Ga naar inhoud

Aanbevolen berichten

Hallo,

Sins kort heb ik erg last van ads steeds als ik google chrome opstart dan komt er weer een ad in beeld en ook hier zijn van die ads post-18885-0-86478800-1428308191_thumb.j

dit is erg vervelend en daarna opent hij weer een nieuwe pagina

 

Kan iemand mij helpen

 

Niek

 

Edit: Dit krijg ik ook steedspost-18885-0-42241700-1428308344_thumb.j

aangepast door Niek11
Link naar bericht
Delen op andere sites

  • Reacties 27
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Geplaatste afbeeldingen

Ik zie daar bij je tweede plaatje Bestprice staan, dus denk ik dat het tijd is om dit uit te voeren:

 

    (als je logje er staat worden de ontleders verwittigd)

 

 

Download icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen


  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Bekijk ook de

. aangepast door Passer
Link naar bericht
Delen op andere sites

De log nog een keer

Logfile of random's system information tool 1.10 (written by random/random)
Run by Niek at 2015-04-06 10:52:19
Microsoft Windows 7 Home Premium  Service Pack 1
System drive C: has 692 GB (73%) free of 954 GB
Total RAM: 8135 MB (63% free)
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:52:25, on 6-4-2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe
C:\Program Files (x86)\XTab\cmdshell.exe
C:\Program Files (x86)\XTab\HPNotify.exe
C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f}\optimizerpro_soft_partner.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd}\superpc_soft_partner.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Niek.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp&ts=1425226106&from=epom3&uid=ST1000DM003-1ER162_Z4Y06NQKXXXXZ4Y06NQK
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\XTab\SupTab.dll
O2 - BHO: Fun2SSavE - {64607997-95df-47d4-aed2-1cb0a5cdfdda} - C:\Program Files (x86)\Fun2SSavE\84HDQN5JK4j3cx.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Isaverr - {8c406a8b-73c6-4fae-9a2d-b099a5becdeb} - C:\Program Files (x86)\Isaverr\jOHLYlAjaqiiyo.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [bitTorrent] "C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe"  /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Adobe Photoshop CS5 Full.lnk = C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe
O4 - Startup: optimizerpro_soft_partner.lnk = C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f}\optimizerpro_soft_partner.exe
O4 - Startup: superpc_soft_partner.lnk = C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd}\superpc_soft_partner.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bdl.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IHProtect Service - XTab system - C:\Program Files (x86)\XTab\ProtectService.exe
O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Clone Zoom Out (kebyvuxe) - Unknown owner - C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\nsa4D8D.tmpfs
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Portal Reformat (ronojewe) - Unknown owner - C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\jnsf7C9E.tmp
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - SysTool PasSame LIMITED - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
--
End of file - 14328 bytes
 
======Listing Processes======
 
 
 
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe"
"C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\XTab\ProtectService.exe"
C:\Windows\system32\IProsetMonitor.exe
C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\nsa4D8D.tmpfs
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\jnsf7C9E.tmp
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 91c27fa0-2486-465a-b1f2-905e6a32aff0 1
\??\C:\Windows\system32\conhost.exe "13883335631495590112-174146605220466485161605495156-225067223241789119-803959261
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-55b205d5-5dbe-4902-b011-e55358041d7f -SystemEventPortName:HostProcess-2a2e7757-f496-42d7-adf6-119b59afe5f6 -IoCancelEventPortName:HostProcess-55b05736-5424-47a5-a378-de2b784d606b -NonStateChangingEventPortName:HostProcess-a0008e39-829d-4d7d-9f83-113f388a576b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d87b2c8a-89da-45d1-8cb4-8f1307877656 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-313674456-1576091379-1025069321213548982-1908176415861025784937086247825220346
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DTSU2P
"C:\Windows\System32\TiltWheelMouse.exe" 
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
"C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe"  /MINIMIZED
"C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" 
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 
"C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe" --startup=1
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\XTab\cmdshell.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
HPNotify.exe -run
"C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f}\optimizerpro_soft_partner.exe" /startup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" 
"C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd}\superpc_soft_partner.exe" /startup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6132.0.1837527788\1491031990" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,40,48 --gpu-vendor-id=0x10de --gpu-device-id=0x1380 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4460 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.2.241443528\1909295980" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.3.1616857304\703886129" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.4.1025695304\1442628229" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.5.795190880\947189830" /prefetch:673131151
"C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"
"C:\Windows\system32\wuauclt.exe"
consent.exe 1128 566 00000000097E9B80
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="6132.10.2116062189\791323517" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.12.1503832088\1469267581" /prefetch:673131151
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe"
 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --test-type --enable-deferred-image-decoding --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlEnforce/ExtensionInstallVerification/None/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/DisplayHintTextWhenPossiblePostPeriod/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/V8CacheOptions/recent-small/VoiceTrigger/Install/WebRTC-ScreencastTargetBitrateOvershoot/Default/WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --extensions-on-chrome-urls --device-scale-factor=1 --font-cache-shared-mem-suffix=6132 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="6132.21.1381691663\670453500" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528 
"C:\Users\Niek\Downloads\RSITx64.exe" 
C:\Windows\system32\wbem\wmiprvse.exe
 
======Scheduled tasks folder======
 
C:\Windows\tasks\APSnotifierPP1.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe  --notifier 3A 
C:\Windows\tasks\APSnotifierPP2.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe  --notifier 4 
C:\Windows\tasks\APSnotifierPP3.job - C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe  --notifier 6 
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 
 
======Registry dump======
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64607997-95df-47d4-aed2-1cb0a5cdfdda}]
Fun2SSavE - C:\Program Files (x86)\Fun2SSavE\84HDQN5JK4j3cx.x64.dll [2015-03-17 660480]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-08 553896]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8c406a8b-73c6-4fae-9a2d-b099a5becdeb}]
Isaverr - C:\Program Files (x86)\Isaverr\jOHLYlAjaqiiyo.x64.dll [2015-03-17 660480]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03 256456]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-08 211880]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
IETabPage Class - C:\Program Files (x86)\XTab\SupTab.dll [2015-01-16 210096]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64607997-95df-47d4-aed2-1cb0a5cdfdda}]
Fun2SSavE - C:\Program Files (x86)\Fun2SSavE\84HDQN5JK4j3cx.dll [2015-03-17 587264]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-15 462760]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8c406a8b-73c6-4fae-9a2d-b099a5becdeb}]
Isaverr - C:\Program Files (x86)\Isaverr\jOHLYlAjaqiiyo.dll [2015-03-17 587264]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03 194504]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-15 171944]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-03 256456]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03 194504]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-04-22 7573208]
"RtHDVBg_DTS"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-04-15 1385840]
"IAStorIcon"=C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe [2014-04-11 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-10-04 2463552]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-10-04 2800296]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2012-12-19 241152]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2015-01-30 1332296]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2014-08-14 39408]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31087200]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2015-03-01 3631448]
"BitTorrent"=C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe [2015-03-05 1744472]
"EpicScale"= []
"AdobeBridge"= []
 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-21 292848]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-10-02 421888]
"gmsd_nl_107"= []
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
 
C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Photoshop CS5 Full.lnk - C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe
optimizerpro_soft_partner.lnk - C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f}\optimizerpro_soft_partner.exe
superpc_soft_partner.lnk - C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd}\superpc_soft_partner.exe
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
 
======File associations======
 
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
 
======List of files/folders created in the last 1 month======
 
2015-04-06 10:52:19 ----D---- C:\rsit
2015-04-06 10:52:19 ----D---- C:\Program Files\trend micro
2015-04-02 14:00:50 ----D---- C:\ProgramData\98b5451200001294
2015-03-25 18:39:59 ----A---- C:\Windows\system32\acmigration.dll
2015-03-25 18:39:58 ----A---- C:\Windows\system32\invagent.dll
2015-03-25 18:39:58 ----A---- C:\Windows\system32\generaltel.dll
2015-03-25 18:39:58 ----A---- C:\Windows\system32\devinv.dll
2015-03-25 18:39:58 ----A---- C:\Windows\system32\appraiser.dll
2015-03-25 18:39:58 ----A---- C:\Windows\system32\aepdu.dll
2015-03-25 18:39:58 ----A---- C:\Windows\system32\aeinv.dll
2015-03-25 18:39:57 ----A---- C:\Windows\system32\aepic.dll
2015-03-25 18:24:59 ----D---- C:\ProgramData\5b7719bc00004870
2015-03-22 19:46:57 ----D---- C:\ProgramData\Supreme AdBlocker
2015-03-17 21:04:34 ----D---- C:\Program Files (x86)\eyeCare  Protect your vision and health
2015-03-17 21:04:04 ----D---- C:\Program Files (x86)\Fun2SSavE
2015-03-17 21:03:57 ----D---- C:\Program Files (x86)\Isaverr
2015-03-17 21:03:53 ----D---- C:\Program Files (x86)\AllSaveer
2015-03-16 18:31:27 ----D---- C:\ProgramData\Mini - Adblocker
2015-03-15 11:11:24 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2015-03-15 11:11:20 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2015-03-14 11:26:41 ----D---- C:\ProgramData\fd05f803000010d9
2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-13 18:49:01 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-13 18:49:01 ----A---- C:\Windows\system32\lpk.dll
2015-03-13 18:49:01 ----A---- C:\Windows\system32\fontsub.dll
2015-03-13 18:49:01 ----A---- C:\Windows\system32\dciman32.dll
2015-03-13 18:49:01 ----A---- C:\Windows\system32\atmlib.dll
2015-03-13 18:49:01 ----A---- C:\Windows\system32\atmfd.dll
2015-03-13 18:48:56 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-13 18:48:56 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-13 18:48:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-13 18:48:55 ----A---- C:\Windows\system32\crypt32.dll
2015-03-13 18:48:54 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-03-13 18:48:54 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-03-13 18:48:54 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-03-13 18:48:54 ----A---- C:\Windows\system32\mf.dll
2015-03-13 18:48:54 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-03-13 18:48:53 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-13 18:48:53 ----A---- C:\Windows\system32\wmp.dll
2015-03-13 18:48:53 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-13 18:48:52 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-13 18:48:52 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-13 18:48:52 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-03-13 18:48:52 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-13 18:48:52 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-13 18:48:52 ----A---- C:\Windows\system32\winload.exe
2015-03-13 18:48:52 ----A---- C:\Windows\system32\quartz.dll
2015-03-13 18:48:52 ----A---- C:\Windows\system32\msscp.dll
2015-03-13 18:48:52 ----A---- C:\Windows\system32\cryptui.dll
2015-03-13 18:48:52 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-13 18:48:51 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-13 18:48:51 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-13 18:48:51 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-13 18:48:51 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-03-13 18:48:51 ----A---- C:\Windows\system32\wintrust.dll
2015-03-13 18:48:51 ----A---- C:\Windows\system32\srcore.dll
2015-03-13 18:48:51 ----A---- C:\Windows\system32\rstrui.exe
2015-03-13 18:48:51 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-13 18:48:51 ----A---- C:\Windows\system32\mfplat.dll
2015-03-13 18:48:51 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-13 18:48:51 ----A---- C:\Windows\system32\blackbox.dll
2015-03-13 18:48:51 ----A---- C:\Windows\system32\audiosrv.dll
2015-03-13 18:48:51 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-03-13 18:48:50 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-13 18:48:50 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-13 18:48:50 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-13 18:48:50 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-03-13 18:48:50 ----A---- C:\Windows\system32\qdvd.dll
2015-03-13 18:48:50 ----A---- C:\Windows\system32\msnetobj.dll
2015-03-13 18:48:50 ----A---- C:\Windows\system32\evr.dll
2015-03-13 18:48:50 ----A---- C:\Windows\system32\cryptsvc.dll
2015-03-13 18:48:50 ----A---- C:\Windows\system32\AudioSes.dll
2015-03-13 18:48:50 ----A---- C:\Windows\system32\audiodg.exe
2015-03-13 18:48:49 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-03-13 18:48:49 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-03-13 18:48:49 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-03-13 18:48:49 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-03-13 18:48:49 ----A---- C:\Windows\system32\smss.exe
2015-03-13 18:48:49 ----A---- C:\Windows\system32\rrinstaller.exe
2015-03-13 18:48:49 ----A---- C:\Windows\system32\pcadm.dll
2015-03-13 18:48:49 ----A---- C:\Windows\system32\AudioEng.dll
2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-03-13 18:48:48 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-03-13 18:48:48 ----A---- C:\Windows\system32\srclient.dll
2015-03-13 18:48:48 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-03-13 18:48:48 ----A---- C:\Windows\system32\pcawrk.exe
2015-03-13 18:48:48 ----A---- C:\Windows\system32\pcalua.exe
2015-03-13 18:48:48 ----A---- C:\Windows\system32\msmmsp.dll
2015-03-13 18:48:48 ----A---- C:\Windows\system32\mfps.dll
2015-03-13 18:48:48 ----A---- C:\Windows\system32\mfpmp.exe
2015-03-13 18:48:48 ----A---- C:\Windows\system32\EncDump.dll
2015-03-13 18:48:48 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-03-13 18:48:48 ----A---- C:\Windows\system32\drivers\appid.sys
2015-03-13 18:48:48 ----A---- C:\Windows\system32\csrsrv.dll
2015-03-13 18:48:48 ----A---- C:\Windows\system32\cryptsp.dll
2015-03-13 18:48:48 ----A---- C:\Windows\system32\appidsvc.dll
2015-03-13 18:48:48 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-03-13 18:48:48 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-03-13 18:48:48 ----A---- C:\Windows\system32\appidapi.dll
2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-03-13 18:48:47 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-03-13 18:48:47 ----A---- C:\Windows\system32\wmploc.DLL
2015-03-13 18:48:47 ----A---- C:\Windows\system32\spwmp.dll
2015-03-13 18:48:47 ----A---- C:\Windows\system32\pcaevts.dll
2015-03-13 18:48:47 ----A---- C:\Windows\system32\mferror.dll
2015-03-13 18:48:47 ----A---- C:\Windows\system32\dxmasf.dll
2015-03-13 18:48:47 ----A---- C:\Windows\system32\apisetschema.dll
2015-03-13 18:48:35 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-03-13 18:48:35 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-13 18:48:35 ----A---- C:\Windows\system32\ubpm.dll
2015-03-13 18:48:35 ----A---- C:\Windows\system32\shell32.dll
2015-03-13 18:48:33 ----A---- C:\Windows\system32\schannel.dll
2015-03-13 18:48:33 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-03-13 18:48:33 ----A---- C:\Windows\system32\drivers\cng.sys
2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-13 18:48:32 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-03-13 18:48:32 ----A---- C:\Windows\system32\wdigest.dll
2015-03-13 18:48:32 ----A---- C:\Windows\system32\TSpkg.dll
2015-03-13 18:48:32 ----A---- C:\Windows\system32\sspicli.dll
2015-03-13 18:48:32 ----A---- C:\Windows\system32\ncrypt.dll
2015-03-13 18:48:32 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-13 18:48:32 ----A---- C:\Windows\system32\lsass.exe
2015-03-13 18:48:32 ----A---- C:\Windows\system32\lsasrv.dll
2015-03-13 18:48:32 ----A---- C:\Windows\system32\kerberos.dll
2015-03-13 18:48:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-03-13 18:48:31 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-03-13 18:48:31 ----A---- C:\Windows\system32\sspisrv.dll
2015-03-13 18:48:31 ----A---- C:\Windows\system32\secur32.dll
2015-03-13 18:48:31 ----A---- C:\Windows\system32\msobjs.dll
2015-03-13 18:48:31 ----A---- C:\Windows\system32\msaudite.dll
2015-03-13 18:48:31 ----A---- C:\Windows\system32\credssp.dll
2015-03-13 18:48:31 ----A---- C:\Windows\system32\auditpol.exe
2015-03-13 18:48:31 ----A---- C:\Windows\system32\adtschema.dll
2015-03-13 18:48:29 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-13 18:48:29 ----A---- C:\Windows\system32\msctf.dll
2015-03-13 18:48:28 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-13 18:48:28 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-13 18:48:27 ----A---- C:\Windows\system32\win32k.sys
2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-03-13 18:48:26 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-03-13 18:48:26 ----A---- C:\Windows\system32\iernonce.dll
2015-03-13 18:48:26 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-03-13 18:48:26 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-03-13 18:48:26 ----A---- C:\Windows\system32\ie4uinit.exe
2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-13 18:48:25 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-13 18:48:25 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-13 18:48:24 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-03-13 18:48:24 ----A---- C:\Windows\system32\urlmon.dll
2015-03-13 18:48:24 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-13 18:48:24 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-13 18:48:24 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-03-13 18:48:24 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-13 18:48:24 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-13 18:48:23 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-03-13 18:48:23 ----A---- C:\Windows\system32\iesetup.dll
2015-03-13 18:48:23 ----A---- C:\Windows\system32\iertutil.dll
2015-03-13 18:48:23 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-13 18:48:22 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-13 18:48:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-13 18:48:22 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-03-13 18:48:22 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-13 18:48:22 ----A---- C:\Windows\system32\jsproxy.dll
2015-03-13 18:48:22 ----A---- C:\Windows\system32\ieUnatt.exe
2015-03-13 18:48:22 ----A---- C:\Windows\system32\ieui.dll
2015-03-13 18:48:22 ----A---- C:\Windows\system32\dxtmsft.dll
2015-03-13 18:48:21 ----A---- C:\Windows\system32\vbscript.dll
2015-03-13 18:48:21 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-03-13 18:48:21 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-13 18:48:21 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-13 18:48:21 ----A---- C:\Windows\system32\jscript9.dll
2015-03-13 18:48:21 ----A---- C:\Windows\system32\ieframe.dll
2015-03-13 18:48:20 ----A---- C:\Windows\system32\wininet.dll
2015-03-13 18:48:20 ----A---- C:\Windows\system32\msrating.dll
2015-03-13 18:48:20 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-13 18:48:20 ----A---- C:\Windows\system32\mshtml.dll
2015-03-13 18:47:50 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-13 18:47:50 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-11 15:15:14 ----D---- C:\Users\Niek\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2015-03-10 20:38:40 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2015-03-10 20:38:05 ----D---- C:\Program Files\Adobe
2015-03-10 20:37:02 ----D---- C:\Program Files (x86)\Adobe
2015-03-10 20:35:27 ----D---- C:\Program Files\Common Files\Adobe
2015-03-10 20:23:41 ----D---- C:\ProgramData\Adobe
2015-03-10 19:08:40 ----D---- C:\ProgramData\Browser AdBlocker
 
======List of files/folders modified in the last 1 month======
 
2015-04-06 10:52:25 ----D---- C:\Windows\Prefetch
2015-04-06 10:52:23 ----D---- C:\Windows\Temp
2015-04-06 10:52:19 ----RD---- C:\Program Files
2015-04-06 10:52:09 ----D---- C:\Users\Niek\AppData\Roaming\BitTorrent
2015-04-06 10:49:00 ----D---- C:\Users\Niek\AppData\Roaming\Skype
2015-04-06 10:31:35 ----D---- C:\Windows\system32\config
2015-04-06 10:20:53 ----SHD---- C:\System Volume Information
2015-04-06 10:13:24 ----D---- C:\Windows\System32
2015-04-06 10:13:24 ----D---- C:\Windows\inf
2015-04-06 10:13:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-06 10:08:14 ----D---- C:\ProgramData\NVIDIA
2015-04-02 14:38:54 ----D---- C:\FTB
2015-04-02 14:36:45 ----D---- C:\Users\Niek\AppData\Roaming\.minecraft
2015-04-02 14:00:50 ----RD---- C:\Program Files (x86)
2015-04-02 14:00:50 ----HD---- C:\ProgramData
2015-04-02 13:59:57 ----D---- C:\Program Files (x86)\Common Files
2015-03-30 00:52:39 ----D---- C:\ProgramData\Origin
2015-03-29 23:53:09 ----D---- C:\Windows\rescache
2015-03-28 21:50:32 ----D---- C:\Windows\winsxs
2015-03-28 21:49:38 ----SD---- C:\Windows\system32\CompatTel
2015-03-28 21:49:37 ----D---- C:\Windows\system32\wbem
2015-03-28 21:49:37 ----D---- C:\Windows\system32\appraiser
2015-03-28 21:49:37 ----D---- C:\Windows\AppPatch
2015-03-22 20:44:39 ----D---- C:\Program Files (x86)\Steam
2015-03-22 20:30:37 ----D---- C:\Program Files (x86)\Origin Games
2015-03-22 18:23:25 ----D---- C:\Windows\system32\NDF
2015-03-22 18:06:26 ----D---- C:\ProgramData\c65f92fe00005978
2015-03-22 18:06:22 ----D---- C:\ProgramData\c8a9775800006a12
2015-03-22 18:06:22 ----D---- C:\ProgramData\c24d49b100000e88
2015-03-17 21:04:34 ----D---- C:\ProgramData\7125272534184871677
2015-03-16 18:10:56 ----D---- C:\ProgramData\eefafaef00001a98
2015-03-15 11:49:07 ----D---- C:\Windows\SysWOW64
2015-03-15 11:11:48 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2015-03-15 11:10:47 ----RSD---- C:\Windows\assembly
2015-03-15 11:10:40 ----D---- C:\Windows
2015-03-15 11:09:50 ----D---- C:\Windows\Logs
2015-03-14 12:55:39 ----D---- C:\ProgramData\EpicScale
2015-03-14 11:10:36 ----D---- C:\ProgramData\Package Cache
2015-03-14 11:10:18 ----SHD---- C:\Windows\Installer
2015-03-14 10:47:58 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-03-14 10:47:58 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-14 10:47:58 ----D---- C:\Windows\system32\nl-NL
2015-03-14 10:47:58 ----D---- C:\Windows\system32\drivers
2015-03-14 10:47:58 ----D---- C:\Program Files\Windows Media Player
2015-03-14 10:47:58 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-14 10:47:57 ----D---- C:\Windows\system32\Dism
2015-03-14 10:47:56 ----D---- C:\Windows\system32\Boot
2015-03-14 10:47:52 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-14 10:47:52 ----D---- C:\Program Files\Internet Explorer
2015-03-14 10:47:51 ----D---- C:\Windows\system32\en-US
2015-03-14 10:47:50 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-13 19:20:03 ----D---- C:\ProgramData\Microsoft Help
2015-03-13 19:14:57 ----A---- C:\Windows\win.ini
2015-03-13 18:47:31 ----D---- C:\Windows\system32\catroot2
2015-03-11 17:17:52 ----RSD---- C:\Windows\Fonts
2015-03-11 15:15:14 ----D---- C:\Users\Niek\AppData\Roaming\Adobe
2015-03-11 14:59:31 ----D---- C:\Users\Niek\AppData\Roaming\Origin
2015-03-11 14:58:48 ----D---- C:\Windows\system32\Tasks
2015-03-10 20:35:27 ----D---- C:\Program Files\Common Files
 
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2014-04-11 645480]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2014-04-11 28008]
R0 iusb3hcs;Intel® USB 3.0 hostcontrollerswitch-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-02-21 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-11-15 274696]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 {ca032d0a-a16a-4ca5-8bc6-c3c5a2d19d37}Gw64;{ca032d0a-a16a-4ca5-8bc6-c3c5a2d19d37}Gw64; C:\Windows\system32\drivers\{ca032d0a-a16a-4ca5-8bc6-c3c5a2d19d37}Gw64.sys [2015-03-01 48792]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2014-01-28 15232]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-11-15 124560]
R3 e1dexpress;Intel® PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2014-03-14 487704]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-04-24 3944536]
R3 iusb3hub;Intel® USB 3.0 hub-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-21 370672]
R3 iusb3xhc;Intel® USB 3.0 uitbreidbare hostcontroller-stuurprogramma; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-21 791024]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2012-09-13 1808448]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-10-30 197408]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-10-04 20288]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 tenCapture;tenCapture; C:\Windows\system32\DRIVERS\tenCapture.sys [2012-07-20 23736]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
 
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [2014-01-28 936728]
R2 DTSAudioSvc;DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [2013-10-06 240576]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-10-04 1149760]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-04-11 16232]
R2 IHProtect Service;IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [2015-01-16 158896]
R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2014-03-11 260360]
R2 kebyvuxe;Clone Zoom Out; C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\nsa4D8D.tmpfs [2015-03-01 113664]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-01-30 23784]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-10-04 1796928]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-10-04 19440960]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-10-30 935232]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-03-15 76888]
R2 ronojewe;Portal Reformat; C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879\jnsf7C9E.tmp [2015-03-01 174592]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-30 411968]
R2 WindowsMangerProtect;WindowsMangerProtect Service; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [2015-03-01 487056]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2015-01-30 366512]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-14 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2014-12-07 182304]
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-14 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-14 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-03-01 1910640]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-01-24 834752]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-08-17 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
 
-----------------EOF-----------------
Link naar bericht
Delen op andere sites

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
C:\Program Files (x86)\XTab;fs
C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f};fs
C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd};fs
C:\Program Files (x86)\Fun2SSavE;fs
C:\Program Files (x86)\Isaverr;fs
C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879;fs
C:\Program Files (x86)\AnyProtectEx;fs
C:\Windows\tasks\APSnotifierPP1.job;f
C:\Windows\tasks\APSnotifierPP2.job;f
C:\Windows\tasks\APSnotifierPP3.job;f
C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\optimizerpro_soft_partner.lnk;f
C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\superpc_soft_partner.lnk;f
C:\Program Files (x86)\AllSaveer;fs
{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C};c
{64607997-95df-47d4-aed2-1cb0a5cdfdda};c
{8c406a8b-73c6-4fae-9a2d-b099a5becdeb};c
IHProtect Service;s
kebyvuxe;s
ronojewe;s
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64607997-95df-47d4-aed2-1cb0a5cdfdda}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8c406a8b-73c6-4fae-9a2d-b099a5becdeb}]:r
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]:r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64607997-95df-47d4-aed2-1cb0a5cdfdda}]:r64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8c406a8b-73c6-4fae-9a2d-b099a5becdeb}];r64
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r
"AppInit_DLLs"=-;r
chromelook;
firefoxlook;
emptyfolderscheck;delete
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
     
  • Do a Deep Scan
  • Installed Programs
  • Auto Clean
     
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar bericht
Delen op andere sites

Dit is de log van zoek.exe:

Zoek.exe v5.0.0.0 Updated 02-April-2015
Tool run by Niek on ma 06-04-2015 at 14:06:43,71.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Niek\Downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used]
 
==== Older Logs ======================
 
C:\zoek-results2015-04-06-120500.log 9085 bytes
 
==== Deleting CLSID Registry Keys ======================
 
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CA89D229-A080-41AA-887F-7C1F84FA5958} deleted successfully
HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully
 
==== Deleting CLSID Registry Values ======================
 
 
==== Installed Programs ======================
 
Adobe Flash Player ActiveX  
Adobe Photoshop CS6  
Agrar Simulator 2011  
Apple Application Support  
Apple Software Update  
ASUS PCE-N53 WLAN Card Utilities & Driver  
ASUS Product Register Program  
Battle.net  
Battlelog Web Plugins  
Bing Bar  
BitTorrent  
CCleaner  
Craften Terminal 4.0.2  
De SimsT 4  
Definition Update for Microsoft Office 2010 (KB2956207) 64-Bit Edition  
ESN Sonar  
Fraps (remove only)  
Garbage Truck Simulator  
Google Chrome  
Google Toolbar for Internet Explorer  
Google Update Helper  
Heavyweight Simulator 1.11  
Intel® Chipset Device Software  
Intel® Network Connections 19.1.51.0  
Intel® Rapid Storage Technology  
Intel® USB 3.0 eXtensible Host Controller Driver  
Java 7 Update 67  
Java 7 Update 67 (64-bit)  
Java Auto Updater  
Loadout  
Microsoft .NET Framework 4.5.1  
Microsoft ASP.NET MVC 4 Runtime  
Microsoft Office Access MUI (Dutch) 2010  
Microsoft Office Excel MUI (Dutch) 2010  
Microsoft Office Groove MUI (Dutch) 2010  
Microsoft Office InfoPath MUI (Dutch) 2010  
Microsoft Office Office 32-bit Components 2010  
Microsoft Office OneNote MUI (Dutch) 2010  
Microsoft Office Outlook MUI (Dutch) 2010  
Microsoft Office PowerPoint MUI (Dutch) 2010  
Microsoft Office Professional Plus 2010  
Microsoft Office Proof (Dutch) 2010  
Microsoft Office Proof (English) 2010  
Microsoft Office Proof (French) 2010  
Microsoft Office Proof (German) 2010  
Microsoft Office Proofing (Dutch) 2010  
Microsoft Office Publisher MUI (Dutch) 2010  
Microsoft Office Shared 32-bit MUI (Dutch) 2010  
Microsoft Office Shared MUI (Dutch) 2010  
Microsoft Office Word MUI (Dutch) 2010  
Microsoft Outlook Hotmail Connector 64-bits  
Microsoft Security Client  
Microsoft Security Essentials  
Microsoft Visual C++ 2005 Redistributable  
Microsoft Visual C++ 2005 Redistributable (x64)  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161  
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219  
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219  
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030  
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030  
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030  
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501  
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005  
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD  
Microsoft_VC80_CRT_x86  
Microsoft_VC90_CRT_x86  
Minecraft  
MSI GamingApp  
NVIDIA-configuratiescherm 344.60  
NVIDIA 3D Vision controllerstuurprogramma 344.46  
NVIDIA 3D Vision stuurprogramma 344.60  
NVIDIA GeForce Experience 2.1.3  
NVIDIA GeForce Experience Service  
NVIDIA Grafisch stuurprogramma 344.60  
NVIDIA HD Audio-stuurprogramma 1.3.32.1  
NVIDIA Install Application  
NVIDIA LED Visualizer 1.0  
NVIDIA Network Service  
NVIDIA PhysX  
NVIDIA PhysX systeemsoftware 9.14.0702  
NVIDIA ShadowPlay 16.13.56  
NVIDIA Stereoscopic 3D Driver  
NVIDIA Update 16.13.56  
NVIDIA Update Core  
NVIDIA Virtual Audio 1.2.25  
Origin  
PAYDAY 2  
PDF Settings CS6  
PlanetSide 2  
Popcorn Time  
QuickTime 7  
Realtek High Definition Audio Driver  
ROBLOX Player for Niek  
Robocraft  
Rust  
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)  
Security Update for Microsoft Excel 2010 (KB2956142) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2881071) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2883100) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2889839) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2920748) 64-Bit Edition  
Security Update for Microsoft Office 2010 (KB2956076) 64-Bit Edition  
Security Update for Microsoft PowerPoint 2010 (KB2920812) 64-Bit Edition  
Security Update for Microsoft Word 2010 (KB2956139) 64-Bit Edition  
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition  
SHIELD Streaming  
SHIELD Wireless Controller Driver  
SkypeT 7.1  
Software voor Intel© Chipset-apparaten  
Space Engineers  
SPORET  
Steam  
Supreme AdBlocker  
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD  
Team Fortress 2  
TeamSpeak 3 Client  
THE SETTLERS - Rise of an Empire  
Theme Hospital  
To Do List  
Trawler Simulator  
Unity Web Player  
Update for Microsoft Access 2010 (KB2837601) 64-Bit Edition  
Update for Microsoft Excel 2010 (KB2589348) 64-Bit Edition  
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition  
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition  
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2837602) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2889828) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2920813) 64-Bit Edition  
Update for Microsoft Office 2010 (KB2956141) 64-Bit Edition  
Update for Microsoft OneNote 2010 (KB2956075) 64-Bit Edition  
Update for Microsoft OneNote 2010 (KB2956205) 64-Bit Edition  
Update for Microsoft Outlook 2010 (KB2956128) 64-Bit Edition  
Update for Microsoft Outlook 2010 (KB2956203) 64-Bit Edition  
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition  
Update for Microsoft Visio 2010 (KB2878283) 64-Bit Edition  
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition  
WinRAR 5.01 (32-bit)  
World of Tanks  
World of Warcraft  
World of Warplanes  
 
==== Running Processes ======================
 
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\ProgramData\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe
C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Users\Niek\Downloads\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe
 
==== Deleting Services ======================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\WindowsMangerProtect deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WindowsMangerProtect deleted successfully
 
==== Registry Fix Code ======================
 
Windows Registry Editor Version 5.00
 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64607997-95df-47d4-aed2-1cb0a5cdfdda}] 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command]
@="C:\\Program Files\\Internet Explorer\\iexplore.exe"
 
==== Registry Fix Code x64 ======================
 
Windows Registry Editor Version 5.00
 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8c406a8b-73c6-4fae-9a2d-b099a5becdeb}] 
 
==== Batch Command(s) Run By Tool======================
 
 
De Winsock-catalogus is opnieuw ingesteld.
De computer dient opnieuw te worden opgestart om het opnieuw instellen te voltooien.
 
 
==== Deleting Files \ Folders ======================
 
C:\Program Files (x86)\XTab not found
C:\ProgramData\{43267fa3-cec5-e95e-4326-67fa3cecfe8f} not found
C:\ProgramData\{2c661df3-64a0-f4d0-2c66-61df364a77cd} not found
C:\Program Files (x86)\Fun2SSavE not found
C:\Program Files (x86)\Isaverr not found
C:\Users\Niek\AppData\Roaming\5D14FF20-1425229692-11DD-B1EB-10C37B6E8879 not found
C:\Program Files (x86)\AnyProtectEx not found
C:\Program Files (x86)\AllSaveer not found
"C:\Windows\tasks\APSnotifierPP1.JOB" not found
"C:\Windows\tasks\APSnotifierPP2.job" not found
"C:\Windows\tasks\APSnotifierPP3.job" not found
"C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\optimizerpro_soft_partner.lnk" not found
"C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\superpc_soft_partner.lnk" not found
C:\PROGRA~2\eyeCare  Protect your vision and health deleted
C:\PROGRA~2\To Do List deleted
C:\PROGRA~2\UniDEalosa deleted
C:\PROGRA~3\dmcfiidpjnmbhookaihpghmfbihghgfj deleted
C:\PROGRA~3\gfigacejallcjhhgkminhbncegfngcii deleted
C:\PROGRA~3\hjnghnajimjeakelnfllmbpjldmijdii deleted
C:\PROGRA~3\lkcfmgbmhdghafbmgnnmpkdmobibckme deleted
C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\Adobe Photoshop CS5 Full.lnk deleted
C:\PROGRA~3\7125272534184871677 deleted
C:\Users\Niek\AppData\Roaming\appdataFr3.bin deleted
C:\Users\Niek\AppData\Roaming\AnyProtectEx deleted
C:\PROGRA~3\APN deleted
C:\PROGRA~3\Browser AdBlocker deleted
C:\PROGRA~3\Mini - Adblocker deleted
C:\PROGRA~3\Supreme AdBlocker deleted
C:\PROGRA~3\IHProtectUpDate deleted
C:\PROGRA~3\EpicScale deleted
C:\PROGRA~3\WindowsMangerProtect deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Niek\AppData\Local\nsqC403.tmp deleted
C:\Users\Niek\AppData\Local\5D14FF20-1425229746-11DD-B1EB-10C37B6E8879 deleted
C:\Users\Niek\AppData\Local\SmartWeb deleted
C:\Users\Niek\AppData\Local\Maxiget deleted
C:\Windows\patsearch.bin deleted
C:\Windows\Syswow64\BasementDusterOff.ini deleted
C:\windows\SysNative\BasementDusterOff.ini deleted
C:\windows\SysNative\tasks\SmartWeb Upgrade Trigger Task deleted
C:\windows\SysNative\drivers\Msft_Kernel_webTinst_01009.Wdf deleted
C:\windows\SysNative\drivers\{ca032d0a-a16a-4ca5-8bc6-c3c5a2d19d37}Gw64.sys deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Niek\Documents\Optimizer Pro deleted
"C:\Windows\Syswow64\BDL.dll" deleted
"C:\Users\Niek\AppData\Roaming\.minecraft\launcher.jar" not deleted
"C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\5b5b9f563aaa7daf" not deleted
"C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\96a639031d7e9a7b" not deleted
"C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\Adobe Photoshop CS5 Full.exe" deleted
"C:\Users\Niek\AppData\Roaming\.minecraft" not deleted
"C:\Users\Niek\AppData\Roaming\.technic" deleted
"C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}" not deleted
 
==== System Specs ======================
 
Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 8136 MB
CPU Info: Intel® Core i5-4460  CPU @ 3.20GHz
CPU Speed: 3196,6 MHz
Sound Card: Luidsprekers (Realtek High Defi | 
Realtek Digital Output(Optical) | 
Realtek Digital Output (Realtek | 
Display Adapters: NVIDIA GeForce GTX 750 Ti | NVIDIA GeForce GTX 750 Ti | NVIDIA GeForce GTX 750 Ti | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm | 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: ASUS PCE-N53 300Mbps 11n Dual band Wireless LAN PCI-E Card | Intel® Ethernet Connection (2) I218-V
CD / DVD Drives: 1x (D: | ) D: ASUS    DRW-24F1ST   a
Ports: COM1 LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  931,4GB | N:  931,5GB
Hard Disks - Free: C:  671,9GB | N:  930,8GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 05/29/14 | ALASKA - 1072009
Time Zone: West-Europa (standaardtijd)
Motherboard *: ASUSTeK COMPUTER INC. Z97-A
Country: Nederland 
Language: NLD 
 
==== System Specs (Software) ======================
 
Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome 41.0.2272.118
Internet Explorer Version: 11.0.9600.17691 
Google Chrome version: 41.0.2272.118
Sun Java version: 1.7.0_67 (32-bit) 
Sun Java version: 1.7.0_67 (64-bit) 
 
==== Files Recently Created / Modified ======================
 
====== C:\Windows ====
====== C:\Users\Niek\AppData\Local\Temp ====
2015-04-06 10:07:47 05CC63B698817C7A50E7A2EEEBD59B4E 169298152 ----a-w- C:\Users\Niek\AppData\Local\Temp\ubiBC11.tmp.exe
2015-03-25 16:18:09 15946E28BFC63D817212BC21EFA0B0C3 29479936 ----a-w- C:\Users\Niek\AppData\Local\Temp\SkypeSetup.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-03-25 16:39:59 4BA77DD4E4894EAF2BCB2D3E0A0B6F7A 30720 ----a-w- C:\Windows\Sysnative\acmigration.dll
2015-03-25 16:39:58 EBDE90C94A0671F05AAA0DF2A2139F43 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll
2015-03-25 16:39:58 EBDBE8037B0BE75B05CBC5DEEE49BA90 677888 ----a-w- C:\Windows\Sysnative\generaltel.dll
2015-03-25 16:39:58 E82D241A892C15FB42AB0A3D83C01ACA 414720 ----a-w- C:\Windows\Sysnative\devinv.dll
2015-03-25 16:39:58 B3B9C29F90A10216F13113757BCACAD8 1107456 ----a-w- C:\Windows\Sysnative\aeinv.dll
2015-03-25 16:39:58 82009026471290E8A512D1FE2442FDFC 760832 ----a-w- C:\Windows\Sysnative\invagent.dll
2015-03-25 16:39:58 75A43F9EA79BF721DC6D94980F85F87D 943616 ----a-w- C:\Windows\Sysnative\appraiser.dll
2015-03-25 16:39:57 1C11E0739B2B354647D292FCDCB7AF8E 192000 ----a-w- C:\Windows\Sysnative\aepic.dll
====== C:\Windows\Sysnative\drivers =====
2015-03-13 16:48:54 87BCD1034CBF33537D4D4C251D39BA26 94656 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys
2015-03-13 16:48:48 ED6E75158D28D33A2E2A020AC5B2B59D 663552 ----a-w- C:\Windows\Sysnative\drivers\PEAuth.sys
2015-03-13 16:48:48 90C53BD47979FB8814F465A08B885102 61440 ----a-w- C:\Windows\Sysnative\drivers\appid.sys
2015-03-13 16:48:33 8BA90F480705D7153AD0060CCA62222A 155576 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-03-13 16:48:33 27667A788130A7F7A5858DE27572E6D7 459336 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2015-03-13 16:48:32 56ED3EE5FED6BF2FC1305CF872042868 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
====== C:\Windows\Tasks ======
2015-03-11 12:58:48 D2819AE97694FF391357262FD285BA15 3498 ----a-w- C:\Windows\Sysnative\Tasks\AdobeAAMUpdater-1.0-Niek-PC-Niek
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-04-06 08:52:19 -------- d-----w- C:\Program Files\trend micro
2015-03-10 18:38:05 -------- d-----w- C:\Program Files\Adobe
2015-03-10 18:35:27 -------- d-----w- C:\Program Files\Common Files\Adobe
======= C:\PROGRA~2 =====
2015-04-06 09:37:03 -------- d-----w- C:\PROGRA~2\Ubisoft
2015-03-10 18:37:02 -------- d-----w- C:\PROGRA~2\Adobe
2015-03-10 18:28:10 -------- d-----w- C:\PROGRA~2\COMMON~1\Adobe
======= C: =====
====== C:\Users\Niek\AppData\Roaming ======
2015-04-02 12:01:31 -------- d-----w- C:\Users\Niek\AppData\Local\Popcorn-Time
2015-04-02 12:01:26 -------- d-----w- C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2015-04-02 12:00:45 -------- d-----w- C:\Users\Niek\AppData\Local\Popcorn Time
2015-03-11 13:15:14 -------- d-----w- C:\Users\Niek\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2015-03-10 18:23:25 -------- d-----w- C:\Users\Niek\AppData\Local\Adobe
2015-03-10 17:08:40 B88C7B1313C1EB2890F9BE6A3BABB4F2 20 ----a-w- C:\Users\Niek\AppData\Roaming\appdataFr3.bin
====== C:\Users\Niek ======
2015-04-06 09:40:52 -------- d-----w- C:\ProgramData\Media Center Programs
2015-04-06 08:52:00 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Niek\Downloads\RSITx64.exe
2015-04-02 12:00:50 -------- d-----w- C:\ProgramData\98b5451200001294
2015-04-02 11:59:29 722821DE247038BB934D9B2AC3812D98 23315064 ----a-w- C:\Users\Niek\Downloads\Popcorn-Time-0.3.7.2-Setup.exe
2015-03-25 16:24:59 -------- d-----w- C:\ProgramData\5b7719bc00004870
2015-03-10 18:38:40 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2015-03-10 18:23:41 -------- d-----w- C:\ProgramData\Adobe
 
====== C: exe-files ==
2015-04-06 10:07:47 05CC63B698817C7A50E7A2EEEBD59B4E 169298152 ----a-w- C:\Users\Niek\AppData\Local\Temp\ubiBC11.tmp.exe
2015-04-06 09:40:46 044DB3FF25D506592CCDC1F9B7C51A8B 7849208 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\bin\Settlers6.exe
2015-04-06 09:40:45 D73880FC92AAA00ED44CCA78486AB42A 7652600 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\bin\S6MapEditor.exe
2015-04-06 09:39:44 8D211D7FC3D39D5914569EA38118B2F6 619768 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\support\GameUpdate\S6GameUpdate.exe
2015-04-06 09:39:44 7DAA3370032CF025DCABD9F97BA17475 189688 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\support\Uninstall\S6Uninstall.exe
2015-04-06 09:39:44 105B516D54EDEA059957223738752C44 87288 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\base\support\PDFLauncher\S6PDFLauncher.exe
2015-04-06 09:37:04 8DD5F63B3D8A5F614DFFE43DDCDD3C6D 181496 ----a-r- C:\Program Files (x86)\Ubisoft\THE SETTLERS - Rise of an Empire\Play Settlers 6.exe
2015-04-06 09:37:03 677DA38DEDBC7FF1F7DCAACABA7FE2C4 378104 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{D3F80A98-05AB-4D8C-9272-766CCFA6A48D}\setup.exe
2015-04-06 08:52:19 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Niek.exe
2015-04-06 08:52:00 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Niek\Downloads\RSITx64.exe
2015-04-06 08:42:27 04A8F29E2CB7A633109E6AF1316F6E97 864336 ----a-w- C:\Program Files (x86)\Google\Update\Install\{8C91C03F-884B-43BB-AF64-409E502FE1AC}\41.0.2272.118_41.0.2272.101_chrome_updater.exe
2015-04-06 08:42:27 04A8F29E2CB7A633109E6AF1316F6E97 864336 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\41.0.2272.118\41.0.2272.118_41.0.2272.101_chrome_updater.exe
2015-04-06 08:13:52 9E6A68C67250872F32B226E8D023F4E6 5347536 ----a-w- C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\Packages\00007313\DAO.19457206.exe
2015-04-06 08:13:52 554D0E50BFE40D6B633392A03077C046 446584 ----a-w- C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\Packages\0000731e\CoProc update.19457567.exe
2015-04-02 12:01:25 E5CC3086D8AF960DECB5EEAC2A556762 380212 ----a-w- C:\Users\Niek\AppData\Local\Popcorn Time\Uninstall.exe
2015-04-02 11:59:40 091D04129C8DA68A6563364EF0E509D8 36672136 ----a-w- C:\ProgramData\NVIDIA Corporation\NetService\06ae36f4-41c8-4c11-b622-91011fbc115f\GeForce_Experience_Update_v2.4.1.21.exe
2015-04-02 11:59:29 722821DE247038BB934D9B2AC3812D98 23315064 ----a-w- C:\Users\Niek\Downloads\Popcorn-Time-0.3.7.2-Setup.exe
2015-04-02 11:49:14 895411AF4EB208C1D61484B783C24152 675256 ----a-w- C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2015-04-02 11:49:10 B7358DA2B84CA224A6BC86D9BBCEC32E 172984 ----a-w- C:\Users\Niek\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
=== C: other files ==
2015-04-02 12:40:17 A02B860F050117A176246389B13F8F1E 31297 ----a-w- C:\FTB\direwolf20_17\minecraft\mods\carpentersblocks\CarpentersBlocksCachedResources.zip
2015-04-02 12:38:54 72E5929577C08DA10B968188F8F004BA 128319760 ----a-w- C:\Users\Niek\AppData\Local\ftblauncher\ModPacks\direwolf20_17\direwolf20_17.zip
 
==== Startup Registry Enabled ======================
 
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
 
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
 
[HKEY_USERS\S-1-5-21-3982703807-3601525063-3692946667-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"
"BitTorrent"="C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe  /MINIMIZED"
 
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
 
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin"
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"
"BitTorrent"="C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe  /MINIMIZED"
 
==== Startup Registry Enabled x64 ======================
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"RtHDVBg_DTS"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /DTSU2P"
"IAStorIcon"="C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe 60"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"MouseDriver"="TiltWheelMouse.exe"
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
 
==== Task Scheduler Jobs ======================
 
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:6C:\ProgramC:FilesC:x86\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [14-08-2014 22:07]
 
==== Other Scheduled Tasks ======================
 
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Niek-PC-Niek" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS Product Register Service" [C:\Program Files (x86)\ASUS\APRP\aprp.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]
 
==== Chromium Look ======================
 
Google Slides - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
eyeCare Protect your vision and health - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeeningnfkaonkonalpcicgemnnijjhn
Google Sheets - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
 
==== Chromium Startpages ======================
 
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://google.com/",
"startup_urls": [ "http://google.com/" ]
 
 
==== Chromium Fix ======================
 
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_searches.vi-view.com_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_searches.vi-view.com_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_infrarecorder.en.softonic.com_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_infrarecorder.en.softonic.com_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeeningnfkaonkonalpcicgemnnijjhn deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eeeningnfkaonkonalpcicgemnnijjhn_0.localstorage deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eeeningnfkaonkonalpcicgemnnijjhn_0.localstorage-journal deleted successfully
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\eeeningnfkaonkonalpcicgemnnijjhn deleted successfully
 
==== Set IE to Default ======================
 
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{CA89D229-A080-41AA-887F-7C1F84FA5958}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CA89D229-A080-41AA-887F-7C1F84FA5958}] not found
 
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
 
==== All HKCU SearchScopes ======================
 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
 
==== Deleting Registry Keys ======================
 
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613} deleted successfully
 
==== HijackThis Entries ======================
 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [bitTorrent] "C:\Users\Niek\AppData\Roaming\BitTorrent\BitTorrent.exe"  /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
==== Empty IE Cache ======================
 
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1X5XLFYD will be deleted at reboot
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LA6250B6 will be deleted at reboot
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N9WSAA66 will be deleted at reboot
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UJE1G116 will be deleted at reboot
C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VUVKEY98 will be deleted at reboot
 
==== Empty FireFox Cache ======================
 
No FireFox Profiles found
 
==== Empty Chrome Cache ======================
 
C:\Users\Niek\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
 
==== Empty All Flash Cache ======================
 
Flash Cache Emptied Successfully
 
==== Empty All Java Cache ======================
 
Java Cache cleared successfully
 
==== C:\zoek_backup content ======================
 
C:\zoek_backup (files=10918 folders=1784 2137970307 bytes)
 
==== Empty Temp Folders ======================
 
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Niek\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
 
==== After Reboot ======================
 
==== Empty Temp Folders ======================
 
C:\Windows\Temp successfully emptied
C:\Users\Niek\AppData\Local\Temp successfully emptied
 
==== Empty Recycle Bin ======================
 
C:\$RECYCLE.BIN successfully emptied
 
==== Deleting Files / Folders ======================
 
"C:\Users\Niek\AppData\Roaming\.minecraft\launcher.jar"  not found
"C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\5b5b9f563aaa7daf"  not found
"C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}\96a639031d7e9a7b"  not found
"C:\Windows\Syswow64\BDL.dllsearch"  not found
"C:\Users\Niek\AppData\Roaming\.minecraft"  not found
"C:\PROGRA~3\{0a579190-533e-b710-0a57-791905334641}"  not found
"C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1X5XLFYD" not found
"C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LA6250B6" not found
"C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N9WSAA66" not found
"C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UJE1G116" not found
"C:\Users\Niek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VUVKEY98" not found
 
==== EOF on ma 06-04-2015 at 14:32:56,57 ======================
Link naar bericht
Delen op andere sites

Je Java software is verouderd.
Oudere versies hebben lekken die malware de kans geeft om zich te installeren op je systeem.

Ga naar Java en download daar de correcte Java versie.

  • Klik op "Gratis Java-download".
  • Ga akkoord met de licentiebepalingen en klik op de button voor de gratis download.
  • Het bestand jxpiinstall.exe wordt aangeboden - kies hier voor "bestand opslaan".
  • Sluit alle programma's die eventueel open zijn - zeker je web browser!
  • Ga dan naar Start > Configuratiescherm > Software en verwijder alle oudere versies van Java uit de Softwarelijst.
  • Vink alles aan met Java Runtime Environment (JRE of J2SE of JAVA) in de naam.
  • Klik dan op Verwijderen of op de Wijzig/Verwijder knop.
  • Herhaal dit tot alle oudere versies verdwenen zijn.
  • Na het verwijderen van alle oudere versies, herstart je pc.
  • Klik vervolgens op jxpiinstall.exe om de nieuwste versie van Java te installeren.
  • Vink de installatie van de Ask toolbar uit en ga dan verder met de installatie.


 

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
C:\ProgramData\WindowsMangerProtect;fs
C:\Users\Niek\AppData\Local\Popcorn-Time;fs
C:\Users\Niek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time;fs
C:\Users\Niek\AppData\Local\Popcorn Time;fs
C:\Users\Niek\Downloads\Popcorn-Time-0.3.7.2-Setup.exe;f
standardsearch;
autoclean;
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Link naar bericht
Delen op andere sites

×
×
  • Nieuwe aanmaken...