Pop ups blokkeren

[Fav]

Nieuwe PC aangeschaft voor ouders. Werkt goed maar enorm veel pop ups met reclame.Weet iemand hoe ik deze kan blokkeren? Ook staan in de tekst meestal meerdere woorde in andere kleur en als je daar met de muis over gaat komt ook reclame tevoorschijn.Heel vervelend!

[kape]

Download RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

• RSIT 32 bit (RSIT.exe)
  
• RSIT 64 bit (RSITx64.exe)
  

Dubbelklik op RSIT.exe om de tool te starten.

• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  
• Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  
• Plaats de inhoud hiervan in het volgende bericht.
  

[Fav]

Beste,

bedankt voor uw spoedig antwoord. Was in feite voor op nieuwe PC ouders maar daar ik er ook last van heb heb ik dit eens geprobeerd op de mijne. Enorm logbestand. Bent u hier iets mee?

Alvast bedankt!

MVG

Fav

Logfile of random's system information tool 1.09 (written by random/random)

Run by fvanhoon at 2013-11-10 22:35:03

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 139 GB (29%) free of 474 GB

Total RAM: 6126 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 22:35:06, on 10/11/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16514)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe

C:\Program Files (x86)\ooVoo\ooVoo.exe

C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe

C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe

C:\Program Files (x86)\Internet Explorer\IELowutil.exe

C:\Program Files (x86)\Vuze\Azureus.exe

C:\Users\fvanhoon\AppData\Local\Temp\Creative Cloud Helper.exe

C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe

C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe

C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe

C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe

C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe

C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe

C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe

C:\Program Files (x86)\OpenOffice 4\program\swriter.exe

C:\Program Files (x86)\OpenOffice 4\program\soffice.exe

C:\Program Files (x86)\OpenOffice 4\program\soffice.bin

C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe

C:\Program Files (x86)\Opera\opera.exe

C:\PROGRA~2\Raptr\raptr.exe

C:\PROGRA~2\Raptr\raptr_im.exe

C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe

C:\Program Files (x86)\Moborobo\Moborobo PC Suite.exe

C:\Program Files (x86)\Moborobo\AndroidInterface.exe

C:\Users\fvanhoon\Documents\Moborobo\Cache\driver\USB_VID_04E8&PID_685E\Setup.exe

C:\Windows\syswow64\MsiExec.exe

C:\Users\fvanhoon\AppData\Local\Temp\{7931F76E-D648-48DD-94B8-252D1D136528}\WriteDescExecuteFileName.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files\trend micro\fvanhoon.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Unique audio and video software collection: Voice mask software, free DJ mixer software to make DJ music

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.ividi.org/?src=tbhp&id=7a32b2f90000000000000008d3839a76&affilt=3

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ironto&s={searchTerms}&f=4

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.1\iobitappsToolbarIE.dll

R3 - URLSearchHook: (no name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - (no file)

R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} - (no file)

R3 - URLSearchHook: express-files Toolbar - {88ac3cb6-596b-4217-964c-b6757ef9602d} - C:\Program Files (x86)\express-files\prxtbexpr.dll

R3 - URLSearchHook: (no name) - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - (no file)

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.1\iobitappsToolbarIE.dll

O2 - BHO: diamondata - {055af109-de93-4160-bcfc-7da70ecaa020} - C:\Program Files (x86)\diamondata\diamondatabho.dll

O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll

O2 - BHO: Speed Analysis 2 - {18DBB6CE-3148-4FEC-B481-103CB3290427} - C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Bcool - {197915AB-0BCA-85F9-F0EB-E48819C4AC39} - C:\ProgramData\Bcool\bhoclass.dll

O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll

O2 - BHO: Web Assistant Helper - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension32.dll

O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll

O2 - BHO: mixidj Helper Object - {4D6A9BBF-402C-4301-B1EF-28D04F71D761} - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\bh\mixidj.dll

O2 - BHO: TBSB01620 - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll

O2 - BHO: RewardsArcade - {597A9974-8CB0-4f41-B61F-ED065738A397} - C:\Program Files (x86)\RewardsArcade\RewardsArcade.dll

O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll

O2 - BHO: Games by 7Go - {7148263E-9744-4719-BEA3-8766FC18932B} - C:\Program Files (x86)\Games by 7Go\ScriptHost.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\fvanhoon\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll

O2 - BHO: express-files - {88ac3cb6-596b-4217-964c-b6757ef9602d} - C:\Program Files (x86)\express-files\prxtbexpr.dll

O2 - BHO: ividi Helper Object - {8B8B2E80-1444-451D-AC8E-EB9A847F3887} - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\bh\ividi.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: SeeSimilar02 - {93488930-185C-4CED-AFEB-0FD4930F8423} - C:\Program Files (x86)\SeeSimilar02\ScriptHost.dll

O2 - BHO: Smiley Bar for Facebook - {944FEDFD-C4FD-441D-8275-9C651A9FFBDE} - C:\Program Files (x86)\Smiley Bar for Facebook\ScriptHost.dll

O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.0.1.12\AVG Secure Search_toolbar.dll

O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~3\Datamngr\ToolBar\searchqudtx.dll

O2 - BHO: IMinent WebBooster - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll

O2 - BHO: Speed Analysis 3 - {A66261FC-B82E-4EC7-9F6D-C2F36B871DF0} - C:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll

O2 - BHO: Zula Games - {A9337080-7CBF-4E3E-80C1-3867BEDD88E0} - C:\Program Files (x86)\Zula Games\ScriptHost.dll

O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\ADVANC~4\BROWER~1\ASCPLU~1.DLL

O2 - BHO: Vuze Remote - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuz1.dll

O2 - BHO: DataMngr - {C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} - C:\PROGRA~2\SEARCH~2\Datamngr\BROWSE~1.DLL

O2 - BHO: Smart Suggestor - {DB536AF2-E422-402d-B7FD-887297F1A198} - C:\Program Files (x86)\Smart Suggestor\SmartSuggestor.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: DealPly - {EF7BD87A-8024-11E2-F316-F3E56188709B} - C:\Program Files (x86)\DealPly\DealPlyIE.dll

O2 - BHO: Search-Results Toolbar - {f34c9277-6577-4dff-b2d7-7d58092f272f} - C:\PROGRA~2\SEARCH~2\Datamngr\SRTOOL~1\searchresultsDx.dll

O2 - BHO: PricePeep - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files (x86)\PricePeep\pricepeep.dll

O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll

O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll

O3 - Toolbar: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)

O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuz1.dll

O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll

O3 - Toolbar: (no name) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - (no file)

O3 - Toolbar: (no name) - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)

O3 - Toolbar: (no name) - !{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - (no file)

O3 - Toolbar: (no name) - !{cce665dd-f6dd-4808-968e-eaec971f70ef} - (no file)

O3 - Toolbar: (no name) - !{F9639E4A-801B-4843-AEE3-03D9DA199E77} - (no file)

O3 - Toolbar: IMinent Toolbar - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll

O3 - Toolbar: Search-Results Toolbar - {f34c9277-6577-4dff-b2d7-7d58092f272f} - C:\PROGRA~2\SEARCH~2\Datamngr\SRTOOL~1\searchresultsDx.dll

O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~3\Datamngr\ToolBar\searchqudtx.dll

O3 - Toolbar: express-files Toolbar - {88ac3cb6-596b-4217-964c-b6757ef9602d} - C:\Program Files (x86)\express-files\prxtbexpr.dll

O3 - Toolbar: (no name) - {82E1477C-B154-48D3-9891-33D83C26BCD3} - (no file)

O3 - Toolbar: MixiDJ Toolbar - {CA9B9C89-4662-4ADC-9C23-A452BECD5D19} - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\mixidjTlbr.dll

O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.0.1.12\AVG Secure Search_toolbar.dll

O3 - Toolbar: IObit Apps Toolbar - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.1\iobitappsToolbarIE.dll

O4 - HKLM\..\Run: [searchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"

O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\fvanhoon\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart

O4 - HKCU\..\Run: [AnyDVD] "C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe"

O4 - HKCU\..\Run: [ooVoo.exe] C:\Program Files (x86)\ooVoo\oovoo.exe /minimized

O4 - HKCU\..\Run: [Windows Media Center] C:\Windows\hfs player install makers.exe

O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_168_Plugin.exe -update plugin

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-21-486016039-603849695-1368971049-1003\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User 'Mara')

O8 - Extra context menu item: &SearchAmong - res://C:\Program Files (x86)\SearchAmong Toolbar\SearchAmongToolbar.dll/MENUSEARCH.HTM

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: Download with &Media Finder - C:\Program Files (x86)\Media Finder\hook.html

O8 - Extra context menu item: Zoek op het web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing)

O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing)

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Smart Suggestor - {520BD054-EEEE-487c-84E8-D5B2DFFE5C18} - C:\Program Files (x86)\Smart Suggestor\SmartSuggestor.dll

O9 - Extra 'Tools' menuitem: Smart Suggestor options - {520BD054-EEEE-487c-84E8-D5B2DFFE5C18} - C:\Program Files (x86)\Smart Suggestor\SmartSuggestor.dll

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - https://na.connect.aig.com/dana-cached/sc/JuniperSetupClient.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{D142E173-D1DB-44F0-828D-9457F8A3ADBB}: NameServer = 8.8.8.8,8.8.4.4

O18 - Protocol: avgsecuritytoolbar - (no CLSID) - (no file)

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.0.12\ViProtocol.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe

O23 - Service: Computer Backup (MyPC Backup) (BackupStack) - Just Develop It - C:\Program Files (x86)\MyPC Backup\BackupStack.exe

O23 - Service: CLHNServiceForPowerDVD - Unknown owner - C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe

O23 - Service: Search Protect by Conduit Updater (CltMngSvc) - Conduit - C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe

O23 - Service: Cron Service for Prey (CronService) - Fork Ltd. - C:\Prey\platform\windows\cronsvc.exe

O23 - Service: CyberLink PowerDVD 11.0 Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe

O23 - Service: CyberLink PowerDVD 11.0 Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe

O23 - Service: DefaultTabSearch - Unknown owner - C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe

O23 - Service: DefaultTabUpdate - TODO: <Company name> - C:\Users\fvanhoon\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe

O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe

O23 - Service: EaseUS Agent Service (EaseUS Agent) - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

O23 - Service: Guard Agent Service (Guard Agent) - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HerculesWiFi - Guillemot Corporation - C:\Windows\SysWOW64\\HerculesWiFiService.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE

O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe

O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe

O23 - Service: Moborobo Device Service (MoboroboDeviceService) - Unknown owner - C:\Program Files (x86)\Moborobo\MoboroboDeviceService.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

O23 - Service: Suite Service - SPAMfighter ApS - C:\Program Files (x86)\Fighters\FighterSuiteService.exe

O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

O23 - Service: Update diamondata - diamondata - C:\Program Files (x86)\diamondata\updatediamondata.exe

O23 - Service: Util diamondata - diamondata - C:\Program Files (x86)\diamondata\bin\utildiamondata.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: vToolbarUpdater17.0.12 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe

O23 - Service: Windows Activation Technologies-service (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: Web Assistant - Unknown owner - C:\Program Files\Web Assistant\ExtensionUpdaterService.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--

End of file - 23118 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

"C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe"

C:\Windows\system32\svchost.exe -k RPCSS

"C:\Program Files\Microsoft Security Client\MsMpEng.exe"

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

"C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe"

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

atieclxx

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"

"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"

"C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe"

"C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe"

"C:\Prey\platform\windows\cronsvc.exe"

"taskhost.exe"

"C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe"

"C:\Windows\system32\Dwm.exe"

"C:\Users\fvanhoon\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe"

"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"

"C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe"

"C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe"

"C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe"

C:\Windows\SysWOW64\\HerculesWiFiService.exe

"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"

C:\Windows\system32\IProsetMonitor.exe

"C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe"

C:\Windows\SysWOW64\IoctlSvc.exe

"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"

"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files (x86)\Fighters\FighterSuiteService.exe"

"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"

"C:\Program Files (x86)\diamondata\updatediamondata.exe"

"C:\Program Files (x86)\diamondata\bin\utildiamondata.exe"

"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe"

"C:\Program Files\Web Assistant\ExtensionUpdaterService.exe"

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\loggingserver.exe" 72648 "C:\ProgramData\AVG Secure Search\Logger\logger.properties"

\??\C:\Windows\system32\conhost.exe "451644551788757104-30650383-6287233421025204024-19134242431380133317-724947139

"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"

WLIDSvcM.exe 4548

"C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe"

"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\vds.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\System32\alg.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

"C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart

"C:\Program Files (x86)\ooVoo\ooVoo.exe" /minimized

"C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe"

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe"

"C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log

"C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log

ADvdDiscHlp64.exe /i

\??\C:\Windows\system32\conhost.exe "-9804987187923122074616436391520398611-1911630368-11601101213591612401254567885

"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c

"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"

C:\Windows\system32\svchost.exe -k SDRSVC

"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding

"C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe"

"taskhost.exe"

"C:\Program Files\Microsoft Security Client\NisSrv.exe"

C:\Windows\splwow64.exe 8192

"C:\Program Files (x86)\Vuze\Azureus.exe" "C:\Users\fvanhoon\Downloads\[katproxy.com]monsters.university.2013.dvdrip.xvid.nl.gespr.dmt.torrent"

C:\Windows\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding

"C:\Users\fvanhoon\AppData\Local\Temp\Creative Cloud Helper.exe" --pipename={B86AE9B4-0F65-4328-A5EB-8B9991CA6DA8}

"C:\Windows\explorer.exe"

"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --appletID=AppsPanel_BL --appletVersion=1.0 --mode=LBS --helperBridgeName={CD10AE43-8FF3-452D-9343-A362B91A78F5} --helperPath=C:\Users\fvanhoon\AppData\Local\Temp\\Creative Cloud Helper.exe --inputXmlPath="C:\Users\fvanhoon\AppData\Local\Temp\{4DDABE27-CE26-43D9-A4E8-164E3A4F804D}"

"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\/../CoreSync/CoreSync.exe"

"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --lang=en-US --lang=en-US --log-severity=disable --channel="19536.0.2030785216\1436761781" /prefetch:3

"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --lang=en-US --lang=en-US --log-severity=disable --channel="19536.1.1981181693\1114533638" /prefetch:3

"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --lang=en-US --lang=en-US --log-severity=disable --channel="19536.2.388132547\705862995" /prefetch:3

"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe" --type=gpu-process --channel="19536.3.1976337847\376348680" --no-sandbox --lang=en-US --log-severity=disable --supports-dual-gpus=false --reduce-gpu-sandbox --disable-image-transport-surface --gpu-vendor-id=0x1002 --gpu-device-id=0x68d8 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.152.0.0 --ignored=" --type=renderer " --lang=en-US --log-severity=disable /prefetch:12

"C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" "-launchedbycsxs"

"C:\Program Files (x86)\OpenOffice 4\program\swriter.exe"

"C:\Program Files (x86)\OpenOffice 4\program\swriter.exe" -writer

"C:\Program Files (x86)\OpenOffice 4\program\swriter.exe" "-writer" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice 4"

"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"

"C:\Program Files (x86)\Opera\opera.exe"

"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub

raptr_im.exe

"C:\Program Files (x86)\Raptr\raptr_ep64.exe"

"C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe"

"C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe"

taskeng.exe {BBF14361-310D-4A1F-BC95-834BAB7423D0}

"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\fvanhoon\AppData\Local\Temp\AGF_Aangifte_NL.pdf"

"C:\Program Files (x86)\Moborobo\Moborobo PC Suite.exe" C:\Program Files (x86)\Moborobo\

"C:\Program Files (x86)\Moborobo\AndroidInterface.exe" fork-server server

\??\C:\Windows\system32\conhost.exe "-383764004-1944214065-388550392-2141764245-42935614298252633-1555371771-1120897060

"C:\Program Files (x86)\Moborobo\MoboroboDeviceService.exe"

"C:\Users\fvanhoon\Documents\Moborobo\Cache\driver\USB_VID_04E8&PID_685E\Setup.exe"

C:\Windows\system32\msiexec.exe /V

C:\Windows\syswow64\MsiExec.exe -Embedding B271595EE9C02476F11557DB0E54DFAB C

C:\Users\fvanhoon\AppData\Local\Temp\{7931F76E-D648-48DD-94B8-252D1D136528}\ISBEW64.exe {EFB7539B-24F3-46B6-AF6E-3B021B51EFEF}:{4F753540-AA75-413E-AE0B-5DD2396FC81A}

C:\Users\fvanhoon\AppData\Local\Temp\{7931F76E-D648-48DD-94B8-252D1D136528}\WriteDescExecuteFileName.exe Software\Samsung\KIESSETUP Samsung Kies Installer 2.0

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="38656.0.1805022627\2064060526" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,18,24,26 --gpu-vendor-id=0x1002 --gpu-device-id=0x68d8 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.152.0.0 --ignored=" --type=renderer " /prefetch:822062411

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="38656.1.1854487351\575239406" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="38656.2.2112719150\1714361491" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="38656.3.1365787116\647659834" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="38656.5.630376796\46706755" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="38656.6.1960363782\886636603" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="38656.7.2021926548\1676066539" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="38656.8.124642208\710040850" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\fvanhoon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_1\Plugin/ASCPlugin_Protect.dll" --lang=nl --channel="38656.9.1052007535\1830652566" /prefetch:-390060480

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="38656.10.1167638333\1995261027" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="38656.21.1234119768\678224717" --ppapi-flash-args --lang=nl --ignored=" --type=renderer " /prefetch:-632637702

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OutdatedInstallCheck/12WeeksOutdatedInstall/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="38656.52.2086162532\2045609933" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OutdatedInstallCheck/12WeeksOutdatedInstall/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_39/UMA-Uniformity-Trial-10-Percent/group_05/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="38656.53.1595851907\41407899" /prefetch:673131151

"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\info.txt

"C:\Users\fvanhoon\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\ContinueToSaveUpdaterTask{79A727A3-9816-4DC9-B93C-2CF1E6A0DAEA}.job

C:\Windows\tasks\Driver Booster Update.job

C:\Windows\tasks\DRIVERfighter Auto Start.job

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-486016039-603849695-1368971049-1001Core.job

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-486016039-603849695-1368971049-1001UA.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\Registry Optimizer_DEFAULT.job

C:\Windows\tasks\Registry Optimizer_UPDATES.job

C:\Windows\tasks\schedule!3036567561.job

C:\Windows\tasks\schedule!3425674635.job

C:\Windows\tasks\SlimDrivers Startup.job

=========Mozilla firefox=========

ProfilePath - C:\Users\fvanhoon\AppData\Roaming\Mozilla\Firefox\Profiles\2f43ps8f.default

prefs.js - "browser.startup.homepage" - "http://search.audio4fun.com/"

prefs.js - "browser.startup.homepage" - "http://search.audio4fun.com/"

prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=800236&p="

"{336D0C35-8A85-403a-B9D2-65C292C39087}"=C:\Program Files\Web Assistant\Firefox

"{8E9E3331-D360-4f87-8803-52DE43566502}"=C:\Program Files\Web Assistant\Firefox

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 11.8.800.168 Plugin

"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]

"Description"=Adobe Shockwave Player

"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]

"Description"=

"Path"=C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.0.12\\npsitesafety.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]

"Description"=Canon Easy-PhotoPrint EX

"Path"=C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]

"Description"=Google Earth in your browser

"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]

"Description"=Picasa3 plugin

"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@IObit.com/np_Asc_Plugin]

"Description"=Advanced SystemCare Surfing Protection

"Path"=C:\Program Files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\np_Asc_plugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin]

"Description"=McAfee Mss Plugin

"Path"=C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]

"Description"=Microsoft SharePoint Plug-in for Firefox

"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]

"Description"=

"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]

"Description"=VLC Multimedia Plugin

"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Webzen.com/NPBrowserExt]

"Description"=WEBZEN Browser Extension Interface

"Path"=C:\Program Files (x86)\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@zylom.com/ZylomGamesPlayer]

"Description"=Zylom Games Player 1.00

"Path"=C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]

"Description"=

"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 11.8.800.168 Plugin

"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]

"Description"=

"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\

ffxtlbr@babylon.com

{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}

C:\Program Files (x86)\Mozilla Firefox\components\

nsIZylomPlugin.xpt

sprotector.js

C:\Program Files (x86)\Mozilla Firefox\searchplugins\

avg-secure-search.xml

Search_Results.xml

v9.xml

yahoo.xml

C:\Users\fvanhoon\AppData\Roaming\Mozilla\Firefox\Profiles\2f43ps8f.default\extensions\

ascsurfingprotection@iobit.com

plugin@yontoo.com

staged

C:\Users\fvanhoon\AppData\Roaming\Mozilla\Firefox\Profiles\2f43ps8f.default\searchplugins\

yahoo.xml

yahoo_ff.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}]

Web Assistant - C:\Program Files\Web Assistant\Extension64.dll [2013-06-30 215896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}]

Speed Analysis 3 - C:\Program Files (x86)\Speed Analysis 3\ScriptHost64.dll [2013-08-28 381760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}]

DataMngr - C:\PROGRA~2\SEARCH~2\Datamngr\x64\BROWSE~1.DLL [2012-12-26 104456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]

IObit Apps Toolbar - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.1\iobitappsToolbarIE.dll [2013-10-24 1399616]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055af109-de93-4160-bcfc-7da70ecaa020}]

diamondata - C:\Program Files (x86)\diamondata\diamondatabho.dll [2013-08-31 149280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]

MSS+ Identifier - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll [2013-02-05 94112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DBB6CE-3148-4FEC-B481-103CB3290427}]

Speed Analysis 2 - C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll [2013-05-30 382272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{197915AB-0BCA-85F9-F0EB-E48819C4AC39}]

Bcool Class - C:\ProgramData\Bcool\bhoclass.dll [2012-05-16 140800]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]

Winamp Toolbar Loader - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll [2011-03-11 1373512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}]

Web Assistant - C:\Program Files\Web Assistant\Extension32.dll [2013-06-30 170840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]

Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D6A9BBF-402C-4301-B1EF-28D04F71D761}]

mixidj Helper Object - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\bh\mixidj.dll [2013-04-26 307608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}]

TBSB01620 Class - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll [2010-07-02 2607872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{597A9974-8CB0-4f41-B61F-ED065738A397}]

RewardsArcade - C:\Program Files (x86)\RewardsArcade\RewardsArcade.dll [2011-11-03 528216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]

CescrtHlpr Object - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll [2011-10-10 265944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7148263E-9744-4719-BEA3-8766FC18932B}]

Games by 7Go - C:\Program Files (x86)\Games by 7Go\ScriptHost.dll [2013-08-11 382272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-07 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}]

DefaultTab Browser Helper - C:\Users\fvanhoon\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll [2013-11-01 462968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88ac3cb6-596b-4217-964c-b6757ef9602d}]

express-files Toolbar - C:\Program Files (x86)\express-files\prxtbexpr.dll [2012-11-06 183112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8B8B2E80-1444-451D-AC8E-EB9A847F3887}]

ividi Helper Object - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\bh\ividi.dll [2013-07-25 301464]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{93488930-185C-4CED-AFEB-0FD4930F8423}]

SeeSimilar02 - C:\Program Files (x86)\SeeSimilar02\ScriptHost.dll [2013-06-11 382272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{944FEDFD-C4FD-441D-8275-9C651A9FFBDE}]

Smiley Bar for Facebook - C:\Program Files (x86)\Smiley Bar for Facebook\ScriptHost.dll [2013-02-05 360448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]

AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\17.0.1.12\AVG Secure Search_toolbar.dll [2013-10-02 3353624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]

Searchqu Toolbar - C:\PROGRA~2\SEARCH~3\Datamngr\ToolBar\searchqudtx.dll [2012-02-27 88976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}]

IMinent WebBooster (BHO) - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll [2012-08-24 245368]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}]

Speed Analysis 3 - C:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll [2013-08-28 400704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A9337080-7CBF-4E3E-80C1-3867BEDD88E0}]

Zula Games - C:\Program Files (x86)\Zula Games\ScriptHost.dll [2013-07-01 382272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]

Advanced SystemCare Browser Protection - C:\PROGRA~2\IObit\ADVANC~4\BROWER~1\ASCPLU~1.DLL [2013-04-24 659264]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]

Vuze Remote Toolbar - C:\Program Files (x86)\Vuze_Remote\prxtbVuz1.dll [2012-11-06 183112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}]

DataMngr - C:\PROGRA~2\SEARCH~2\Datamngr\BROWSE~1.DLL [2012-12-26 89608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DB536AF2-E422-402d-B7FD-887297F1A198}]

Smart Suggestor - C:\Program Files (x86)\Smart Suggestor\SmartSuggestor.dll [2012-11-13 370488]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-07 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF7BD87A-8024-11E2-F316-F3E56188709B}]

DealPly - C:\Program Files (x86)\DealPly\DealPlyIE.dll [2013-02-28 99872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f34c9277-6577-4dff-b2d7-7d58092f272f}]

Search-Results Toolbar - C:\PROGRA~2\SEARCH~2\Datamngr\SRTOOL~1\searchresultsDx.dll [2012-09-25 89288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}]

PricePeep - C:\Program Files (x86)\PricePeep\pricepeep.dll [2013-02-03 491008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

!{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}

!{cce665dd-f6dd-4808-968e-eaec971f70ef}

!{F9639E4A-801B-4843-AEE3-03D9DA199E77}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352]

{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll [2011-03-11 1373512]

{30F9B915-B755-4826-820B-08FBA6BD249D}

{ba14329e-9550-4989-b3f2-9732e92d17cc} - Vuze Remote Toolbar - C:\Program Files (x86)\Vuze_Remote\prxtbVuz1.dll [2012-11-06 183112]

{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll [2011-10-10 220888]

{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}

{28387537-e3f9-4ed7-860c-11e69af4a8a0}

!{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}

!{cce665dd-f6dd-4808-968e-eaec971f70ef}

!{F9639E4A-801B-4843-AEE3-03D9DA199E77}

{977AE9CC-AF83-45E8-9E03-E2798216E2D5} - IMinent Toolbar - C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll [2010-07-02 2607872]

{f34c9277-6577-4dff-b2d7-7d58092f272f} - Search-Results Toolbar - C:\PROGRA~2\SEARCH~2\Datamngr\SRTOOL~1\searchresultsDx.dll [2012-09-25 89288]

{D4027C7F-154A-4066-A1AD-4243D8127440}

{99079a25-328f-4bd4-be04-00955acaa0a7} - Searchqu Toolbar - C:\PROGRA~2\SEARCH~3\Datamngr\ToolBar\searchqudtx.dll [2012-02-27 88976]

{88ac3cb6-596b-4217-964c-b6757ef9602d} - express-files Toolbar - C:\Program Files (x86)\express-files\prxtbexpr.dll [2012-11-06 183112]

{82E1477C-B154-48D3-9891-33D83C26BCD3}

{CA9B9C89-4662-4ADC-9C23-A452BECD5D19} - MixiDJ Toolbar - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\mixidjTlbr.dll [2013-04-26 300952]

{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\17.0.1.12\AVG Secure Search_toolbar.dll [2013-10-02 3353624]

{03EB0E9C-7A91-4381-A220-9B52B641CDB1} - IObit Apps Toolbar - C:\Program Files (x86)\IObit Apps Toolbar\IE\8.1\iobitappsToolbarIE.dll [2013-10-24 1399616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-08-12 1356240]

"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-09-25 472984]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Facebook Update"=C:\Users\fvanhoon\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-10-26 138096]

"Advanced SystemCare 6"=C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe [2013-04-18 491840]

"AnyDVD"=C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe [2013-10-25 94296]

"ooVoo.exe"=C:\Program Files (x86)\ooVoo\oovoo.exe [2013-09-10 35253312]

"Windows Media Center"=C:\Windows\hfs player install makers.exe [2013-11-09 202240]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"FlashPlayerUpdate"=C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_168_Plugin.exe [2013-09-19 815496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]

C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe [2013-04-18 491840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]

C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-phishing Domain Advisor]

C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe [2012-05-03 217256]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]

C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe [2013-10-25 7495768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]

C:\Program Files (x86)\Ask.com\Updater\Updater.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]

C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.12.142\AsusWSPanel.exe [2012-10-11 3574656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]

C:\Program Files (x86)\Cyberlink\Shared files\brs.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]

C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-07-26 2782096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CommonToolkitTray]

C:\Program Files (x86)\Fighters\Tray\FightersTray.exe [2013-07-01 1497120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]

C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DATAMNGR]

C:\PROGRA~2\SEARCH~2\Datamngr\DATAMN~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Driver Pro]

C:\Program Files (x86)\Driver Pro\DPLauncher.exe [2012-10-30 340512]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUs Tray]

C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayNotify.exe [2013-03-16 1372232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUs Watch]

C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuWatch.exe [2013-03-16 70728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]

C:\Users\fvanhoon\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-10-26 138096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate]

C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.exe -update activex []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]

C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-09-25 20133824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2010-09-14 283160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Iminent]

C:\Program Files (x86)\Iminent\Iminent.exe [2012-08-24 1073784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IminentMessenger]

C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [2012-08-24 884856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]

C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [2013-08-16 1549120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISTray]

C:\Program Files (x86)\PC Tools Security\pctsGui.exe /hideGUI []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]

C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2011-06-02 6123032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]

C:\Program Files\Microsoft Security Client\msseces.exe [2013-08-12 1356240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyCuteBuddy]

C:\Program Files (x86)\My Cute Buddy\myCuteBuddy.exe [2012-12-04 2383872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]

C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-02-18 2221352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

C:\Program Files (x86)\QuickTime\QTTask.exe [2011-10-24 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr]

C:\PROGRA~2\Raptr\raptrstub.exe [2013-01-29 55360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RavenBleuSA]

C:\Users\fvanhoon\AppData\Local\RavenBleuSA\bin\1.0.16.0\RavenBleuSA.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-10-13 13538376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDP]

C:\Program Files (x86)\FilesFrog Update Checker\update_checker.exe [2013-01-31 201808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]

C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [2013-10-24 1379648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-02 20472992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]

C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-09-19 6581488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]

C:\Program Files (x86)\uTorrent\uTorrent.exe [2011-11-18 642424]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]

C:\Program Files (x86)\AVG Secure Search\vprot.exe [2013-10-02 2404376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinPatrol]

C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe [2012-12-10 363752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^fvanhoon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^IMVU.lnk]

C:\Users\fvanhoon\AppData\Roaming\IMVUCL~1\IMVUQU~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^fvanhoon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MyPC Backup.lnk]

C:\PROGRA~2\MYPCBA~1\MYPCBA~1.EXE [2013-05-11 1934376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^fvanhoon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3 .lnk]

C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

""= []

"SearchSettings"=C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [2013-10-24 1379648]

"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2013-10-17 2237328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="C:\PROGRA~3\Wincert\WIN64C~1.DLL C:\PROGRA~2\SEARCH~2\Datamngr\x64\datamngr.dll C:\PROGRA~2\SEARCH~2\Datamngr\x64\IEBHO.dll "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=lvcod64.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"aux2"=wdmaud.drv

"MSVideo"=vfwwdm32.dll

"MSVideo8"=VfWWDM32.dll

"wave5"=wdmaud.drv

"midi5"=wdmaud.drv

"mixer5"=wdmaud.drv

"aux5"=wdmaud.drv

"wave3"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

"aux3"=wdmaud.drv

"vidc.XVID"=xvidvfw.dll

"wave4"=wdmaud.drv

"mixer4"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-11-10 22:33:24 ----D---- C:\rsit

2013-11-10 22:33:24 ----D---- C:\Program Files\trend micro

2013-11-10 10:25:17 ----D---- C:\Program Files\SAMSUNG

2013-11-10 10:24:16 ----D---- C:\ProgramData\Samsung

2013-11-10 00:53:07 ----HD---- C:\Fei

2013-11-09 19:42:04 ----A---- C:\Windows\hfs player install makers.exe

2013-11-03 20:12:16 ----D---- C:\Users\fvanhoon\AppData\Roaming\PDAppFlex

2013-11-03 20:11:34 ----D---- C:\ProgramData\regid.1986-12.com.adobe

2013-11-03 19:59:37 ----D---- C:\Program Files\Adobe

2013-11-03 19:54:26 ----D---- C:\Program Files\Common Files\Adobe

2013-11-01 15:36:33 ----D---- C:\Program Files (x86)\IObit Apps Toolbar

2013-10-27 12:21:54 ----D---- C:\Users\fvanhoon\AppData\Roaming\Nico Mak Computing

2013-10-27 12:21:46 ----D---- C:\Program Files (x86)\WinZip Registry Optimizer

2013-10-22 23:05:45 ----D---- C:\Program Files (x86)\iVIDI.org plugin

2013-10-22 23:05:00 ----D---- C:\Program Files (x86)\Unitech LLC

2013-10-22 23:04:48 ----D---- C:\Users\fvanhoon\AppData\Roaming\Unitech LLC

2013-10-14 20:52:45 ----D---- C:\Users\fvanhoon\AppData\Roaming\OpenOffice

2013-10-13 23:26:01 ----A---- C:\Windows\SYSWOW64\sho9E0F.tmp

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\OVDecode.dll

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\atioglxx.dll

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\atimpc32.dll

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\atigktxx.dll

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\OVDecode64.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\OpenVideo64.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\drivers\atikmpag.sys

2013-10-13 18:01:08 ----A---- C:\Windows\system32\drivers\atikmdag.sys

2013-10-13 18:01:08 ----A---- C:\Windows\system32\coinst_13.152.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\clinfo.exe

2013-10-13 18:01:08 ----A---- C:\Windows\system32\ativvaxy_cik_nd.dat

2013-10-13 18:01:08 ----A---- C:\Windows\system32\ativvaxy_cik.dat

2013-10-13 18:01:08 ----A---- C:\Windows\system32\ativce02.dat

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atiumd6a.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atiumd64.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atiu9p64.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atitmm64.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atio6axx.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atimuixx.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atimpc64.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atiicdxx.dat

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atiglpxx.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atig6txx.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atig6pxx.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\amdpcom64.dll

2013-10-13 18:01:07 ----A---- C:\Windows\SYSWOW64\OpenCL.dll

2013-10-13 18:01:07 ----A---- C:\Windows\SYSWOW64\atidxx32.dll

2013-10-13 18:01:07 ----A---- C:\Windows\SYSWOW64\aticalrt.dll

2013-10-13 18:01:07 ----A---- C:\Windows\SYSWOW64\aticaldd.dll

2013-10-13 18:01:07 ----A---- C:\Windows\SYSWOW64\aticalcl.dll

2013-10-13 18:01:07 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll

2013-10-13 18:01:07 ----A---- C:\Windows\SYSWOW64\amdocl_ld32.exe

2013-10-13 18:01:07 ----A---- C:\Windows\SYSWOW64\amdocl_as32.exe

2013-10-13 18:01:07 ----A---- C:\Windows\system32\OpenCL.dll

2013-10-13 18:01:07 ----A---- C:\Windows\system32\drivers\ati2erec.dll

2013-10-13 18:01:07 ----A---- C:\Windows\system32\atidemgy.dll

2013-10-13 18:01:07 ----A---- C:\Windows\system32\aticalrt64.dll

2013-10-13 18:01:07 ----A---- C:\Windows\system32\aticaldd64.dll

2013-10-13 18:01:07 ----A---- C:\Windows\system32\aticalcl64.dll

2013-10-13 18:01:07 ----A---- C:\Windows\system32\atiapfxx.exe

2013-10-13 18:01:07 ----A---- C:\Windows\system32\amdocl_ld64.exe

2013-10-13 18:01:07 ----A---- C:\Windows\system32\amdocl_as64.exe

2013-10-13 18:01:06 ----A---- C:\Windows\SYSWOW64\amdocl.dll

2013-10-13 18:01:06 ----A---- C:\Windows\system32\amdocl64.dll

2013-10-13 17:59:34 ----A---- C:\Windows\system32\WavesGUILib64.dll

2013-10-13 17:59:34 ----A---- C:\Windows\system32\tossaeapo64.dll

2013-10-13 17:59:34 ----A---- C:\Windows\system32\toseaeapo64.dll

2013-10-13 17:59:34 ----A---- C:\Windows\system32\tosasfapo64.dll

2013-10-13 17:59:34 ----A---- C:\Windows\system32\tosade.dll

2013-10-13 17:59:34 ----A---- C:\Windows\system32\tepeqapo64.dll

2013-10-13 17:59:34 ----A---- C:\Windows\system32\tadefxapo264.dll

2013-10-13 17:59:33 ----A---- C:\Windows\system32\tadefxapo.dll

2013-10-13 17:59:32 ----A---- C:\Windows\system32\sltech64.dll

2013-10-13 17:59:32 ----A---- C:\Windows\system32\slprp64.dll

2013-10-13 17:59:31 ----A---- C:\Windows\system32\slcnt64.dll

2013-10-13 17:59:31 ----A---- C:\Windows\system32\sl3apo64.dll

2013-10-13 17:59:31 ----A---- C:\Windows\system32\SFSS_APO.dll

2013-10-13 17:59:31 ----A---- C:\Windows\system32\SFNHK64.dll

2013-10-13 17:59:31 ----A---- C:\Windows\system32\SFCOM64.dll

2013-10-13 17:59:31 ----A---- C:\Windows\system32\SFAPO64.dll

2013-10-13 17:59:31 ----A---- C:\Windows\system32\RtPgEx64.dll

2013-10-13 17:59:31 ----A---- C:\Windows\system32\drivers\rtvienna.dat

2013-10-13 17:59:30 ----A---- C:\Windows\system32\RtlCPAPI64.dll

2013-10-13 17:59:30 ----A---- C:\Windows\system32\RTKSMSettingsIPC.dll

2013-10-13 17:59:30 ----A---- C:\Windows\system32\RTKSMlfx.dll

2013-10-13 17:59:30 ----A---- C:\Windows\system32\RtkCoLDR64.dll

2013-10-13 17:59:30 ----A---- C:\Windows\system32\RtkCfg64.dll

2013-10-13 17:59:30 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys

2013-10-13 17:59:29 ----A---- C:\Windows\system32\RtkAPO64.dll

2013-10-13 17:59:29 ----A---- C:\Windows\system32\RtkApi64.dll

2013-10-13 17:59:29 ----A---- C:\Windows\system32\RTEEP64A.dll

2013-10-13 17:59:29 ----A---- C:\Windows\system32\RTEEL64A.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\RTEEG64A.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\RTEED64A.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\RtDataProc64.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\RTCOM64.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\RP3DHT64.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\RP3DAA64.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\RCoRes64.dat

2013-10-13 17:59:28 ----A---- C:\Windows\system32\RCoInstII64.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\R4EEP64A.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\R4EEL64A.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\R4EEG64A.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\R4EED64A.dll

2013-10-13 17:59:28 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT

2013-10-13 17:59:27 ----A---- C:\Windows\system32\R4EEA64A.dll

2013-10-13 17:59:27 ----A---- C:\Windows\system32\MISS_APO.dll

2013-10-13 17:59:27 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll

2013-10-13 17:59:26 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll

2013-10-13 17:59:26 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll

2013-10-13 17:59:26 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll

2013-10-13 17:59:26 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll

2013-10-13 17:59:26 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll

2013-10-13 17:59:26 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll

2013-10-13 17:59:25 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll

2013-10-13 17:59:25 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll

2013-10-13 17:59:25 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll

2013-10-13 17:59:25 ----A---- C:\Windows\system32\KAAPORT64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\FMAPO64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSU2PREC64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSU2PLFX64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSU2PGFX64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSLFXAPO64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSGFXAPO64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSBoostDLL64.dll

2013-10-13 17:59:23 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll

2013-10-13 17:59:22 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll

2013-10-13 17:59:22 ----A---- C:\Windows\system32\AERTAR64.dll

2013-10-13 17:59:22 ----A---- C:\Windows\system32\AERTAC64.dll

2013-10-13 17:57:54 ----A---- C:\Windows\system32\drivers\RTL8192su.sys

2013-10-13 17:42:50 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2013-10-13 17:42:50 ----A---- C:\Windows\system32\drivers\usbport.sys

2013-10-13 17:42:50 ----A---- C:\Windows\system32\drivers\usbohci.sys

2013-10-13 17:42:50 ----A---- C:\Windows\system32\drivers\usbhub.sys

2013-10-13 17:42:50 ----A---- C:\Windows\system32\drivers\usbehci.sys

2013-10-13 17:42:50 ----A---- C:\Windows\system32\drivers\usbd.sys

2013-10-13 17:42:50 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2013-10-11 03:05:12 ----A---- C:\Windows\SYSWOW64\vbscript.dll

2013-10-11 03:05:12 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

2013-10-11 03:05:12 ----A---- C:\Windows\system32\mshtmled.dll

2013-10-11 03:05:11 ----A---- C:\Windows\SYSWOW64\ieui.dll

2013-10-11 03:05:11 ----A---- C:\Windows\system32\ieui.dll

2013-10-11 03:05:10 ----A---- C:\Windows\SYSWOW64\wininet.dll

2013-10-11 03:05:10 ----A---- C:\Windows\SYSWOW64\url.dll

2013-10-11 03:05:10 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

2013-10-11 03:05:10 ----A---- C:\Windows\system32\wininet.dll

2013-10-11 03:05:10 ----A---- C:\Windows\system32\url.dll

2013-10-11 03:05:10 ----A---- C:\Windows\system32\msfeeds.dll

2013-10-11 03:05:10 ----A---- C:\Windows\system32\ieUnatt.exe

2013-10-11 03:05:09 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2013-10-11 03:05:09 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

2013-10-11 03:05:09 ----A---- C:\Windows\system32\urlmon.dll

2013-10-11 03:05:09 ----A---- C:\Windows\system32\jsproxy.dll

2013-10-11 03:05:08 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2013-10-11 03:05:08 ----A---- C:\Windows\SYSWOW64\jscript.dll

2013-10-11 03:05:08 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2013-10-11 03:05:08 ----A---- C:\Windows\system32\jscript9.dll

2013-10-11 03:05:08 ----A---- C:\Windows\system32\iertutil.dll

2013-10-11 03:05:07 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2013-10-11 03:05:07 ----A---- C:\Windows\system32\vbscript.dll

2013-10-11 03:05:07 ----A---- C:\Windows\system32\jscript.dll

2013-10-11 03:05:06 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2013-10-11 03:05:05 ----A---- C:\Windows\system32\mshtml.dll

2013-10-11 03:05:04 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2013-10-11 03:05:04 ----A---- C:\Windows\system32\ieframe.dll

======List of files/folders modified in the last 1 month======

2013-11-10 22:34:20 ----D---- C:\Windows\Prefetch

2013-11-10 22:33:24 ----RD---- C:\Program Files

2013-11-10 22:32:36 ----D---- C:\Windows\Temp

2013-11-10 22:32:20 ----D---- C:\Users\fvanhoon\AppData\Roaming\Azureus

2013-11-10 22:10:27 ----A---- C:\Windows\SYSWOW64\TempWmicBatchFile.bat

2013-11-10 21:15:29 ----D---- C:\Users\fvanhoon\AppData\Roaming\Raptr

2013-11-10 20:02:16 ----D---- C:\foto's

2013-11-10 19:46:07 ----D---- C:\Windows\System32

2013-11-10 19:46:07 ----D---- C:\Windows\inf

2013-11-10 19:46:07 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-11-10 18:44:19 ----D---- C:\Windows\system32\config

2013-11-10 15:01:13 ----D---- C:\Windows\system32\Tasks

2013-11-10 10:27:36 ----D---- C:\Windows\system32\DriverStore

2013-11-10 10:27:36 ----D---- C:\Windows\system32\drivers

2013-11-10 10:27:36 ----D---- C:\Windows\system32\catroot

2013-11-10 10:24:16 ----HD---- C:\ProgramData

2013-11-10 00:53:06 ----AD---- C:\Windows

2013-11-07 23:34:22 ----SHD---- C:\System Volume Information

2013-11-04 22:20:43 ----D---- C:\Program Files (x86)\Mozilla Thunderbird

2013-11-04 22:20:43 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service

2013-11-03 20:12:45 ----D---- C:\Users\fvanhoon\AppData\Roaming\Adobe

2013-11-03 20:00:17 ----D---- C:\ProgramData\Adobe

2013-11-03 19:56:01 ----D---- C:\Program Files (x86)\Adobe

2013-11-03 19:55:58 ----RSD---- C:\Windows\Fonts

2013-11-03 19:55:03 ----SHD---- C:\Windows\Installer

2013-11-03 19:55:03 ----SHD---- C:\Config.Msi

2013-11-03 19:54:26 ----D---- C:\Program Files\Common Files

2013-11-03 19:31:23 ----D---- C:\Windows\SysWOW64

2013-11-03 13:41:13 ----D---- C:\ProgramData\CanonIJPLM

2013-11-03 01:15:29 ----D---- C:\Users\fvanhoon\AppData\Roaming\vlc

2013-11-02 15:32:18 ----D---- C:\Program Files (x86)\IObit Toolbar

2013-11-02 00:41:09 ----D---- C:\Users\fvanhoon\AppData\Roaming\NCH Software

2013-11-02 00:41:06 ----D---- C:\ProgramData\NCH Software

2013-11-02 00:41:06 ----D---- C:\Program Files (x86)\NCH Software

2013-11-01 15:36:34 ----D---- C:\Program Files (x86)\Application Updater

2013-11-01 15:36:33 ----RD---- C:\Program Files (x86)

2013-10-28 10:25:23 ----D---- C:\Users\fvanhoon\AppData\Roaming\Skype

2013-10-27 12:22:01 ----D---- C:\Windows\Tasks

2013-10-27 12:21:41 ----D---- C:\Program Files (x86)\ooVoo

2013-10-26 23:07:14 ----D---- C:\ProgramData\Skype

2013-10-26 23:07:13 ----RD---- C:\Program Files (x86)\Skype

2013-10-22 23:07:13 ----D---- C:\Program Files (x86)\Mozilla Firefox

2013-10-22 20:05:35 ----D---- C:\Users\fvanhoon\AppData\Roaming\Winamp

2013-10-16 02:01:35 ----D---- C:\Program Files\Microsoft Security Client

2013-10-16 02:01:34 ----D---- C:\Program Files (x86)\Microsoft Security Client

2013-10-14 15:41:00 ----D---- C:\Windows\system32\catroot2

2013-10-13 23:32:51 ----D---- C:\Windows\SoftwareDistribution

2013-10-13 23:30:20 ----D---- C:\Windows\winsxs

2013-10-13 23:27:48 ----D---- C:\Windows\debug

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\atiumdva.dll

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\atiumdag.dll

2013-10-13 18:01:08 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atiuxp64.dll

2013-10-13 18:01:08 ----A---- C:\Windows\system32\atiesrxx.exe

2013-10-13 18:01:07 ----A---- C:\Windows\SYSWOW64\aticfx32.dll

2013-10-13 18:01:07 ----A---- C:\Windows\system32\atieclxx.exe

2013-10-13 18:01:07 ----A---- C:\Windows\system32\atidxx64.dll

2013-10-13 18:01:07 ----A---- C:\Windows\system32\aticfx64.dll

2013-10-13 18:01:07 ----A---- C:\Windows\system32\atiadlxx.dll

2013-10-13 18:00:12 ----D---- C:\Windows\SYSWOW64\RTCOM

2013-10-13 17:51:14 ----D---- C:\Users\fvanhoon\AppData\Roaming\IObit

2013-10-13 17:50:55 ----D---- C:\Program Files (x86)\IObit

2013-10-13 17:35:37 ----D---- C:\Users\fvanhoon\AppData\Roaming\uTorrent

2013-10-13 17:30:41 ----SHD---- C:\BOOT

2013-10-11 04:12:03 ----D---- C:\Windows\rescache

2013-10-11 03:48:02 ----RSD---- C:\Windows\assembly

2013-10-11 03:48:02 ----D---- C:\Windows\Microsoft.NET

2013-10-11 03:33:14 ----D---- C:\Program Files\Microsoft Silverlight

2013-10-11 03:33:11 ----D---- C:\Program Files (x86)\Microsoft Silverlight

2013-10-11 03:30:55 ----D---- C:\Windows\SYSWOW64\migration

2013-10-11 03:30:55 ----D---- C:\Windows\system32\migration

2013-10-11 03:30:55 ----D---- C:\Program Files (x86)\Internet Explorer

2013-10-11 03:30:54 ----D---- C:\Windows\AppPatch

2013-10-11 03:30:54 ----D---- C:\Program Files\Internet Explorer

2013-10-11 02:57:28 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

2013-10-11 02:33:20 ----D---- C:\Windows\system32\MRT

2013-10-11 02:29:58 ----A---- C:\Windows\system32\MRT.exe

2013-10-11 02:00:44 ----D---- C:\Windows\system32\nl-NL

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 EUBAKUP;EUBAKUP; C:\Windows\system32\drivers\eubakup.sys [2013-03-16 58952]

R0 EUBKMON;EUBKMON; C:\Windows\system32\drivers\EUBKMON.sys [2013-03-16 48200]

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-09-14 437272]

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-06-18 247216]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2013-05-22 17720]

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-09-04 526392]

R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-10-02 46368]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-09-04 270912]

R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2013-03-04 40344]

R1 EUDSKACS;EUDSKACS; \??\C:\Windows\system32\drivers\eudskacs.sys [2013-03-16 18504]

R1 EUFDDISK;EUFDDISK; \??\C:\Windows\system32\drivers\EuFdDisk.sys [2013-03-16 189000]

R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]

R1 SAS***IL;SAS***IL; \??\C:\Program Files\SUPERAntiSpyware\SAS***IL64.SYS [2011-07-12 12368]

R1 truecrypt;truecrypt; C:\Windows\System32\drivers\truecrypt.sys [2011-04-24 230352]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-06-18 139616]

R2 ntk_PowerDVD;ntk_PowerDVD; \??\C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [2011-08-24 75248]

R2 regi;regi; \??\C:\Windows\system32\drivers\regi.sys [2007-04-16 14112]

R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-20 146432]

R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-10-13 12528640]

R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-10-13 618496]

R3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2013-07-31 139352]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]

R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-04-14 31216]

R3 e1cexpress;Intel® PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2010-09-21 313520]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-10-13 3425608]

R3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2011-08-19 351136]

R3 LVUVC64;Logitech HD Webcam C270(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2011-08-19 4869024]

R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-09-21 56344]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-09-30 80384]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-09-30 180736]

R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2013-10-13 694376]

R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]

R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]

R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]

R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]

R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]

S1 qweyobby;qweyobby; \??\C:\Windows\system32\drivers\qweyobby.sys []

S1 tshjohwx;tshjohwx; \??\C:\Windows\system32\drivers\tshjohwx.sys []

S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-08-20 103576]

S3 EUBAKUP0;EUBAKUP0; \??\C:\Windows\system32\drivers\EUBAKUP0.sys []

S3 EUBKMON0;EUBKMON0; \??\C:\Windows\system32\drivers\EUBKMON0.sys []

S3 EUFDDISK0;EUFDDISK0; \??\C:\Windows\system32\drivers\EUFDDISK0.sys []

S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2013-03-15 31744]

S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2008-03-17 115328]

S3 IAMTVE;Driver for Intel® Active Management Technology - KCS; C:\Windows\system32\DRIVERS\IAMTVE.sys [2007-04-11 43416]

S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]

S3 ioatdma1;ioatdma1; C:\Windows\System32\Drivers\qd162x64.sys [2009-11-16 40144]

S3 ioatdma2;Intel® QuickData Technology device ver.2; C:\Windows\System32\Drivers\qd262x64.sys [2009-11-16 42192]

S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys [2010-07-29 29720]

S3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304]

S3 LVPr2Mon;LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 PCTBD;PC Tools Browser Defender Driver; C:\Windows\System32\Drivers\PCTBD64.sys [2012-10-23 77144]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-25 19456]

S3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2013-03-26 34336]

S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]

S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-08-20 204568]

S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2013-10-12 16152]

S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-11-25 57856]

S3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2013-03-26 23016]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]

S4 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-03-23 23048]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2012-09-11 140672]

R2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-04-18 574272]

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-10-13 239616]

R2 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2013-10-24 807800]

R2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD; C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [2011-08-24 83240]

R2 CltMngSvc;Search Protect by Conduit Updater; C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe [2013-02-20 93984]

R2 CronService;Cron Service for Prey; C:\Prey\platform\windows\cronsvc.exe [2011-02-15 19968]

R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]

R2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [2011-08-26 75048]

R2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service; C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [2011-08-26 292136]

R2 DefaultTabUpdate;DefaultTabUpdate; C:\Users\fvanhoon\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [2012-05-12 114240]

R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2012-12-24 1868432]

R2 EaseUS Agent;EaseUS Agent Service; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [2013-03-16 68168]

R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2013-03-14 101888]

R2 Guard Agent;Guard Agent Service; C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe [2013-03-16 23624]

R2 HerculesWiFi;HerculesWiFi; C:\Windows\SysWOW64\\HerculesWiFiService.exe [2010-11-17 53544]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-14 13336]

R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2010-04-05 116104]

R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2013-04-25 335168]

R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2010-08-13 133800]

R2 MoboroboDeviceService;Moborobo Device Service; C:\Program Files (x86)\Moborobo\MoboroboDeviceService.exe [2013-04-03 71976]

R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-08-12 23808]

R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864]

R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]

R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]

R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]

R2 Suite Service;Suite Service; C:\Program Files (x86)\Fighters\FighterSuiteService.exe [2012-11-12 1270376]

R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]

R2 UMVPFSrv;UMVPFSrv; C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-08-19 450848]

R2 Update diamondata;Update diamondata; C:\Program Files (x86)\diamondata\updatediamondata.exe [2013-10-02 65312]

R2 Util diamondata;Util diamondata; C:\Program Files (x86)\diamondata\bin\utildiamondata.exe [2013-10-02 65312]

R2 VMCService;Vodafone Mobile Connect Service; C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2008-07-04 14336]

R2 vToolbarUpdater17.0.12;vToolbarUpdater17.0.12; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe [2013-10-02 1734680]

R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-08-12 366600]

R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]

S2 BackupStack;Computer Backup (MyPC Backup); C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2013-05-11 32808]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

S2 DefaultTabSearch;DefaultTabSearch; C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe [2013-09-16 573952]

S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-22 116648]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-19 257416]

S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]

S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-22 116648]

S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120]

S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-02-05 235216]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-04 119408]

S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]

S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

S3 WatAdminSvc;Windows Activation Technologies-service; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-05-19 1255736]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[kape]

Zou je - vóór we aan de opruiming beginnen - eens een screenshot willen maken van je scherm bij een openstaande browser ? Dat zou ons al een beeld moeten geven van alles wat daar aan toolbars e.d. aanwezig is ? Hang dit maar als bijlage bij een volgende bericht. Doe dit wel eerst vóór je het volgende uitvoert:

Download Zoek.zip naar het bureaublad.

• Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  
• Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  
• Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  
• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

  {03EB0E9C-7A91-4381-A220-9B52B641CDB1};c
 C:\Program Files (x86)\IObit Apps Toolbar;fs
 {00000000-6E41-4FD3-8538-502F5495E5FC};c
 {472734EA-242A-422b-ADF8-83D1E48CC825};c
 {88ac3cb6-596b-4217-964c-b6757ef9602d};c
 C:\Program Files (x86)\express-files;fs
 {0BDA0769-FD72-49F4-9266-E1FB004F4D8F};c
 {055af109-de93-4160-bcfc-7da70ecaa020};c
 C:\Program Files (x86)\diamondata;fs
 {18DBB6CE-3148-4FEC-B481-103CB3290427};c
 C:\Program Files (x86)\Speed Analysis 2;fs
 {197915AB-0BCA-85F9-F0EB-E48819C4AC39};c
 C:\ProgramData\Bcool;fs
 {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20};c
 C:\Program Files (x86)\Winamp Toolbar;fs
 {336D0C35-8A85-403a-B9D2-65C292C39087};c
 C:\Program Files\Web Assistant;fs
 {4D6A9BBF-402C-4301-B1EF-28D04F71D761};c
 C:\Program Files (x86)\mixidj;fs
 {58124A0B-DC32-4180-9BFF-E0E21AE34026};c
 C:\Program Files (x86)\IMinent Toolbar;fs
 {597A9974-8CB0-4f41-B61F-ED065738A397};c
 C:\Program Files (x86)\RewardsArcade;fs
 {64182481-4F71-486b-A045-B233BD0DA8FC};c
 C:\Program Files (x86)\facemoods.com;fs
 {7148263E-9744-4719-BEA3-8766FC18932B};c
 C:\Program Files (x86)\Games by 7Go;fs
 {7F6AFBF1-E065-4627-A2FD-810366367D01};c
 C:\Users\fvanhoon\AppData\Roaming\DefaultTab;fs
 {8B8B2E80-1444-451D-AC8E-EB9A847F3887}:c
 C:\Program Files (x86)\Unitech LLC;fs
 {93488930-185C-4CED-AFEB-0FD4930F8423};c
 C:\Program Files (x86)\SeeSimilar02;fs
 {944FEDFD-C4FD-441D-8275-9C651A9FFBDE};c
 C:\Program Files (x86)\Smiley Bar for Facebook;fs
 {95B7759C-8C7F-4BF1-B163-73684A933233};c
 C:\Program Files (x86)\AVG Secure Search;fs
 {99079a25-328f-4bd4-be04-00955acaa0a7};c
 {A09AB6EB-31B5-454C-97EC-9B294D92EE2A};c
 {A66261FC-B82E-4EC7-9F6D-C2F36B871DF0};c
 C:\Program Files (x86)\Speed Analysis 3;fs
 {A9337080-7CBF-4E3E-80C1-3867BEDD88E0};c
 C:\Program Files (x86)\Zula Games;fs
 {ba14329e-9550-4989-b3f2-9732e92d17cc};c
 C:\Program Files (x86)\Vuze_Remote;fs
 {C1ED9DA0-AFD0-4b90-AC6A-D3874F591014};c
 {DB536AF2-E422-402d-B7FD-887297F1A198};c
 {EF7BD87A-8024-11E2-F316-F3E56188709B};c
 C:\Program Files (x86)\DealPly;fs
 {f34c9277-6577-4dff-b2d7-7d58092f272f};c
 {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007};c
 C:\Program Files (x86)\PricePeep;fs

• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht.