DDS (Ver_2012-11-05.02) - NTFS_x86 Internet Explorer: 9.0.8112.16476 BrowserJavaVersion: 10.21.2 Run by gebruiker at 18:53:39 on 2014-05-29 Microsoft Windows 7 Home Premium 6.1.7600.0.1252.32.1043.18.3070.1326 [GMT 2:00] . AV: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664} . ============== Running Processes ================ . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\nvvsvc.exe C:\Windows\system32\nvvsvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe C:\Windows\system32\rundll32.exe C:\Program Files\PACKARD BELL\Packard Bell PowerSave Solution\ePowerSvc.exe C:\Program Files\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe C:\Windows\system32\IoctlSvc.exe C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe C:\Windows\system32\PnkBstrA.exe C:\Program Files\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechServiceInstaller.exe C:\Program Files\VTech\DownloadManager\Applications\AppAccessory\12051\VTechUSBSocketService\VTechUSBSocketService.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe C:\Program Files\VideoWebCamera\VideoWebCamera.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Launch Manager\LManager.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Samsung\Kies\KiesTrayAgent.exe C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Users\GEBRUI~1\AppData\Local\Temp\RtkBtMnt.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe C:\Program Files\PACKARD BELL\SetupMyPC\SmpSys.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Samsung\Kies\Kies.exe C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Optimizer Pro\OptProReminder.exe C:\Program Files\Canon\ImageBrowser EX\MFManager.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\PACKARD BELL\Packard Bell PowerSave Solution\ePowerTray.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\PACKARD BELL\Packard Bell PowerSave Solution\ePowerEvent.exe C:\Users\gebruiker\AppData\Roaming\Spotify\Spotify.exe C:\Users\gebruiker\AppData\Roaming\Spotify\Data\SpotifyHelper.exe C:\Users\gebruiker\AppData\Roaming\Spotify\Data\SpotifyHelper.exe C:\Users\gebruiker\AppData\Roaming\Spotify\Data\SpotifyHelper.exe C:\Users\gebruiker\AppData\Roaming\Spotify\Data\SpotifyHelper.exe C:\Users\gebruiker\AppData\Roaming\Spotify\Data\SpotifyHelper.exe C:\Windows\system32\wuauclt.exe C:\Users\gebruiker\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\msiexec.exe C:\Program Files\AVG\AVG2014\avgwdsvc.exe C:\Windows\servicing\TrustedInstaller.exe C:\Program Files\AVG\AVG2014\avgui.exe C:\Windows\system32\ctfmon.exe C:\Windows\system32\NOTEPAD.EXE C:\Windows\system32\NOTEPAD.EXE C:\Windows\system32\NOTEPAD.EXE C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k apphost C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k iissvcs C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\System32\svchost.exe -k swprv . ============== Pseudo HJT Report =============== . uStart Page = hxxp://google.be/ uSearch Bar = hxxp://www.google.com/ie uSearch Page = hxxp://www.google.com uDefault_Page_URL = about:blank mStart Page = about:blank mDefault_Page_URL = about:blank uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s uURLSearchHooks: {00A6FAF6-072E-44cf-8957-5838F569A31D} - mWinlogon: Userinit = c:\windows\system32\userinit.exe BHO: SalesCheCker: {3B2CAC99-1E18-F7D9-AE2A-45564BDB3C79} - c:\programdata\saleschecker\u4SG4VBmL.dll BHO: websaver: {55C5571A-8004-7182-D045-96AA32327E35} - c:\programdata\websaver\x7BCLToHKs.dll BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\3.1.415.1646\swg.dll BHO: ddeal4me: {B11DE820-5759-B69C-5B06-79974FB03126} - c:\programdata\ddeal4me\2RFMCC5ho.dll BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll TB: &Google: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background uRun: [SmpcSys] c:\program files\packard bell\setupmypc\SmpSys.exe uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [Google Update] "c:\users\gebruiker\appdata\local\google\update\GoogleUpdate.exe" /c uRun: [KiesPreload] c:\program files\samsung\kies\Kies.exe /preload uRun: [KiesAirMessage] c:\program files\samsung\kies\KiesAirMessage.exe -startup uRun: [KiesPDLR] c:\program files\samsung\kies\external\firmwareupdate\KiesPDLR.exe uRun: [Optimizer Pro] c:\program files\optimizer pro\OptProLauncher.exe uRun: [HP Photosmart 6520 series (NET)] "c:\program files\hp\hp photosmart 6520 series\bin\ScanToPCActivationApp.exe" -deviceID "TH38E170Y805XP:NW" -scfn "HP Photosmart 6520 series (NET)" -AutoStart 1 uRun: [Spotify] "c:\users\gebruiker\appdata\roaming\spotify\Spotify.exe" /uri spotify:autostart mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe mRun: [Skytel] c:\program files\realtek\audio\hda\Skytel.exe mRun: [Acer ePower Management] c:\program files\packard bell\packard bell powersave solution\ePowerTrayLauncher.exe mRun: [BackupManagerTray] "c:\program files\newtech infosystems\packard bell mybackup\BackupManagerTray.exe" -k mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [PDVD8LanguageShortcut] "c:\program files\cyberlink\powerdvd8\language\Language.exe" mRun: [RemoteControl8] "c:\program files\cyberlink\powerdvd8\PDVD8Serv.exe" mRun: [VideoWebCamera] "c:\program files\videowebcamera\VideoWebCamera.exe" -a mRun: [LManager] c:\program files\launch manager\LManager.exe mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe" mRun: [KiesTrayAgent] c:\program files\samsung\kies\KiesTrayAgent.exe mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [PMBVolumeWatcher] c:\program files\sony\playmemories home\PMBVolumeWatcher.exe mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [AgentMonitor] c:\program files\vtech\downloadmanager\system\AgentMonitor.exe mRun: [AVG_UI] "c:\program files\avg\avg2014\avgui.exe" /TRAYONLY dRunOnce: [SPReview] "c:\windows\system32\spreview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 StartupFolder: c:\users\gebrui~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\gebruiker\appdata\roaming\dropbox\bin\Dropbox.exe StartupFolder: c:\users\gebrui~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\imageb~1.lnk - c:\program files\canon\imagebrowser ex\MFManager.exe mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0 mPolicies-Explorer: NoDriveTypeAutoRun = dword:28 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm IE: E&xporteren naar Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000 IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab TCP: NameServer = 195.130.130.3 195.130.131.3 TCP: Interfaces\{3CBA1D0B-ED5F-442A-9DEB-5B0220792688}\3596475636F6D6035303133403 : DHCPNameServer = 192.168.0.1 TCP: Interfaces\{3CBA1D0B-ED5F-442A-9DEB-5B0220792688}\65563716C6965737 : DHCPNameServer = 192.168.4.1 192.168.4.2 TCP: Interfaces\{3CBA1D0B-ED5F-442A-9DEB-5B0220792688}\F4F4D435D20534F5E4564777F627B6 : DHCPNameServer = 192.168.0.1 TCP: Interfaces\{3CBA1D0B-ED5F-442A-9DEB-5B0220792688}\F4F6D637 : DHCPNameServer = 192.168.0.1 TCP: Interfaces\{417F078B-7CB9-4F8F-AD1D-5A4F861AE29B} : DHCPNameServer = 195.130.130.3 195.130.131.3 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll SSODL: WebCheck - SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=18708 FF - component: c:\program files\mozilla firefox\extensions\linkfilter@kaspersky.ru\components\KavLinkFilter.dll FF - component: c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\{d1a1c8f1-e3d9-48df-802f-20201061ef61}\components\RadioWMPCoreGecko19.dll FF - component: c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll FF - component: c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\ffxtlbr@babylon.com\components\FFHst.dll FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll FF - plugin: c:\program files\microsoft silverlight\5.1.20913.0\npctrlui.dll FF - plugin: c:\program files\microsoft\office live\npOLW.dll FF - plugin: c:\program files\mozilla firefox\plugins\npPandoWebInst.dll FF - plugin: c:\users\gebruiker\appdata\local\google\update\1.3.22.5\npGoogleUpdate3.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_13_0_0_214.dll FF - ExtSQL: 2014-04-12 17:13; btgyh@qyjrfd.net; c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\btgyh@qyjrfd.net FF - ExtSQL: 2014-04-12 17:13; zg14knzh@rieii.org; c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\zg14knzh@rieii.org FF - ExtSQL: 2014-05-23 18:18; hvose@hgufioe.com; c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\a1pvwxbo.default\extensions\hvose@hgufioe.com . ============= SERVICES / DRIVERS =============== . R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2014-5-13 149784] R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2014-5-13 237848] R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2014-5-13 107288] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2014-5-13 27416] R1 Avgdiskx;AVG Disk Driver;c:\windows\system32\drivers\avgdiskx.sys [2014-5-13 122136] R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2014-5-13 198936] R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2014-5-13 21272] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2014-5-13 192280] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2014-5-13 210200] R2 avgwd;AVG WatchDog;c:\program files\avg\avg2014\avgwdsvc.exe [2014-5-13 292424] R2 ca82e1a5;Optimizer Pro Crash Monitor;c:\windows\system32\rundll32.exe [2009-7-14 44544] R2 ePowerSvc;Acer ePower Service;c:\program files\packard bell\packard bell powersave solution\ePowerSvc.exe [2009-3-20 690720] R2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files\newtech infosystems\packard bell mybackup\IScheduleSvc.exe [2009-3-10 44800] R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files\sony\playmemories home\PMBDeviceInfoProvider.exe [2012-11-27 479840] R2 VTechUSBSocketService;VTechUSBSocketService;c:\program files\vtech\downloadmanager\applications\appaccessory\12051\vtechusbsocketservice\VTechServiceInstaller.exe [2014-1-20 82824] R3 k57nd60x;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\k57nd60x.sys [2009-7-14 229888] R3 netw5v32;Stuurprogramma voor Intel(R) Wireless WiFi Link 5000 Series-adapter 32-bits Windows Vista;c:\windows\system32\drivers\netw5v32.sys [2009-6-10 4231168] S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2014\avgidsagent.exe [2014-5-13 3644432] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe -k netsvcs [2009-7-14 20992] S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe -k HsfXAudioService [2009-7-14 20992] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [2013-2-6 83864] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [2013-2-6 181784] S3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\wat\WatAdminSvc.exe [2010-5-31 1343400] S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;"c:\program files\microsoft sql server\100\shared\sqladhlp.exe" --> c:\program files\microsoft sql server\100\shared\SQLADHLP.EXE [?] S4 RsFx0103;RsFx0103 Driver;c:\windows\system32\drivers\RsFx0103.sys [2009-3-30 239336] S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);"c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\sqlagent.exe" -i sqlexpress --> c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\SQLAGENT.EXE [?] . =============== Created Last 30 ================ . 2014-05-29 16:44:56 -------- d-----w- c:\users\gebruiker\appdata\roaming\AVG2014 2014-05-29 16:44:01 -------- d-----w- c:\users\gebruiker\appdata\roaming\TuneUp Software 2014-05-29 16:43:25 -------- d--h--w- C:\$AVG 2014-05-29 16:43:24 -------- d-----w- c:\programdata\AVG2014 2014-05-29 16:42:08 -------- d-----w- c:\program files\AVG 2014-05-29 16:38:22 -------- d--h--w- c:\programdata\Common Files 2014-05-29 16:38:22 -------- d-----w- c:\users\gebruiker\appdata\local\MFAData 2014-05-29 16:38:22 -------- d-----w- c:\users\gebruiker\appdata\local\Avg2014 2014-05-29 16:38:22 -------- d-----w- c:\programdata\MFAData 2014-05-27 12:09:18 8073384 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{652e50c8-9124-42cd-9e1a-5a8218deaedf}\mpengine.dll 2014-05-21 19:30:08 -------- d-----w- c:\programdata\SalesCheCker 2014-05-16 16:38:10 -------- d-----w- c:\users\gebruiker\FrostWire 2014-05-16 16:38:08 -------- d-----w- c:\users\gebruiker\.frostwire5 2014-05-16 16:38:07 -------- d-----w- c:\programdata\APN 2014-05-14 10:43:30 -------- d-----w- c:\users\gebruiker\appdata\roaming\DropboxMaster 2014-05-13 12:19:14 192280 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2014-05-13 12:17:24 237848 ----a-w- c:\windows\system32\drivers\avglogx.sys 2014-05-13 12:17:22 210200 ----a-w- c:\windows\system32\drivers\avgtdix.sys 2014-05-13 12:17:22 122136 ----a-w- c:\windows\system32\drivers\avgdiskx.sys 2014-05-13 12:17:20 149784 ----a-w- c:\windows\system32\drivers\avgidshx.sys 2014-05-13 12:09:12 198936 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys 2014-05-13 12:04:36 27416 ----a-w- c:\windows\system32\drivers\avgrkx86.sys 2014-05-13 12:04:34 21272 ----a-w- c:\windows\system32\drivers\avgidsshimx.sys 2014-05-01 08:14:56 -------- d-----w- c:\users\gebruiker\appdata\local\Spotify 2014-05-01 08:14:13 -------- d-----w- c:\users\gebruiker\appdata\roaming\Spotify . ==================== Find3M ==================== . 2014-05-14 17:57:18 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2014-05-14 17:57:17 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2014-03-31 07:35:10 231584 ------w- c:\windows\system32\MpSigStub.exe . ============= FINISH: 18:59:01,35 ===============