Ga naar inhoud

Aanbevolen berichten

Geplaatst:

Beste lezer/lezeres,

 

ik heb windows 7 op mijn laptop en al lang in gebruik. Hij start erg langzaam op. Ik gebruik wel ccleaner. AVG-free en anti-malware. Ook weet ik dat je via msconfig e.e.a. kan uit en aanzetten.

Is er toch nog een goed programmaatje wat mij helpt om de laptop sneller op te starten ?
Bedankt voor jullie advies/tijd.

 

Geplaatst:

Je topic werd verplaatst naar Bestrijding malware & virussen, zo blijft het forum overzichtelijk.

Kan je het onderstaande uitvoeren en het gevraagde logje hier in je topic posten ?

 

Download 51a5f5d096dae-icon_RSIT.png RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hoe je controleert of je met een 32- of 64-bitversie van Windows werkt kan je 
hier bekijken.

Dubbelklik op RSIT.exe om de tool te starten.

  • Gebruikers van Windows Vista en later dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is worden er twee kladblok bestanden geopend genaamd "Log.txt" en "Info.txt" .

RSIT Logbestanden plaatsen

  • Voeg het logbestand met de naam "Log.txt" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden in de map ""C:\\rsit")
  • Het logbestand met de naam "Info.txt" wat geminimaliseerd is hoeft u niet te plaatsen. (Dit logbestand wordt enkel de eerst keer bij het uitvoeren aangemaakt).
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

De handleiding voor het gebruik van RSIT kan je HIER bekijken en we hebben ook nog een 

.

 

Geplaatst:

Hieronder vind u de logfile terug.

 

Logfile of random's system information tool 1.10 (written by random/random)
Run by Have0 at 2015-12-13 18:53:07
Microsoft Windows 7 Home Premium  Service Pack 1
System drive C: has 3 GB (4%) free of 76 GB
Total RAM: 4095 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:53:18, on 13-12-2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Users\Have0\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Users\Have0\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
C:\Users\Have0\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Have0.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [updateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [updateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files (x86)\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Have0\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
O4 - Global Startup: FAH.lnk = C:\Program Files\WinZip\FAH\FAHConsole.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O18 - Protocol: linkscanner - (no CLSID) - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: VMware Netlink Supervisor Service (ftnlsv3hv) - Unknown owner - C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe
O23 - Service: VMware Scanner Redirection Client Service (ftscanmgr) - Unknown owner - C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgr.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update service - Popcorn Time - C:\Program Files (x86)\Popcorn Time\Updater.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware View USB (vmware-view-usbd) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Horizon View Client\bin\vmware-view-usbd.exe
O23 - Service: VMware Serial Com Redirection Client service (vmwsprrdpwks) - VMware - C:\Program Files (x86)\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: VMware Horizon Client (wsnm) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Horizon View Client\wsnm\wsnm.exe
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe

--
End of file - 10540 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-4a38-3e025e664912 /binaryPath="C:\Program Files (x86)\AVG\AVG2015\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe"
"taskhost.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe"
taskeng.exe {E548445C-45BA-4D38-BFCB-BB7A21506DCB}
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
Atouch64.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgr.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Popcorn Time\Updater.exe"
"C:\Program Files (x86)\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe"
"C:\Program Files (x86)\VMware\VMware Horizon View Client\wsnm\wsnm.exe" -SCMStartup
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe"
"C:\Program Files (x86)\VMware\VMware Horizon View Client\bin\vmware-view-usbd.exe" -SCMStartup
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\Asus WebStorage\BackupService.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Users\Have0\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
"C:\Program Files\WinZip\FAH\FAHWindow64.exe" register
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Users\Have0\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe" uTorrent_1096_00B69610_1293706850 µTorrent4823DF041B09 uTorrent
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Users\Have0\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe" uTorrent_1096_00B696C0_1662735615 µTorrent4823DF041B09 uTorrent
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\CCleaner\CCleaner.exe" /MONITOR /uac
ctfmon.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe" -unlock-3be2f036c43042cdb03588591c9325c3
"C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\AUDIODG.EXE 0x998
"C:\Users\Have0\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  

=========Mozilla firefox=========

ProfilePath - C:\Users\Have0\AppData\Roaming\Mozilla\Firefox\Profiles\opqdy48j.default-1442768035416

prefs.js - "browser.startup.homepage" -  "google.nl"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.235 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.9.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3]
"Description"=Office Live Update v1.3
"Path"=C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.235 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.0]
"Description"=
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL


C:\Program Files (x86)\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2013-12-18 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26 431104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Aanmelden - Help - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26 431104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"EeeStorageBackup"=C:\Program Files (x86)\ASUS\Asus WebStorage\BackupService.exe [2009-08-25 947472]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2009-07-30 617856]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-04-09 320000]
"VMware Netlink 3 HV Install Utility"=C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnliu.exe [2015-06-16 70080]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files (x86)\CCleaner\CCleaner64.exe [2015-07-17 8418584]
"uTorrent"=C:\Users\Have0\AppData\Roaming\uTorrent\uTorrent.exe [2015-12-04 2026520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2009-12-19 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files (x86)\CCleaner\CCleaner64.exe [2015-07-17 8418584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2008-07-19 104936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager]
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2010-10-12 979328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDAudDeck]
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-09-11 2244608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2008-12-02 3882312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31087200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Have0\AppData\Roaming\uTorrent\uTorrent.exe [2015-12-04 2026520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Xvid]
C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NewShortcut1.lnk]
C:\PROGRA~2\USB_VI~1\Utility\REMOTE~1\BDAREM~1.EXE [2005-08-19 77908]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Preloader.lnk]
C:\PROGRA~1\WinZip\WZPREL~1.EXE [2015-06-16 126176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Have0^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^In Voor En Tegenspoed - Seizoen 1 _ Aflevering 1.mov.lnk]
C:\PROGRA~3\{D1AEA~1\INVOOR~1.EXE --startup=1 []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2008-12-04 218408]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [2009-08-20 170624]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-30 98304]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-10-30 3780008]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FAH.lnk - C:\Program Files\WinZip\FAH\FAHConsole.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL [2013-12-18 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=16
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-12-13 18:53:07 ----DC---- C:\rsit
2015-12-10 19:04:03 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-12-10 19:04:03 ----A---- C:\Windows\system32\usp10.dll
2015-12-10 19:03:51 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-12-10 19:03:51 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-10 19:03:51 ----A---- C:\Windows\system32\wuapi.dll
2015-12-10 19:03:50 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-12-10 19:03:50 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-12-10 19:03:50 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-12-10 19:03:50 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-12-10 19:03:50 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-10 19:03:50 ----A---- C:\Windows\system32\wups2.dll
2015-12-10 19:03:50 ----A---- C:\Windows\system32\wups.dll
2015-12-10 19:03:50 ----A---- C:\Windows\system32\wudriver.dll
2015-12-10 19:03:50 ----A---- C:\Windows\system32\wucltux.dll
2015-12-10 19:03:50 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-10 19:03:50 ----A---- C:\Windows\system32\wuapp.exe
2015-12-10 19:03:50 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-10 19:03:50 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-10 19:03:33 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2015-12-10 19:03:33 ----A---- C:\Windows\system32\wshrm.dll
2015-12-10 19:03:33 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-10 19:03:18 ----A---- C:\Windows\system32\DWrite.dll
2015-12-10 19:03:17 ----A---- C:\Windows\system32\win32k.sys
2015-12-10 19:03:13 ----A---- C:\Windows\system32\FntCache.dll
2015-12-10 19:03:11 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-10 19:03:10 ----A---- C:\Windows\system32\user32.dll
2015-12-10 19:03:02 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-10 19:02:53 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-10 19:02:52 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-10 19:02:52 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-10 19:02:51 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-10 19:02:17 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-12-10 19:02:17 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-12-10 19:02:17 ----A---- C:\Windows\system32\iertutil.dll
2015-12-10 19:02:17 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-12-10 19:02:17 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-12-10 19:02:16 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-12-10 19:02:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-12-10 19:02:14 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-10 19:02:13 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-12-10 19:02:12 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-10 19:02:12 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-10 19:02:12 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-12-10 19:02:12 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-12-10 19:02:12 ----A---- C:\Windows\system32\iernonce.dll
2015-12-10 19:02:12 ----A---- C:\Windows\system32\ie4uinit.exe
2015-12-10 19:02:11 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-12-10 19:02:11 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-12-10 19:02:11 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-12-10 19:02:10 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-10 19:02:06 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-12-10 19:02:06 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-12-10 19:02:05 ----A---- C:\Windows\system32\urlmon.dll
2015-12-10 19:02:05 ----A---- C:\Windows\system32\occache.dll
2015-12-10 19:02:05 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-10 19:02:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-12-10 19:02:04 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-10 19:02:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-12-10 19:02:03 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-12-10 19:02:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-12-10 19:02:02 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-12-10 19:02:02 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-12-10 19:02:02 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-10 19:02:02 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-10 19:02:01 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-10 19:01:58 ----A---- C:\Windows\system32\iesetup.dll
2015-12-10 19:01:57 ----A---- C:\Windows\system32\ieapfltr.dll
2015-12-10 19:01:53 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-12-10 19:01:53 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-12-10 19:01:53 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-12-10 19:01:52 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-12-10 19:01:52 ----A---- C:\Windows\system32\vbscript.dll
2015-12-10 19:01:51 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-10 19:01:51 ----A---- C:\Windows\system32\jsproxy.dll
2015-12-10 19:01:50 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-12-10 19:01:47 ----A---- C:\Windows\system32\dxtmsft.dll
2015-12-10 19:01:46 ----A---- C:\Windows\system32\ieui.dll
2015-12-10 19:01:46 ----A---- C:\Windows\system32\ieframe.dll
2015-12-10 19:01:44 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-12-10 19:01:44 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-10 19:01:43 ----A---- C:\Windows\system32\ieUnatt.exe
2015-12-10 19:01:42 ----A---- C:\Windows\system32\webcheck.dll
2015-12-10 19:01:42 ----A---- C:\Windows\system32\jscript.dll
2015-12-10 19:01:41 ----A---- C:\Windows\system32\jscript9diag.dll
2015-12-10 19:01:41 ----A---- C:\Windows\system32\jscript9.dll
2015-12-10 19:01:39 ----A---- C:\Windows\system32\wininet.dll
2015-12-10 19:01:36 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-12-10 19:01:35 ----A---- C:\Windows\system32\msrating.dll
2015-12-10 19:01:33 ----A---- C:\Windows\system32\mshtml.dll
2015-12-10 19:00:27 ----A---- C:\Windows\SYSWOW64\els.dll
2015-12-10 19:00:27 ----A---- C:\Windows\system32\els.dll
2015-11-28 19:17:02 ----AC---- C:\AdwCleaner[C9].txt
2015-11-28 19:11:18 ----AC---- C:\AdwCleaner[s9].txt
2015-11-14 19:31:55 ----AC---- C:\AdwCleaner[C8].txt
2015-11-14 19:29:06 ----AC---- C:\AdwCleaner[s8].txt

======List of files/folders modified in the last 1 month======

2015-12-13 18:53:14 ----DC---- C:\Program Files\trend micro
2015-12-13 18:49:39 ----DC---- C:\Users\Have0\AppData\Roaming\uTorrent
2015-12-13 18:48:24 ----DC---- C:\Windows\system32\config
2015-12-13 18:47:59 ----DC---- C:\Windows\Temp
2015-12-13 18:38:36 ----DC---- C:\Windows\system32\Tasks
2015-12-13 18:38:19 ----DC---- C:\Windows\Microsoft.NET
2015-12-13 16:35:38 ----RSDC---- C:\Windows\assembly
2015-12-13 16:25:13 ----DC---- C:\ProgramData\MFAData
2015-12-13 16:20:25 ----AC---- C:\Windows\system32\acovcnt.exe
2015-12-11 21:02:13 ----D---- C:\Windows\winsxs
2015-12-11 20:58:48 ----DC---- C:\Program Files\Microsoft Silverlight
2015-12-11 20:58:48 ----DC---- C:\Config.Msi
2015-12-11 20:58:45 ----DC---- C:\Program Files (x86)\Microsoft Silverlight
2015-12-11 20:55:55 ----DC---- C:\Windows\SysWOW64
2015-12-11 20:55:55 ----DC---- C:\Windows\System32
2015-12-11 20:55:54 ----DC---- C:\Windows\SYSWOW64\nl-NL
2015-12-11 20:55:54 ----DC---- C:\Windows\system32\nl-NL
2015-12-11 20:55:44 ----DC---- C:\Windows\ehome
2015-12-11 20:55:41 ----DC---- C:\Windows\system32\drivers
2015-12-11 20:55:41 ----DC---- C:\Windows\inf
2015-12-11 20:55:32 ----DC---- C:\Program Files\Internet Explorer
2015-12-11 20:55:31 ----DC---- C:\Windows\SYSWOW64\en-US
2015-12-11 20:55:29 ----DC---- C:\Windows\system32\en-US
2015-12-11 20:55:28 ----DC---- C:\Program Files (x86)\Internet Explorer
2015-12-11 20:42:13 ----SHDC---- C:\Windows\Installer
2015-12-11 20:42:08 ----DC---- C:\ProgramData\Microsoft Help
2015-12-11 20:28:42 ----DC---- C:\Windows\system32\catroot2
2015-12-11 19:56:43 ----DC---- C:\Windows\system32\MRT
2015-12-11 19:56:41 ----DC---- C:\Windows\debug
2015-12-11 19:56:19 ----AC---- C:\Windows\system32\MRT.exe
2015-12-11 19:42:53 ----SHD---- C:\System Volume Information
2015-12-10 18:40:27 ----AC---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-12-10 18:40:12 ----DC---- C:\Windows\Prefetch
2015-12-07 08:59:33 ----DC---- C:\Windows\system32\FxsTmp
2015-11-24 18:31:26 ----DC---- C:\Windows
2015-11-23 19:22:51 ----DC---- C:\Program Files (x86)\Adobe
2015-11-23 19:22:17 ----DC---- C:\ProgramData\Adobe
2015-11-22 20:10:58 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2015-11-22 13:29:44 ----DC---- C:\Windows\rescache
2015-11-16 18:46:22 ----DC---- C:\Users\Have0\AppData\Roaming\VMware
2015-11-15 20:23:05 ----DC---- C:\Users\Have0\AppData\Roaming\vlc
2015-11-15 20:22:53 ----DC---- C:\Users\Have0\AppData\Roaming\dvdcss
2015-11-14 19:31:55 ----RDC---- C:\Program Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-02 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-02 224896]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2015-08-19 297904]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-05-07 378336]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-08-04 250800]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2015-03-20 40928]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2014-06-22 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-11-02 93568]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-02 426848]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2015-03-11 162784]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2015-10-19 315312]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2015-06-16 259040]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2015-08-04 300464]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2014-12-19 52000]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-02 29208]
R2 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2014-11-02 92008]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2015-07-30 57536]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-07-23 119312]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-29 6038016]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2009-07-09 140800]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2012-12-28 82816]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-05 1806400]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-04-03 34872]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-07-09 1222144]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-02 1041168]
S2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-02 79184]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-05-26 40448]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2013-01-23 552960]
S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-07-04 19456]
S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2014-07-04 56832]
S3 USB28xxBGA;DVBT Hybrid TV Device; C:\Windows\system32\DRIVERS\emBDA64.sys [2007-08-31 581120]
S3 USB28xxOEM;USB 28xx OEM Filter; C:\Windows\system32\DRIVERS\emOEM64.sys [2007-08-31 54400]
S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-07-29 203264]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-10-30 3642280]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-10-30 335656]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2012-02-21 151648]
R2 ftnlsv3hv;VMware Netlink Supervisor Service; C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe [2015-06-16 226240]
R2 ftscanmgr;VMware Scanner Redirection Client Service; C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgr.exe [2015-07-31 6363792]
R2 Update service;Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [2015-10-19 339968]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2015-07-30 910016]
R2 vmware-view-usbd;VMware View USB; C:\Program Files (x86)\VMware\VMware Horizon View Client\bin\vmware-view-usbd.exe [2015-07-31 1156824]
R2 vmwsprrdpwks;VMware Serial Com Redirection Client service; C:\Program Files (x86)\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe [2015-05-08 261776]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-02 50344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-10 269504]
S3 fsssvc;Windows Live Family Safety; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-12-11 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-19 1255736]
S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------
 

Geplaatst:

Prima !

 

Na de analyse van je logje door een malware-expert krijg je persoonlijke begeleiding en nieuwe instructies.
 

Blijft nog te bekijken na de opruimbeurt: je krappe C-partitie en je opstarters.

Geplaatst:

Drivers updaten kan helpen maar je gaat dan best naar de site van de fabrikant i.p.v. Driver Booster te gebruiken.

 

 

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Gebruikers van Windows Vista en later dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
Update service;s
WtuSystemSupport;s
C:\Program Files (x86)\Popcorn Time;fs
C:\Program Files (x86)\AVG Web TuneUp;fs
chromelook;
firefoxlook;
emptyfolderscheck;delete
startupall;
filesrcm;
  • Klik op de knop "More options" en vink nu de onderstaande opties aan.
     
  • Do a Deep Scan
  • Installed Programs
  • Auto Clean
     
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Geplaatst:

De drivers updaten naar de site van de fabrikant. Het merk is Asus dus naar die website gaan en zoeken dus niet naar windows 7 neem ik aan ?

Geplaatst:

Er is in dit stadium van de behandeling geen enkele reden om drivers te updaten.

 

Software uit de stal van IObit heb ik al meerdere systemen zien toasten en helaas nog nergens een heilzaam effect weten uitoefenen, als je PC je lief is maak je hier dan ook best geen gebruik van.

 

Gisteren reeds gemeld: blijft nog te bekijken na de opruimbeurt: je krappe C-partitie en je opstarters.

Geplaatst:

Hieronder vind u de logfile terug.

 

Zoek.exe v5.0.0.1 Updated 14-December-2015
Tool run by Have0 on ma 14-12-2015 at 18:35:52,20.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Have0\Downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

14-12-2015 18:40:42 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\Users\Have0\AppData\Local\Deshaker deleted successfully
C:\Users\Have0\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Have0\AppData\Local\EmieSiteList deleted successfully
C:\Users\Have0\AppData\Local\EmieUserList deleted successfully
C:\Users\Have0\AppData\Local\node-webkit deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Installed Programs ======================

æTorrent  
ABBYY FineReader 9.0 Sprint  
Acrobat.com  
Activation Assistant for the 2007 Microsoft Office suites  
Adobe Acrobat Reader DC  
Adobe AIR  
Adobe Flash Player 10 ActiveX  
Adobe Flash Player 20 NPAPI  
Adobe Refresh Manager  
Alcor Micro USB Card Reader  
Alice Greenfingers  
AMD USB Filter Driver  
Apple Application Support  
Apple Software Update  
ASUS AI Recovery  
ASUS AP Bank  
ASUS FancyStart  
ASUS LifeFrame3  
ASUS Live Update  
ASUS MultiFrame  
ASUS Power4Gear Hybrid  
ASUS SmartLogon  
ASUS Splendid Video Enhancement Technology  
ASUS Virtual Camera  
Asus WebStorage  
Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver  
ATI Catalyst Install Manager  
ATK Generic Function Service  
ATK Hotkey  
ATK Media  
ATKOSD2  
AVG 2014  
AVG 2015  
AVG Web TuneUp  
Basishandleiding EPSON SX440 Series  
Belle en het Beest - De Ster van het Bal  
Catalyst Control Center Core Implementation  
Catalyst Control Center Graphics Full Existing  
Catalyst Control Center Graphics Full New  
Catalyst Control Center Graphics Light  
Catalyst Control Center Graphics Previews Vista  
Catalyst Control Center InstallProxy  
Catalyst Control Center Localization All  
ccc-core-static  
ccc-utility64  
CCC Help Chinese Standard  
CCC Help Chinese Traditional  
CCC Help Czech  
CCC Help Danish  
CCC Help Dutch  
CCC Help English  
CCC Help Finnish  
CCC Help French  
CCC Help German  
CCC Help Greek  
CCC Help Hungarian  
CCC Help Italian  
CCC Help Japanese  
CCC Help Korean  
CCC Help Norwegian  
CCC Help Polish  
CCC Help Portuguese  
CCC Help Russian  
CCC Help Spanish  
CCC Help Swedish  
CCC Help Thai  
CCC Help Turkish  
CCleaner  
Chicken Invaders 2  
Choice Guard  
ControlDeck  
CyberLink LabelPrint  
CyberLink Power2Go  
Definition Update for Microsoft Office 2010 (KB3114412) 32-Bit Edition  
Download Navigator  
EasyVideoMaker  
Epson Easy Photo Print 2  
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)  
Epson Event Manager  
EPSON Scan  
EPSON SX440 Series Printer Uninstall  
EpsonNet Print  
ETDWare PS/2-x64 7.0.5.7_WHQL  
Fast Boot  
Free Audio Converter version 5.0.59.525  
Gebruikershandleiding EPSON SX440 Series  
Intel WiDi Media Share  
Intel© WiDi Media Share  
Island Wars 2  
Java 7 (64-bit)  
Junk Mail filter update  
Malwarebytes Anti-Malware versie 2.2.0.1024  
Microsoft .NET Framework 4.5.1  
Microsoft .NET Framework 4.5.1 (Nederlands)  
Microsoft .NET Framework 4.5.1 (NLD)  
Microsoft Application Error Reporting  
Microsoft Office Access MUI (Dutch) 2010  
Microsoft Office Excel MUI (Dutch) 2010  
Microsoft Office File Validation Add-In  
Microsoft Office Groove MUI (Dutch) 2010  
Microsoft Office InfoPath MUI (Dutch) 2010  
Microsoft Office Live Add-in 1.3  
Microsoft Office Office 64-bit Components 2010  
Microsoft Office OneNote MUI (Dutch) 2010  
Microsoft Office Outlook Connector  
Microsoft Office Outlook MUI (Dutch) 2010  
Microsoft Office PowerPoint MUI (Dutch) 2010  
Microsoft Office Professional Plus 2010  
Microsoft Office Proof (Dutch) 2010  
Microsoft Office Proof (English) 2010  
Microsoft Office Proof (French) 2010  
Microsoft Office Proof (German) 2010  
Microsoft Office Proofing (Dutch) 2010  
Microsoft Office Publisher MUI (Dutch) 2010  
Microsoft Office Shared 64-bit MUI (Dutch) 2010  
Microsoft Office Shared MUI (Dutch) 2010  
Microsoft Office Word MUI (Dutch) 2010  
Microsoft Silverlight  
Microsoft SQL Server 2005 Compact Edition [ENU]  
Microsoft Sync Framework Runtime Native v1.0 (x86)  
Microsoft Sync Framework Services Native v1.0 (x86)  
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053  
Microsoft Visual C++ 2005 Redistributable  
Microsoft Visual C++ 2005 Redistributable (x64)  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148  
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161  
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219  
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)  
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD  
Minecraft1.7.4  
Movavi Video Editor 10  
Mozilla Firefox 42.0 (x86 en-GB)  
Mozilla Maintenance Service  
MSVCRT  
Netwerkhandleiding EPSON SX440 Series  
Platform  
Popcorn Time  
Popcorn Time Offical versie 0.8.0.4  
QuickTime 7  
SABnzbd 0.7.16  
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)  
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3023224)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3035490)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3037581)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3074230)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3074550)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3097996)  
Security Update for Microsoft .NET Framework 4.5.1 (KB3098781)  
Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition  
Security Update for Microsoft Excel 2010 (KB3114415) 32-Bit Edition  
Security Update for Microsoft InfoPath 2010 (KB2878230) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2920748) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB2965310) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB3054848) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB3085528) 32-Bit Edition  
Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition  
Security Update for Microsoft OneNote 2010 (KB3054978) 32-Bit Edition  
Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition  
Security Update for Microsoft PowerPoint 2010 (KB3085594) 32-Bit Edition  
Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition  
Security Update for Microsoft Visio 2010 (KB3101526) 32-Bit Edition  
Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition  
Security Update for Microsoft Word 2010 (KB3101532) 32-Bit Edition  
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition  
SkypeT 7.1  
Smileyville  
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD  
TVersity Codec Pack 1.7  
Unity Web Player  
Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition  
Update for Microsoft Filter Pack 2.0 (KB2881026) 32-Bit Edition  
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition  
Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3085512) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3114399) 32-Bit Edition  
Update for Microsoft Office 2010 (KB3114404) 32-Bit Edition  
Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition  
Update for Microsoft Outlook 2010 (KB2760779) 32-Bit Edition  
Update for Microsoft Outlook 2010 (KB3085604) 32-Bit Edition  
Update for Microsoft Outlook 2010 (KB3101535) 32-Bit Edition  
Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition  
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition  
Update for Microsoft Visio Viewer 2010 (KB2881021) 32-Bit Edition  
USB 2.0 1.3M UVC WebCam  
USB Audio/Vide Driver  
VIA Platform Device Manager  
Visual C++ 8.0 Runtime Setup Package (x64)  
Visual Studio 2008 x64 Redistributables  
Visual Studio 2010 x64 Redistributables  
Visual Studio 2012 x64 Redistributables  
Visual Studio 2012 x86 Redistributables  
VLC media player 2.0.3  
VMware Horizon Client  
WinAVI Video Converter  
Windows Live - Hulpprogramma voor uploaden  
Windows Live aanmeldhulp  
Windows Live Call  
Windows Live Communications Platform  
Windows Live Essentials  
Windows Live Family Safety  
Windows Live Mail  
Windows Live Messenger  
Windows Live Photo Gallery  
Windows Live Sync  
Windows Live Writer  
Windows Media Player Firefox Plugin  
WinFlash  
WinRAR  
WinZip 19.5  
Wireless Console 3  
Xiph.Org Open Codecs 0.85.17777  
Xvid Video Codec  

==== Running Processes ======================

C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
C:\Program Files\ATKGFNEX\GFNEXSrv.exe
C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe
C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgr.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\Popcorn Time\Updater.exe
C:\Program Files (x86)\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe
C:\Program Files (x86)\VMware\VMware Horizon View Client\bin\vmware-view-usbd.exe
C:\Users\Have0\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Users\Have0\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
C:\Users\Have0\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\Users\Have0\Downloads\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update service deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Update service deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WtuSystemSupport deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WtuSystemSupport deleted successfully

==== Batch Command(s) Run By Tool======================


De Winsock-catalogus is opnieuw ingesteld.
De computer dient opnieuw te worden opgestart om het opnieuw instellen te voltooien.


==== Deleting Files \ Folders ======================

C:\Program Files (x86)\AVG Web TuneUp deleted
C:\Users\Have0\AppData\Local\AVG Web TuneUp deleted
C:\PROGRA~3\AVG Web TuneUp deleted
C:\PROGRA~3\{174892B1-CBE7-44F5-86FF-AB555EFD73A3} deleted
C:\Users\Have0\AppData\Local\Unity deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\LavasoftTcpService deleted
C:\Users\Have0\AppData\LocalLow\Unity deleted
C:\Users\Have0\Documents\Add-in Express deleted
"C:\Windows\Installer\fa59b5.msi" deleted
"C:\Program Files (x86)\Popcorn Time" deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 4096 MB
CPU Info: AMD Athlon II Dual-Core M300
CPU Speed: 2054,6 MHz
Sound Card: Speakers (VIA High Definition A |
Display Adapters: ATI Mobility Radeon HD 4570 | ATI Mobility Radeon HD 4570 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Generic PnP Monitor |
Screen Resolution: 1600 X 900 - 32 bit
Network: Network Present
Network Adapters: Microsoft Virtual WiFi Miniport Adapter | Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller | Atheros AR9285 Wireless Network Adapter
CD / DVD Drives: 1x (F: | ) F: TSSTcorpCDDVDW TS-L633C
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 16 Button Wheel Mouse Present
Hard Disks: C:  74,5GB | D:  208,9GB
Hard Disks - Free: C:  1,7GB | D:  190,4GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 11/02/09 | _ASUS_ - 20091102
Time Zone: West-Europa (standaardtijd)
Motherboard *: ASUSTeK Computer Inc.         K70AD
Country: Nederland
Language: NLD

==== System Specs (Software) ======================

AV: AVG AntiVirus Free Edition 2015 *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2015 *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
Default Browser: Firefox    42.0
Internet Explorer Version: 11.0.9600.18124
Mozilla Firefox version: 42.0 (x86 en-GB)
Adobe Reader version: 15.9.20069.159242
Sun Java version: 1.7.0 (64-bit)
Flash Player version: 20.0.0.235

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Have0\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-12-10 18:04:03    3553707B119AD5AAF1F31BFF5517A093    627712    ----a-w-    C:\Windows\SysWOW64\usp10.dll
2015-12-10 18:03:51    9AA46606BCC013F5FB7E5B70FAB1ABE0    573440    ----a-w-    C:\Windows\SysWOW64\wuapi.dll
2015-12-10 18:03:50    C66D020B1C268FF9AB1672C99E76CA66    174080    ----a-w-    C:\Windows\SysWOW64\wuwebv.dll
2015-12-10 18:03:50    B1384CCEFB8F64EC85AECB70AFB91D8D    93696    ----a-w-    C:\Windows\SysWOW64\wudriver.dll
2015-12-10 18:03:50    A0BF4CD0C8F805A816B67C004B12E24D    30208    ----a-w-    C:\Windows\SysWOW64\wups.dll
2015-12-10 18:03:50    58B9CFDD032CB92CEC0D3E8454E4C766    35328    ----a-w-    C:\Windows\SysWOW64\wuapp.exe
2015-12-10 18:03:33    EB11947B250AD259755939A2DE349FBB    14848    ----a-w-    C:\Windows\SysWOW64\wshrm.dll
2015-12-10 18:03:11    FDB73E2FFDEE1F28D1AF3B80E3F0FE99    1251328    ----a-w-    C:\Windows\SysWOW64\DWrite.dll
2015-12-10 18:03:02    0A78439765E31510D75C9E2284F3A722    833024    ----a-w-    C:\Windows\SysWOW64\user32.dll
2015-12-10 18:02:52    F60154A0DD1DCCF2EE75BE45A676BA51    1242624    ----a-w-    C:\Windows\SysWOW64\comsvcs.dll
2015-12-10 18:02:51    169BDD4EF6E99E43720534E07798400C    487936    ----a-w-    C:\Windows\SysWOW64\catsrvut.dll
2015-12-10 18:02:17    8102E4A17D58BA6B18A31095C4418082    30720    ----a-w-    C:\Windows\SysWOW64\iernonce.dll
2015-12-10 18:02:17    5F4DBBB0551DAE2A6EEC5EA915695250    47616    ----a-w-    C:\Windows\SysWOW64\ieetwproxystub.dll
2015-12-10 18:02:16    804FEA5A5A4B491B83AFF8EE7EFE887F    76288    ----a-w-    C:\Windows\SysWOW64\mshtmled.dll
2015-12-10 18:02:15    081BE765C4025EC2AB8011A6BFE222B5    64000    ----a-w-    C:\Windows\SysWOW64\MshtmlDac.dll
2015-12-10 18:02:14    5FA89E1534B675CCA8CEE6B50D0B7B49    2280448    ----a-w-    C:\Windows\SysWOW64\iertutil.dll
2015-12-10 18:02:13    29DDD6FB1147192B13D2C3647F581219    130048    ----a-w-    C:\Windows\SysWOW64\occache.dll
2015-12-10 18:02:12    D1F6886A7E08134135E9C197FA387702    60416    ----a-w-    C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-12-10 18:02:12    67D44EDA849BA632EC4DCEF839950F56    341192    ----a-w-    C:\Windows\SysWOW64\iedkcs32.dll
2015-12-10 18:02:12    219494B7F95F86071EC9D4FC0DC4962F    1311744    ----a-w-    C:\Windows\SysWOW64\urlmon.dll
2015-12-10 18:02:12    0955BBBB50FCC3C2B2EB485FBBFBF4D3    496640    ----a-w-    C:\Windows\SysWOW64\vbscript.dll
2015-12-10 18:02:11    6ED639FAAE29626ED1A98139A3C9C289    687104    ----a-w-    C:\Windows\SysWOW64\msfeeds.dll
2015-12-10 18:02:11    13DED010D9DFA204DB2C2F650B3901B8    279040    ----a-w-    C:\Windows\SysWOW64\dxtrans.dll
2015-12-10 18:02:10    B206E8BD4938B6C6B1C84DD13C12C4DF    20366848    ----a-w-    C:\Windows\SysWOW64\mshtml.dll
2015-12-10 18:02:06    8BB61456A1EA19011E85C9340BC4157B    62464    ----a-w-    C:\Windows\SysWOW64\iesetup.dll
2015-12-10 18:02:06    3477EAB965E9DEDCD46F95C55F78489F    710144    ----a-w-    C:\Windows\SysWOW64\ieapfltr.dll
2015-12-10 18:02:05    DD99C9D2CA3F9B3D63B965B4EDDAE612    2050560    ----a-w-    C:\Windows\SysWOW64\inetcpl.cpl
2015-12-10 18:02:04    713919E7E3BD6196D2498C2B8166AEAD    663552    ----a-w-    C:\Windows\SysWOW64\jscript.dll
2015-12-10 18:02:04    1256113318DD02C9C60FF0969025CA15    620032    ----a-w-    C:\Windows\SysWOW64\jscript9diag.dll
2015-12-10 18:02:03    6A37F0BDA83C7755C71A2DE5BF00381B    47104    ----a-w-    C:\Windows\SysWOW64\jsproxy.dll
2015-12-10 18:02:02    F1ED865CA8D6223739233576D7C76C1A    476160    ----a-w-    C:\Windows\SysWOW64\ieui.dll
2015-12-10 18:02:02    0A6D92C3BB313883F286C65820E2DD30    416256    ----a-w-    C:\Windows\SysWOW64\dxtmsft.dll
2015-12-10 18:02:01    284442A1BAFD17731398AD22AB6C9099    12856832    ----a-w-    C:\Windows\SysWOW64\ieframe.dll
2015-12-10 18:01:59    517847AC160C91F04951340F9A051084    2724864    ----a-w-    C:\Windows\SysWOW64\mshtml.tlb
2015-12-10 18:01:53    AC62F3866FDA5BFC4966055B1316DE94    1155072    ----a-w-    C:\Windows\SysWOW64\mshtmlmedia.dll
2015-12-10 18:01:53    6082F9978A1456863397F99E5C8E7901    115712    ----a-w-    C:\Windows\SysWOW64\ieUnatt.exe
2015-12-10 18:01:53    4ED815FE30E048A52A5FC420DD6E49D0    230400    ----a-w-    C:\Windows\SysWOW64\webcheck.dll
2015-12-10 18:01:52    668D2CA489F605E4C7A743A62632C383    4514816    ----a-w-    C:\Windows\SysWOW64\jscript9.dll
2015-12-10 18:01:51    B60461B5CED2BFAE1A870C61C66966C4    2011136    ----a-w-    C:\Windows\SysWOW64\wininet.dll
2015-12-10 18:01:50    B832BA2AA73CC4FC58446F4237070D96    168960    ----a-w-    C:\Windows\SysWOW64\msrating.dll
2015-12-10 18:01:50    050F5A8F90CF18AA6F9FA75AF1851569    341504    ----a-w-    C:\Windows\SysWOW64\html.iec
2015-12-10 18:00:27    E7CA874DA58A607E11ACAB33718AE9FA    179712    ----a-w-    C:\Windows\SysWOW64\els.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-12-10 18:04:03    077CC8BF1076D49E85687AACB30956A1    802304    ----a-w-    C:\Windows\Sysnative\usp10.dll
2015-12-10 18:03:51    EB6D501FCFAFF726EA1B50B8276F5F34    709632    ----a-w-    C:\Windows\Sysnative\wuapi.dll
2015-12-10 18:03:51    6075791ED85E47A2A2916B1F34582944    2609152    ----a-w-    C:\Windows\Sysnative\wuaueng.dll
2015-12-10 18:03:50    A6C4964F3C382592785EACFBA2DA8F6C    3170304    ----a-w-    C:\Windows\Sysnative\wucltux.dll
2015-12-10 18:03:50    A1D9A6B41647E8F008A25DA7B80708CB    37888    ----a-w-    C:\Windows\Sysnative\wups2.dll
2015-12-10 18:03:50    6BB823DF7F117BF4958303B443E8100D    91136    ----a-w-    C:\Windows\Sysnative\WinSetupUI.dll
2015-12-10 18:03:50    59C2B329F87F46C384F3F139376CD315    36864    ----a-w-    C:\Windows\Sysnative\wups.dll
2015-12-10 18:03:50    4CD20F77149C689703A71561747E7B8D    37888    ----a-w-    C:\Windows\Sysnative\wuapp.exe
2015-12-10 18:03:50    2E53E71ED8277444E37BAA3932089C45    12288    ----a-w-    C:\Windows\Sysnative\wu.upgrade.ps.dll
2015-12-10 18:03:50    2B8660213ED7873FCF5C5540023C48F5    98816    ----a-w-    C:\Windows\Sysnative\wudriver.dll
2015-12-10 18:03:50    233AB915DBB476BFD7218DB553D91DCC    140288    ----a-w-    C:\Windows\Sysnative\wuauclt.exe
2015-12-10 18:03:50    0CF6EFBC9BCC6EDE114F71BCAEE9CCF4    192512    ----a-w-    C:\Windows\Sysnative\wuwebv.dll
2015-12-10 18:03:33    2DA9EB73046595D79ADE306BC22B02C4    17408    ----a-w-    C:\Windows\Sysnative\wshrm.dll
2015-12-10 18:03:18    1AE1D0D71C3C61A0ECA941140E1E2FF8    1648128    ----a-w-    C:\Windows\Sysnative\DWrite.dll
2015-12-10 18:03:17    4287A4345CFFDD4D7710B2FCFF6C21BC    3211264    ----a-w-    C:\Windows\Sysnative\win32k.sys
2015-12-10 18:03:13    BCB16AE33AA58E0042F3EF34CFB6396A    1180160    ----a-w-    C:\Windows\Sysnative\FntCache.dll
2015-12-10 18:03:10    06BF84D26A05D400F6B3FB3D3DE0B03A    1008640    ----a-w-    C:\Windows\Sysnative\user32.dll
2015-12-10 18:02:53    E385472FF300F2BFD323B667EBAE93C7    1735680    ----a-w-    C:\Windows\Sysnative\comsvcs.dll
2015-12-10 18:02:52    75DFE3CE6A8BFC995CC1D615B74DF8B0    525312    ----a-w-    C:\Windows\Sysnative\catsrvut.dll
2015-12-10 18:02:17    581486C09915529B172B844F620800EB    48640    ----a-w-    C:\Windows\Sysnative\ieetwproxystub.dll
2015-12-10 18:02:17    5040CEF0DC919A81AF2C10CC67F3F36C    2887168    ----a-w-    C:\Windows\Sysnative\iertutil.dll
2015-12-10 18:02:17    1E32A0EF31E39783589F3FF33C71EB26    114688    ----a-w-    C:\Windows\Sysnative\ieetwcollector.exe
2015-12-10 18:02:12    ECF5CF7E1712A137FD95DCC89ECE2FE5    34304    ----a-w-    C:\Windows\Sysnative\iernonce.dll
2015-12-10 18:02:12    33E703517D83F367B0B0B3EF2C807C77    718336    ----a-w-    C:\Windows\Sysnative\ie4uinit.exe
2015-12-10 18:02:11    D63583C3645A5D29D643298273EC2125    77824    ----a-w-    C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-12-10 18:02:06    8403AAA093BD7B790111326197D5C30B    2724864    ----a-w-    C:\Windows\Sysnative\mshtml.tlb
2015-12-10 18:02:05    DDA2687E5FC070E066623330BF5A9375    152064    ----a-w-    C:\Windows\Sysnative\occache.dll
2015-12-10 18:02:05    D0EB186DFF60A296B144A0FC2490AC31    1546752    ----a-w-    C:\Windows\Sysnative\urlmon.dll
2015-12-10 18:02:05    CFB4DC8B180EE1FA0F38ED98A82BFFDC    387792    ----a-w-    C:\Windows\Sysnative\iedkcs32.dll
2015-12-10 18:02:04    DA9927502C6CC6C6D4A5E57E00CAB796    4096    ----a-w-    C:\Windows\Sysnative\ieetwcollectorres.dll
2015-12-10 18:02:03    1537D3FFDC70A1EF8792235A99DC4C4B    968704    ----a-w-    C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-12-10 18:02:02    503155AF5513116632202504D71FA29D    315392    ----a-w-    C:\Windows\Sysnative\dxtrans.dll
2015-12-10 18:02:02    23D900117F368A884C4C36A57E201F97    798208    ----a-w-    C:\Windows\Sysnative\msfeeds.dll
2015-12-10 18:01:58    FBBC836885522FD1E00A23DC65F78A28    66560    ----a-w-    C:\Windows\Sysnative\iesetup.dll
2015-12-10 18:01:57    64F4B886C95379DEA6EF3DDF3CE2D853    800768    ----a-w-    C:\Windows\Sysnative\ieapfltr.dll
2015-12-10 18:01:55    6D86F7F6C9FE6059B610DB1D6EF77659    2123264    ----a-w-    C:\Windows\Sysnative\inetcpl.cpl
2015-12-10 18:01:52    32C4438BACFF7AAC86AE54FAE74AA483    571392    ----a-w-    C:\Windows\Sysnative\vbscript.dll
2015-12-10 18:01:51    B49AF2AB8CDF52290A7529BE3D8B1429    54784    ----a-w-    C:\Windows\Sysnative\jsproxy.dll
2015-12-10 18:01:47    9D8862210504591545E33FE562BE7078    489984    ----a-w-    C:\Windows\Sysnative\dxtmsft.dll
2015-12-10 18:01:46    A2F0AB5736B60AC22D63113489D37FF1    14456832    ----a-w-    C:\Windows\Sysnative\ieframe.dll
2015-12-10 18:01:46    963F01E33EFADF54DDCCDDF31DFC2D37    615936    ----a-w-    C:\Windows\Sysnative\ieui.dll
2015-12-10 18:01:44    FE196D24FDCE4402EB1762264FA3DE0B    1359360    ----a-w-    C:\Windows\Sysnative\mshtmlmedia.dll
2015-12-10 18:01:44    2A0AB8E59C47DC589C2DF3CEB1AA22EF    92160    ----a-w-    C:\Windows\Sysnative\mshtmled.dll
2015-12-10 18:01:43    02A92A8C880FDC242441FBE0620CF14B    144384    ----a-w-    C:\Windows\Sysnative\ieUnatt.exe
2015-12-10 18:01:42    4264B4BD10C5A21CF4A15998CB71551F    817664    ----a-w-    C:\Windows\Sysnative\jscript.dll
2015-12-10 18:01:42    377C0436711DE3AFB9527FB88F831F44    262144    ----a-w-    C:\Windows\Sysnative\webcheck.dll
2015-12-10 18:01:41    D3CC1DBE8FE63F3A2FAD5658146DF39B    814080    ----a-w-    C:\Windows\Sysnative\jscript9diag.dll
2015-12-10 18:01:41    3F0827114CE89176253684B588D4B02E    5923840    ----a-w-    C:\Windows\Sysnative\jscript9.dll
2015-12-10 18:01:39    E2C385B0D816AD37616BD4C4204D0633    2487808    ----a-w-    C:\Windows\Sysnative\wininet.dll
2015-12-10 18:01:37    AF71D38B9F23907AB54BC8D9F573CEB3    417792    ----a-w-    C:\Windows\Sysnative\html.iec
2015-12-10 18:01:36    B7F26EC33F55842C66A1C3FA34EB8D27    88064    ----a-w-    C:\Windows\Sysnative\MshtmlDac.dll
2015-12-10 18:01:35    0A477F2CCC151E3AED4143B4FDDF74A5    199680    ----a-w-    C:\Windows\Sysnative\msrating.dll
2015-12-10 18:01:33    A8B4563632BAF46BB005A0127727E82D    25837568    ----a-w-    C:\Windows\Sysnative\mshtml.dll
2015-12-10 18:00:27    218D2848CDDE80DD9AF72D5DD78F225C    241664    ----a-w-    C:\Windows\Sysnative\els.dll
====== C:\Windows\Sysnative\drivers =====
2015-12-10 18:03:33    5BD6B1EC997FF3DD779D62E05D2079A8    146944    ----a-w-    C:\Windows\Sysnative\drivers\rmcast.sys
====== C:\Windows\Tasks ======
2015-12-11 20:05:13    FF97F051802480C7A23F5AE26C711962    3170    -c--a-w-    C:\Windows\Sysnative\Tasks\P4GIntlCtrl
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
======= C: =====
2015-11-28 18:17:02    818F5CC17F96C3789BF1D74228B79808    1595    -c--a-w-    C:\AdwCleaner[C9].txt
2015-11-28 18:11:18    3953842376EF20A2D3AAA45C342BEA5E    1441    -c--a-w-    C:\AdwCleaner[s9].txt
2015-11-14 18:31:55    24CDA35A9AF3BDA343CF2073607EB604    1631    -c--a-w-    C:\AdwCleaner[C8].txt
2015-11-14 18:29:06    F843CCC0B1F47DBB885F2AE9EBD7B9B1    1465    -c--a-w-    C:\AdwCleaner[s8].txt
====== C:\Users\Have0\AppData\Roaming ======
2015-12-04 16:32:19    --------    dc----w-    C:\Users\Have0\AppData\Locallow\uTorrent
2015-11-24 18:13:29    --------    dc----w-    C:\Users\Have0\AppData\Local\CEF
====== C:\Users\Have0 ======
2015-12-13 17:42:02    8045ABB21A3BDD66A48E1ED5C0F0EF6A    1222144    -c--a-w-    C:\Users\Have0\Downloads\RSITx64.exe

====== C: exe-files ==
=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2578091034-2730396283-2997144666-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files (x86)\CCleaner\CCleaner64.exe /MONITOR"
"uTorrent"="C:\Users\Have0\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"="C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\LabelPrint UpdateWithCreateOnce Software\CyberLink\LabelPrint\2.5"
"UpdateP2GoShortCut"="C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0"
"HControlUser"="C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe"
"ATKOSD2"="C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe"
"ATKMEDIA"="C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files (x86)\CCleaner\CCleaner64.exe /MONITOR"
"uTorrent"="C:\Users\Have0\AppData\Roaming\uTorrent\uTorrent.exe  /MINIMIZED"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EeeStorageBackup"="C:\Program Files (x86)\ASUS\Asus WebStorage\BackupService.exe"
"ETDWare"="C:\Program Files\Elantech\ETDCtrl.exe"
"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"VMware Netlink 3 HV Install Utility"="C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnliu.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="APSDaemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Screen Saver Protector]
"command"="C:\\Windows\\AsScrPro.exe"
"hkey"="HKLM"
"item"="ASUS Screen Saver Protector"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BCSSync"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CCleaner Monitoring"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\CCleaner\\CCleaner64.exe\" /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer]
"command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\""
"hkey"="HKLM"
"item"="CLMLServer"
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EEventManager]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="EEventManager"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Epson Software\\Event Manager\\EEventManager.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HDAudDeck]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HDAudDeck"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\VIA\\VIAudioi\\VDeck\\VDeck.exe -r"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msnmsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Windows Live\\Messenger\\msnmsgr.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Skype\\Phone\\Skype.exe\" /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="uTorrent"
"hkey"="HKCU"
"command"="\"C:\\Users\\Have0\\AppData\\Roaming\\uTorrent\\uTorrent.exe\"  /MINIMIZED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Xvid]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Xvid"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Xvid\\CheckUpdate.exe"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NewShortcut1.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\NewShortcut1.lnk"
"backup"="C:\\Windows\\pss\\NewShortcut1.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~2\\USB_VI~1\\Utility\\REMOTE~1\\BDAREM~1.EXE "
"item"="NewShortcut1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Preloader.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\WinZip Preloader.lnk"
"backup"="C:\\Windows\\pss\\WinZip Preloader.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~1\\WinZip\\WZPREL~1.EXE "
"item"="WinZip Preloader"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Have0^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^In Voor En Tegenspoed - Seizoen 1 _ Aflevering 1.mov.lnk]
"path"="C:\\Users\\Have0\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\In Voor En Tegenspoed - Seizoen 1 _ Aflevering 1.mov.lnk"
"backup"="C:\\Windows\\pss\\In Voor En Tegenspoed - Seizoen 1 _ Aflevering 1.mov.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~3\\{D1AEA~1\\INVOOR~1.EXE --startup=1"
"item"="In Voor En Tegenspoed - Seizoen 1 _ Aflevering 1.mov"


==== Startup Folders ======================

2015-08-30 10:34:46    2061    -c--a-w-    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FAH.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a--c--- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [10-12-2015 18:40]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe]
"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeFlashPlayerUpdate" [C:\Windows\SysWOW64\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeFlashPlayerUpdate 2" [C:\Windows\SysWOW64\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe]
"C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\P4G\BatteryLife.exe]
"C:\Windows\SysNative\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe]
"C:\Windows\SysNative\tasks\ASUSControlDeck" [C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe]
"C:\Windows\SysNative\tasks\AutoKMS" [C:\Windows\AutoKMS\AutoKMS.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files (x86)\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\P4GIntlCtrl" [C:\Program Files\P4G\IntlCtrl.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\WC3" [C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe]
"C:\Windows\SysNative\tasks\{A43D4B78-0311-4C53-983B-3317133FAC60}" [C:\Program Files (x86)\LG Software Innovations\1Click DVD Copy Pro\1ClickDvdCopyPro.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Have0\AppData\Roaming\Mozilla\Firefox\Profiles\opqdy48j.default-1442768035416
user_pref("browser.startup.homepage", "google.nl");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"avg@igeared"="C:\Program Files (x86)\AVG\AVG10\Toolbar\Firefox\avg@igeared" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Have0\AppData\Roaming\Mozilla\Firefox\Profiles\opqdy48j.default-1442768035416
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Have0\AppData\Roaming\Mozilla\Firefox\Profiles\opqdy48j.default-1442768035416
2C82D753EF779945977C82A3908DA20A    - C:\Windows\SysWOW64\npDeployJava1.dll -    Java Deployment Toolkit 7.0.90.5
5DF56521E8985BFD8F21A3D97A4D4574    - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll -    Shockwave Flash
15E298B5EC5B89C5994A59863969D9FF    - C:\Windows\SysWOW64\npmproxy.dll -    Microsoft® Windows® Operating System


==== Chromium Look ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.nl/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.nl/"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\SearchScopes\{8CDE19E6-71C2-4B46-89B7-35F6A18C571A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{8CDE19E6-71C2-4B46-89B7-35F6A18C571A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\Wow6432Node\SearchScopes "DefaultScope"=""
HKCU\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [updateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [updateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files (x86)\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Have0\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
O4 - Global Startup: FAH.lnk = C:\Program Files\WinZip\FAH\FAHConsole.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O18 - Protocol: linkscanner - (no CLSID) - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: VMware Netlink Supervisor Service (ftnlsv3hv) - Unknown owner - C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe
O23 - Service: VMware Scanner Redirection Client Service (ftscanmgr) - Unknown owner - C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgr.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware View USB (vmware-view-usbd) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Horizon View Client\bin\vmware-view-usbd.exe
O23 - Service: VMware Serial Com Redirection Client service (vmwsprrdpwks) - VMware - C:\Program Files (x86)\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: VMware Horizon Client (wsnm) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Horizon View Client\wsnm\wsnm.exe

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Have0\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Have0\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D91W46FJ will be deleted at reboot
C:\Users\Have0\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J2V16P5I will be deleted at reboot
C:\Users\Have0\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OXR2UK10 will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Have0\AppData\Local\Mozilla\Firefox\Profiles\opqdy48j.default-1442768035416\cache2 emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1485 folders=219 382208792 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Have0\AppData\Local\Temp will be emptied at reboot
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Have0\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Have0\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D91W46FJ" not found
"C:\Users\Have0\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J2V16P5I" not found
"C:\Users\Have0\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OXR2UK10" not found

==== EOF on ma 14-12-2015 at 19:52:22,41 ======================
 

Geplaatst:

Je Java software is verouderd.
Oudere versies hebben lekken die malware de kans geeft om zich te installeren op je systeem.

Ga naar Java en download daar de correcte Java versie.

  • Klik op "Gratis Java-download".
  • Ga akkoord met de licentiebepalingen en klik op de button voor de gratis download.
  • Het bestand jxpiinstall.exe wordt aangeboden - kies hier voor "bestand opslaan".
  • Blader naar de map waar je het bestand hebt opgeslagen.
  • Klik vervolgens op jxpiinstall.exe om de nieuwste versie van Java te installeren.
  • Vink de installatie van de Ask toolbar uit en ga dan verder met de installatie.
  • Eventuele oudere java versies worden aan het einde verwijderd.


 

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

  • Dubbelklik op Zoek.exe om de tool te starten.
  • Gebruikers van Windows Vista en later dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
avg@igeared;ff
avg;z
autoclean;
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht als bijlage.

Zoek.exe logbestand plaatsen

  • Voeg het logbestand met de naam "Zoek-results.log" als bijlage toe aan het volgende bericht. (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\Zoek-results.log.)
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.
Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.