:29 ----A---- C:\Windows\system32\resutils.dll 2014-07-29 20:20:29 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys 2014-07-29 20:20:29 ----A---- C:\Windows\system32\clusapi.dll 2014-07-29 20:20:28 ----A---- C:\Windows\SYSWOW64\wuapi.dll 2014-07-29 20:20:28 ----A---- C:\Windows\SYSWOW64\resutils.dll 2014-07-29 20:20:28 ----A---- C:\Windows\SYSWOW64\clusapi.dll 2014-07-29 20:20:28 ----A---- C:\Windows\system32\WUSettingsProvider.dll 2014-07-29 20:20:28 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS 2014-07-29 20:20:27 ----A---- C:\Windows\SYSWOW64\wuwebv.dll 2014-07-29 20:20:27 ----A---- C:\Windows\SYSWOW64\wudriver.dll 2014-07-29 20:20:27 ----A---- C:\Windows\SYSWOW64\wuapp.exe 2014-07-29 20:20:27 ----A---- C:\Windows\system32\wuwebv.dll 2014-07-29 20:20:27 ----A---- C:\Windows\system32\wudriver.dll 2014-07-29 20:20:27 ----A---- C:\Windows\system32\wuauclt.exe 2014-07-29 20:20:27 ----A---- C:\Windows\system32\wuapp.exe 2014-07-29 20:20:27 ----A---- C:\Windows\system32\storewuauth.dll 2014-07-29 20:20:27 ----A---- C:\Windows\system32\drivers\spaceport.sys 2014-07-29 20:18:04 ----A---- C:\Windows\system32\drivers\WdFilter.sys 2014-07-29 20:18:03 ----A---- C:\Windows\system32\drivers\WdBoot.sys 2014-07-29 20:12:54 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll 2014-07-29 20:12:46 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll 2014-07-29 20:12:44 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll 2014-07-29 20:12:44 ----A---- C:\Windows\system32\UIAutomationCore.dll 2014-07-29 20:12:43 ----A---- C:\Windows\SYSWOW64\ubpm.dll 2014-07-29 20:12:43 ----A---- C:\Windows\system32\ubpm.dll 2014-07-29 20:12:41 ----A---- C:\Windows\system32\wups.dll 2014-07-29 20:12:41 ----A---- C:\Windows\system32\drivers\tpm.sys 2014-07-29 20:12:41 ----A---- C:\Windows\system32\drivers\fvevol.sys 2014-07-29 20:12:40 ----A---- C:\Windows\system32\wups2.dll 2014-07-29 20:12:39 ----A---- C:\Windows\SYSWOW64\wups.dll 2014-07-29 20:12:39 ----A---- C:\Windows\system32\drivers\crashdmp.sys 2014-07-29 14:05:06 ----A---- C:\Windows\SYSWOW64\msftedit.dll 2014-07-29 14:05:04 ----A---- C:\Windows\system32\msftedit.dll 2014-07-29 14:05:02 ----A---- C:\Windows\system32\localspl.dll 2014-07-29 14:04:59 ----A---- C:\Windows\SYSWOW64\winmm.dll 2014-07-29 14:04:59 ----A---- C:\Windows\system32\wwanconn.dll 2014-07-29 14:04:59 ----A---- C:\Windows\system32\FWPUCLNT.DLL 2014-07-29 14:04:59 ----A---- C:\Windows\system32\drivers\sdbus.sys 2014-07-29 14:04:58 ----A---- C:\Windows\SYSWOW64\winmmbase.dll 2014-07-29 14:04:58 ----A---- C:\Windows\SYSWOW64\WerFault.exe 2014-07-29 14:04:58 ----A---- C:\Windows\system32\wwansvc.dll 2014-07-29 14:04:58 ----A---- C:\Windows\system32\WinSCard.dll 2014-07-29 14:04:58 ----A---- C:\Windows\system32\winmmbase.dll 2014-07-29 14:04:58 ----A---- C:\Windows\system32\winmm.dll 2014-07-29 14:04:58 ----A---- C:\Windows\system32\WerFault.exe 2014-07-29 14:04:58 ----A---- C:\Windows\system32\wcmsvc.dll 2014-07-29 14:04:58 ----A---- C:\Windows\system32\drivers\dumpsd.sys 2014-07-29 14:04:57 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll 2014-07-29 14:04:57 ----A---- C:\Windows\system32\Wwanadvui.dll 2014-07-29 14:04:57 ----A---- C:\Windows\system32\wcmcsp.dll 2014-07-29 14:04:57 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS 2014-07-29 14:04:57 ----A---- C:\Windows\system32\drivers\msgpioclx.sys 2014-07-29 14:04:57 ----A---- C:\Windows\system32\drivers\HdAudio.sys 2014-07-29 14:04:56 ----A---- C:\Windows\SYSWOW64\openfiles.exe 2014-07-29 14:04:56 ----A---- C:\Windows\SYSWOW64\nshwfp.dll 2014-07-29 14:04:56 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL 2014-07-29 14:04:56 ----A---- C:\Windows\system32\wwanmm.dll 2014-07-29 14:04:56 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll 2014-07-29 14:04:56 ----A---- C:\Windows\system32\openfiles.exe 2014-07-29 14:04:56 ----A---- C:\Windows\system32\nshwfp.dll 2014-07-29 14:04:56 ----A---- C:\Windows\system32\drivers\udfs.sys 2014-07-29 14:04:55 ----A---- C:\Windows\SYSWOW64\WinSCard.dll 2014-07-29 14:04:55 ----A---- C:\Windows\SYSWOW64\LocationApi.dll 2014-07-29 14:04:55 ----A---- C:\Windows\system32\LocationApi.dll 2014-07-29 14:00:57 ----A---- C:\Windows\system32\mfnetsrc.dll 2014-07-29 14:00:56 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll 2014-07-29 14:00:56 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll 2014-07-29 14:00:56 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll 2014-07-29 14:00:56 ----A---- C:\Windows\system32\mfnetcore.dll 2014-07-29 14:00:56 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll 2014-07-29 14:00:34 ----A---- C:\Windows\system32\dskquota.dll 2014-07-29 14:00:33 ----A---- C:\Windows\SYSWOW64\dskquota.dll 2014-07-29 14:00:12 ----A---- C:\Windows\system32\hal.dll 2014-07-29 13:59:01 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll 2014-07-29 13:58:59 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll 2014-07-29 13:58:59 ----A---- C:\Windows\system32\StructuredQuery.dll 2014-07-29 13:58:59 ----A---- C:\Windows\system32\mfplat.dll 2014-07-29 13:58:56 ----A---- C:\Windows\SYSWOW64\mfplat.dll 2014-07-29 13:58:55 ----A---- C:\Windows\system32\drivers\netio.sys 2014-07-29 13:58:54 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll 2014-07-29 13:58:54 ----A---- C:\Windows\system32\Windows.Storage.Compression.dll 2014-07-29 13:58:51 ----A---- C:\Windows\system32\ListSvc.dll 2014-07-29 13:58:51 ----A---- C:\Windows\system32\dhcpcore6.dll 2014-07-29 13:58:50 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll 2014-07-29 13:58:50 ----A---- C:\Windows\system32\SpaceControl.dll 2014-07-29 13:58:49 ----A---- C:\Windows\system32\drivers\battc.sys 2014-07-29 13:58:48 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Compression.dll 2014-07-29 13:58:48 ----A---- C:\Windows\system32\drivers\sdstor.sys 2014-07-29 13:58:47 ----A---- C:\Windows\SYSWOW64\input.dll 2014-07-29 13:58:47 ----A---- C:\Windows\system32\input.dll 2014-07-29 13:58:46 ----A---- C:\Windows\SYSWOW64\mswsock.dll 2014-07-29 13:58:46 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll 2014-07-29 13:58:46 ----A---- C:\Windows\system32\dhcpcsvc6.dll 2014-07-29 13:58:46 ----A---- C:\Windows\system32\bdesvc.dll 2014-07-29 13:58:44 ----A---- C:\Windows\SYSWOW64\PCPKsp.dll 2014-07-29 13:58:44 ----A---- C:\Windows\system32\mswsock.dll 2014-07-29 13:58:44 ----A---- C:\Windows\system32\microsoft-windows-pdc.dll 2014-07-29 13:58:42 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll 2014-07-29 13:58:41 ----A---- C:\Windows\SYSWOW64\AppxSip.dll 2014-07-29 13:58:41 ----A---- C:\Windows\system32\dhcpcore.dll 2014-07-29 13:58:40 ----A---- C:\Windows\system32\FntCache.dll 2014-07-29 13:58:40 ----A---- C:\Windows\system32\AppxSip.dll 2014-07-29 13:58:38 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll 2014-07-29 13:58:38 ----A---- C:\Windows\system32\PCPKsp.dll 2014-07-29 13:58:38 ----A---- C:\Windows\system32\dhcpcsvc.dll 2014-07-29 13:58:38 ----A---- C:\Windows\system32\BdeUISrv.exe 2014-07-29 13:58:35 ----A---- C:\Windows\SYSWOW64\kbdhebl3.dll 2014-07-29 13:58:35 ----A---- C:\Windows\system32\kbdhebl3.dll 2014-07-29 13:47:30 ----A---- C:\Windows\SYSWOW64\ReAgent.dll 2014-07-29 13:47:30 ----A---- C:\Windows\system32\sysreset.exe 2014-07-29 13:47:30 ----A---- C:\Windows\system32\resetengmig.dll 2014-07-29 13:47:30 ----A---- C:\Windows\system32\reseteng.dll 2014-07-29 13:47:30 ----A---- C:\Windows\system32\ReAgent.dll 2014-07-29 13:47:09 ----A---- C:\Windows\system32\MPSSVC.dll 2014-07-29 13:47:09 ----A---- C:\Windows\system32\FirewallAPI.dll 2014-07-29 13:47:08 ----A---- C:\Windows\SYSWOW64\wfapigp.dll 2014-07-29 13:47:08 ----A---- C:\Windows\SYSWOW64\WebClnt.dll 2014-07-29 13:47:08 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll 2014-07-29 13:47:08 ----A---- C:\Windows\SYSWOW64\davclnt.dll 2014-07-29 13:47:08 ----A---- C:\Windows\system32\wfapigp.dll 2014-07-29 13:47:08 ----A---- C:\Windows\system32\WebClnt.dll 2014-07-29 13:47:08 ----A---- C:\Windows\system32\icfupgd.dll 2014-07-29 13:47:08 ----A---- C:\Windows\system32\drivers\mpsdrv.sys 2014-07-29 13:47:08 ----A---- C:\Windows\system32\drivers\disk.sys 2014-07-29 13:47:08 ----A---- C:\Windows\system32\davclnt.dll 2014-07-29 13:45:36 ----A---- C:\Windows\SYSWOW64\msdrm.dll 2014-07-29 13:45:36 ----A---- C:\Windows\system32\msdrm.dll 2014-07-29 13:42:33 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe 2014-07-29 13:42:33 ----A---- C:\Windows\system32\Taskmgr.exe 2014-07-29 13:42:32 ----A---- C:\Windows\system32\WebcamUi.dll 2014-07-29 13:42:32 ----A---- C:\Windows\system32\storagewmi.dll 2014-07-29 13:42:31 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll 2014-07-29 13:42:30 ----A---- C:\Windows\system32\wpnapps.dll 2014-07-29 13:42:30 ----A---- C:\Windows\system32\UserLanguagesCpl.dll 2014-07-29 13:42:28 ----A---- C:\Windows\SYSWOW64\wpnapps.dll 2014-07-29 13:42:28 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll 2014-07-29 13:42:28 ----A---- C:\Windows\SYSWOW64\mstsc.exe 2014-07-29 13:42:28 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys 2014-07-29 13:42:27 ----A---- C:\Windows\SYSWOW64\storagewmi.dll 2014-07-29 13:42:27 ----A---- C:\Windows\system32\mstsc.exe 2014-07-29 13:42:25 ----A---- C:\Windows\system32\rfxvmt.dll 2014-07-29 13:42:24 ----A---- C:\Windows\SYSWOW64\vds_ps.dll 2014-07-29 13:42:17 ----A---- C:\Windows\system32\schedsvc.dll 2014-07-29 13:38:54 ----A---- C:\Windows\SYSWOW64\esent.dll 2014-07-29 13:38:53 ----A---- C:\Windows\system32\esent.dll 2014-07-29 13:38:47 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll 2014-07-29 13:38:47 ----A---- C:\Windows\system32\WMPhoto.dll 2014-07-29 13:38:24 ----A---- C:\Windows\system32\WindowsCodecs.dll 2014-07-29 13:38:23 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll 2014-07-29 13:36:54 ----A---- C:\Windows\SYSWOW64\msctf.dll 2014-07-29 13:36:54 ----A---- C:\Windows\system32\msctf.dll 2014-07-29 13:36:45 ----A---- C:\Windows\SYSWOW64\shdocvw.dll 2014-07-29 13:36:45 ----A---- C:\Windows\SYSWOW64\SettingSync.dll 2014-07-29 13:36:45 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll 2014-07-29 13:36:45 ----A---- C:\Windows\system32\shdocvw.dll 2014-07-29 13:36:45 ----A---- C:\Windows\system32\SettingSync.dll 2014-07-29 13:36:45 ----A---- C:\Windows\system32\mbsmsapi.dll 2014-07-29 13:36:44 ----A---- C:\Windows\SYSWOW64\SettingSyncInfo.dll 2014-07-29 13:36:44 ----A---- C:\Windows\system32\SettingSyncInfo.dll 2014-07-29 13:36:35 ----A---- C:\Windows\system32\wdc.dll 2014-07-29 13:36:34 ----A---- C:\Windows\SYSWOW64\wvc.dll 2014-07-29 13:36:34 ----A---- C:\Windows\SYSWOW64\wdc.dll 2014-07-29 13:36:34 ----A---- C:\Windows\system32\wvc.dll 2014-07-29 13:36:29 ----A---- C:\Windows\SYSWOW64\Display.dll 2014-07-29 13:36:29 ----A---- C:\Windows\system32\Display.dll 2014-07-29 13:36:28 ----A---- C:\Windows\SYSWOW64\KBDKURD.DLL 2014-07-29 13:36:28 ----A---- C:\Windows\system32\KBDKURD.DLL 2014-07-29 13:35:21 ----A---- C:\Windows\system32\glcndFilter.dll 2014-07-29 13:35:02 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll 2014-07-29 13:34:57 ----A---- C:\Windows\system32\winhttp.dll 2014-07-29 13:34:57 ----A---- C:\Windows\system32\ole32.dll 2014-07-29 13:34:55 ----A---- C:\Windows\SYSWOW64\winhttp.dll 2014-07-29 13:34:54 ----A---- C:\Windows\SYSWOW64\ole32.dll 2014-07-29 13:34:53 ----A---- C:\Windows\HelpPane.exe 2014-07-29 13:34:52 ----A---- C:\Windows\system32\wlansvc.dll 2014-07-29 13:34:51 ----A---- C:\Windows\system32\dafWCN.dll 2014-07-29 13:34:50 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll 2014-07-29 13:34:50 ----A---- C:\Windows\system32\wlanmsm.dll 2014-07-29 13:34:50 ----A---- C:\Windows\system32\MFCaptureEngine.dll 2014-07-29 13:34:49 ----A---- C:\Windows\system32\rdpclip.exe 2014-07-29 13:34:48 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll 2014-07-29 13:34:47 ----A---- C:\Windows\system32\wlanapi.dll 2014-07-29 13:34:47 ----A---- C:\Windows\system32\wcncsvc.dll 2014-07-29 13:34:46 ----A---- C:\Windows\SYSWOW64\wlansec.dll 2014-07-29 13:34:46 ----A---- C:\Windows\SYSWOW64\wlanapi.dll 2014-07-29 13:34:46 ----A---- C:\Windows\SYSWOW64\WcnApi.dll 2014-07-29 13:34:46 ----A---- C:\Windows\system32\WcnApi.dll 2014-07-29 13:34:45 ----A---- C:\Windows\system32\wlansec.dll 2014-07-29 13:34:44 ----A---- C:\Windows\SYSWOW64\fdWCN.dll 2014-07-29 13:34:44 ----A---- C:\Windows\system32\wfdprov.dll 2014-07-29 13:34:44 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll 2014-07-29 13:34:44 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll 2014-07-29 13:34:44 ----A---- C:\Windows\system32\fdWCN.dll 2014-07-29 13:34:43 ----A---- C:\Windows\SYSWOW64\wfdprov.dll 2014-07-29 13:34:42 ----A---- C:\Windows\system32\wuaext.dll 2014-07-29 13:34:42 ----A---- C:\Windows\system32\drivers\processr.sys 2014-07-29 13:34:42 ----A---- C:\Windows\system32\drivers\intelppm.sys 2014-07-29 13:34:42 ----A---- C:\Windows\system32\drivers\fxppm.sys 2014-07-29 13:34:42 ----A---- C:\Windows\system32\drivers\amdppm.sys 2014-07-29 13:34:42 ----A---- C:\Windows\system32\drivers\amdk8.sys 2014-07-29 13:34:41 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll 2014-07-29 13:34:41 ----A---- C:\Windows\system32\wlanhlp.dll 2014-07-29 13:34:41 ----A---- C:\Windows\system32\iscsilog.dll 2014-07-29 13:34:40 ----A---- C:\Windows\system32\wushareduxresources.dll 2014-07-29 13:24:36 ----A---- C:\Windows\system32\twinui.dll 2014-07-29 13:24:34 ----A---- C:\Windows\SYSWOW64\twinui.dll 2014-07-29 13:24:33 ----A---- C:\Windows\SYSWOW64\authui.dll 2014-07-29 13:24:33 ----A---- C:\Windows\system32\authui.dll 2014-07-29 13:24:15 ----A---- C:\Windows\system32\kernel32.dll 2014-07-29 13:24:15 ----A---- C:\Windows\system32\drivers\hidclass.sys 2014-07-29 13:24:14 ----A---- C:\Windows\SYSWOW64\kernel32.dll 2014-07-29 13:24:14 ----A---- C:\Windows\SYSWOW64\gpedit.dll 2014-07-29 13:24:14 ----A---- C:\Windows\system32\gpedit.dll 2014-07-29 13:24:14 ----A---- C:\Windows\system32\drivers\srvnet.sys 2014-07-29 13:24:14 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys 2014-07-29 13:24:14 ----A---- C:\Windows\system32\drivers\mrxsmb.sys 2014-07-29 13:24:14 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys 2014-07-29 13:24:14 ----A---- C:\Windows\system32\drivers\hidusb.sys 2014-07-29 13:24:14 ----A---- C:\Windows\system32\drivers\hidparse.sys 2014-07-29 13:24:13 ----A---- C:\Windows\SYSWOW64\msieftp.dll 2014-07-29 13:24:13 ----A---- C:\Windows\system32\msieftp.dll 2014-07-29 13:04:30 ----A---- C:\Windows\system32\pcasvc.dll 2014-07-29 13:04:30 ----A---- C:\Windows\system32\pcadm.dll 2014-07-29 13:04:29 ----A---- C:\Windows\system32\pcalua.exe 2014-07-29 13:04:29 ----A---- C:\Windows\system32\pcaevts.dll 2014-07-29 13:03:18 ----A---- C:\Windows\SYSWOW64\d3d11.dll 2014-07-29 13:03:18 ----A---- C:\Windows\system32\d3d11.dll 2014-07-29 13:03:16 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe 2014-07-29 13:03:16 ----A---- C:\Windows\system32\ReAgentc.exe 2014-07-29 13:01:21 ----A---- C:\Windows\system32\WSShared.dll 2014-07-29 13:01:21 ----A---- C:\Windows\system32\NotificationUI.exe 2014-07-29 13:01:20 ----A---- C:\Windows\SYSWOW64\WSShared.dll 2014-07-29 13:01:20 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-07-29 13:01:20 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll 2014-07-29 13:01:20 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-07-29 12:59:16 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll 2014-07-29 12:59:16 ----A---- C:\Windows\system32\cryptdlg.dll 2014-07-28 22:52:57 ----D---- C:\Users\Stefan\AppData\Roaming\Macromedia 2014-07-28 22:31:46 ----A---- C:\Windows\system32\gdi32.dll 2014-07-28 22:31:45 ----A---- C:\Windows\SYSWOW64\gdi32.dll 2014-07-28 22:26:59 ----A---- C:\Windows\SYSWOW64\synceng.dll 2014-07-28 22:26:59 ----A---- C:\Windows\system32\synceng.dll 2014-07-28 22:05:02 ----A---- C:\Windows\system32\wlidsvc.dll 2014-07-28 22:05:02 ----A---- C:\Windows\system32\mmc.exe 2014-07-28 22:05:01 ----A---- C:\Windows\SYSWOW64\mmc.exe 2014-07-28 22:04:59 ----A---- C:\Windows\system32\setupapi.dll 2014-07-28 22:04:57 ----A---- C:\Windows\SYSWOW64\setupapi.dll 2014-07-28 22:04:57 ----A---- C:\Windows\system32\Windows.Media.dll 2014-07-28 22:04:57 ----A---- C:\Windows\system32\drivers\msgpiowin32.sys 2014-07-28 22:04:54 ----A---- C:\Windows\system32\drivers\partmgr.sys 2014-07-28 22:04:53 ----A---- C:\Windows\system32\WSDMon.dll 2014-07-28 22:04:53 ----A---- C:\Windows\system32\MP4SDECD.DLL 2014-07-28 22:04:53 ----A---- C:\Windows\system32\iphlpsvc.dll 2014-07-28 22:04:53 ----A---- C:\Windows\system32\inetpp.dll 2014-07-28 22:04:52 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll 2014-07-28 22:04:52 ----A---- C:\Windows\SYSWOW64\wiaacmgr.exe 2014-07-28 22:04:52 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL 2014-07-28 22:04:52 ----A---- C:\Windows\system32\wiaacmgr.exe 2014-07-28 22:04:52 ----A---- C:\Windows\system32\ncbservice.dll 2014-07-28 22:04:52 ----A---- C:\Windows\system32\httpprxm.dll 2014-07-28 22:04:51 ----A---- C:\Windows\system32\keepaliveprovider.dll 2014-07-28 22:04:51 ----A---- C:\Windows\system32\httpprxp.dll 2014-07-28 22:04:51 ----A---- C:\Windows\system32\adhsvc.dll 2014-07-28 22:04:51 ----A---- C:\Windows\system32\adhapi.dll 2014-07-28 22:00:21 ----A---- C:\Windows\system32\IKEEXT.DLL 2014-07-28 22:00:20 ----A---- C:\Windows\system32\drivers\wfplwfs.sys 2014-07-28 22:00:20 ----A---- C:\Windows\system32\BFE.DLL 2014-07-28 21:59:56 ----A---- C:\Windows\system32\sppsvc.exe 2014-07-28 21:59:53 ----A---- C:\Windows\system32\WSService.dll 2014-07-28 21:59:52 ----A---- C:\Windows\system32\sppobjs.dll 2014-07-28 21:59:49 ----A---- C:\Windows\system32\WinSetupUI.dll 2014-07-28 21:59:48 ----A---- C:\Windows\SYSWOW64\sppc.dll 2014-07-28 21:59:48 ----A---- C:\Windows\system32\sppwinob.dll 2014-07-28 21:59:48 ----A---- C:\Windows\system32\sppc.dll 2014-07-28 21:59:46 ----A---- C:\Windows\SYSWOW64\WSSync.dll 2014-07-28 21:59:46 ----A---- C:\Windows\SYSWOW64\WSClient.dll 2014-07-28 21:59:46 ----A---- C:\Windows\system32\WSSync.dll 2014-07-28 21:59:46 ----A---- C:\Windows\system32\WSClient.dll 2014-07-28 21:59:46 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll 2014-07-28 21:59:46 ----A---- C:\Windows\system32\drivers\dam.sys 2014-07-28 21:59:45 ----A---- C:\Windows\SYSWOW64\OEMLicense.dll 2014-07-28 21:59:45 ----A---- C:\Windows\system32\setupcln.dll 2014-07-28 21:59:44 ----A---- C:\Windows\SYSWOW64\setupcln.dll 2014-07-28 21:59:13 ----A---- C:\Windows\system32\rdpudd.dll 2014-07-28 21:59:13 ----A---- C:\Windows\system32\rdpcorets.dll 2014-07-28 18:41:58 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll 2014-07-28 18:41:58 ----A---- C:\Windows\system32\ncryptsslp.dll 2014-07-28 18:41:54 ----A---- C:\Windows\SYSWOW64\imagehlp.dll 2014-07-28 18:41:54 ----A---- C:\Windows\system32\imagehlp.dll 2014-07-28 18:40:00 ----A---- C:\Windows\SYSWOW64\comctl32.dll 2014-07-28 18:40:00 ----A---- C:\Windows\system32\comctl32.dll 2014-07-28 18:33:43 ----A---- C:\Windows\system32\win32k.sys 2014-07-28 18:33:40 ----A---- C:\Windows\SYSWOW64\osk.exe 2014-07-28 18:33:40 ----A---- C:\Windows\system32\osk.exe 2014-07-28 18:31:56 ----A---- C:\Windows\system32\shell32.dll 2014-07-28 18:31:53 ----A---- C:\Windows\SYSWOW64\shell32.dll 2014-07-28 18:31:30 ----A---- C:\Windows\SYSWOW64\SHCore.dll 2014-07-28 18:31:30 ----A---- C:\Windows\system32\SHCore.dll 2014-07-28 18:31:30 ----A---- C:\Windows\system32\lsasrv.dll 2014-07-28 18:31:29 ----A---- C:\Windows\system32\lsm.dll 2014-07-28 18:24:26 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2014-07-28 18:24:26 ----A---- C:\Windows\system32\vbscript.dll 2014-07-28 18:06:38 ----A---- C:\Windows\system32\msvcr100_clr0400.dll 2014-07-28 18:03:56 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll 2014-07-28 17:48:51 ----A---- C:\Windows\system32\wmpmde.dll 2014-07-28 17:48:48 ----A---- C:\Windows\system32\winmde.dll 2014-07-28 17:48:43 ----A---- C:\Windows\system32\Windows.Globalization.dll 2014-07-28 17:48:42 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll 2014-07-28 17:48:41 ----A---- C:\Windows\SYSWOW64\netcfgx.dll 2014-07-28 17:48:40 ----A---- C:\Windows\system32\TimeBrokerServer.dll 2014-07-28 17:48:40 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll 2014-07-28 17:48:34 ----A---- C:\Windows\system32\wpdbusenum.dll 2014-07-28 17:48:33 ----A---- C:\Windows\SYSWOW64\winmde.dll 2014-07-28 17:48:32 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll 2014-07-28 17:48:31 ----A---- C:\Windows\system32\netcfgx.dll 2014-07-28 17:48:30 ----A---- C:\Windows\system32\usbmon.dll 2014-07-28 17:48:29 ----A---- C:\Windows\system32\drvstore.dll 2014-07-28 17:48:28 ----A---- C:\Windows\SYSWOW64\drvstore.dll 2014-07-28 17:48:27 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll 2014-07-28 17:48:27 ----A---- C:\Windows\system32\drivers\vhdmp.sys 2014-07-28 17:48:25 ----A---- C:\Windows\system32\discan.dll 2014-07-28 17:48:23 ----A---- C:\Windows\system32\NdisImPlatform.dll 2014-07-28 17:48:23 ----A---- C:\Windows\system32\drivers\storahci.sys 2014-07-28 17:48:23 ----A---- C:\Windows\system32\DevDispItemProvider.dll 2014-07-28 17:48:22 ----A---- C:\Windows\SYSWOW64\DevDispItemProvider.dll 2014-07-28 17:48:22 ----A---- C:\Windows\system32\WSDPrintProxy.DLL 2014-07-28 17:48:21 ----A---- C:\Windows\system32\drivers\mouhid.sys 2014-07-28 17:48:20 ----A---- C:\Windows\system32\drivers\monitor.sys 2014-07-28 17:47:08 ----A---- C:\Windows\system32\drivers\Wdf01000.sys 2014-07-28 17:47:07 ----A---- C:\Windows\system32\drivers\WdfLdr.sys 2014-07-28 17:47:04 ----A---- C:\Windows\system32\drivers\usbprint.sys 2014-07-28 17:33:22 ----A---- C:\Windows\system32\AppXDeploymentServer.dll 2014-07-28 17:33:17 ----A---- C:\Windows\system32\sysmain.dll 2014-07-28 17:33:14 ----A---- C:\Windows\system32\drivers\rdbss.sys 2014-07-28 17:33:10 ----A---- C:\Windows\system32\VSSVC.exe 2014-07-28 17:33:08 ----A---- C:\Windows\system32\BCP47Langs.dll 2014-07-28 17:33:06 ----A---- C:\Windows\system32\netprofmsvc.dll 2014-07-28 17:33:03 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll 2014-07-28 17:33:03 ----A---- C:\Windows\system32\netprofm.dll 2014-07-28 17:32:51 ----A---- C:\Windows\system32\mfmp4srcsnk.dll 2014-07-28 17:32:50 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll 2014-07-28 17:32:50 ----A---- C:\Windows\system32\stobject.dll 2014-07-28 17:32:50 ----A---- C:\Windows\system32\netplwiz.dll 2014-07-28 17:32:50 ----A---- C:\Windows\system32\Magnify.exe 2014-07-28 17:32:50 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll 2014-07-28 17:32:49 ----A---- C:\Windows\system32\taskhost.exe 2014-07-28 17:32:49 ----A---- C:\Windows\system32\psmsrv.dll 2014-07-28 17:32:48 ----A---- C:\Windows\SYSWOW64\stobject.dll 2014-07-28 17:32:48 ----A---- C:\Windows\SYSWOW64\netplwiz.dll 2014-07-28 17:32:48 ----A---- C:\Windows\system32\DevicePairing.dll 2014-07-28 17:32:46 ----A---- C:\Windows\SYSWOW64\Magnify.exe 2014-07-28 17:32:46 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll 2014-07-28 17:32:46 ----A---- C:\Windows\system32\taskhostex.exe 2014-07-28 17:32:46 ----A---- C:\Windows\system32\AuthHost.exe 2014-07-28 17:32:45 ----A---- C:\Windows\SYSWOW64\netprofm.dll 2014-07-28 17:32:45 ----A---- C:\Windows\system32\biwinrt.dll 2014-07-28 17:32:44 ----A---- C:\Windows\SYSWOW64\biwinrt.dll 2014-07-28 17:32:39 ----A---- C:\Windows\system32\bisrv.dll 2014-07-28 17:32:37 ----A---- C:\Windows\system32\muifontsetup.dll 2014-07-28 17:32:36 ----A---- C:\Windows\SYSWOW64\npmproxy.dll 2014-07-28 17:32:36 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll 2014-07-28 17:32:35 ----A---- C:\Windows\SYSWOW64\nlmproxy.dll 2014-07-28 17:32:34 ----A---- C:\Windows\SYSWOW64\nlmsprep.dll 2014-07-28 17:17:46 ----A---- C:\Windows\system32\crypt32.dll 2014-07-28 17:17:45 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2014-07-28 16:54:58 ----A---- C:\Windows\system32\drivers\usbvideo.sys 2014-07-28 16:54:58 ----A---- C:\Windows\system32\drivers\usbcir.sys 2014-07-28 16:54:24 ----A---- C:\Windows\SYSWOW64\untfs.dll 2014-07-28 16:54:24 ----A---- C:\Windows\SYSWOW64\autochk.exe 2014-07-28 16:54:24 ----A---- C:\Windows\system32\untfs.dll 2014-07-28 16:54:24 ----A---- C:\Windows\system32\autochk.exe 2014-07-28 16:52:11 ----A---- C:\Windows\system32\rpcrt4.dll 2014-07-28 16:52:10 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll 2014-07-28 16:51:33 ----A---- C:\Windows\system32\InkEd.dll 2014-07-28 16:50:20 ----A---- C:\Windows\system32\certutil.exe 2014-07-28 16:50:19 ----A---- C:\Windows\SYSWOW64\cryptnet.dll 2014-07-28 16:50:19 ----A---- C:\Windows\SYSWOW64\certutil.exe 2014-07-28 16:50:19 ----A---- C:\Windows\system32\cryptnet.dll 2014-07-28 16:44:52 ----A---- C:\Windows\system32\mcupdate_AuthenticAMD.dll 2014-07-28 16:44:29 ----A---- C:\Windows\SYSWOW64\duser.dll 2014-07-28 16:44:29 ----A---- C:\Windows\system32\wlroamextension.dll 2014-07-28 16:44:29 ----A---- C:\Windows\system32\duser.dll 2014-07-28 16:44:28 ----A---- C:\Windows\system32\WWanAPI.dll 2014-07-28 16:44:28 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll 2014-07-28 16:44:28 ----A---- C:\Windows\system32\ncsi.dll 2014-07-28 16:44:27 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll 2014-07-28 16:44:27 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll 2014-07-28 16:44:27 ----A---- C:\Windows\system32\taskkill.exe 2014-07-28 16:44:27 ----A---- C:\Windows\system32\hotspotauth.dll 2014-07-28 16:44:27 ----A---- C:\Windows\system32\drivers\ks.sys 2014-07-28 16:44:26 ----A---- C:\Windows\SYSWOW64\wlroamextension.dll 2014-07-28 16:44:26 ----A---- C:\Windows\SYSWOW64\tasklist.exe 2014-07-28 16:44:26 ----A---- C:\Windows\SYSWOW64\taskkill.exe 2014-07-28 16:44:26 ----A---- C:\Windows\system32\wpd_ci.dll 2014-07-28 16:44:26 ----A---- C:\Windows\system32\wersvc.dll 2014-07-28 16:44:26 ----A---- C:\Windows\system32\tasklist.exe 2014-07-28 16:44:25 ----A---- C:\Windows\SYSWOW64\nlaapi.dll 2014-07-28 16:44:25 ----A---- C:\Windows\system32\drivers\BthhfHid.sys 2014-07-28 16:44:25 ----A---- C:\Windows\system32\drivers\BtaMPM.sys 2014-07-28 16:44:22 ----A---- C:\Windows\SYSWOW64\lpk.dll 2014-07-28 16:44:22 ----A---- C:\Windows\SYSWOW64\fontsub.dll 2014-07-28 16:44:22 ----A---- C:\Windows\SYSWOW64\dciman32.dll 2014-07-28 16:44:22 ----A---- C:\Windows\SYSWOW64\atmlib.dll 2014-07-28 16:44:22 ----A---- C:\Windows\SYSWOW64\atmfd.dll 2014-07-28 16:44:22 ----A---- C:\Windows\system32\lpk.dll 2014-07-28 16:44:22 ----A---- C:\Windows\system32\fontsub.dll 2014-07-28 16:44:22 ----A---- C:\Windows\system32\dciman32.dll 2014-07-28 16:44:22 ----A---- C:\Windows\system32\atmlib.dll 2014-07-28 16:44:22 ----A---- C:\Windows\system32\atmfd.dll 2014-07-28 16:44:06 ----A---- C:\Windows\SYSWOW64\DWrite.dll 2014-07-28 16:44:06 ----A---- C:\Windows\system32\DWrite.dll 2014-07-28 16:44:04 ----A---- C:\Windows\system32\GdiPlus.dll 2014-07-28 16:44:03 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll 2014-07-28 16:43:54 ----A---- C:\Windows\system32\ntoskrnl.exe 2014-07-28 16:43:49 ----A---- C:\Windows\system32\KernelBase.dll 2014-07-28 16:43:49 ----A---- C:\Windows\system32\kerberos.dll 2014-07-28 16:43:48 ----A---- C:\Windows\SYSWOW64\kerberos.dll 2014-07-28 16:43:48 ----A---- C:\Windows\system32\schannel.dll 2014-07-28 16:43:48 ----A---- C:\Windows\system32\drivers\cng.sys 2014-07-28 16:43:47 ----A---- C:\Windows\SYSWOW64\schannel.dll 2014-07-28 16:43:47 ----A---- C:\Windows\SYSWOW64\msv1_0.dll 2014-07-28 16:43:47 ----A---- C:\Windows\system32\winlogon.exe 2014-07-28 16:43:47 ----A---- C:\Windows\system32\sspicli.dll 2014-07-28 16:43:47 ----A---- C:\Windows\system32\objsel.dll 2014-07-28 16:43:47 ----A---- C:\Windows\system32\msv1_0.dll 2014-07-28 16:43:46 ----A---- C:\Windows\SYSWOW64\usercpl.dll 2014-07-28 16:43:46 ----A---- C:\Windows\SYSWOW64\objsel.dll 2014-07-28 16:43:46 ----A---- C:\Windows\SYSWOW64\KernelBase.dll 2014-07-28 16:43:46 ----A---- C:\Windows\system32\usercpl.dll 2014-07-28 16:43:46 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2014-07-28 16:43:46 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2014-07-28 16:43:46 ----A---- C:\Windows\system32\dpapisrv.dll 2014-07-28 16:43:45 ----A---- C:\Windows\SYSWOW64\wdigest.dll 2014-07-28 16:43:45 ----A---- C:\Windows\SYSWOW64\TSpkg.dll 2014-07-28 16:43:45 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2014-07-28 16:43:45 ----A---- C:\Windows\SYSWOW64\dimsroam.dll 2014-07-28 16:43:45 ----A---- C:\Windows\system32\wdigest.dll 2014-07-28 16:43:45 ----A---- C:\Windows\system32\TSpkg.dll 2014-07-28 16:43:45 ----A---- C:\Windows\system32\sspisrv.dll 2014-07-28 16:43:45 ----A---- C:\Windows\system32\lsass.exe 2014-07-28 16:43:45 ----A---- C:\Windows\system32\dimsroam.dll 2014-07-28 16:43:44 ----A---- C:\Windows\SYSWOW64\credssp.dll 2014-07-28 16:43:44 ----A---- C:\Windows\system32\workerdd.dll 2014-07-28 16:43:44 ----A---- C:\Windows\system32\credssp.dll 2014-07-28 16:43:24 ----A---- C:\Windows\system32\drivers\usbuhci.sys 2014-07-28 16:43:24 ----A---- C:\Windows\system32\drivers\usbport.sys 2014-07-28 16:43:24 ----A---- C:\Windows\system32\drivers\usbohci.sys 2014-07-28 16:43:24 ----A---- C:\Windows\system32\drivers\usbhub.sys 2014-07-28 16:43:24 ----A---- C:\Windows\system32\drivers\usbehci.sys 2014-07-28 16:43:24 ----A---- C:\Windows\system32\drivers\usbd.sys 2014-07-28 16:43:24 ----A---- C:\Windows\system32\drivers\usbccgp.sys 2014-07-28 16:43:05 ----A---- C:\Windows\system32\drivers\usb8023.sys 2014-07-28 16:39:33 ----A---- C:\Windows\system32\consent.exe 2014-07-28 16:39:33 ----A---- C:\Windows\system32\appinfo.dll 2014-07-28 16:27:24 ----A---- C:\Windows\system32\win32spl.dll 2014-07-28 16:25:59 ----A---- C:\Windows\system32\WMVDECOD.DLL 2014-07-28 16:25:58 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL 2014-07-28 16:25:56 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll 2014-07-28 16:25:56 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2014-07-28 16:25:54 ----A---- C:\Windows\SYSWOW64\UXInit.dll 2014-07-28 16:25:54 ----A---- C:\Windows\SYSWOW64\msrating.dll 2014-07-28 16:25:54 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2014-07-28 16:25:54 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2014-07-28 16:25:54 ----A---- C:\Windows\system32\iernonce.dll 2014-07-28 16:25:54 ----A---- C:\Windows\system32\ie4uinit.exe 2014-07-28 16:25:53 ----A---- C:\Windows\SYSWOW64\uxtheme.dll 2014-07-28 16:25:53 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2014-07-28 16:25:53 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2014-07-28 16:25:53 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2014-07-28 16:25:53 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2014-07-28 16:25:53 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2014-07-28 16:25:53 ----A---- C:\Windows\system32\UXInit.dll 2014-07-28 16:25:53 ----A---- C:\Windows\system32\msrating.dll 2014-07-28 16:25:52 ----A---- C:\Windows\SYSWOW64\wininet.dll 2014-07-28 16:25:52 ----A---- C:\Windows\system32\urlmon.dll 2014-07-28 16:25:52 ----A---- C:\Windows\system32\iesysprep.dll 2014-07-28 16:25:52 ----A---- C:\Windows\system32\iedkcs32.dll 2014-07-28 16:25:51 ----A---- C:\Windows\system32\uxtheme.dll 2014-07-28 16:25:51 ----A---- C:\Windows\system32\iesetup.dll 2014-07-28 16:25:50 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2014-07-28 16:25:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2014-07-28 16:25:47 ----A---- C:\Windows\system32\wininet.dll 2014-07-28 16:25:46 ----A---- C:\Windows\system32\msfeeds.dll 2014-07-28 16:25:46 ----A---- C:\Windows\system32\jscript.dll 2014-07-28 16:25:45 ----A---- C:\Windows\system32\ieframe.dll 2014-07-28 16:25:40 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2014-07-28 16:25:40 ----A---- C:\Windows\system32\jsproxy.dll 2014-07-28 16:25:40 ----A---- C:\Windows\system32\dxtrans.dll 2014-07-28 16:25:36 ----A---- C:\Windows\system32\mshtmled.dll 2014-07-28 16:25:33 ----A---- C:\Windows\system32\dxtmsft.dll 2014-07-28 16:25:32 ----A---- C:\Windows\system32\mshtml.dll 2014-07-28 16:24:31 ----A---- C:\Windows\system32\jscript9.dll 2014-07-28 16:24:30 ----A---- C:\Windows\SYSWOW64\jscript.dll 2014-07-28 16:24:30 ----A---- C:\Windows\system32\iertutil.dll 2014-07-28 16:24:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2014-07-28 16:24:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2014-07-28 16:24:27 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2014-07-28 16:24:26 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2014-07-28 16:22:26 ----A---- C:\Windows\SYSWOW64\scrrun.dll 2014-07-28 16:22:26 ----A---- C:\Windows\SYSWOW64\scrobj.dll 2014-07-28 16:22:26 ----A---- C:\Windows\SYSWOW64\cscript.exe 2014-07-28 16:22:26 ----A---- C:\Windows\system32\scrrun.dll 2014-07-28 16:22:26 ----A---- C:\Windows\system32\scrobj.dll 2014-07-28 16:22:26 ----A---- C:\Windows\system32\cscript.exe 2014-07-28 16:15:03 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS 2014-07-28 16:15:03 ----A---- C:\Windows\system32\drivers\UCX01000.SYS 2014-07-28 16:13:53 ----A---- C:\Windows\system32\tquery.dll 2014-07-28 16:13:52 ----A---- C:\Windows\system32\wmp.dll 2014-07-28 16:13:47 ----A---- C:\Windows\SYSWOW64\wmp.dll 2014-07-28 16:13:45 ----A---- C:\Windows\system32\mssrch.dll 2014-07-28 16:13:42 ----A---- C:\Windows\SYSWOW64\tquery.dll 2014-07-28 16:13:38 ----A---- C:\Windows\SYSWOW64\mssrch.dll 2014-07-28 16:13:36 ----A---- C:\Windows\system32\ntdll.dll 2014-07-28 16:13:31 ----A---- C:\Windows\system32\MSAudDecMFT.dll 2014-07-28 16:13:29 ----A---- C:\Windows\SYSWOW64\MSAudDecMFT.dll 2014-07-28 16:13:28 ----A---- C:\Windows\system32\kd_02_10ec.dll 2014-07-28 16:13:25 ----A---- C:\Windows\SYSWOW64\mssph.dll 2014-07-28 16:13:25 ----A---- C:\Windows\SYSWOW64\actxprxy.dll 2014-07-28 16:13:25 ----A---- C:\Windows\system32\SearchIndexer.exe 2014-07-28 16:13:25 ----A---- C:\Windows\system32\rsaenh.dll 2014-07-28 16:13:25 ----A---- C:\Windows\system32\drivers\PEAuth.sys 2014-07-28 16:13:24 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe 2014-07-28 16:13:24 ----A---- C:\Windows\system32\SearchProtocolHost.exe 2014-07-28 16:13:24 ----A---- C:\Windows\system32\AudioSes.dll 2014-07-28 16:13:23 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2014-07-28 16:13:22 ----A---- C:\Windows\SYSWOW64\rsaenh.dll 2014-07-28 16:13:22 ----A---- C:\Windows\SYSWOW64\AudioSes.dll 2014-07-28 16:13:22 ----A---- C:\Windows\SYSWOW64\AudioEng.dll 2014-07-28 16:13:22 ----A---- C:\Windows\system32\Windows.Networking.dll 2014-07-28 16:13:22 ----A---- C:\Windows\system32\mssph.dll 2014-07-28 16:13:22 ----A---- C:\Windows\system32\dwmredir.dll 2014-07-28 16:13:22 ----A---- C:\Windows\system32\conhost.exe 2014-07-28 16:13:22 ----A---- C:\Windows\system32\AudioEng.dll 2014-07-28 16:13:22 ----A---- C:\Windows\system32\audiodg.exe 2014-07-28 16:13:21 ----A---- C:\Windows\system32\RecoveryDrive.exe 2014-07-28 16:13:20 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe 2014-07-28 16:13:20 ----A---- C:\Windows\system32\wpncore.dll 2014-07-28 16:13:20 ----A---- C:\Windows\system32\MFMediaEngine.dll 2014-07-28 16:13:17 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll 2014-07-28 16:13:17 ----A---- C:\Windows\system32\XpsRasterService.dll 2014-07-28 16:13:17 ----A---- C:\Windows\system32\fhengine.dll 2014-07-28 16:13:17 ----A---- C:\Windows\system32\dmvdsitf.dll 2014-07-28 16:13:17 ----A---- C:\Windows\system32\ci.dll 2014-07-28 16:13:17 ----A---- C:\Windows\system32\actxprxy.dll 2014-07-28 16:13:16 ----A---- C:\Windows\SYSWOW64\mssvp.dll 2014-07-28 16:13:16 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll 2014-07-28 16:13:15 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll 2014-07-28 16:13:15 ----A---- C:\Windows\SYSWOW64\wscapi.dll 2014-07-28 16:13:15 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe 2014-07-28 16:13:15 ----A---- C:\Windows\SYSWOW64\Robocopy.exe 2014-07-28 16:13:15 ----A---- C:\Windows\system32\SearchFilterHost.exe 2014-07-28 16:13:15 ----A---- C:\Windows\system32\Robocopy.exe 2014-07-28 16:13:15 ----A---- C:\Windows\system32\mfreadwrite.dll 2014-07-28 16:13:15 ----A---- C:\Windows\system32\kdvm.dll 2014-07-28 16:13:15 ----A---- C:\Windows\system32\drivers\pdc.sys 2014-07-28 16:13:15 ----A---- C:\Windows\system32\AUDIOKSE.dll 2014-07-28 16:13:15 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll 2014-07-28 16:13:14 ----A---- C:\Windows\SYSWOW64\dmvdsitf.dll 2014-07-28 16:13:14 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll 2014-07-28 16:13:14 ----A---- C:\Windows\system32\kdnet.dll 2014-07-28 16:13:14 ----A---- C:\Windows\system32\iuilp.dll 2014-07-28 16:13:14 ----A---- C:\Windows\system32\drivers\hidbth.sys 2014-07-28 16:13:13 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll 2014-07-28 16:13:13 ----A---- C:\Windows\system32\wscsvc.dll 2014-07-28 16:13:13 ----A---- C:\Windows\system32\mssvp.dll 2014-07-28 16:13:13 ----A---- C:\Windows\system32\GenuineCenter.dll 2014-07-28 16:13:13 ----A---- C:\Windows\system32\drivers\wanarp.sys 2014-07-28 16:13:13 ----A---- C:\Windows\system32\drivers\ndproxy.sys 2014-07-28 16:13:13 ----A---- C:\Windows\system32\drivers\hidi2c.sys 2014-07-28 16:13:13 ----A---- C:\Windows\system32\drivers\dxgmms1.sys 2014-07-28 16:13:12 ----A---- C:\Windows\SYSWOW64\mssphtb.dll 2014-07-28 16:13:12 ----A---- C:\Windows\SYSWOW64\fmifs.dll 2014-07-28 16:13:12 ----A---- C:\Windows\system32\fmifs.dll 2014-07-28 16:13:11 ----A---- C:\Windows\SYSWOW64\mssprxy.dll 2014-07-28 16:13:11 ----A---- C:\Windows\SYSWOW64\mssitlb.dll 2014-07-28 16:13:11 ----A---- C:\Windows\SYSWOW64\msshooks.dll 2014-07-28 16:13:11 ----A---- C:\Windows\SYSWOW64\msscntrs.dll 2014-07-28 16:13:11 ----A---- C:\Windows\system32\mssprxy.dll 2014-07-28 16:13:11 ----A---- C:\Windows\system32\mssphtb.dll 2014-07-28 16:13:11 ----A---- C:\Windows\system32\mssitlb.dll 2014-07-28 16:13:11 ----A---- C:\Windows\system32\msshooks.dll 2014-07-28 16:13:11 ----A---- C:\Windows\system32\msscntrs.dll 2014-07-28 16:13:10 ----A---- C:\Windows\SYSWOW64\tzres.dll 2014-07-28 16:13:10 ----A---- C:\Windows\system32\tzres.dll 2014-07-28 16:13:10 ----A---- C:\Windows\system32\EncDump.dll 2014-07-28 16:12:36 ----A---- C:\Windows\system32\d2d1.dll 2014-07-28 16:12:35 ----A---- C:\Windows\system32\d3d10warp.dll 2014-07-28 16:12:34 ----A---- C:\Windows\SYSWOW64\d2d1.dll 2014-07-28 16:12:33 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll 2014-07-28 16:12:30 ----A---- C:\Windows\system32\dpnet.dll 2014-07-28 16:12:29 ----A---- C:\Windows\SYSWOW64\dpnsvr.exe 2014-07-28 16:12:29 ----A---- C:\Windows\SYSWOW64\dpnlobby.dll 2014-07-28 16:12:29 ----A---- C:\Windows\SYSWOW64\dpnhupnp.dll 2014-07-28 16:12:29 ----A---- C:\Windows\SYSWOW64\dpnhpast.dll 2014-07-28 16:12:29 ----A---- C:\Windows\SYSWOW64\dpnet.dll 2014-07-28 16:12:29 ----A---- C:\Windows\SYSWOW64\dpnathlp.dll 2014-07-28 16:12:29 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll 2014-07-28 16:12:29 ----A---- C:\Windows\system32\dpnsvr.exe 2014-07-28 16:12:29 ----A---- C:\Windows\system32\dpnlobby.dll 2014-07-28 16:12:29 ----A---- C:\Windows\system32\dpnhupnp.dll 2014-07-28 16:12:29 ----A---- C:\Windows\system32\dpnhpast.dll 2014-07-28 16:12:29 ----A---- C:\Windows\system32\dpnathlp.dll 2014-07-28 16:12:29 ----A---- C:\Windows\system32\dpnaddr.dll 2014-07-28 16:12:20 ----A---- C:\Windows\SYSWOW64\wintrust.dll 2014-07-28 16:12:20 ----A---- C:\Windows\SYSWOW64\apprepapi.dll 2014-07-28 16:12:20 ----A---- C:\Windows\system32\wintrust.dll 2014-07-28 16:12:20 ----A---- C:\Windows\system32\cryptsvc.dll 2014-07-28 16:12:20 ----A---- C:\Windows\system32\apprepsync.dll 2014-07-28 16:12:20 ----A---- C:\Windows\system32\apprepapi.dll 2014-07-28 16:12:19 ----A---- C:\Windows\SYSWOW64\apprepsync.dll 2014-07-28 16:12:00 ----A---- C:\Windows\system32\drivers\afd.sys 2014-07-28 16:09:58 ----A---- C:\Windows\system32\qedit.dll 2014-07-28 16:09:40 ----A---- C:\Windows\SYSWOW64\qedit.dll 2014-07-28 16:05:07 ----A---- C:\Windows\system32\drivers\http.sys 2014-07-28 16:05:02 ----A---- C:\Windows\SYSWOW64\msxml3.dll 2014-07-28 16:05:02 ----A---- C:\Windows\system32\msxml3.dll 2014-07-28 16:05:01 ----A---- C:\Windows\SYSWOW64\msxml3r.dll 2014-07-28 16:05:01 ----A---- C:\Windows\system32\msxml3r.dll 2014-07-28 16:04:06 ----A---- C:\Windows\system32\tssdisai.dll 2014-07-28 16:04:04 ----A---- C:\Windows\system32\VmHostAI.dll 2014-07-28 16:04:04 ----A---- C:\Windows\system32\RDWebAI.dll 2014-07-28 16:04:04 ----A---- C:\Windows\system32\appserverai.dll 2014-07-28 16:03:58 ----A---- C:\Windows\SYSWOW64\poqexec.exe 2014-07-28 16:03:58 ----A---- C:\Windows\system32\poqexec.exe 2014-07-28 16:03:50 ----A---- C:\Windows\system32\msxml6.dll 2014-07-28 16:03:49 ----A---- C:\Windows\SYSWOW64\msxml6.dll 2014-07-28 16:03:48 ----A---- C:\Windows\SYSWOW64\msxml6r.dll 2014-07-28 16:03:48 ----A---- C:\Windows\system32\msxml6r.dll 2014-07-28 16:03:38 ----A---- C:\Windows\system32\drivers\tcpip.sys 2014-07-28 16:03:36 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2014-07-28 16:03:34 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll 2014-07-28 16:03:34 ----A---- C:\Windows\system32\drivers\portcls.sys 2014-07-28 16:03:33 ----A---- C:\Windows\system32\SysFxUI.dll 2014-07-28 16:03:33 ----A---- C:\Windows\system32\drivers\drmk.sys 2014-07-28 16:03:27 ----A---- C:\Windows\system32\drivers\drmkaud.sys 2014-07-28 15:29:31 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt ======List of files/folders modified in the last 1 month====== 2014-08-25 20:08:45 ----D---- C:\Windows\system32\sru 2014-08-25 19:11:37 ----RD---- C:\Program Files 2014-08-25 19:11:37 ----D---- C:\Windows\Prefetch 2014-08-25 18:35:58 ----SHD---- C:\System Volume Information 2014-08-25 18:35:55 ----D---- C:\Windows\Temp 2014-08-25 18:32:17 ----D---- C:\Windows\system32\config 2014-08-25 12:46:29 ----RSD---- C:\Windows\assembly 2014-08-25 12:46:29 ----D---- C:\Windows\Microsoft.NET 2014-08-25 12:37:19 ----D---- C:\Windows\CbsTemp 2014-08-25 12:34:49 ----D---- C:\Windows\WinSxS 2014-08-25 12:22:03 ----RD---- C:\Windows\System32 2014-08-25 12:22:03 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-08-25 12:22:02 ----D---- C:\Windows\Inf 2014-08-25 12:18:50 ----D---- C:\Windows\system32\Drivers 2014-08-25 12:18:48 ----D---- C:\Windows 2014-08-25 12:18:41 ----D---- C:\Windows\system32\DriverStore 2014-08-25 12:05:09 ----D---- C:\Windows\system32\catroot2 2014-08-25 09:45:16 ----D---- C:\Windows\Tasks 2014-08-25 09:36:39 ----D---- C:\Windows\SoftwareDistribution 2014-08-25 08:34:01 ----HD---- C:\ProgramData 2014-08-25 08:33:59 ----RD---- C:\Program Files (x86) 2014-08-14 21:41:01 ----D---- C:\Windows\system32\Tasks 2014-08-14 21:40:32 ----D---- C:\ProgramData\PRICache 2014-08-14 21:40:09 ----D---- C:\Windows\SysWOW64 2014-08-14 21:30:47 ----D---- C:\Windows\system32\Boot 2014-08-14 21:29:53 ----D---- C:\Windows\SYSWOW64\migration 2014-08-14 21:29:52 ----D---- C:\Windows\system32\wbem 2014-08-14 21:29:52 ----D---- C:\Windows\system32\migration 2014-08-14 21:29:48 ----D---- C:\Windows\WinStore 2014-08-14 21:29:36 ----D---- C:\Windows\SYSWOW64\fr-FR 2014-08-14 21:29:36 ----D---- C:\Windows\SYSWOW64\de-DE 2014-08-14 21:29:35 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-08-14 21:29:35 ----D---- C:\Windows\SYSWOW64\en-GB 2014-08-14 21:29:32 ----D---- C:\Windows\PolicyDefinitions 2014-08-14 21:29:31 ----D---- C:\Windows\system32\fr-FR 2014-08-14 21:29:31 ----D---- C:\Windows\system32\de-DE 2014-08-14 21:29:30 ----D---- C:\Windows\system32\nl-NL 2014-08-14 21:29:29 ----D---- C:\Windows\system32\en-US 2014-08-14 21:29:29 ----D---- C:\Windows\system32\en-GB 2014-08-14 21:29:19 ----D---- C:\Windows\SYSWOW64\en-US 2014-08-14 21:28:54 ----RD---- C:\Windows\ToastData 2014-08-14 21:28:33 ----D---- C:\Program Files\Windows Defender 2014-08-14 21:28:29 ----D---- C:\Program Files (x86)\Windows Defender 2014-08-14 21:27:34 ----RSD---- C:\Windows\Fonts 2014-08-14 21:22:57 ----D---- C:\Windows\system32\oobe 2014-08-14 21:22:28 ----D---- C:\Windows\system32\SecureBootUpdates 2014-08-14 21:22:25 ----D---- C:\Windows\apppatch 2014-08-14 21:22:23 ----D---- C:\Program Files\Windows Journal 2014-08-14 21:20:37 ----D---- C:\Windows\SYSWOW64\wbem 2014-08-14 21:20:32 ----D---- C:\Program Files\Windows Photo Viewer 2014-08-14 21:20:32 ----D---- C:\Program Files (x86)\Windows Photo Viewer 2014-08-14 21:20:31 ----D---- C:\Windows\SYSWOW64\Dism 2014-08-14 21:20:31 ----D---- C:\Windows\system32\Dism 2014-08-14 21:20:28 ----D---- C:\Program Files (x86)\Internet Explorer 2014-08-14 21:20:27 ----D---- C:\Program Files\Internet Explorer 2014-08-14 21:19:31 ----D---- C:\Windows\system32\drivers\UMDF 2014-08-11 15:43:45 ----HD---- C:\Program Files (x86)\InstallShield Installation Information 2014-08-11 15:43:36 ----SHD---- C:\Windows\Installer 2014-08-11 15:38:41 ----D---- C:\Program Files (x86)\Hewlett-Packard 2014-08-11 15:32:19 ----D---- C:\ProgramData\Hewlett-Packard 2014-08-11 15:31:52 ----D---- C:\Users\Stefan\AppData\Roaming\hpqlog 2014-08-11 15:30:02 ----D---- C:\SWSetup 2014-08-05 11:52:51 ----HD---- C:\Windows\ELAMBKUP 2014-07-30 16:53:35 ----SD---- C:\Users\Stefan\AppData\Roaming\Microsoft 2014-07-29 22:51:16 ----D---- C:\Windows\debug 2014-07-29 20:59:30 ----D---- C:\Windows\AUInstallAgent 2014-07-29 20:59:01 ----HD---- C:\Program Files\WindowsApps 2014-07-29 20:26:28 ----D---- C:\Windows\system32\drivers\NISx64 2014-07-29 12:26:45 ----D---- C:\Windows\servicing 2014-07-29 11:49:02 ----D---- C:\Windows\system32\wdi 2014-07-28 18:00:21 ----D---- C:\Windows\Logs 2014-07-28 17:12:18 ----SD---- C:\ProgramData\Microsoft 2014-07-28 15:49:16 ----D---- C:\Program Files (x86)\Common Files 2014-07-28 15:46:07 ----D---- C:\Windows\system32\restore 2014-07-28 15:25:34 ----D---- C:\Windows\Panther ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 amd_sata;amd_sata; C:\Windows\System32\drivers\amd_sata.sys [2012-09-03 79528] R0 amd_xata;amd_xata; C:\Windows\System32\drivers\amd_xata.sys [2012-09-03 26280] R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536] R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-09-13 10315264] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-09-13 370688] R3 AtiHDAudioService;@oem5.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW86.sys [2012-08-22 91648] R3 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20140821.007\BHDrvx64.sys [2014-08-19 1588016] R3 ccSet_NIS;Norton Internet Security Settings Manager; C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys [2013-04-16 169048] R3 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2014-07-25 486192] R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-07-25 142128] R3 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20140822.001\IDSvia64.sys [2014-07-24 525016] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-08-28 4120464] R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140824.018\ENG64.SYS [2014-08-25 129752] R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20140824.018\EX64.SYS [2014-08-25 2137304] R3 RSP2STOR;@oem2.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2012-09-20 277648] R3 RTL8168;@oem10.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-07-31 690832] R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1405000.01C\SRTSP64.SYS [2013-05-16 796760] R3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1405000.01C\SRTSPX64.SYS [2013-03-05 36952] R3 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMDS64.SYS [2013-05-21 493656] R3 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMEFA64.SYS [2013-05-23 1139800] R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2014-07-28 177312] R3 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1405000.01C\Ironx64.SYS [2013-03-05 224416] R3 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1405000.01C\SYMNETS.SYS [2013-04-25 433752] R3 SynTP;@oem8.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2012-08-25 448312] R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-06-19 57000] R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-06 210560] R3 WirelessButtonDriver;@oem11.inf,%ServiceDesc%;HP Wireless Button Driver Service; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [2012-08-31 20800] S0 SymELAM;Symantec ELAM Driver; C:\Windows\system32\drivers\NISx64\1405000.01C\SymELAM.sys [2012-06-20 23448] S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-06-02 10627744] S3 netr28x;@oem13.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-12-04 2505904] S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2012-08-25 41272] S3 SmbDrvI;SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [2012-08-25 43832] S3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-09-13 239616] R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-09-12 361984] R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2012-10-23 29696] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184] R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160] R2 HPConnectedRemote;HP Connected Remote Service; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [2012-10-12 35744] R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-09-07 35232] R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-09-13 2466448] R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe [2013-05-21 144368] R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-27 43616] R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760] S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\de\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-12 51648] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-07-17 119408] S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2012-10-23 29696] -----------------EOF----------------- - - - Updated - - - Wat ik nu ook merk is dat er geen icoon van start staat in de werkbalk onderaan
- 25 augustus 2014
- 5 antwoorden
trage laptop

ricardo425 plaatste een topic in Archief Bestrijding malware & virussen

Hallo beste vrienden, Ik heb hier een laptop van een vriendin die zeer traag is. Graag had ik deze volledig opgekuist en als bijna nieuw te gebruiken. Weet niet goed hoe er verder mee te gaan. Alle gegevens die moesten bewaard blijven zijn op stick of cd gezet. Om verder te kunnen gaan had ik graag jullie hulp ingeroepen Met dank bij voorbaat, Groeten
- 25 augustus 2014
- 5 antwoorden
opstart pc

ricardo425 reageerde op ricardo425's topic in Archief Windows 7

Gelukt, heb ook een logje gekregen. De problemen zijn van de baan. Bedankt voor de hulp. Zal deze als opgelost beschouwen. Groeten
- 4 juni 2014
- 16 antwoorden
opstart pc

ricardo425 reageerde op ricardo425's topic in Archief Windows 7

Als ik op deze klik om te downloaden krijg ik dit als mededeling: [h=1]502 Bad Gateway[/h]
- 2 juni 2014
- 16 antwoorden
opstart pc

ricardo425 reageerde op ricardo425's topic in Archief Windows 7

Heb de foutmelding niet meer gekregen. Ga nu nog de Ccleaner zijn werk laten doen en dit probleem als opgelost aanklikken. Bedankt voor de hulp
- 1 juni 2014
- 16 antwoorden
opstart pc

ricardo425 reageerde op ricardo425's topic in Archief Windows 7

# AdwCleaner v1.606 - Logfile created 05/15/2014 at 10:15:58 # Updated 10/05/2012 by Xplode # Operating system : Windows 7 Home Premium Service Pack 1 (64 bits) # User : Richard - RICHARD-PC # Running from : C:\Users\Richard\Desktop\adwcleaner-1.606-en.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** ***** [Registry] ***** Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\Smartbar Key Deleted : HKCU\Software\Softonic Key Deleted : HKLM\SOFTWARE\Software Key Deleted : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 [x64] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF ***** [Registre - GUID] ***** Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} ***** [internet Browsers] ***** -\\ Internet Explorer v9.11.9600.17041 [OK] Registry is clean. -\\ Mozilla Firefox v29.0.1 (nl) Profile name : RICHARD File : C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default\prefs.js Deleted : user_pref("browser.newtab.url", "hxxp://search.conduit.com/?gd=&ctid=CT3321540&octid=EB_ORIGINAL_CTI[...] Deleted : user_pref("browser.search.selectedEngine", "Conduit Search"); Deleted : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?gd=&ctid=CT3321540&octid=EB_ORIGIN[...] Profile name : default-1344866302137 [Profil par défaut] File : C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137\prefs.js [OK] File is clean. -\\ Google Chrome v [unable to get version] File : C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[s1].txt - [1982 octets] - [15/05/2014 10:15:58] ########## EOF - C:\AdwCleaner[s1].txt - [2110 octets] ##########
- 15 mei 2014
- 16 antwoorden
opstart pc

ricardo425 reageerde op ricardo425's topic in Archief Windows 7

Zoek.exe v5.0.0.0 Updated 14-April-2014 Tool run by Richard on ma 12/05/2014 at 12:02:26,18. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Richard\Downloads\zoek(1).exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2013-12-13-072205.log 24488 bytes C:\zoek-results2014-05-05-075426.log 68830 bytes C:\zoek-results2014-05-07-192438.log 42089 bytes ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully ==== Installed Programs ====================== ACE-HIGH MP3 WAV WMA OGG Converter Adobe AIR Adobe Community Help Adobe Flash Player 13 ActiveX Adobe Flash Player 13 Plugin Adobe Media Player Adobe Reader XI (11.0.06) - Nederlands Adobe Shockwave Player 12.0 Apple Application Support Apple Mobile Device Support Apple Software Update AVG 2014 Bonjour BS.Player FREE Business Card Designer Plus 10.1.0.0 CCleaner Chessmaster Grandmaster Edition Compatibiliteitspakket voor het 2007 Microsoft Office system D3DX10 Dell DataSafe Local Backup - Support Software Dell DataSafe Local Backup Dell DataSafe Online Dell Dock Dell Edoc Viewer Dell Getting Started Guide Dell Support Center Dell System Detect Diagnostic Utility DVD Flick 1.3.0.7 Express Rip Facebook Video Calling 2.0.0.447 Free DVD Video Burner version 3.2.8.430 Free YouTube to MP3 Converter version 3.12.29.304 Freemake Audio Converter versie 1.1.0 Freemake Video Converter versie 4.1.3 High-Definition Video Playback 10 ImgBurn Intel® Graphics Media Accelerator Driver Intel© Matrix Storage Manager Java 7 Update 55 Java Auto Updater Junk Mail filter update McAfee Security Scan Plus Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft Application Error Reporting Microsoft Office 2003 Web Components Microsoft Office PowerPoint Viewer 2007 (Dutch) Microsoft Primary Interoperability Assemblies 2005 Microsoft Silverlight Microsoft SkyDrive Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU Microsoft Visual Studio 2005 Tools for Applications - ENU Microsoft Works Microsoft_VC80_ATL_x86 Microsoft_VC80_ATL_x86_x64 Microsoft_VC80_CRT_x86 Microsoft_VC80_CRT_x86_x64 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFC_x86_x64 Microsoft_VC80_MFCLOC_x86 Microsoft_VC80_MFCLOC_x86_x64 Microsoft_VC90_ATL_x86 Microsoft_VC90_ATL_x86_x64 Microsoft_VC90_CRT_x86 Microsoft_VC90_CRT_x86_x64 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFC_x86_x64 Movie Maker Mozilla Firefox 29.0.1 (x86 nl) Mozilla Maintenance Service MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP3 Parser MSXML 4.0 SP3 Parser (KB2758694) Nero 10 ClipartPack Nero 10 Menu TemplatePack 1 Nero 10 Menu TemplatePack 2 Nero 10 Menu TemplatePack 3 Nero 10 Menu TemplatePack Basic Nero 10 Movie ThemePack 1 Nero 10 Movie ThemePack 2 Nero 10 Movie ThemePack Basic Nero 10 Sample ImagePack Nero 10 Sample Videos Nero BackItUp 10 Nero BackItUp 10 Help (CHM) Nero Burning ROM 10 Nero BurningROM 10 Help (CHM) Nero BurnRights 10 Nero BurnRights 10 Help (CHM) Nero Control Center 10 Nero Core Components 10 Nero CoverDesigner 10 Nero CoverDesigner 10 Help (CHM) Nero DiscSpeed 10 Nero DiscSpeed 10 Help (CHM) Nero Dolby Files 10 Nero Express 10 Nero Express 10 Help (CHM) Nero InfoTool 10 Nero InfoTool 10 Help (CHM) Nero MediaHub 10 Nero MediaHub 10 Help (CHM) Nero Multimedia Suite 10 Nero Recode 10 Nero Recode 10 Help (CHM) Nero RescueAgent 10 Nero RescueAgent 10 Help (CHM) Nero SoundTrax 10 Nero SoundTrax 10 Help (CHM) Nero StartSmart 10 Nero StartSmart 10 Help (CHM) Nero Update Nero Vision 10 Nero Vision 10 Help (CHM) Nero WaveEditor 10 Nero WaveEditor 10 Help (CHM) OpenOffice.org 3.3 Photo Common Photo Gallery PowerDVD DX QuickTime 7 Realtek High Definition Audio Driver Roxio Burn Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Shared C Run-time for x64 Skype Click to Call SkypeT 6.14 SubSync swMSM Toolbar Cleaner 1.0 TuneUp Utilities Language Pack (nl-NL) UnderCoverXP 1.23 Unity Web Player VC80CRTRedist - 8.0.50727.6195 Visual Studio 2010 x64 Redistributables Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables VLC media player 2.1.3 Vuze Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Windows Mobile Apparaatcentrum WinRAR 4.01 (32-bit) Youtube Music Downloader V3.8.3 YTD Video Downloader 4.8 ==== Running Processes ====================== C:\Program Files\Dell\DellDock\DockLogin.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\AVG\AVG2014\avgfws.exe C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe C:\Windows\SysWOW64\ctfmon.exe C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files (x86)\Nero\Update\NASvc.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\Richard\Downloads\zoek(1).exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\0 user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20141205_1205_.backup ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 user.js not found ---- Lines Snap.Do removed from prefs.js ---- user_pref("extensions.helperbar.externalJsFiles", "{\"d\":\"[{\\\"ExcludeDomains\\\":[\\\"snap.do\\\",\\\"snapdo.com\\\",\\\"www.only-apartments.es\\\ ---- FireFox user.js and prefs.js backups ---- prefs_20141205_1205_.backup ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20141205_1205_.backup ProfilePath: C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20141205_1205_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Browser Infrastructure Helper"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Browser Infrastructure Helper"=- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_Dlls"=- ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Browser Infrastructure Helper"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Browser Infrastructure Helper"=- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_Dlls"=- ==== Deleting Files \ Folders ====================== C:\Users\Richard\AppData\Local\Smartbar not found C:\Users\Richard\AppData\Roaming\OpenCandy deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 4061 MB CPU Info: Intel® Core2 Duo CPU E7500 @ 2.93GHz CPU Speed: 2922,6 MHz Sound Card: Luidsprekers (3- USB Sound Devi | Display Adapters: Intel® G45/G43 Express Chipset | Intel® G45/G43 Express Chipset | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1280 X 1024 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (D: | ) D: TSSTcorpDVD+-RW TS-H653G Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 689,7GB Hard Disks - Free: C: 407,0GB Manufacturer *: Dell Inc. BIOS Info: AT/AT COMPATIBLE | 08/16/32 | DELL - 20100226 Time Zone: Romance (standaardtijd) Motherboard *: Dell Inc. 0K83V0 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: AVG Internet Security 2014 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG Internet Security 2014 disabled (Outdated) Firewall: AVG Internet Security 2014 disabled Default Browser: Firefox 29.0.1 Internet Explorer Version: 11.0.9600.17105 Mozilla Firefox version: 29.0.1 (x86 nl) Mozilla Firefox version: (3.6.15) Adobe Reader version: 11.0.06.70 Sun Java version: 1.7.0_55 (32-bit) Flash Player version: 13.0.0.206 Shockwave Player version: 12.0r112 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Richard\AppData\Local\Temp ==== 2014-05-05 14:35:45 E5575149A477DC94AF527FC7D751A407 6379728 ----a-w- C:\Users\Richard\AppData\Local\Temp\nst1F6C\SpSetup.exe 2014-05-05 14:35:20 7C401328A556DB4487DF2F1DF4576F6E 28695616 ----a-w- C:\Users\Richard\AppData\Local\Temp\FreemakeVideoConverter_4.1.3.15.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-05-05 14:06:23 5FEFD614BBD3FFA3712B172F70B1FDE2 24576 ----a-w- C:\Windows\SysWOW64\msxml3a.dll 2014-05-05 14:06:23 4D328694BB516E46D2D184950D94433F 1700352 ----a-w- C:\Windows\SysWOW64\GdiPlus.dll 2014-05-04 01:00:42 5869FBC754578A59C8C8635B99DB79DE 17384448 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-05-04 01:00:41 2518D1922371892ADEF1F07147DBD72A 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-05-06 17:02:14 84ED099009EF0DF82A37D4FEAE012655 465408 ----a-w- C:\Windows\Sysnative\aepdu.dll 2014-05-06 17:02:14 5513F4766C9987D6B0D49D51BB2E5EE4 424448 ----a-w- C:\Windows\Sysnative\aeinv.dll 2014-05-04 01:00:43 A98DA2EC1E56CF52C682D072F77D9874 23547904 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-05-04 01:00:42 DE5DE05946D6FC2DC494C55BC7BC4C6E 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb ====== C:\Windows\Sysnative\drivers ===== 2014-04-18 13:01:30 B7E17B7733C4266F140DD356817E5678 237336 ----a-w- C:\Windows\Sysnative\drivers\avgidsdrivera.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2014-05-12 07:29:32 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype 2014-05-12 07:29:31 -------- d-----r- C:\PROGRA~2\Skype 2014-05-05 14:16:46 -------- d-----w- C:\PROGRA~2\FreeTime 2014-05-05 14:06:23 -------- d-----w- C:\PROGRA~2\COMMON~1\AVSMedia 2014-05-05 14:06:23 -------- d-----w- C:\PROGRA~2\AVS4YOU 2014-05-05 14:00:08 -------- d-----w- C:\PROGRA~2\COMMON~1\Wondershare ======= C: ===== 2014-05-05 14:35:42 5B3ABF9C1AA7556C3A36FEA4E695C5D2 4 ----a-w- C:\end ====== C:\Users\Richard\AppData\Roaming ====== 2014-05-12 07:29:48 -------- d-----w- C:\Users\Richard\AppData\Local\Skype 2014-05-05 14:36:03 -------- d-----w- C:\Users\Richard\AppData\Local\FreemakeVideoConverter 2014-05-05 14:07:05 -------- d-----w- C:\Users\Richard\AppData\Roaming\AVS4YOU 2014-05-05 14:00:09 -------- d-----w- C:\Users\Richard\AppData\Local\Wondershare 2014-05-05 07:54:46 -------- d-----w- C:\Users\Richard\AppData\Local\DataSafeOnline 2014-05-05 07:52:51 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\Richard\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\Public\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\AppData\AppData\Local\Temp 2014-04-28 12:32:21 -------- d-----w- C:\Users\Richard\AppData\Roaming\DVD Flick ====== C:\Users\Richard ====== 2014-05-12 07:29:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-05-12 07:28:30 2E4C9AB5C9B0FB995B112F7F34111B3C 34828960 ----a-w- C:\Users\Richard\Downloads\SkypeSetupFull.exe 2014-05-08 23:49:27 -------- d-----r- C:\Windows\SysNative\config\systemprofile\Searches 2014-05-05 14:34:40 7CF75D8DDB85C349155EB79BE2A83CB2 1308144 ----a-w- C:\Users\Richard\Downloads\FreemakeVideoConverterSetup.exe 2014-05-05 14:23:24 AE878F47A30D425875972DEA8AA234DC 23281736 ----a-w- C:\Users\Richard\Downloads\FreeDVDVideoBurner.exe 2014-05-05 14:15:30 45B05918BC622E541FB1C5E16CD9E69A 386912 ----a-w- C:\Users\Richard\Downloads\SoftonicDownloader_voor_format-factory.exe 2014-05-05 14:06:23 -------- d-----w- C:\ProgramData\AVS4YOU 2014-05-05 14:05:29 77BAD23474F3462B316314EC6770EF57 63042752 ----a-w- C:\Users\Richard\Downloads\AVSVideoConverter(1).exe 2014-05-05 13:58:52 650DA51905E46DC4DFEAF4684B7044EF 41339064 ----a-w- C:\Users\Richard\Downloads\dvd-creator_full1203.exe 2014-04-29 18:18:10 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Richard\Downloads\RSITx64(1).exe 2014-04-28 12:32:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Flick 2014-04-28 12:31:28 F35A01604C1B7294468D8397D6EE3787 12951423 ----a-w- C:\Users\Richard\Downloads\dvdflick_setup_1.3.0.7.exe ====== C: exe-files == 2014-05-12 07:28:30 2E4C9AB5C9B0FB995B112F7F34111B3C 34828960 ----a-w- C:\Users\Richard\Downloads\SkypeSetupFull.exe 2014-05-11 03:37:22 E1B6FCAE82474FC071155263E2841D54 119408 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice_tmp.exe 2014-05-06 17:02:14 D39F522D9B0033E50C7F54138CFBC0D8 31232 ----a-w- C:\Windows\System32\CompatTel\wicainventory.exe 2014-05-06 17:02:14 21EDB6E45163A5635D6D6307EB42BC77 104960 ----a-w- C:\Windows\System32\CompatTel\QueryAppBlock.exe 2014-05-05 14:35:47 B6F2907D30E643091ECB6B298FED3B03 2083840 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe 2014-05-05 14:35:47 AD93D9E8BE16478415207FF9DE9A0F1B 8192 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\MiddleChainClient.exe 2014-05-05 14:35:47 62E82F424EFB6771AC02B8A08F277E14 92672 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter\Toolbars\VideoConverter.ToolbarInstaller.exe 2014-05-05 14:35:47 49CE3B818E7020A1CF7142AC0B35AC8C 3804672 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVC.exe 2014-05-05 14:35:45 E5575149A477DC94AF527FC7D751A407 6379728 ----a-w- C:\Users\Richard\AppData\Local\Temp\nst1F6C\SpSetup.exe 2014-05-05 14:35:45 E5575149A477DC94AF527FC7D751A407 6379728 ----a-w- C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1G2ZA49V\SPSetup[1].exe 2014-05-05 14:35:45 226DB8293DD42BA8D63C5509F12C4C57 342528 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\rtmpdump.exe 2014-05-05 14:35:44 8F3CF738CA6F53D9EBD2CD3C612C1AE8 12136 ----a-w- C:\Program Files (x86)\Freemake\COM\1.1\regfiles.exe 2014-05-05 14:35:44 5E144DD2B309BD00D2BE3D7CC4DC786F 124184 ----a-w- C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5UKXZ202\spstub[1].exe 2014-05-05 14:35:43 F3088D637E5AB18059E5C28CC31CFDB7 2594304 ----a-w- C:\Program Files (x86)\Freemake\COM\1.1\spumux.exe 2014-05-05 14:35:43 E6C539E4D03BE277706577696BFF97AE 1234432 ----a-w- C:\Program Files (x86)\Freemake\COM\1.1\dvdauthor.exe 2014-05-05 14:35:43 E25CB6DCE6B5CBD3DDFF7E1D36E6BDB9 184334 ----a-w- C:\Program Files (x86)\Freemake\COM\1.1\ffmpeg.exe 2014-05-05 14:35:42 EBAED717870C7B43274279EF0F14001F 1480091 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe 2014-05-05 14:35:20 7C401328A556DB4487DF2F1DF4576F6E 28695616 ----a-w- C:\Users\Richard\AppData\Local\Temp\FreemakeVideoConverter_4.1.3.15.exe 2014-05-05 14:34:40 7CF75D8DDB85C349155EB79BE2A83CB2 1308144 ----a-w- C:\Users\Richard\Downloads\FreemakeVideoConverterSetup.exe 2014-05-05 14:24:32 677A102CAA17A64BB1B34898FA574F23 1484968 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free DVD Video Burner\FreeDVDVideoBurner.exe 2014-05-05 14:24:20 7CA46FE8BFBC303BFC2234B82CD7A6F7 1667240 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\PremiumMembershipOffer.exe 2014-05-05 14:24:19 5DA74DDC3D9E4239781526073168822D 1229992 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe 2014-05-05 14:24:18 F968A44E25F85F2D09AE40B3456DE511 610360 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSUpdate.exe 2014-05-05 14:24:17 597384F07E967419225DB33F5852B8EB 248376 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\Assistant64.exe 2014-05-05 14:24:17 225224A2ED175822156DF4BB58F0624E 1174536 ----a-w- C:\Program Files (x86)\DVDVideoSoft\unins001.exe 2014-05-05 14:23:24 AE878F47A30D425875972DEA8AA234DC 23281736 ----a-w- C:\Users\Richard\Downloads\FreeDVDVideoBurner.exe 2014-05-05 14:22:00 CDCE496EA95FC0BA4288EDBD27A01E31 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-810726386-2924154629-2946816220-1000\$I0T5GD9.exe 2014-05-05 14:16:09 C53C4325E0626C46DCDB1D58C4B0EBE0 54671192 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-810726386-2924154629-2946816220-1000\$R0T5GD9.exe 2014-05-05 14:15:30 45B05918BC622E541FB1C5E16CD9E69A 386912 ----a-w- C:\Users\Richard\Downloads\SoftonicDownloader_voor_format-factory.exe 2014-05-05 14:05:29 77BAD23474F3462B316314EC6770EF57 63042752 ----a-w- C:\Users\Richard\Downloads\AVSVideoConverter(1).exe 2014-05-05 14:00:09 D41D8CD98F00B204E9800998ECF8427E 0 ----a-r- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\Wondershare Helper Compact.exe 2014-05-05 14:00:08 DC961C4863CC01115B7C43AB8DC029DE 2138624 ----a-w- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\UpLoad.exe 2014-05-05 14:00:08 5A4FCB9FA2798BFF8B2E9340CAD1347C 1994752 ----a-w- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe 2014-05-05 13:58:52 650DA51905E46DC4DFEAF4684B7044EF 41339064 ----a-w- C:\Users\Richard\Downloads\dvd-creator_full1203.exe === C: other files == 2014-05-05 14:35:47 916D9FBCE5B015A18522DE15165264C9 69167 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Dell DataSafe Online"="C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe /m" "PDVDDXSrv"="C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" "Desktop Disc Tool"="c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" "NBAgent"="C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe /WinStart" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "Wondershare Helper Compact.exe"="C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe " ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2010-06-07 10:38:53 2000 ----a-w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk 2010-06-07 10:38:53 2000 ----a-w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [29/04/2014 16:00] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000Core.job --a------ C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/06/2013 18:51] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000UA.job --a------ C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/06/2013 18:51] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Richard-PC-Richard" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files (x86)\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000Core" [C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000UA" [C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\PCDEventLauncher" ["C:\Program Files\Dell Support Center\sessionchecker.exe"] "C:\Windows\SysNative\tasks\Richard NBAgent 5 4" ["C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe"] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\{0D1F5378-CE5F-4070-A060-8C3F15A7F9CF}" [C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe] "C:\Windows\SysNative\tasks\{1110D5EC-E363-45ED-89C5-920752F24C5D}" [C:\Program Files (x86)\Webteh\BSplayer\bsplayer.exe] "C:\Windows\SysNative\tasks\{1D821C4C-874D-4298-B939-A66C634E60BB}" ["c:\program files (x86)\mozilla firefox\firefox.exe"] "C:\Windows\SysNative\tasks\{49D6CC22-8EF2-4D0C-89F8-3B2F592BC7E5}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\{755BF4F0-5808-4C54-9202-B114B124B895}" [C:\Program Files (x86)\Webteh\BSplayer\bsplayer.exe] "C:\Windows\SysNative\tasks\{85500AFC-EC88-438B-985D-6B002A97E5C4}" [C:\Users\Richard\Videos\TETRIS.EXE] "C:\Windows\SysNative\tasks\{A3B3BB82-1528-4018-96B0-E85CFC970F1B}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\{DEA86D37-B63B-4EA6-B545-3589D3C3AB5A}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "fmconverter@gmail.com"="C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox" [05/05/2014 16:35] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 - Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default - Undetermined - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - Undetermined - C:\Program Files\Web Assistant\Firefox - Undetermined - C:\Program Files (x86)\McAfee\SiteAdvisor AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 9FD6A1990289B9290563CA069CB74EF9 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll - Shockwave Flash FF0D6F82A0EC13952E83B9439100E45D - C:\Users\Richard\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin 341B3AE026B143DBC17BA1E1E0BAE3D6 - C:\Users\Richard\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player CF25FDD7CA6BC88442A58F74DBB6CFA6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll - Shockwave for Director / Shockwave for Director 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin 15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jbolfgndggfhhpbnkgnpjkfhinclbigj - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[26/03/2014 09:14] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?p=pLsH3anR-Rz0cILJ" "Search Page"="http://www.bing.com/search?q={searchTerms}" "Search Bar"="http://www.bing.com/search?q={searchTerms}" "Use Search Asst"="yes" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="http://www.bing.com/search?q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "Default"="http://www.bing.com/search?q={searchTerms}" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="http://www.bing.com/search?q={searchTerms}" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://www.bing.com/search?q={searchTerms}" "SearchAssistant"="http://www.bing.com/search?q={searchTerms}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{006ee092-9658-4fd6-bd8e-a21a348e59f5}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Use Search Asst"="no" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {006ee092-9658-4fd6-bd8e-a21a348e59f5} Bing Url="http://www.bing.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== HijackThis Entries ====================== O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O4 - HKLM\..\Run: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" O4 - HKLM\..\Run: [Desktop Disc Tool] "c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user') O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.dell.com O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== C:\zoek_backup content ====================== C:\zoek_backup (files=4009 folders=703 954032641 bytes) ==== EOF on ma 12/05/2014 at 12:10:34,33 ======================
- 12 mei 2014
- 16 antwoorden
opstart pc

ricardo425 reageerde op ricardo425's topic in Archief Windows 7

Zoek.exe v5.0.0.0 Updated 14-April-2014 Tool run by Richard on wo 07/05/2014 at 21:17:37,13. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Richard\Downloads\zoek(1).exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2013-12-13-072205.log 24488 bytes C:\zoek-results2014-05-05-075426.log 68830 bytes ==== Deleting CLSID Registry Keys ====================== HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} deleted successfully ==== Installed Programs ====================== ACE-HIGH MP3 WAV WMA OGG Converter Adobe AIR Adobe Community Help Adobe Flash Player 13 ActiveX Adobe Flash Player 13 Plugin Adobe Media Player Adobe Reader XI (11.0.06) - Nederlands Adobe Shockwave Player 12.0 Apple Application Support Apple Mobile Device Support Apple Software Update AVG 2014 Bonjour BS.Player FREE Business Card Designer Plus 10.1.0.0 CCleaner Chessmaster Grandmaster Edition Compatibiliteitspakket voor het 2007 Microsoft Office system D3DX10 Dell DataSafe Local Backup - Support Software Dell DataSafe Local Backup Dell DataSafe Online Dell Dock Dell Edoc Viewer Dell Getting Started Guide Dell Support Center Dell System Detect Diagnostic Utility DVD Flick 1.3.0.7 Express Rip Facebook Video Calling 2.0.0.447 Free DVD Video Burner version 3.2.8.430 Free YouTube to MP3 Converter version 3.12.29.304 Freemake Audio Converter versie 1.1.0 Freemake Video Converter versie 4.1.3 High-Definition Video Playback 10 ImgBurn Intel® Graphics Media Accelerator Driver Intel© Matrix Storage Manager Java 7 Update 55 Java Auto Updater Junk Mail filter update LPT System Updater Service McAfee Security Scan Plus Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft Application Error Reporting Microsoft Office 2003 Web Components Microsoft Office PowerPoint Viewer 2007 (Dutch) Microsoft Primary Interoperability Assemblies 2005 Microsoft Silverlight Microsoft SkyDrive Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU Microsoft Visual Studio 2005 Tools for Applications - ENU Microsoft Works Microsoft_VC80_ATL_x86 Microsoft_VC80_ATL_x86_x64 Microsoft_VC80_CRT_x86 Microsoft_VC80_CRT_x86_x64 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFC_x86_x64 Microsoft_VC80_MFCLOC_x86 Microsoft_VC80_MFCLOC_x86_x64 Microsoft_VC90_ATL_x86 Microsoft_VC90_ATL_x86_x64 Microsoft_VC90_CRT_x86 Microsoft_VC90_CRT_x86_x64 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFC_x86_x64 Movie Maker Mozilla Firefox 28.0 (x86 nl) Mozilla Maintenance Service MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP3 Parser MSXML 4.0 SP3 Parser (KB2758694) Nero 10 ClipartPack Nero 10 Menu TemplatePack 1 Nero 10 Menu TemplatePack 2 Nero 10 Menu TemplatePack 3 Nero 10 Menu TemplatePack Basic Nero 10 Movie ThemePack 1 Nero 10 Movie ThemePack 2 Nero 10 Movie ThemePack Basic Nero 10 Sample ImagePack Nero 10 Sample Videos Nero BackItUp 10 Nero BackItUp 10 Help (CHM) Nero Burning ROM 10 Nero BurningROM 10 Help (CHM) Nero BurnRights 10 Nero BurnRights 10 Help (CHM) Nero Control Center 10 Nero Core Components 10 Nero CoverDesigner 10 Nero CoverDesigner 10 Help (CHM) Nero DiscSpeed 10 Nero DiscSpeed 10 Help (CHM) Nero Dolby Files 10 Nero Express 10 Nero Express 10 Help (CHM) Nero InfoTool 10 Nero InfoTool 10 Help (CHM) Nero MediaHub 10 Nero MediaHub 10 Help (CHM) Nero Multimedia Suite 10 Nero Recode 10 Nero Recode 10 Help (CHM) Nero RescueAgent 10 Nero RescueAgent 10 Help (CHM) Nero SoundTrax 10 Nero SoundTrax 10 Help (CHM) Nero StartSmart 10 Nero StartSmart 10 Help (CHM) Nero Update Nero Vision 10 Nero Vision 10 Help (CHM) Nero WaveEditor 10 Nero WaveEditor 10 Help (CHM) OpenOffice.org 3.3 Photo Common Photo Gallery PowerDVD DX QuickTime 7 Realtek High Definition Audio Driver Roxio Burn Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Shared C Run-time for x64 Snap.Do Snap.Do Engine SubSync swMSM Toolbar Cleaner 1.0 TuneUp Utilities Language Pack (nl-NL) UnderCoverXP 1.23 Unity Web Player VC80CRTRedist - 8.0.50727.6195 Visual Studio 2010 x64 Redistributables Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables VLC media player 2.1.3 Vuze Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Windows Mobile Apparaatcentrum WinRAR 4.01 (32-bit) Youtube Music Downloader V3.8.3 YTD Video Downloader 4.8 ==== Running Processes ====================== C:\Program Files\Dell\DellDock\DockLogin.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\AVG\AVG2014\avgfws.exe C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe C:\Users\Richard\AppData\Local\Smartbar\Application\SnapDo.exe C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe C:\Program Files (x86)\LPT\srpts.exe C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Users\Richard\AppData\Local\LPT\srptm.exe C:\Windows\SysWOW64\ctfmon.exe C:\Program Files (x86)\Nero\Update\NASvc.exe C:\Users\Richard\Downloads\zoek(1).exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== FireFox Fix ====================== ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\0 user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20140705_2119_.backup ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 user.js not found ---- Lines {ACAA314B-EEBA-48e4-AD47-84E31C44796C} modified from prefs.js ---- user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\":{\"descriptor\":\"C:\\\\ ---- FireFox user.js and prefs.js backups ---- prefs_20140705_2119_.backup ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20140705_2119_.backup ProfilePath: C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20140705_2119_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} not found C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} not found "C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default\extensions\msktbird@mcafee.com\chrome.manifest" deleted "C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default\extensions\msktbird@mcafee.com\install.rdf" deleted "C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default\extensions\msktbird@mcafee.com\chrome\msktbird_3.jar" deleted "C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default\extensions\msktbird@mcafee.com\components\IMskTB.xpt" deleted "C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default\extensions\msktbird@mcafee.com\components\msktb.dll" deleted "C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default\extensions\msktbird@mcafee.com" deleted "C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default\extensions\msktbird@mcafee.com\chrome" deleted "C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default\extensions\msktbird@mcafee.com\components" deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 4061 MB CPU Info: Intel® Core2 Duo CPU E7500 @ 2.93GHz CPU Speed: 2974,1 MHz Sound Card: Luidsprekers (3- USB Sound Devi | Display Adapters: Intel® G45/G43 Express Chipset | Intel® G45/G43 Express Chipset | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1280 X 1024 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (D: | ) D: TSSTcorpDVD+-RW TS-H653G Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 689,7GB Hard Disks - Free: C: 407,4GB Manufacturer *: Dell Inc. BIOS Info: AT/AT COMPATIBLE | 08/16/32 | DELL - 20100226 Time Zone: Romance (standaardtijd) Motherboard *: Dell Inc. 0K83V0 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: AVG Internet Security 2014 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG Internet Security 2014 disabled (Outdated) Firewall: AVG Internet Security 2014 disabled Default Browser: Firefox 28.0 Internet Explorer Version: 11.0.9600.17105 Mozilla Firefox version: 28.0 (x86 nl) Mozilla Firefox version: (3.6.15) Adobe Reader version: 11.0.06.70 Sun Java version: 1.7.0_55 (32-bit) Flash Player version: 13.0.0.206 Shockwave Player version: 12.0r112 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Richard\AppData\Local\Temp ==== 2014-05-05 14:35:45 E5575149A477DC94AF527FC7D751A407 6379728 ----a-w- C:\Users\Richard\AppData\Local\Temp\nst1F6C\SpSetup.exe 2014-05-05 14:35:20 7C401328A556DB4487DF2F1DF4576F6E 28695616 ----a-w- C:\Users\Richard\AppData\Local\Temp\FreemakeVideoConverter_4.1.3.15.exe 2014-05-05 14:24:46 F2D00F34D269F1F5E0DE0E90CF8B7C4C 7680 ----a-w- C:\Users\Richard\AppData\Local\Temp\smartbar\GuidCreator.dll 2014-05-05 14:24:45 09D232ED38DC5023D3E61A6B890144EC 10108928 ----a-w- C:\Users\Richard\AppData\Local\Temp\smartbar\Installer.msi ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-05-05 14:06:23 5FEFD614BBD3FFA3712B172F70B1FDE2 24576 ----a-w- C:\Windows\SysWOW64\msxml3a.dll 2014-05-05 14:06:23 4D328694BB516E46D2D184950D94433F 1700352 ----a-w- C:\Windows\SysWOW64\GdiPlus.dll 2014-05-04 01:00:42 5869FBC754578A59C8C8635B99DB79DE 17384448 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-05-04 01:00:41 2518D1922371892ADEF1F07147DBD72A 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-05-06 17:02:14 84ED099009EF0DF82A37D4FEAE012655 465408 ----a-w- C:\Windows\Sysnative\aepdu.dll 2014-05-06 17:02:14 5513F4766C9987D6B0D49D51BB2E5EE4 424448 ----a-w- C:\Windows\Sysnative\aeinv.dll 2014-05-04 01:00:43 A98DA2EC1E56CF52C682D072F77D9874 23547904 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-05-04 01:00:42 DE5DE05946D6FC2DC494C55BC7BC4C6E 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb ====== C:\Windows\Sysnative\drivers ===== 2014-04-18 13:01:30 B7E17B7733C4266F140DD356817E5678 237336 ----a-w- C:\Windows\Sysnative\drivers\avgidsdrivera.sys 2014-04-09 20:45:32 B3222734D80013D2C73841B0C549FA63 27584 ----a-w- C:\Windows\Sysnative\drivers\Diskdump.sys 2014-04-09 20:45:32 A3F0BC5897F9D3786A3CB695B163633A 190912 ----a-w- C:\Windows\Sysnative\drivers\storport.sys 2014-04-09 20:45:32 96BB922A0981BC7432C8CF52B5410FE6 274880 ----a-w- C:\Windows\Sysnative\drivers\msiscsi.sys 2014-04-09 20:45:28 1A29A59A4C5BA6F8C85062A613B7E2B2 1684928 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2014-05-05 14:25:41 -------- d-----w- C:\PROGRA~2\LPT 2014-05-05 14:16:46 -------- d-----w- C:\PROGRA~2\FreeTime 2014-05-05 14:06:23 -------- d-----w- C:\PROGRA~2\COMMON~1\AVSMedia 2014-05-05 14:06:23 -------- d-----w- C:\PROGRA~2\AVS4YOU 2014-05-05 14:00:08 -------- d-----w- C:\PROGRA~2\COMMON~1\Wondershare ======= C: ===== 2014-05-05 14:35:42 5B3ABF9C1AA7556C3A36FEA4E695C5D2 4 ----a-w- C:\end ====== C:\Users\Richard\AppData\Roaming ====== 2014-05-05 14:36:03 -------- d-----w- C:\Users\Richard\AppData\Local\FreemakeVideoConverter 2014-05-05 14:25:04 -------- d-----w- C:\Users\Richard\AppData\Local\LPT 2014-05-05 14:25:02 -------- d-----w- C:\Users\Richard\AppData\Local\Smartbar 2014-05-05 14:24:17 -------- d-----w- C:\Users\Richard\AppData\Roaming\OpenCandy 2014-05-05 14:07:05 -------- d-----w- C:\Users\Richard\AppData\Roaming\AVS4YOU 2014-05-05 14:00:09 -------- d-----w- C:\Users\Richard\AppData\Local\Wondershare 2014-05-05 07:54:46 -------- d-----w- C:\Users\Richard\AppData\Local\DataSafeOnline 2014-05-05 07:52:51 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\Richard\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\Public\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2014-05-05 07:52:51 -------- d-----w- C:\Users\AppData\AppData\Local\Temp 2014-04-28 12:32:21 -------- d-----w- C:\Users\Richard\AppData\Roaming\DVD Flick ====== C:\Users\Richard ====== 2014-05-05 14:34:40 7CF75D8DDB85C349155EB79BE2A83CB2 1308144 ----a-w- C:\Users\Richard\Downloads\FreemakeVideoConverterSetup.exe 2014-05-05 14:23:24 AE878F47A30D425875972DEA8AA234DC 23281736 ----a-w- C:\Users\Richard\Downloads\FreeDVDVideoBurner.exe 2014-05-05 14:15:30 45B05918BC622E541FB1C5E16CD9E69A 386912 ----a-w- C:\Users\Richard\Downloads\SoftonicDownloader_voor_format-factory.exe 2014-05-05 14:06:23 -------- d-----w- C:\ProgramData\AVS4YOU 2014-05-05 14:05:29 77BAD23474F3462B316314EC6770EF57 63042752 ----a-w- C:\Users\Richard\Downloads\AVSVideoConverter(1).exe 2014-05-05 13:58:52 650DA51905E46DC4DFEAF4684B7044EF 41339064 ----a-w- C:\Users\Richard\Downloads\dvd-creator_full1203.exe 2014-04-29 18:18:10 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Richard\Downloads\RSITx64(1).exe 2014-04-28 12:32:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Flick 2014-04-28 12:31:28 F35A01604C1B7294468D8397D6EE3787 12951423 ----a-w- C:\Users\Richard\Downloads\dvdflick_setup_1.3.0.7.exe ====== C: exe-files == 2014-05-06 17:02:14 D39F522D9B0033E50C7F54138CFBC0D8 31232 ----a-w- C:\Windows\System32\CompatTel\wicainventory.exe 2014-05-06 17:02:14 21EDB6E45163A5635D6D6307EB42BC77 104960 ----a-w- C:\Windows\System32\CompatTel\QueryAppBlock.exe 2014-05-05 14:35:47 B6F2907D30E643091ECB6B298FED3B03 2083840 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe 2014-05-05 14:35:47 AD93D9E8BE16478415207FF9DE9A0F1B 8192 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\MiddleChainClient.exe 2014-05-05 14:35:47 62E82F424EFB6771AC02B8A08F277E14 92672 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter\Toolbars\VideoConverter.ToolbarInstaller.exe 2014-05-05 14:35:47 49CE3B818E7020A1CF7142AC0B35AC8C 3804672 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVC.exe 2014-05-05 14:35:45 E5575149A477DC94AF527FC7D751A407 6379728 ----a-w- C:\Users\Richard\AppData\Local\Temp\nst1F6C\SpSetup.exe 2014-05-05 14:35:45 E5575149A477DC94AF527FC7D751A407 6379728 ----a-w- C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1G2ZA49V\SPSetup[1].exe 2014-05-05 14:35:45 226DB8293DD42BA8D63C5509F12C4C57 342528 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\rtmpdump.exe 2014-05-05 14:35:44 8F3CF738CA6F53D9EBD2CD3C612C1AE8 12136 ----a-w- C:\Program Files (x86)\Freemake\COM\1.1\regfiles.exe 2014-05-05 14:35:44 5E144DD2B309BD00D2BE3D7CC4DC786F 124184 ----a-w- C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5UKXZ202\spstub[1].exe 2014-05-05 14:35:43 F3088D637E5AB18059E5C28CC31CFDB7 2594304 ----a-w- C:\Program Files (x86)\Freemake\COM\1.1\spumux.exe 2014-05-05 14:35:43 E6C539E4D03BE277706577696BFF97AE 1234432 ----a-w- C:\Program Files (x86)\Freemake\COM\1.1\dvdauthor.exe 2014-05-05 14:35:43 E25CB6DCE6B5CBD3DDFF7E1D36E6BDB9 184334 ----a-w- C:\Program Files (x86)\Freemake\COM\1.1\ffmpeg.exe 2014-05-05 14:35:42 EBAED717870C7B43274279EF0F14001F 1480091 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe 2014-05-05 14:35:20 7C401328A556DB4487DF2F1DF4576F6E 28695616 ----a-w- C:\Users\Richard\AppData\Local\Temp\FreemakeVideoConverter_4.1.3.15.exe 2014-05-05 14:34:40 7CF75D8DDB85C349155EB79BE2A83CB2 1308144 ----a-w- C:\Users\Richard\Downloads\FreemakeVideoConverterSetup.exe 2014-05-05 14:24:32 677A102CAA17A64BB1B34898FA574F23 1484968 ----a-w- C:\Program Files (x86)\DVDVideoSoft\Free DVD Video Burner\FreeDVDVideoBurner.exe 2014-05-05 14:24:20 7CA46FE8BFBC303BFC2234B82CD7A6F7 1667240 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\PremiumMembershipOffer.exe 2014-05-05 14:24:19 5DA74DDC3D9E4239781526073168822D 1229992 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe 2014-05-05 14:24:18 F968A44E25F85F2D09AE40B3456DE511 610360 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSUpdate.exe 2014-05-05 14:24:17 597384F07E967419225DB33F5852B8EB 248376 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\Assistant64.exe 2014-05-05 14:24:17 225224A2ED175822156DF4BB58F0624E 1174536 ----a-w- C:\Program Files (x86)\DVDVideoSoft\unins001.exe 2014-05-05 14:23:24 AE878F47A30D425875972DEA8AA234DC 23281736 ----a-w- C:\Users\Richard\Downloads\FreeDVDVideoBurner.exe 2014-05-05 14:22:00 CDCE496EA95FC0BA4288EDBD27A01E31 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-810726386-2924154629-2946816220-1000\$I0T5GD9.exe 2014-05-05 14:16:09 C53C4325E0626C46DCDB1D58C4B0EBE0 54671192 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-810726386-2924154629-2946816220-1000\$R0T5GD9.exe 2014-05-05 14:15:30 45B05918BC622E541FB1C5E16CD9E69A 386912 ----a-w- C:\Users\Richard\Downloads\SoftonicDownloader_voor_format-factory.exe 2014-05-05 14:05:29 77BAD23474F3462B316314EC6770EF57 63042752 ----a-w- C:\Users\Richard\Downloads\AVSVideoConverter(1).exe 2014-05-05 14:00:09 D41D8CD98F00B204E9800998ECF8427E 0 ----a-r- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\Wondershare Helper Compact.exe 2014-05-05 14:00:08 DC961C4863CC01115B7C43AB8DC029DE 2138624 ----a-w- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\UpLoad.exe 2014-05-05 14:00:08 5A4FCB9FA2798BFF8B2E9340CAD1347C 1994752 ----a-w- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe 2014-05-05 13:58:52 650DA51905E46DC4DFEAF4684B7044EF 41339064 ----a-w- C:\Users\Richard\Downloads\dvd-creator_full1203.exe === C: other files == 2014-05-05 14:35:47 916D9FBCE5B015A18522DE15165264C9 69167 ----a-w- C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Browser Infrastructure Helper"="C:\Users\Richard\AppData\Local\Smartbar\Application\SnapDo.exe startup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Dell DataSafe Online"="C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe /m" "PDVDDXSrv"="C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" "Desktop Disc Tool"="c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" "NBAgent"="C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe /WinStart" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "Wondershare Helper Compact.exe"="C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Browser Infrastructure Helper"="C:\Users\Richard\AppData\Local\Smartbar\Application\SnapDo.exe startup" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe " [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_Dlls"="C:\\PROGRA~2\\SearchProtect\\SearchProtect\\bin\\SPVC64Loader.dll" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2010-06-07 10:38:53 2000 ----a-w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk 2010-06-07 10:38:53 2000 ----a-w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [29/04/2014 16:00] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000Core.job --a------ C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/06/2013 18:51] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000UA.job --a------ C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/06/2013 18:51] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Richard-PC-Richard" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files (x86)\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000Core" [C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000UA" [C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\PCDEventLauncher" ["C:\Program Files\Dell Support Center\sessionchecker.exe"] "C:\Windows\SysNative\tasks\Richard NBAgent 5 4" ["C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe"] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\{0D1F5378-CE5F-4070-A060-8C3F15A7F9CF}" [C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe] "C:\Windows\SysNative\tasks\{1110D5EC-E363-45ED-89C5-920752F24C5D}" [C:\Program Files (x86)\Webteh\BSplayer\bsplayer.exe] "C:\Windows\SysNative\tasks\{1D821C4C-874D-4298-B939-A66C634E60BB}" ["c:\program files (x86)\mozilla firefox\firefox.exe"] "C:\Windows\SysNative\tasks\{49D6CC22-8EF2-4D0C-89F8-3B2F592BC7E5}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\{755BF4F0-5808-4C54-9202-B114B124B895}" [C:\Program Files (x86)\Webteh\BSplayer\bsplayer.exe] "C:\Windows\SysNative\tasks\{85500AFC-EC88-438B-985D-6B002A97E5C4}" [C:\Users\Richard\Videos\TETRIS.EXE] "C:\Windows\SysNative\tasks\{A3B3BB82-1528-4018-96B0-E85CFC970F1B}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\{DEA86D37-B63B-4EA6-B545-3589D3C3AB5A}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "fmconverter@gmail.com"="C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox" [05/05/2014 16:35] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 - DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff - Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox - Snap.Do - %ProfilePath%\extensions\{d55ef833-df6a-f3f0-08ee-3f47362fa221} - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default - Undetermined - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - Undetermined - C:\Program Files\Web Assistant\Firefox - Undetermined - C:\Program Files (x86)\McAfee\SiteAdvisor AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 9FD6A1990289B9290563CA069CB74EF9 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll - Shockwave Flash FF0D6F82A0EC13952E83B9439100E45D - C:\Users\Richard\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin 341B3AE026B143DBC17BA1E1E0BAE3D6 - C:\Users\Richard\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player CF25FDD7CA6BC88442A58F74DBB6CFA6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll - Shockwave for Director / Shockwave for Director 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin 15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jbolfgndggfhhpbnkgnpjkfhinclbigj - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[26/03/2014 09:14] ==== IE Start and Search Settings ====================== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://search.conduit.com/?gd=&ctid=CT3321540&octid=EB_ORIGINAL_CTID&ISID=M6D4677FF-6681-4358-85C1-57DFFD36890B&SearchSource=55&CUI=&UM=5&UP=SPBF9F2167-962A-4806-B692-0AD6B14A680B&SSPV=" "Search Page"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fQbYPFkTjj8jzRyB0rQvzyej3yvtCjyXXnQmfatj0jBoh3HFBEnbpoSdAxNgtayYQOedoL4IfalM3QPcP82fzD11XhKDjTaE1ZBKX6wonwcWfnb9YdUOANmlbNDEgyKcGzG2aWU--dv1MHHPH1fNaf5liQrS_LIn2fsPW7OrA3f0MoyF&q={searchTerms}" "Search Bar"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fQbYPFkTjj8jzRyB0rQvzyej3yvtCjyXXnQmfatj0jBoh3HFBEnbpoSdAxNgtayYQOedoL4IfalM3QPcP82fzD11XhKDjTaE1ZBKX6wonwcWfnb9YdUOANmlbNDEgyKcGzG2aWU--dv1MHHPH1fNaf5liQrS_LIn2fsPW7OrA3f0MoyF&q={searchTerms}" "Use Search Asst"="yes" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fQbYPFkTjj8jzRyB0rQvzyej3yvtCjyXXnQmfatj0jBoh3HFBEnbpoSdAxNgtayYQOedoL4IfalM3QPcP82fzD11XhKDjTaE1ZBKX6wonwcWfnb9YdUOANmlbNDEgyKcGzG2aWU--dv1MHHPH1fNaf5liQrS_LIn2fsPW7OrA3f0MoyF&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "Default"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fQbYPFkTjj8jzRyB0rQvzyej3yvtCjyXXnQmfatj0jBoh3HFBEnbpoSdAxNgtayYQOedoL4IfalM3QPcP82fzD11XhKDjTaE1ZBKX6wonwcWfnb9YdUOANmlbNDEgyKcGzG2aWU--dv1MHHPH1fNaf5liQrS_LIn2fsPW7OrA3f0MoyF&q={searchTerms}" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fQbYPFkTjj8jzRyB0rQvzyej3yvtCjyXXnQmfatj0jBoh3HFBEnbpoSdAxNgtayYQOedoL4IfalM3QPcP82fzD11XhKDjTaE1ZBKX6wonwcWfnb9YdUOANmlbNDEgyKcGzG2aWU--dv1MHHPH1fNaf5liQrS_LIn2fsPW7OrA3f0MoyF&q={searchTerms}" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fQbYPFkTjj8jzRyB0rQvzyej3yvtCjyXXnQmfatj0jBoh3HFBEnbpoSdAxNgtayYQOedoL4IfalM3QPcP82fzD11XhKDjTaE1ZBKX6wonwcWfnb9YdUOANmlbNDEgyKcGzG2aWU--dv1MHHPH1fNaf5liQrS_LIn2fsPW7OrA3f0MoyF&q={searchTerms}" "SearchAssistant"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fQbYPFkTjj8jzRyB0rQvzyej3yvtCjyXXnQmfatj0jBoh3HFBEnbpoSdAxNgtayYQOedoL4IfalM3QPcP82fzD11XhKDjTaE1ZBKX6wonwcWfnb9YdUOANmlbNDEgyKcGzG2aWU--dv1MHHPH1fNaf5liQrS_LIn2fsPW7OrA3f0MoyF&q={searchTerms}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{006ee092-9658-4fd6-bd8e-a21a348e59f5}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {006ee092-9658-4fd6-bd8e-a21a348e59f5} Web Search Url="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fQbYPFkTjj8jzRyB0rQvzyej3yvtCjyXXnQmfatj0jBoh3HFBEnbpoSdAxNgtayYQOedoL4IfalM3QPcP82fzD11XhKDjTaE1ZBKX6wonwcWfnb9YdUOANmlbNDEgyKcGzG2aWU--dv1MHHPH1fNaf5liQrS_LIn2fsPW7OrA3f0MoyF&q={searchTerms}" ==== HijackThis Entries ====================== O2 - BHO: SmartbarInternetExplorerBHOEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - mscoree.dll (file missing) O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - mscoree.dll (file missing) O4 - HKLM\..\Run: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" O4 - HKLM\..\Run: [Desktop Disc Tool] "c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms O4 - HKCU\..\Run: [browser Infrastructure Helper] C:\Users\Richard\AppData\Local\Smartbar\Application\SnapDo.exe startup O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user') O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.dell.com O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LPT System Updater Service (LPTSystemUpdater) - Unknown owner - C:\Program Files (x86)\LPT\srpts.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== C:\zoek_backup content ====================== C:\zoek_backup (files=4003 folders=701 942872428 bytes) ==== EOF on wo 07/05/2014 at 21:24:38,37 ======================
- 7 mei 2014
- 16 antwoorden
opstart pc

ricardo425 reageerde op ricardo425's topic in Archief Windows 7

Zoek.exe v5.0.0.0 Updated 14-April-2014 Tool run by Richard on ma 05/05/2014 at 9:27:23,58. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Richard\AppData\Local\Temp\Rar$EX08.472\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2013-12-13-072205.log 24488 bytes ==== Empty Folders Check ====================== C:\PROGRA~2\Advanced System Protector deleted successfully C:\PROGRA~2\Optimizer Pro deleted successfully C:\PROGRA~2\PacFunction deleted successfully C:\PROGRA~2\SimilarSites deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\Users\Richard\AppData\Roaming\SimilarSites deleted successfully C:\Users\Richard\AppData\Local\DataSafeOnline deleted successfully C:\Users\Richard\AppData\Local\genienext deleted successfully C:\Users\Richard\AppData\Local\Lollipop deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully HKEY_CLASSES_ROOT\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== ACE-HIGH MP3 WAV WMA OGG Converter Adobe AIR Adobe Community Help Adobe Flash Player 13 ActiveX Adobe Flash Player 13 Plugin Adobe Media Player Adobe Reader XI (11.0.06) - Nederlands Adobe Shockwave Player 12.0 Apple Application Support Apple Mobile Device Support Apple Software Update AVG 2014 Bonjour BS.Player FREE Business Card Designer Plus 10.1.0.0 CCleaner Chessmaster Grandmaster Edition Compatibiliteitspakket voor het 2007 Microsoft Office system D3DX10 Dell DataSafe Local Backup - Support Software Dell DataSafe Local Backup Dell DataSafe Online Dell Dock Dell Edoc Viewer Dell Getting Started Guide Dell Support Center Dell System Detect Diagnostic Utility DVD Flick 1.3.0.7 Express Rip Facebook Video Calling 2.0.0.447 Free YouTube to MP3 Converter version 3.12.29.304 Freemake Audio Converter versie 1.1.0 High-Definition Video Playback 10 ImgBurn Intel® Graphics Media Accelerator Driver Intel© Matrix Storage Manager Java 7 Update 13 (64-bit) Java 7 Update 55 Java Auto Updater Java 6 Update 22 Junk Mail filter update McAfee Security Scan Plus Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft Application Error Reporting Microsoft Office 2003 Web Components Microsoft Office PowerPoint Viewer 2007 (Dutch) Microsoft Primary Interoperability Assemblies 2005 Microsoft Silverlight Microsoft SkyDrive Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU Microsoft Visual Studio 2005 Tools for Applications - ENU Microsoft Works Microsoft_VC80_ATL_x86 Microsoft_VC80_ATL_x86_x64 Microsoft_VC80_CRT_x86 Microsoft_VC80_CRT_x86_x64 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFC_x86_x64 Microsoft_VC80_MFCLOC_x86 Microsoft_VC80_MFCLOC_x86_x64 Microsoft_VC90_ATL_x86 Microsoft_VC90_ATL_x86_x64 Microsoft_VC90_CRT_x86 Microsoft_VC90_CRT_x86_x64 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFC_x86_x64 Movie Maker Mozilla Firefox 28.0 (x86 nl) Mozilla Maintenance Service MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP3 Parser MSXML 4.0 SP3 Parser (KB2758694) Nero 10 ClipartPack Nero 10 Menu TemplatePack 1 Nero 10 Menu TemplatePack 2 Nero 10 Menu TemplatePack 3 Nero 10 Menu TemplatePack Basic Nero 10 Movie ThemePack 1 Nero 10 Movie ThemePack 2 Nero 10 Movie ThemePack Basic Nero 10 Sample ImagePack Nero 10 Sample Videos Nero BackItUp 10 Nero BackItUp 10 Help (CHM) Nero Burning ROM 10 Nero BurningROM 10 Help (CHM) Nero BurnRights 10 Nero BurnRights 10 Help (CHM) Nero Control Center 10 Nero Core Components 10 Nero CoverDesigner 10 Nero CoverDesigner 10 Help (CHM) Nero DiscSpeed 10 Nero DiscSpeed 10 Help (CHM) Nero Dolby Files 10 Nero Express 10 Nero Express 10 Help (CHM) Nero InfoTool 10 Nero InfoTool 10 Help (CHM) Nero MediaHub 10 Nero MediaHub 10 Help (CHM) Nero Multimedia Suite 10 Nero Recode 10 Nero Recode 10 Help (CHM) Nero RescueAgent 10 Nero RescueAgent 10 Help (CHM) Nero SoundTrax 10 Nero SoundTrax 10 Help (CHM) Nero StartSmart 10 Nero StartSmart 10 Help (CHM) Nero Update Nero Vision 10 Nero Vision 10 Help (CHM) Nero WaveEditor 10 Nero WaveEditor 10 Help (CHM) OpenOffice.org 3.3 Photo Common Photo Gallery PowerDVD DX QuickTime 7 Realtek High Definition Audio Driver Roxio Burn Search Protect Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Shared C Run-time for x64 SubSync swMSM Toolbar Cleaner 1.0 TuneUp Utilities Language Pack (nl-NL) UnderCoverXP 1.23 Unity Web Player VC80CRTRedist - 8.0.50727.6195 Visual Studio 2010 x64 Redistributables Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables VLC media player 2.1.3 Vuze Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Windows Mobile Apparaatcentrum WinRAR 4.01 (32-bit) Youtube Music Downloader V3.8.3 YTD Video Downloader 4.8 ==== Running Processes ====================== C:\Program Files\Dell\DellDock\DockLogin.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\AVG\AVG2014\avgfws.exe C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Windows\SysWOW64\ctfmon.exe C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe C:\PROGRA~2\SearchProtect\SearchProtect\bin\cltmng.exe C:\Program Files (x86)\Nero\Update\NASvc.exe C:\PROGRA~2\SearchProtect\UI\bin\cltmngui.exe C:\Users\Richard\AppData\Local\Temp\Rar$EX08.472\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CltMngSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\CltMngSvc deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\McComponentHostService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\McComponentHostService deleted successfully ==== FireFox Fix ====================== ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\0 user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20140505_0942_.backup ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 user.js not found ---- Lines CT2504091 removed from prefs.js ---- user_pref("CT2504091.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}"); user_pref("CT2504091.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}"); user_pref("CT2504091.FF19Solved", "true"); user_pref("CT2504091.FirstTime", "true"); user_pref("CT2504091.FirstTimeFF3", "true"); user_pref("CT2504091.PG_ENABLE", "dHJ1ZQ=="); user_pref("CT2504091.UserID", "UN31896208814433251"); user_pref("CT2504091.addressBarTakeOverEnabledInHidden", "true"); user_pref("CT2504091.appOptions", "{\"price-gong\":{\"disabled\":false,\"render\":true},\"129079849636241789\":{\"render\":true,\"disabled\":false,\"a user_pref("CT2504091.cbfirsttime.enc", "TW9uIEZlYiAxNyAyMDE0IDIwOjU0OjQ2IEdNVCswMTAwIChSb21hbmNlIChzdGFuZGFhcmR0aWpkKSk="); user_pref("CT2504091.countryCode", "BE"); user_pref("CT2504091.defaultSearch", "false"); user_pref("CT2504091.embeddedsData", "[{\"appId\":\"129079840422026594\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"get user_pref("CT2504091.enableAlerts", "true"); user_pref("CT2504091.enableSearchFromAddressBar", "false"); user_pref("CT2504091.firstTimeDialogOpened", "true"); user_pref("CT2504091.fixPageNotFoundError", "false"); user_pref("CT2504091.fixPageNotFoundErrorByUser", "false"); user_pref("CT2504091.fixPageNotFoundErrorInHidden", "true"); user_pref("CT2504091.fullUserID", "UN31896208814433251.IN.20140217205333"); user_pref("CT2504091.installDate", "17/02/2014 20:53:35"); user_pref("CT2504091.installSessionId", "{B0D040BA-BDFF-4F6A-81FA-CDF57153BB12}"); user_pref("CT2504091.installSp", "false"); user_pref("CT2504091.installType", "conduitnsisintegration"); user_pref("CT2504091.installUsage", "2014-02-17T22:53:43.4796142+03:00"); user_pref("CT2504091.installUsageEarly", "2014-02-17T22:53:42.7152044+03:00"); user_pref("CT2504091.installerVersion", "1.8.1.4"); user_pref("CT2504091.isCheckedStartAsHidden", true); user_pref("CT2504091.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}"); user_pref("CT2504091.isFirstTimeToolbarLoading", "false"); user_pref("CT2504091.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}"); user_pref("CT2504091.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT2504091&octid=CT2504091&SearchSource user_pref("CT2504091.lastVersion", "10.23.0.822"); user_pref("CT2504091.mam_gk_installer_preapproved.enc", "ZmFsc2U="); user_pref("CT2504091.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"http%3A%2F%2Fpirateproxy.net%2Ftorrent%2F9549210%2FHome user_pref("CT2504091.openThankYouPage", "false"); user_pref("CT2504091.openUninstallPage", "true"); user_pref("CT2504091.price-gong.isManagedApp", "true"); user_pref("CT2504091.revertSettingsEnabled", "false"); user_pref("CT2504091.search.searchAppId", "129079840422026594"); user_pref("CT2504091.search.searchCount", "0"); user_pref("CT2504091.searchInNewTabEnabledByUser", "false"); user_pref("CT2504091.searchInNewTabEnabledInHidden", "true"); user_pref("CT2504091.searchRevert", "false"); user_pref("CT2504091.searchSuggestEnabledByUser", "false"); user_pref("CT2504091.searchUninstallUserMode", "1"); user_pref("CT2504091.searchUserMode", "1"); user_pref("CT2504091.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}"); user_pref("CT2504091.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}"); user_pref("CT2504091.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}"); user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2504091\"}"); user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"http://VuzeRemote.OurToolbar.com//x user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Vuze Remote \"}"); user_pref("CT2504091.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}"); user_pref("CT2504091.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}"); user_pref("CT2504091.serviceLayer_services_Configuration_lastUpdate", "1392666823292"); user_pref("CT2504091.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1392666824055"); user_pref("CT2504091.serviceLayer_services_appsMetadata_lastUpdate", "1392666823843"); user_pref("CT2504091.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1392666823898"); user_pref("CT2504091.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1392666823434"); user_pref("CT2504091.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1392666824394"); user_pref("CT2504091.serviceLayer_services_login_10.23.0.722_lastUpdate", "1392666824240"); user_pref("CT2504091.serviceLayer_services_login_10.23.0.822_lastUpdate", "1392667255415"); user_pref("CT2504091.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1392666823933"); user_pref("CT2504091.serviceLayer_services_searchAPI_lastUpdate", "1392666823963"); user_pref("CT2504091.serviceLayer_services_serviceMap_lastUpdate", "1392666823118"); user_pref("CT2504091.serviceLayer_services_toolbarContextMenu_lastUpdate", "1392666823854"); user_pref("CT2504091.serviceLayer_services_toolbarSettings_lastUpdate", "1392666823315"); user_pref("CT2504091.serviceLayer_services_translation_lastUpdate", "1392666823987"); user_pref("CT2504091.settingsINI", true); user_pref("CT2504091.shouldFirstTimeDialog", "false"); user_pref("CT2504091.showToolbarPermission", "false"); user_pref("CT2504091.smartbar.CTID", "CT2504091"); user_pref("CT2504091.smartbar.Uninstall", "0"); user_pref("CT2504091.smartbar.toolbarName", "Vuze Remote "); user_pref("CT2504091.startPage", "false"); user_pref("CT2504091.toolbarBornServerTime", "17-2-2014"); user_pref("CT2504091.toolbarCurrentServerTime", "17-2-2014"); user_pref("CT2504091.toolbarInstallDate", "17-02-2014 20:53:33"); user_pref("CT2504091.toolbarLoginClientTime", "Mon Feb 17 2014 20:53:44 GMT+0100 (Romance (standaardtijd))"); user_pref("CT2504091.url_history0001.enc", "aHR0cDovL3NlY3VyZS5wbi1pbnN0YWxsZXI5LmNvbS9vL2lyaXNfZ2V0cHJpdmF0ZS9HZXRQcml2YXRlX1NldHVwLmV4ZT9zdWJpZD1pcm user_pref("CT2504091.versionFromInstaller", "10.23.0.722"); user_pref("CT2504091.xpeMode", "1"); user_pref("CT2504091_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1392667389497,\"isWithState\":\"\",\"timeFromStar user_pref("valueApps.CT2504091./9B+7E+x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E,x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E-x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E.:2z527.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E.x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E/x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E06CG5EL8:", "6E6D68706D6E6F6E7473"); user_pref("valueApps.CT2504091./9B+7E06CG5EL8:.storedInFile", false); user_pref("valueApps.CT2504091./9B+7E06CG5EL;8I:K", "247E2D2F226A74736E76737475747A79242F4B49474F42357D5D5C3D"); user_pref("valueApps.CT2504091./9B+7E06CG5EL;8I:K.storedInFile", false); user_pref("valueApps.CT2504091./9B+7E0x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E1x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E2x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E31;CJC<=FBJ#OM.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E3x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E4x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E5x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E6x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E7x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E8x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E9x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E:x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E;x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E<x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E=x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E>x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E?x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7E@x305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7EAx305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7EBE3G=;D9N9=D", "372C2D326975762E3A3C7B3A39434A494841434B265146492965504656496571734D334B57"); user_pref("valueApps.CT2504091./9B+7EBE3G=;D9N9=D.storedInFile", false); user_pref("valueApps.CT2504091./9B+7EBx305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7ECx305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7EDx305.storedInFile", true); user_pref("valueApps.CT2504091./9B+7Etx305.storedInFile", true); user_pref("valueApps.CT2504091./9B-0?3G>D", "6E6C6A3F414373707A457975472075777A7725507D4F262A21575524232C5B2C2F5A602D"); user_pref("valueApps.CT2504091./9B-0?3G>D.storedInFile", false); user_pref("valueApps.CT2504091./9B-0?3G@6:5;", ""); user_pref("valueApps.CT2504091./9B-0?3G@6:5;.storedInFile", false); user_pref("valueApps.CT2504091./9B-0?3GFA7EF", "2B2E2C3D"); user_pref("valueApps.CT2504091./9B-0?3GFA7EF.storedInFile", false); user_pref("valueApps.CT2504091./9B-3=3ECCJA=F>", "247E333D2C452F4135276F297B7E7D21202F26313E4249357D37382F3A494D5D513F283338435D6554695B65546D57695D5D user_pref("valueApps.CT2504091./9B-3=3ECCJA=F>.storedInFile", false); user_pref("valueApps.CT2504091./9B/>01=9A6K6<IM;KRIE@PDAWM", "6A696B7273747576"); user_pref("valueApps.CT2504091./9B/>01=9A6K6<IM;KRIE@PDAWM.storedInFile", false); user_pref("valueApps.CT2504091./9B3=>@44I48?", "372C2D3269757633423633414847203E3D474E4D4C45474F2A554A4D2D5858585E4B554E366352564F"); user_pref("valueApps.CT2504091./9B3=>@44I48?.storedInFile", false); user_pref("valueApps.CT2504091./9B5BA==9CJAG", "663C713D737472447A75757948777C4A76784C4E7E"); user_pref("valueApps.CT2504091./9B5BA==9CJAG.storedInFile", false); user_pref("valueApps.CT2504091./9B6B11G4C56B>F;P;ANR@P", "6E6D68706D6E6F6E7474707278"); user_pref("valueApps.CT2504091./9B6B11G4C56B>F;P;ANR@P.storedInFile", false); user_pref("valueApps.CT2504091./9B90E@.3C;7B=?OFB>>RHIQS", "393F352F3E"); user_pref("valueApps.CT2504091./9B90E@.3C;7B=?OFB>>RHIQS.storedInFile", false); user_pref("valueApps.CT2504091./9B9643G3/9E", "6A"); user_pref("valueApps.CT2504091./9B9643G3/9E.storedInFile", false); user_pref("valueApps.CT2504091./9B;45>:BI9I7IE", "2B2E2C3D"); user_pref("valueApps.CT2504091./9B;45>:BI9I7IE.storedInFile", false); user_pref("valueApps.CT2504091./9B<:222H64<", "393F352F3E"); user_pref("valueApps.CT2504091./9B<:222H64<.storedInFile", false); user_pref("valueApps.CT2504091./9B<:222H64<L8DAJ", "6D70706E7674737976712A797272787B757B7C"); user_pref("valueApps.CT2504091./9B<:222H64<L8DAJ.storedInFile", false); user_pref("valueApps.CT2504091./9B=+03EH8H8J?:", "4443"); user_pref("valueApps.CT2504091./9B=+03EH8H8J?:.storedInFile", false); user_pref("valueApps.CT2504091./9B?+E2A52D8", "372C2D326975762E3A3C7B3A39434A494841434B2651464929655046566470727951555E5E52"); user_pref("valueApps.CT2504091./9B?+E2A52D8.storedInFile", false); user_pref("valueApps.CT2504091./9B?B0D:8AJ62<H", "6D"); user_pref("valueApps.CT2504091./9B?B0D:8AJ62<H.storedInFile", false); user_pref("valueApps.CT2504091./9BA@0<0BI6A7GN:6@L?", "6C"); user_pref("valueApps.CT2504091./9BA@0<0BI6A7GN:6@L?.storedInFile", false); user_pref("valueApps.CT2504091.PG_ENABLE", "74727565"); user_pref("valueApps.CT2504091.PG_ENABLE.storedInFile", false); user_pref("valueApps.CT2504091._key_cl_active", "36636164373964622D396238622D346165372D393230362D626364346133653462353665"); user_pref("valueApps.CT2504091._key_cl_active.storedInFile", false); user_pref("valueApps.CT2504091.cbfirsttime", "4D6F6E2046656220313720323031342032303A35333A353320474D542B303130302028526F6D616E636520287374616E64616172 user_pref("valueApps.CT2504091.cbfirsttime.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_appStateReportTime", "31333932363636383236393139"); user_pref("valueApps.CT2504091.mam_gk_appStateReportTime.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_appState_Clarity_Active", "6F6E"); user_pref("valueApps.CT2504091.mam_gk_appState_Clarity_Active.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_appState_CouponBuddy", "6F6E"); user_pref("valueApps.CT2504091.mam_gk_appState_CouponBuddy.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_appState_Easytobook", "6F6E"); user_pref("valueApps.CT2504091.mam_gk_appState_Easytobook.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_appState_Easytobook_targeted", "6F6E"); user_pref("valueApps.CT2504091.mam_gk_appState_Easytobook_targeted.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_appState_PriceGong", "6F6E"); user_pref("valueApps.CT2504091.mam_gk_appState_PriceGong.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_appsConfig.storedInFile", true); user_pref("valueApps.CT2504091.mam_gk_appsDefaultEnabled", "6E756C6C"); user_pref("valueApps.CT2504091.mam_gk_appsDefaultEnabled.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_calledSetupService", "31"); user_pref("valueApps.CT2504091.mam_gk_calledSetupService.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_currentVersion", "312E31332E302E3137"); user_pref("valueApps.CT2504091.mam_gk_currentVersion.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_eventsCache", "7B2231646437616131322D656532382D346364382D623762652D373336656465386439373461223A7B22746F706963223 user_pref("valueApps.CT2504091.mam_gk_eventsCache.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_existingUsersRecoveryDone", "31"); user_pref("valueApps.CT2504091.mam_gk_existingUsersRecoveryDone.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_first_time", "31"); user_pref("valueApps.CT2504091.mam_gk_first_time.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_gadgetOpen", "30"); user_pref("valueApps.CT2504091.mam_gk_gadgetOpen.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_lastLoginTime", "31333932363636383237323239"); user_pref("valueApps.CT2504091.mam_gk_lastLoginTime.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_localization.storedInFile", true); user_pref("valueApps.CT2504091.mam_gk_mamEnabled", "66616C7365"); user_pref("valueApps.CT2504091.mam_gk_mamEnabled.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_migrated_from_ls", "31"); user_pref("valueApps.CT2504091.mam_gk_migrated_from_ls.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_new_welcome_experience", "31"); user_pref("valueApps.CT2504091.mam_gk_new_welcome_experience.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_settings1.13.0.17.storedInFile", true); user_pref("valueApps.CT2504091.mam_gk_showWelcomeGadget", "66616C7365"); user_pref("valueApps.CT2504091.mam_gk_showWelcomeGadget.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_stamp", "35345F30"); user_pref("valueApps.CT2504091.mam_gk_stamp.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_userBornDate", "4E2F41"); user_pref("valueApps.CT2504091.mam_gk_userBornDate.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_userId", "37663063333832352D363335622D346238332D393766632D623437643235323136616162"); user_pref("valueApps.CT2504091.mam_gk_userId.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_user_approval_interacted", "31"); user_pref("valueApps.CT2504091.mam_gk_user_approval_interacted.storedInFile", false); user_pref("valueApps.CT2504091.mam_gk_welcomeDialogMode", "31"); user_pref("valueApps.CT2504091.mam_gk_welcomeDialogMode.storedInFile", false); user_pref("valueApps.CT2504091.url_history0001", "687474703A2F2F70697261746570726F78792E6E65742F746F7272656E742F393534393231302F486F6D6566726F6E745F28 user_pref("valueApps.CT2504091.url_history0001.storedInFile", true); ---- Lines conduit removed from prefs.js ---- user_pref("browser.newtab.url", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1&UM=2&UP=SPCD66168D- user_pref("browser.search.defaultenginename", "Conduit Search"); user_pref("browser.search.selectedEngine", "Conduit Search"); user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPCD66168D-CE8C-4 user_pref("plugin.state.npconduitfirefoxplugin", 2); ---- Lines valueApps removed from prefs.js ---- user_pref("valueApps.storage.mam_gk_userId", "37663063333832352D363335622D346238332D393766632D623437643235323136616162"); ---- Lines mindspark removed from prefs.js ---- user_pref("extensions.toolbar.mindspark.hp.enabled", false); user_pref("extensions.toolbar.mindspark.hp.enabled.guid", ""); user_pref("extensions.toolbar.mindspark.lastInstalled", "videodownloadconverter@mindspark.com"); ---- Lines crossrider removed from prefs.js ---- user_pref("extensions.crossrider.bic", "144d49f4131dd200caea14cf689f5040"); ---- Lines smartbar removed from prefs.js ---- user_pref("smartbar.machineId", "7SGOR2YCANS9N/ZANPAC4GXRGH12UYHUDY7VM7WRFOG8L3KR4IB+PRPC0XY3STLRHW6KC5GK69BYX+IFREZDEW"); ---- FireFox user.js and prefs.js backups ---- prefs_20140505_0942_.backup ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default user.js not found ---- Lines conduit removed from prefs.js ---- user_pref("browser.newtab.url", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1&UM=2&UP=SPCD66168D- user_pref("browser.search.selectedEngine", "Conduit Search"); user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPCD66168D-CE8C-4 ---- FireFox user.js and prefs.js backups ---- prefs_20140505_0942_.backup ProfilePath: C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20140505_0942_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "NextLive"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin] [-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MVT] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "NextLive"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== C:\Users\Richard\AppData\Roaming\newnext.me deleted C:\PROGRA~2\SearchProtect deleted C:\Users\Richard\daemonprocess.txt deleted C:\Users\Richard\.android deleted C:\PROGRA~2\Mobogenie deleted C:\PROGRA~2\Toolbar Cleaner deleted C:\PROGRA~2\GreenTree Applications deleted C:\PROGRA~2\Systweak Support Dock deleted C:\Users\Richard\AppData\Roaming\DefaultTab deleted C:\Users\Richard\AppData\Roaming\systweak deleted C:\Users\Richard\Documents\Vuze Downloads\Nero Autobackup\20130630_160912_Local Autobackup\C\Users\Richard\Music\Qtrax Media Library deleted C:\PROGRA~3\Allmyapps deleted C:\PROGRA~3\YTD Video Downloader deleted C:\Users\Richard\AppData\Local\SearchProtect deleted C:\Users\Richard\AppData\Local\Mobogenie deleted C:\Users\Richard\AppData\Local\cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted C:\Windows\SysNative\roboot64.exe deleted C:\Users\Richard\Downloads\FreeYouTubeToMP3Converter(1).exe deleted C:\Users\Richard\Downloads\FreeYouTubeToMP3Converter(2).exe deleted C:\Users\Richard\Downloads\FreeYouTubeToMP3Converter.exe deleted C:\Users\Richard\Downloads\SoftonicDownloader_voor_free-wma-to-mp3-converter.exe deleted C:\Users\Richard\Downloads\SoftonicDownloader_voor_toolbar-cleaner.exe deleted C:\Users\Richard\AppData\LocalLow\BS_Player deleted C:\END deleted C:\Windows\Syswow64\SearchProtect deleted C:\Users\Richard\Documents\Optimizer Pro deleted C:\Users\Richard\Documents\Mobogenie deleted C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137\searchplugins\ask-web-search.xml deleted C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137\valueApps deleted C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137\CT2504091 deleted C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default\searchplugins\conduit-search.xml deleted C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default\extensions\staged deleted C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137\smartbar deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" deleted "C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default\extensions\addon@defaulttab.com.xpi" deleted "C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe" deleted "C:\Program Files\McAfee Security Scan" not deleted "C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin" deleted "C:\Program Files\McAfee Security Scan\3.8.141" not deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 4061 MB CPU Info: Intel® Core2 Duo CPU E7500 @ 2.93GHz CPU Speed: 2990,3 MHz Sound Card: Luidsprekers (3- USB Sound Devi | Display Adapters: Intel® G45/G43 Express Chipset | Intel® G45/G43 Express Chipset | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1280 X 1024 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (D: | ) D: TSSTcorpDVD+-RW TS-H653G Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 689,7GB Hard Disks - Free: C: 403,5GB Manufacturer *: Dell Inc. BIOS Info: AT/AT COMPATIBLE | 08/16/32 | DELL - 20100226 Time Zone: Romance (standaardtijd) Motherboard *: Dell Inc. 0K83V0 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: AVG Internet Security 2014 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG Internet Security 2014 disabled (Outdated) Firewall: AVG Internet Security 2014 disabled Default Browser: Firefox 28.0 Internet Explorer Version: 11.0.9600.17105 Mozilla Firefox version: 28.0 (x86 nl) Mozilla Firefox version: (3.6.15) Adobe Reader version: 11.0.06.70 Sun Java version: 1.7.0_55 (32-bit) Sun Java version: 1.7.0_13 (64-bit) Flash Player version: 13.0.0.206 Shockwave Player version: 12.0r112 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Richard\AppData\Local\Temp ==== 2014-04-28 12:33:01 F5C0CEF8B88B0A3EFA3D2681C76DC564 299008 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\ssleay32.dll 2014-04-28 12:33:01 C5285FB18C566309BDEAC87ED37F45C9 26624 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\imageformats\qgif4.dll 2014-04-28 12:33:01 BC83108B18756547013ED443B8CDB31B 421200 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\msvcp100.dll 2014-04-28 12:33:01 B61F4E81044D1C3BEFD3C3212DEE286F 201216 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\imageformats\qjpeg4.dll 2014-04-28 12:33:01 A9FD9DD23C03AED462127ECC3E262590 13112320 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\QtWebKit4.dll 2014-04-28 12:33:01 A93C6C38EC6FE12117E3D73452C93A16 1199104 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\libeay32.dll 2014-04-28 12:33:01 8F8B55BDFD689BE50F7991196AB680FC 201728 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\QtSql4.dll 2014-04-28 12:33:01 8A2E025FD3DDD56C8E4F63416E46E2EC 1053696 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\QtNetwork4.dll 2014-04-28 12:33:01 84B9AAB23C24CB5C9C3F43165536BDAC 317304 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\AllmyappsUpdater.exe 2014-04-28 12:33:01 831BA3A8C9D9916BDF82E07A3E8338CC 8581632 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\QtGui4.dll 2014-04-28 12:33:01 70F47629EC62BAE2E371C104D4DA2517 55808 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\CrashRpt1301.dll 2014-04-28 12:33:01 6260A8A04E0D214C851AE35994124297 87040 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\qjson.dll 2014-04-28 12:33:01 503B2C4B64E17E7F4592C8E0D8119A5C 621432 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\AllmyappsManager.exe 2014-04-28 12:33:01 4D58AC6385F2EBD658BF79342D7D6EA8 28672 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\imageformats\qico4.dll 2014-04-28 12:33:01 4B5D9D024D8BFBEE770DB3D16FCE3E77 470528 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\sqldrivers\qsqlite4.dll 2014-04-28 12:33:01 215F565F4842E20E6BB66E59BDF22C87 1341440 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\QtScript4.dll 2014-04-28 12:33:01 1BDC06D69736939170FC3F61C33C891A 6782328 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\Allmyapps.exe 2014-04-28 12:33:01 17579FA06EB59761DAF434AD72EF6136 2598912 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\QtCore4.dll 2014-04-28 12:33:01 10E170AC0C8F73BA881107C94A72A0DC 654336 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\CrashSender1301.exe 2014-04-28 12:33:01 0E37FBFA79D349D672456923EC5FBBE3 773968 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\msvcr100.dll 2014-04-28 12:27:06 20612ACB94F364173094E91FD08D02DA 4624790 ----a-w- C:\Users\Richard\AppData\Local\Temp\n7704\systemspeedup_1203-72c8223c.exe 2014-04-28 12:26:23 29C1470CBF58838DC6A3F9D624B4527F 289280 ----atw- C:\Users\Richard\AppData\Local\Temp\n7704\s7704.exe 2014-04-23 18:19:49 45922155C9628E11441AA869C6287BB7 10372136 ----a-w- C:\Users\Richard\AppData\Local\Temp\BackupSetup.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-05-04 01:00:42 5869FBC754578A59C8C8635B99DB79DE 17384448 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-05-04 01:00:41 2518D1922371892ADEF1F07147DBD72A 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2014-04-22 06:30:23 AA12D7A960DB78DD9690AB5B5DAE6586 440832 ----a-w- C:\Windows\SysWOW64\ieui.dll 2014-04-22 06:30:22 CE6921D33682C6C3DB8A45853CC69402 455168 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2014-04-22 06:30:16 EDACA6C44D9CE200F899B7DB0F201DFF 164864 ----a-w- C:\Windows\SysWOW64\msrating.dll 2014-04-22 06:30:16 EBC35FE64056910A84485BEEB6DCCAC6 524288 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-04-22 06:30:16 7E9FE7DB43BC204E44F159F843E35C15 367616 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2014-04-22 06:30:16 34FC79C948EE2C5FD0CD699E7D7F91B7 244224 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-04-22 06:30:16 31385A6CAA31BE9D07B0B32E5AA99ABB 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2014-04-22 06:30:15 82287FCFFA4A2D60FD744E3FEB3192C5 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2014-04-22 06:30:15 21BF6759685FD193715B483F2B3F21B1 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-04-22 06:30:15 0FDC1A576A3F40420882C0F7C4A66EAD 32768 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2014-04-22 06:30:14 C9CA9803299EB6AFA34CB520BAAB083D 32256 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-04-22 06:30:13 BB185D4A9362AA17CBCEC0768CDBF249 704512 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-04-22 06:30:13 6557B48D53D653CFCCE3CB1CFA53A8E1 51200 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2014-04-22 06:30:13 0F4A295516781897FFB09B4CCF2E8798 592896 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2014-04-22 06:30:12 05BD47136DE62FAFE9F95B40E4100144 2178048 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-04-22 06:30:11 E4E829EE073E046B0EB19B5FECB19B8C 1789440 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-04-22 06:30:11 C4A383FD50FBD7E274DD41CF571DF898 1967104 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-04-22 06:30:11 76F58DB8F85C125E0D6B3AA42F3BF1D0 1143808 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-04-22 06:30:09 2AFBB91BBD2378933B26E6D68C140D1B 11745792 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-04-22 06:30:08 8C46360D6EF9D4C563FE834C4F287DA3 4254720 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-04-22 05:36:13 6EA69D2312F3571F6F8BEADD224165E8 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe 2014-04-22 05:36:08 9533FE0A942E00114047140B42DF8E3D 175016 ----a-w- C:\Windows\SysWOW64\java.exe 2014-04-22 05:36:08 3B10B54F50CD362537B9F2186267EDF8 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-04-22 05:36:08 37C15684482B4D596316735DCEEE939A 175528 ----a-w- C:\Windows\SysWOW64\javaw.exe ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-05-04 01:00:43 A98DA2EC1E56CF52C682D072F77D9874 23547904 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-05-04 01:00:42 DE5DE05946D6FC2DC494C55BC7BC4C6E 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2014-04-22 06:30:23 7446786E7092ABE122D372F95E6ED74B 574976 ----a-w- C:\Windows\Sysnative\ieui.dll 2014-04-22 06:30:22 FFF555C177D9F2B79B5C3146BED09FB1 548352 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-04-22 06:30:18 D6067F7EE060C5D6D79008AD591B4E3B 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll 2014-04-22 06:30:18 964C89BC8A52A260D68C90FDDEB862E2 38400 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2014-04-22 06:30:18 72116CC377FF4281B0132C397026D911 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2014-04-22 06:30:18 3F498856C68725717195C16568FE19D0 586240 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-04-22 06:30:16 E7161E2C66FF9B1E87C30FC9D2497ABB 195584 ----a-w- C:\Windows\Sysnative\msrating.dll 2014-04-22 06:30:16 E0D95345D1EBB54F28E958782B9C0CE0 453120 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2014-04-22 06:30:16 CFBA793F678EB3855052ECF99357A9A1 296960 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-04-22 06:30:16 CB57E934280D346AE0A9B053DAA284C5 51200 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2014-04-22 06:30:16 75AD355828187145A60E3DC7BAF7B0F3 628736 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-04-22 06:30:16 3F547245C78F4847B73EDDFD4A2F7E12 752640 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2014-04-22 06:30:15 A3F9A9E46BDDBB8B20B7CF3EEDB990F2 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll 2014-04-22 06:30:15 1BF215FF4DF6DE10D2F81A2CE85157D2 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2014-04-22 06:30:13 EBAD8A4D048ED257E4A45F6356541F86 846336 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-04-22 06:30:13 915D8A9E112C97C90C654F792B6B28B9 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2014-04-22 06:30:12 A3A132CBE48AF0324466469F2CAAE8A2 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2014-04-22 06:30:12 710FD0E362A1A5C087DB90C1BAC46411 940032 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2014-04-22 06:30:11 F220BA78AB542C70211D73AE4729B2CD 2260480 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-04-22 06:30:11 32417AE8280276968E5C551ED85D3525 1400832 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-04-22 06:30:11 1F8534A19A66275C863DE17645CB2A13 2767360 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-04-22 06:30:10 A14BB2F5F6457738AAA11367F5172A05 13551104 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-04-22 06:30:10 1654093C8BD3342997D27B71684ACCE8 2043904 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-04-22 06:30:08 BF25489459C7A762DD7B3186C7E3984D 5784064 ----a-w- C:\Windows\Sysnative\jscript9.dll ====== C:\Windows\Sysnative\drivers ===== 2014-04-18 13:01:30 B7E17B7733C4266F140DD356817E5678 237336 ----a-w- C:\Windows\Sysnative\drivers\avgidsdrivera.sys 2014-04-09 20:45:32 B3222734D80013D2C73841B0C549FA63 27584 ----a-w- C:\Windows\Sysnative\drivers\Diskdump.sys 2014-04-09 20:45:32 A3F0BC5897F9D3786A3CB695B163633A 190912 ----a-w- C:\Windows\Sysnative\drivers\storport.sys 2014-04-09 20:45:32 96BB922A0981BC7432C8CF52B5410FE6 274880 ----a-w- C:\Windows\Sysnative\drivers\msiscsi.sys 2014-04-09 20:45:28 1A29A59A4C5BA6F8C85062A613B7E2B2 1684928 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== ======= C: ===== ====== C:\Users\Richard\AppData\Roaming ====== 2014-04-28 12:32:21 -------- d-----w- C:\Users\Richard\AppData\Roaming\DVD Flick ====== C:\Users\Richard ====== 2014-04-29 18:18:10 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Richard\Downloads\RSITx64(1).exe 2014-04-28 12:32:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Flick 2014-04-28 12:31:28 F35A01604C1B7294468D8397D6EE3787 12951423 ----a-w- C:\Users\Richard\Downloads\dvdflick_setup_1.3.0.7.exe 2014-04-23 18:18:01 BF4DC1AF973CB747A1849C8A2D073659 11113112 ----a-w- C:\Users\Richard\Downloads\YTDSetup.exe ====== C: exe-files == 2014-04-29 18:18:10 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Richard\Downloads\RSITx64(1).exe 2014-04-28 12:33:01 84B9AAB23C24CB5C9C3F43165536BDAC 317304 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\AllmyappsUpdater.exe 2014-04-28 12:33:01 503B2C4B64E17E7F4592C8E0D8119A5C 621432 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\AllmyappsManager.exe 2014-04-28 12:33:01 1BDC06D69736939170FC3F61C33C891A 6782328 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\Allmyapps.exe 2014-04-28 12:33:01 10E170AC0C8F73BA881107C94A72A0DC 654336 ----a-w- C:\Users\Richard\AppData\Local\Temp\Allmyapps_2.0.0.24\CrashSender1301.exe 2014-04-28 12:32:05 EEFCF1B5BFFCD96E7BDB28134F3EBD55 214528 ----a-w- C:\Program Files (x86)\DVD Flick\imgburn\imgburnpreview.exe 2014-04-28 12:32:05 1FC166D09C990EE9A14C496C20EF8190 1700352 ----a-w- C:\Program Files (x86)\DVD Flick\imgburn\imgburn.exe 2014-04-28 12:32:04 D0C955BCE42D4417B3ED93D7710E19C8 401408 ----a-w- C:\Program Files (x86)\DVD Flick\delaycut\delaycut.exe 2014-04-28 12:32:04 AF6588476BA21AC8C8ACCDE6ABF42347 1759232 ----a-w- C:\Program Files (x86)\DVD Flick\mkvextract\mkvextract.exe 2014-04-28 12:32:03 F2A284599115BA3D7923809A6170E90C 22016 ----a-w- C:\Program Files (x86)\DVD Flick\bin\cat.exe 2014-04-28 12:32:03 E59CBE4E3EB00803725F825DC7847C3C 69632 ----a-w- C:\Program Files (x86)\DVD Flick\bin\pulldown.exe 2014-04-28 12:32:03 E1965AF11829BDBB683FE8FA7708F490 187012 ----a-w- C:\Program Files (x86)\DVD Flick\bin\mpgtx.exe 2014-04-28 12:32:03 87A9126FAE9A2C94BEC164EB9328DEE9 576000 ----a-w- C:\Program Files (x86)\DVD Flick\bin\dvdauthor.exe 2014-04-28 12:32:03 82256AE8932658C3F142AC687C90C7A9 695578 ----a-w- C:\Program Files (x86)\DVD Flick\unins001.exe 2014-04-28 12:32:03 6C90415A6FA967E3746C32E7E6366B22 1110016 ----a-w- C:\Program Files (x86)\DVD Flick\dvdflick.exe 2014-04-28 12:32:03 53D42E6C91F3F7FCF80917ECCF303F27 2009088 ----a-w- C:\Program Files (x86)\DVD Flick\bin\spumux.exe 2014-04-28 12:32:03 50FD656A6B42D77CE78E58DD726B4CED 46592 ----a-w- C:\Program Files (x86)\DVD Flick\bin\bmp2png.exe 2014-04-28 12:32:03 398B96DD5B24DB4BCD4A4F1340274950 5739539 ----a-w- C:\Program Files (x86)\DVD Flick\bin\ffmpeg.exe 2014-04-28 12:32:03 226F1F1D0E92F2E05D74CAF1703EA5F0 188928 ----a-w- C:\Program Files (x86)\DVD Flick\bin\mplex.exe 2014-04-28 12:31:28 F35A01604C1B7294468D8397D6EE3787 12951423 ----a-w- C:\Users\Richard\Downloads\dvdflick_setup_1.3.0.7.exe 2014-04-28 12:27:06 20612ACB94F364173094E91FD08D02DA 4624790 ----a-w- C:\Users\Richard\AppData\Local\Temp\n7704\systemspeedup_1203-72c8223c.exe 2014-04-28 12:26:23 29C1470CBF58838DC6A3F9D624B4527F 289280 ----atw- C:\Users\Richard\AppData\Local\Temp\n7704\s7704.exe === C: other files == 2014-04-28 17:59:23 8AF11EF119BDFC350FBF3786C31C32D8 1606588 ----a-w- C:\Users\Richard\AppData\Roaming\Azureus\plugins\aznettor\aznettor_0.6.2.zip 2014-04-28 17:59:19 B129BC13EEF057EE722D3A3489C392B4 185738 ----a-w- C:\Users\Richard\AppData\Roaming\Azureus\plugins\azutp\azutp_0.5.4.zip 2014-04-28 17:59:19 8AF11EF119BDFC350FBF3786C31C32D8 1606588 ----a-w- C:\Users\Richard\AppData\Local\Temp\aznettor-win32_0.6.2.zip 2014-04-28 17:59:16 B129BC13EEF057EE722D3A3489C392B4 185738 ----a-w- C:\Users\Richard\AppData\Local\Temp\azutp_0.5.4.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-810726386-2924154629-2946816220-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Dell DataSafe Online"="C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe /m" "PDVDDXSrv"="C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" "Desktop Disc Tool"="c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" "NBAgent"="C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe /WinStart" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\PROGRA~2\\SearchProtect\\SearchProtect\\bin\\SPVC32Loader.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe " ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2010-06-07 10:38:53 2000 ----a-w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk 2010-06-07 10:38:53 2000 ----a-w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [29/04/2014 16:00] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000Core.job --a------ C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/06/2013 18:51] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000UA.job --a------ C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/06/2013 18:51] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Richard-PC-Richard" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files (x86)\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000Core" [C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000UA" [C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\PCDEventLauncher" ["C:\Program Files\Dell Support Center\sessionchecker.exe"] "C:\Windows\SysNative\tasks\Richard NBAgent 5 4" ["C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe"] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\{0D1F5378-CE5F-4070-A060-8C3F15A7F9CF}" [C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe] "C:\Windows\SysNative\tasks\{1110D5EC-E363-45ED-89C5-920752F24C5D}" [C:\Program Files (x86)\Webteh\BSplayer\bsplayer.exe] "C:\Windows\SysNative\tasks\{1D821C4C-874D-4298-B939-A66C634E60BB}" ["c:\program files (x86)\mozilla firefox\firefox.exe"] "C:\Windows\SysNative\tasks\{49D6CC22-8EF2-4D0C-89F8-3B2F592BC7E5}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\{755BF4F0-5808-4C54-9202-B114B124B895}" [C:\Program Files (x86)\Webteh\BSplayer\bsplayer.exe] "C:\Windows\SysNative\tasks\{85500AFC-EC88-438B-985D-6B002A97E5C4}" [C:\Users\Richard\Videos\TETRIS.EXE] "C:\Windows\SysNative\tasks\{A3B3BB82-1528-4018-96B0-E85CFC970F1B}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\{DEA86D37-B63B-4EA6-B545-3589D3C3AB5A}" [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{ACAA314B-EEBA-48e4-AD47-84E31C44796C}"="C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff" [10/12/2013 19:34] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 - DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default - Undetermined - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - Undetermined - C:\Program Files\Web Assistant\Firefox - Undetermined - C:\Program Files (x86)\McAfee\SiteAdvisor ProfilePath: C:\Users\Richard\AppData\Roaming\Thunderbird\Profiles\wvia9ila.default - McAfee Anti-Spam Thunderbird Extension - %ProfilePath%\extensions\msktbird@mcafee.com AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 9FD6A1990289B9290563CA069CB74EF9 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll - Shockwave Flash FF0D6F82A0EC13952E83B9439100E45D - C:\Users\Richard\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin 341B3AE026B143DBC17BA1E1E0BAE3D6 - C:\Users\Richard\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player CF25FDD7CA6BC88442A58F74DBB6CFA6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll - Shockwave for Director / Shockwave for Director 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin Profilepath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\abp9obje.default 045084E4F10D31E71057FE741D87FDB0 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll - Shockwave Flash 99F97C9FE748C37528C338A423577FCB - C:\Users\Richard\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin 15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bopakagnckmlgajfccecajhnimjiiedh - No path found[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPCD66168D-CE8C-4E71-B4E5-C81522053613&SSPV=" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect deleted successfully ==== HijackThis Entries ====================== O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" O4 - HKLM\..\Run: [Desktop Disc Tool] "c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user') O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.dell.com O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AD5C7JJJ will be deleted at reboot C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DRHT27NA will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\Richard\AppData\Local\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137\Cache emptied successfully ==== Empty Chrome Cache ====================== No Chrome Cache found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=3994 folders=698 942647732 bytes) ==== Empty Temp Folders ====================== C:\Users\AppData\AppData\Local\Temp emptied successfully C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Public\AppData\Local\Temp emptied successfully C:\Users\Richard\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Richard\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Program Files\McAfee Security Scan" not found "C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AD5C7JJJ" not found "C:\Users\Richard\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DRHT27NA" not found ==== EOF on ma 05/05/2014 at 9:54:26,58 ======================
- 5 mei 2014
- 16 antwoorden
opstart pc

ricardo425 reageerde op ricardo425's topic in Archief Windows 7

Logfile of random's system information tool 1.09 (written by random/random) Run by Richard at 2014-04-29 20:18:26 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 413 GB (58%) free of 706 GB Total RAM: 4061 MB (49% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:18:29, on 29/04/2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17041) Boot mode: Normal Running processes: C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Windows\SysWOW64\ctfmon.exe C:\PROGRA~2\SearchProtect\SearchProtect\bin\cltmng.exe C:\PROGRA~2\SearchProtect\UI\bin\cltmngui.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe C:\Program Files\trend micro\Richard.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Zoeken R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O4 - HKLM\..\Run: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" O4 - HKLM\..\Run: [Desktop Disc Tool] "c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Richard\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user') O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.dell.com O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Search Protect by Conduit Service (CltMngSvc) - Conduit - C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 11008 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe c:\PROGRA~2\AVG\AVG2014\avgrsa.exe /boot C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=14d3590b-2dfa-4808-b02d-774c44152772 /coreSdkOptions=4382 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\209ddb6b-60f1-460e-bb86-985f61c7e917-1a8-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\" /logPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\log\" %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs "C:\Program Files\Dell\DellDock\DockLogin.exe" C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "taskhost.exe" "C:\Program Files (x86)\AVG\AVG2014\avgfws.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe" "C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe" "C:\Program Files\Bonjour\mDNSResponder.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe" "C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe" "C:\Windows\System32\igfxtray.exe" "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s "C:\Windows\WindowsMobile\wmdc.exe" "C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe" "C:\Program Files (x86)\AVG\AVG2014\avgemca.exe" "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" "C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" WLIDSvcM.exe 3180 "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY "C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe" C:\Windows\system32\wbem\wmiprvse.exe ctfmon.exe "C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe" "C:\Users\Richard\AppData\Local\Apps\2.0\C32B01GH.KYQ\LGHOY23L.WH5\dell..tion_0f612f649c4a10af_0005.0004_3ddfe37344028d2c\DellSystemDetect.exe" C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=2624b270-4e03-4203-8403-5665ba9b980d /coreSdkOptions=4114 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\c5cf1f26-2542-4826-894f-520a3b07e75c-bd4-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014\temp\" C:\Windows\system32\svchost.exe -k WindowsMobile C:\Windows\system32\SearchIndexer.exe /Embedding C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files\Windows Media Player\wmpnetwk.exe" "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5e72db5c-a75c-4232-a14a-d42ac81e9dc2 -SystemEventPortName:HostProcess-36c5f768-c301-4c6c-97ed-7eddb362a755 -IoCancelEventPortName:HostProcess-843fb7bf-18a9-4dbc-bad7-46e765e90cf1 -NonStateChangingEventPortName:HostProcess-9e2cd5d3-0a2c-4d57-bb05-c8added7b8ee -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:819cf0c3-6bc4-4ad1-b2b6-7b88229180b4 -DeviceGroupId:WpdFsGroup C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe "C:\Program Files (x86)\Nero\Update\NASvc.exe" C:\PROGRA~2\SearchProtect\SearchProtect\bin\cltmng.exe C:\PROGRA~2\SearchProtect\UI\bin\cltmngui.exe "C:\Program Files\Vuze\Azureus.exe" "taskhost.exe" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "http://www.pc-helpforum.be/" "C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=5724.1a855ce0.1552312986 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 5724 "\\.\pipe\gecko-crash-server-pipe.5724" plugin "C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe" --proxy-stub-channel=Flash4884.5FB57F48.13218 --host-broker-channel=Flash4884.5FB57F48.11243 --host-pid=4884 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll" "C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe" --channel=6464.003EF21C.1323486157 --proxy-stub-channel=Flash4884.5FB57F48.13218 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll" --host-npapi-version=27 --type=renderer "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe16_ Global\UsGthrCtrlFltPipeMssGthrPipe16 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524 "C:\Users\Richard\Downloads\RSITx64(1).exe" C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF} ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000Core.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-810726386-2924154629-2946816220-1000UA.job =========Mozilla firefox========= ProfilePath - C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137 prefs.js - "browser.search.useDBForOrder" - "false" prefs.js - "browser.startup.homepage" - "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPCD66168D-CE8C-4E71-B4E5-C81522053613&SSPV=" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 13.0.0.206 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin] "Description"=McAfee Mss Plugin "Path"=C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MVT] "Description"=McAfee Virtual Technician Plugin "Path"=C:\Program Files (x86)\McAfee\Supportability\MVT\npmvtplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.2] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 13.0.0.206 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Windows\system32\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll C:\Program Files (x86)\Mozilla Firefox\components\ nsIQTScriptablePlugin.xpt C:\Program Files (x86)\Mozilla Firefox\plugins\ nppdf32.dll npqtplugin.dll npqtplugin2.dll npqtplugin3.dll npqtplugin4.dll npqtplugin5.dll QuickTimePlugin.class C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\7q1clh8g.default-1344866302137\searchplugins\ ask-web-search.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] DVDVideoSoft IE Extension - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2013-12-30 357432] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}] MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll [2014-01-16 96128] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] DVDVideoSoft IE Extension - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2013-12-30 294456] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"=C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-04 186904] "AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-08-25 161304] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-08-25 386584] "Persistence"=C:\Windows\system32\igfxpers.exe [2010-08-25 415256] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-10-21 8306208] "Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"=C:\Users\Richard\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-19 138096] "DellSystemDetect"=C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms [2013-10-08 370] "NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "Dell DataSafe Online"=C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe [2009-11-13 1807600] "PDVDDXSrv"=C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [2009-12-29 140520] "Desktop Disc Tool"=c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2009-10-15 498160] "NBAgent"=C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-02-22 1226024] "APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904] "AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2014-04-06 5180432] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\GoToAssist] C:\Program Files (x86)\Citrix\GoToAssist\615\G2AWinLogon_x64.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2010-08-25 271360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2013-11-26 243200] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\GoToAssist] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableLinkedConnections"=1 "DisableTaskMgr"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 "NoRun"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "aux3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "aux4"=wdmaud.drv "wave5"=wdmaud.drv "midi5"=wdmaud.drv "mixer5"=wdmaud.drv "aux5"=wdmaud.drv "wave6"=wdmaud.drv "midi6"=wdmaud.drv "mixer6"=wdmaud.drv "aux6"=wdmaud.drv "wave7"=wdmaud.drv "midi7"=wdmaud.drv "mixer7"=wdmaud.drv "aux7"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 month====== 2014-04-28 19:31:49 ----D---- C:\ProgramData\Allmyapps 2014-04-28 14:32:21 ----D---- C:\Users\Richard\AppData\Roaming\DVD Flick 2014-04-28 14:28:14 ----D---- C:\Program Files (x86)\Systweak Support Dock 2014-04-28 14:27:27 ----D---- C:\Program Files (x86)\Advanced System Protector 2014-04-28 14:27:11 ----A---- C:\Windows\system32\roboot64.exe 2014-04-28 14:27:09 ----D---- C:\Users\Richard\AppData\Roaming\systweak 2014-04-23 20:19:49 ----D---- C:\ProgramData\YTD Video Downloader 2014-04-23 20:19:38 ----D---- C:\Program Files (x86)\GreenTree Applications 2014-04-22 08:30:23 ----A---- C:\Windows\SYSWOW64\ieui.dll 2014-04-22 08:30:23 ----A---- C:\Windows\system32\ieui.dll 2014-04-22 08:30:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2014-04-22 08:30:22 ----A---- C:\Windows\system32\vbscript.dll 2014-04-22 08:30:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-04-22 08:30:18 ----A---- C:\Windows\system32\iernonce.dll 2014-04-22 08:30:18 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-04-22 08:30:18 ----A---- C:\Windows\system32\ie4uinit.exe 2014-04-22 08:30:16 ----A---- C:\Windows\SYSWOW64\msrating.dll 2014-04-22 08:30:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2014-04-22 08:30:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2014-04-22 08:30:16 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2014-04-22 08:30:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2014-04-22 08:30:16 ----A---- C:\Windows\system32\msrating.dll 2014-04-22 08:30:16 ----A---- C:\Windows\system32\msfeeds.dll 2014-04-22 08:30:16 ----A---- C:\Windows\system32\jsproxy.dll 2014-04-22 08:30:16 ----A---- C:\Windows\system32\jscript9diag.dll 2014-04-22 08:30:16 ----A---- C:\Windows\system32\dxtrans.dll 2014-04-22 08:30:16 ----A---- C:\Windows\system32\dxtmsft.dll 2014-04-22 08:30:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2014-04-22 08:30:15 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2014-04-22 08:30:15 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2014-04-22 08:30:15 ----A---- C:\Windows\system32\ieUnatt.exe 2014-04-22 08:30:15 ----A---- C:\Windows\system32\iesetup.dll 2014-04-22 08:30:14 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2014-04-22 08:30:14 ----A---- C:\Windows\system32\mshtml.dll 2014-04-22 08:30:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2014-04-22 08:30:13 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2014-04-22 08:30:13 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2014-04-22 08:30:13 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-04-22 08:30:13 ----A---- C:\Windows\system32\ieapfltr.dll 2014-04-22 08:30:12 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2014-04-22 08:30:12 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-04-22 08:30:12 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-04-22 08:30:11 ----A---- C:\Windows\SYSWOW64\wininet.dll 2014-04-22 08:30:11 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2014-04-22 08:30:11 ----A---- C:\Windows\system32\wininet.dll 2014-04-22 08:30:11 ----A---- C:\Windows\system32\urlmon.dll 2014-04-22 08:30:11 ----A---- C:\Windows\system32\iertutil.dll 2014-04-22 08:30:10 ----A---- C:\Windows\system32\ieframe.dll 2014-04-22 08:30:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2014-04-22 08:30:08 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2014-04-22 08:30:08 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2014-04-22 08:30:08 ----A---- C:\Windows\system32\jscript9.dll 2014-04-22 07:36:13 ----A---- C:\Windows\SYSWOW64\javaws.exe 2014-04-22 07:36:08 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2014-04-22 07:36:08 ----A---- C:\Windows\SYSWOW64\javaw.exe 2014-04-22 07:36:08 ----A---- C:\Windows\SYSWOW64\java.exe 2014-04-18 18:57:29 ----D---- C:\ProgramData\Avg_Update_0414b 2014-04-18 15:01:30 ----A---- C:\Windows\system32\drivers\avgidsdrivera.sys 2014-04-09 22:45:32 ----A---- C:\Windows\SYSWOW64\iologmsg.dll 2014-04-09 22:45:32 ----A---- C:\Windows\system32\iologmsg.dll 2014-04-09 22:45:32 ----A---- C:\Windows\system32\drivers\storport.sys 2014-04-09 22:45:32 ----A---- C:\Windows\system32\drivers\msiscsi.sys 2014-04-09 22:45:32 ----A---- C:\Windows\system32\drivers\Diskdump.sys 2014-04-09 22:45:30 ----A---- C:\Windows\SYSWOW64\kernel32.dll 2014-04-09 22:45:30 ----A---- C:\Windows\system32\wow64.dll 2014-04-09 22:45:30 ----A---- C:\Windows\system32\kernel32.dll 2014-04-09 22:45:29 ----A---- C:\Windows\SYSWOW64\wow32.dll 2014-04-09 22:45:29 ----A---- C:\Windows\SYSWOW64\user.exe 2014-04-09 22:45:29 ----A---- C:\Windows\SYSWOW64\setup16.exe 2014-04-09 22:45:29 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2014-04-09 22:45:29 ----A---- C:\Windows\SYSWOW64\instnm.exe 2014-04-09 22:45:29 ----A---- C:\Windows\system32\wow64win.dll 2014-04-09 22:45:29 ----A---- C:\Windows\system32\wow64cpu.dll 2014-04-09 22:45:29 ----A---- C:\Windows\system32\ntvdm64.dll 2014-04-09 22:45:28 ----A---- C:\Windows\system32\drivers\ntfs.sys 2014-03-31 16:20:54 ----A---- C:\Windows\system32\drivers\avgtdia.sys 2014-03-31 16:06:26 ----A---- C:\Windows\system32\drivers\avgmfx64.sys ======List of files/folders modified in the last 1 month====== 2014-04-29 20:18:29 ----D---- C:\Windows\Prefetch 2014-04-29 20:18:28 ----D---- C:\Program Files\trend micro 2014-04-29 20:14:09 ----D---- C:\Users\Richard\AppData\Roaming\Azureus 2014-04-29 20:11:30 ----D---- C:\Windows\Temp 2014-04-29 20:07:31 ----D---- C:\ProgramData\MFAData 2014-04-29 18:52:35 ----D---- C:\Windows\system32\config 2014-04-29 16:00:15 ----D---- C:\Windows\SysWOW64 2014-04-29 16:00:14 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2014-04-29 11:02:51 ----D---- C:\Users\Richard\AppData\Roaming\vlc 2014-04-29 10:19:57 ----RD---- C:\Program Files (x86) 2014-04-29 10:19:28 ----D---- C:\Windows\system32\Tasks 2014-04-29 10:19:27 ----D---- C:\Windows\Tasks 2014-04-28 19:31:49 ----D---- C:\ProgramData 2014-04-28 19:18:57 ----SHD---- C:\Windows\Installer 2014-04-28 19:18:57 ----D---- C:\Config.Msi 2014-04-28 19:18:29 ----D---- C:\Windows\system32\drivers 2014-04-28 19:18:26 ----D---- C:\Windows\inf 2014-04-28 19:18:20 ----D---- C:\Windows\system32\DriverStore 2014-04-28 19:18:20 ----D---- C:\Windows\system32\catroot 2014-04-28 19:17:32 ----SHD---- C:\System Volume Information 2014-04-28 14:58:58 ----A---- C:\Windows\NeroDigital.ini 2014-04-28 14:32:05 ----D---- C:\Program Files (x86)\DVD Flick 2014-04-28 14:28:10 ----D---- C:\Windows\System32 2014-04-22 13:21:55 ----D---- C:\Windows\rescache 2014-04-22 11:56:43 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-04-22 11:52:02 ----D---- C:\Windows\winsxs 2014-04-22 11:51:13 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-04-22 11:51:13 ----D---- C:\Windows\SYSWOW64\en-US 2014-04-22 11:51:13 ----D---- C:\Program Files\Internet Explorer 2014-04-22 11:51:11 ----D---- C:\Windows\system32\nl-NL 2014-04-22 11:51:11 ----D---- C:\Windows\system32\en-US 2014-04-22 11:51:11 ----D---- C:\Windows\PolicyDefinitions 2014-04-22 11:51:08 ----D---- C:\Program Files (x86)\Internet Explorer 2014-04-22 08:30:59 ----D---- C:\Windows\system32\catroot2 2014-04-22 07:36:24 ----D---- C:\ProgramData\Oracle 2014-04-22 07:36:08 ----D---- C:\Program Files (x86)\Java 2014-04-13 20:56:05 ----D---- C:\Program Files (x86)\SearchProtect 2014-04-10 03:18:56 ----D---- C:\Windows 2014-04-10 03:17:52 ----D---- C:\Windows\AppPatch 2014-04-10 03:02:26 ----D---- C:\Windows\system32\MRT 2014-04-10 03:00:58 ----D---- C:\Windows\debug 2014-04-10 03:00:56 ----A---- C:\Windows\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2014-03-27 192792] R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2014-03-27 324376] R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2014-03-31 130840] R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2014-03-27 32536] R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-05 408600] R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-03-04 55856] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2014-03-27 153368] R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2013-09-26 57144] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2014-04-18 237336] R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2014-03-27 236824] R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2014-03-31 274200] R2 RtNdPt60;Realtek NDIS Protocol Driver; C:\Windows\system32\DRIVERS\RtNdPt60.sys [2009-07-20 27136] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-08-25 10611552] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-10-21 2012832] R3 IntcHdmiAddService;Intel® High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2009-05-26 138752] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-08-19 239616] S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384] S3 catchme;catchme; \??\C:\ComboFix\catchme.sys [] S3 cpuz132;cpuz132; \??\C:\Users\Richard\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-07-30 102368] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-07-28 57280] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2008-10-24 43008] S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVlan60.sys [2007-12-03 24064] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-07-30 203104] S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2008-10-24 43008] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2010-04-19 50688] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496] S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2006-11-01 151656] S3 WinUsb;WinUsb-stuurprogramma; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624] R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [2014-04-03 1473280] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-04-18 3645456] R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-03-27 291912] R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 CltMngSvc;Search Protect by Conduit Service; C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe [2014-04-08 2470688] R2 DockLoginService;Dock Login Service; C:\Program Files\Dell\DellDock\DockLogin.exe [2009-06-09 155648] R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2013-12-20 103936] R2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-04 354840] R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080] R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2010-08-20 689472] R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-29 257712] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616] S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [2014-01-16 289256] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-18 119408] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-15 1255736] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF-----------------
- 29 april 2014
- 16 antwoorden
opstart pc

ricardo425 plaatste een topic in Archief Windows 7

Hallo beste vrienden, Na een hele tijd zonder problemen krijg ik sinds enkele dagen bij het opstarten van mijn pc dit als melding. Hoe komt dit, en wat kan ik ertegen doen.
- 28 april 2014
- 16 antwoorden
piepende laptop

ricardo425 plaatste een topic in Archief Hardware algemeen

Dit geluid krijg ik te horen wanneer de laptop opstart en dat duurt ongeveer een 10 tal minuten Wat kan de oorzaak zijn?
- 21 maart 2014
wma naar mp3

ricardo425 plaatste een topic in Archief Multimedia

Graag had ik een programma om wma naar mp3 om te zetten. Heb er verschillende gevonden via google, maar heb schrik om er een verkeerde uit te nemen. Misschien ook wat uitleg van de werking ervan. Dank bij voorbaat
- 2 januari 2014
- 1 antwoord

Inloggen

Profielen

Forums

Store

Alles dat geplaatst werd door ricardo425

OVER ONS

SITEMAP

Belangrijke informatie