Logfile of random's system information tool 1.10 (written by random/random) Run by Kevin at 2014-11-30 23:04:05 Microsoft Windows 7 Home Premium System drive C: has 101 GB (45%) free of 225 GB Total RAM: 1979 MB (16% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 23:04:34, on 30/11/2014 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v9.00 (9.00.8112.16476) Boot mode: Normal Running processes: C:\Program Files (x86)\Mobogenie\DaemonProcess.exe C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe C:\Program Files (x86)\Steam\Steam.exe C:\Users\Kevin\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Users\Kevin\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe C:\Users\Kevin\AppData\Roaming\uTorrent\uTorrent.exe C:\Users\Kevin\AppData\Local\Softonic\Softonic.exe C:\Users\Kevin\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe C:\Program Files (x86)\TechSmith\Snagit 10\Snagit32.exe C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE C:\Users\Kevin\AppData\Roaming\BrowserCompanion\tcbhn.exe C:\Program Files (x86)\Hp\QuickPlay\QPService.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe C:\Users\Kevin\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler.exe C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.15.10\BabylonToolbarsrv.exe C:\Program Files (x86)\TechSmith\Snagit 10\TSCHelp.exe C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe C:\Program Files (x86)\TechSmith\Snagit 10\SnagPriv.exe C:\Program Files (x86)\BrowserCompanion\BCHelper.exe C:\Program Files (x86)\Ask.com\Updater\Updater.exe C:\Program Files (x86)\Iminent\Iminent.Messengers.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe C:\Program Files (x86)\Iminent\Iminent.exe C:\Program Files (x86)\TechSmith\Snagit 10\snagiteditor.exe C:\Program Files (x86)\glindorus\bin\glindorus.BOASHelper.exe C:\Program Files (x86)\glindorus\bin\glindorus.expext.exe C:\Program Files (x86)\glindorus\bin\glindorus.BRT.Helper.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\glindorus\bin\glindorus.BOASPRT.exe C:\Program Files (x86)\glindorus\bin\glindorus.BOAS.exe C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe C:\Users\Kevin\AppData\Local\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Kevin\AppData\Local\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\glindorus\bin\glindorus.BrowserAdapter.exe C:\Users\Kevin\AppData\Local\Google\Update\GoogleUpdate.exe C:\Program Files\trend micro\Kevin.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?tpid=SHD-V7&o=APN10115&pf=&trgb=IE&p2=%5EAYE%5Ezzz000%5EYY%5EBE&gct=hp&apn_ptnrs=%5EAYE&apn_dtid=%5Ezzz000%5EYY%5EBE&apn_dbr=jet.exe_0_24.0.1293.0&apn_uid=91390882-6FAA-4DEF-B909-90062235C994&itbv=12.6.0.2086&doi=2013-11-02&psv=&pt=tb R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dosearches.com/?utm_source=b&utm_medium=mp3&utm_campaign=eXQ&utm_content=hp&from=mp3&uid=FUJITSUXMJA2250BHXG2_K94PT9A2NVB8&ts=1382787155 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dosearches.com/?utm_source=b&utm_medium=mp3&utm_campaign=eXQ&utm_content=hp&from=mp3&uid=FUJITSUXMJA2250BHXG2_K94PT9A2NVB8&ts=1382787155 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ironto&s={searchTerms}&f=4 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = file://C:\Program Files (x86)\glindorus\bin\Pac9064.js R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O1 - Hosts: ::1 localhost O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 10\SnagitBHO.dll O2 - BHO: script helper for ie - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program Files (x86)\BrowserCompanion\jsloader.dll O2 - BHO: Speed Test 127 - {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} - C:\Program Files (x86)\Speed Test 127\ScriptHost.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.26.16\bh\BabylonToolbar.dll O2 - BHO: mixidj Helper Object - {4D6A9BBF-402C-4301-B1EF-28D04F71D761} - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\bh\mixidj.dll O2 - BHO: WinZipBar - {50fafaf0-70a9-419d-a109-fa4b4ffd4e37} - C:\Program Files (x86)\WinZipBar\prxtbWin0.dll O2 - BHO: Ask Toolbar BHO - {5348442D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\SHD-V7\Passport.dll" (file missing) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Funmoods Helper Object - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\PROGRA~2\Funmoods\1.5.23.22\bh\escort.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll O2 - BHO: Music Toolbar (Dist. by Bandoo Media, Inc.) - {7e8cd3ea-a4d1-48f5-9fae-c8fe18e94ee6} - C:\PROGRA~2\MUSICT~1\Datamngr\SRTOOL~3\IE\searchresultsDx.dll O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Kevin\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: glindorus - {9598e82a-7e09-4438-b425-b9e9718c3c73} - C:\Program Files (x86)\glindorus\glindorusBHO.dll O2 - BHO: Update Timer - {963B125B-8B21-49A2-A3A8-E37092276531} - C:\Program Files (x86)\BrowserCompanion\updatebhoWin32.dll O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: IMinent WebBooster - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll O2 - BHO: (no name) - {A40DC6C5-79D0-4ca8-A185-8FF989AF1115} - (no file) O2 - BHO: Speed Analysis 3 - {A66261FC-B82E-4EC7-9F6D-C2F36B871DF0} - C:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.16.16\bh\delta.dll O2 - BHO: Staging - {C35B7206-62EB-F808-5475-18A6FDE7DD94} - c:\Users\All Users\dl159\159.dll O2 - BHO: Free Games 111 - {C45EC9F0-8333-465D-9728-074BD41985C9} - C:\Program Files (x86)\Free Games 111\ScriptHost.dll O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing) O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.6.7.4\bh\Softonic.dll O2 - BHO: DVDVideoSoft Toolbar - {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - C:\Program Files (x86)\DVDVideoSoft\tbDVDV.dll O2 - BHO: Bandoo IE Plugin - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\Program Files (x86)\Bandoo\Plugins\IE\ieplugin.dll O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O2 - BHO: buenosearch Helper Object - {F1C81E40-2485-4DB6-8C9D-04BD596B281E} - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\bh\buenosearch.dll O2 - BHO: Free Games 115 - {F4BD3468-8241-488D-B013-953D090FADCE} - C:\Program Files (x86)\Free Games 115\ScriptHost.dll O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.26.16\BabylonToolbarTlbr.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing) O3 - Toolbar: (no name) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - (no file) O3 - Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - (no file) O3 - Toolbar: WinZipBar Toolbar - {50fafaf0-70a9-419d-a109-fa4b4ffd4e37} - C:\Program Files (x86)\WinZipBar\prxtbWin0.dll O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 10\SnagitIEAddin.dll O3 - Toolbar: Funmoods Toolbar - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\PROGRA~2\Funmoods\1.5.23.22\escorTlbr.dll O3 - Toolbar: Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.6.7.4\SoftonicTlbr.dll O3 - Toolbar: Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.16.16\deltaTlbr.dll O3 - Toolbar: MixiDJ Toolbar - {CA9B9C89-4662-4ADC-9C23-A452BECD5D19} - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\mixidjTlbr.dll O3 - Toolbar: Ask Toolbar - {5348442D-5637-006A-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\SHD-V7\Passport.dll" (file missing) O3 - Toolbar: DVDVideoSoft Toolbar - {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - C:\Program Files (x86)\DVDVideoSoft\tbDVDV.dll O3 - Toolbar: buenosearch Toolbar - {828DC97A-2277-4E10-92A9-4907FA0922A9} - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\buenosearchTlbr.dll O3 - Toolbar: Music Toolbar (Dist. by Bandoo Media, Inc.) - {7e8cd3ea-a4d1-48f5-9fae-c8fe18e94ee6} - C:\PROGRA~2\MUSICT~1\Datamngr\SRTOOL~3\IE\searchresultsDx.dll O4 - HKLM\..\Run: [QPService] "C:\Program Files (x86)\HP\QuickPlay\QPService.exe" O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Hewlett-Packard\Recovery" UpdateWithCreateOnce "Software\CyberLink\PowerRecover" O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [Adobe_ID0EYTHM] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE O4 - HKLM\..\Run: [BabylonToolbar] "C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.15.10\BabylonToolbarsrv.exe" /md I O4 - HKLM\..\Run: [Babylon Client] C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe -AutoStart O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Browser companion helper] C:\Program Files (x86)\BrowserCompanion\BCHelper.exe /T=3 /CHI=clbfjfbnelcflpgpklppgplejolacbej O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe O4 - HKLM\..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent O4 - HKCU\..\Run: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent O4 - HKCU\..\Run: [Google Update] "C:\Users\Kevin\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [Spotify] "C:\Users\Kevin\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Kevin\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [Driver Pro] C:\Program Files (x86)\Driver Pro\DPLauncher.exe O4 - HKCU\..\Run: [Software Informer] "C:\Program Files\Software Informer\softinfo.exe" -autorun O4 - HKCU\..\Run: [FLV Player] C:\Users\Kevin\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe O4 - HKCU\..\Run: [uTorrent] "C:\Users\Kevin\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun O4 - HKCU\..\Run: [Softonic for Windows] "C:\Users\Kevin\AppData\Local\Softonic\Softonic.exe" -minimize O4 - HKCU\..\Run: [Yahoo! Search] C:\Users\Kevin\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_223_ActiveX.exe -update activex O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE O4 - Startup: tcbhn.lnk = C:\Users\Kevin\AppData\Roaming\BrowserCompanion\tcbhn.exe O4 - Global Startup: Adobe Acrobat Snelle start.lnk = ? O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe O4 - Global Startup: Snagit 10.lnk = C:\Program Files (x86)\TechSmith\Snagit 10\Snagit32.exe O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll O9 - Extra 'Tools' menuitem: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} (Battlefield Play4Free Updater) - https://battlefield.play4free.com/static/updater/BP4FUpdater_1.0.96.0.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O18 - Protocol: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll O18 - Protocol: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Version Cue CS3 {nl_NL} (Adobe Version Cue CS3) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Ask-updateservice (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe O23 - Service: Bandoo Coordinator - Bandoo Media Inc. - C:\Program Files (x86)\Bandoo\Bandoo.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe O23 - Service: DefaultTabSearch - Unknown owner - C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe O23 - Service: DefaultTabUpdate - Unknown owner - C:\Users\Kevin\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: MaintainerSvc2.13.426751 - Unknown owner - C:\ProgramData\80810f5c-7b66-4b02-af93-03f2b7680a45\maintainer.exe O23 - Service: MgAssist Service (MgAssistService) - Unknown owner - C:\Program Files (x86)\Mobogenie\MgAssist.exe O23 - Service: MobogenieService - Mobogenie.com - C:\Program Files (x86)\Mobogenie3\MobogenieService.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Microsoft Netwerkinspectie (NisSrv) - Unknown owner - c:\Program Files\Microsoft Security Client\NisSrv.exe (file missing) O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SProtection - Iminent - C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Update glindorus - Unknown owner - C:\Program Files (x86)\glindorus\updateglindorus.exe O23 - Service: Util glindorus - Unknown owner - C:\Program Files (x86)\glindorus\bin\utilglindorus.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 28171 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe "C:\Program Files (x86)\Bonjour\mDNSResponder.exe" "C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe" "C:\Users\Kevin\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe" C:\Windows\SysWOW64\svchost.exe -k netsvcs "C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe" "C:\Program Files (x86)\Mobogenie\MgAssist.exe" "C:\Program Files (x86)\Mobogenie3\MobogenieService.exe" "C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe" C:\Windows\SysWOW64\PnkBstrA.exe "C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe" "C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE" "C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\glindorus\bin\utilglindorus.exe" "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files (x86)\Bandoo\Bandoo.exe" WLIDSvcM.exe 2372 C:\Windows\System32\alg.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files (x86)\Mobogenie\DaemonProcess.exe" "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\Program Files\Java\jre6\bin\jusched.exe" "C:\Program Files\IDT\WDM\sttray64.exe" "C:\Windows\System32\igfxtray.exe" "C:\Windows\System32\hkcmd.exe" "C:\Windows\System32\igfxpers.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" view=DOCKVIEW "C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden "C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe" "C:\Program Files (x86)\Steam\Steam.exe" -silent "C:\Users\Kevin\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun "C:\Program Files\Software Informer\softinfo.exe" -autorun "C:\Users\Kevin\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe" "C:\Users\Kevin\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED "C:\Users\Kevin\AppData\Local\Softonic\Softonic.exe" -minimize "C:\Users\Kevin\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe" "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR "C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" "C:\Program Files (x86)\TechSmith\Snagit 10\Snagit32.exe" "C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr "C:\Users\Kevin\AppData\Roaming\BrowserCompanion\tcbhn.exe" -interval=10 -IEhome=0 -IEsearch=0 -FFhome=0 -FFsearch=0 -CHhome=0 -CHsearch=0 -pubId= -affId= "C:\Program Files (x86)\Hp\QuickPlay\QPService.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe" /Start "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe" "C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe" "C:\Users\Kevin\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler.exe" "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe" C:\Windows\system32\wbem\wmiprvse.exe "C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.15.10\BabylonToolbarsrv.exe" /md I "C:\Program Files (x86)\TechSmith\Snagit 10\TSCHelp.exe" "C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe" "C:\Program Files (x86)\TechSmith\Snagit 10\SnagPriv.exe" "C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe" "C:\Users\Kevin\AppData\Local\Google\Update\1.3.25.11\GoogleCrashHandler64.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe" "C:\Program Files (x86)\BrowserCompanion\BCHelper.exe" /T=3 /CHI=clbfjfbnelcflpgpklppgplejolacbej "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" "C:\Program Files (x86)\Iminent\Iminent.Messengers.exe" "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "C:\ProgramData\80810f5c-7b66-4b02-af93-03f2b7680a45\maintainer.exe" C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe" -Embedding "C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe" "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe" C:\Windows\System32\svchost.exe -k secsvcs "C:\Program Files (x86)\Iminent\Iminent.exe" C:\Windows\system32\msiexec.exe /V "C:\Program Files (x86)\TechSmith\Snagit 10\snagiteditor.exe" /X C:\Windows\splwow64.exe 2 C:\Windows\system32\wbem\wmiprvse.exe /w 910 /h 100 /cg 3d97226d-853d-461d-9532-76fbd5709e6a /gc 1 /ff 1 /ie 1 /is grbgobe /ieg 619fcb52-97b6-4b2f-93c7-d1d6739e6c39 /is grbgobe "C:\Program Files (x86)\glindorus\bin\glindorus.PurBrowse64.exe" /l false /s false /c "glindorus" /t "C:\Program Files (x86)\glindorus\bin\TEMP" /i "http://apiglindorusnet-a.akamaihd.net/gsrs?is=grbgobe&bp=PB&g=00000000-0000-0000-0000-000000000000" /d {44a99463-0ff3-4b62-9d3c-802722bf3043}w64 /p 06542003-bba4-4c24-8091-62ceab0187cb:firefox /p d8ad0f27-050e-483d-8b8b-0a9780d613e5:chrome /p 619fcb52-97b6-4b2f-93c7-d1d6739e6c39:iexplore /h cdn.sharedaddomain.com,cdn.sharedaddomain2.com 0 10 "C:\Program Files (x86)\glindorus\bin\bau" true "C:\Program Files (x86)\glindorus\updateglindorus.exe" \??\C:\Windows\system32\conhost.exe "-728201329-1538158676752387339-1519485912175282537780089535-111853821700917045 /chrome d8ad0f27-050e-483d-8b8b-0a9780d613e5 /firefox 06542003-bba4-4c24-8091-62ceab0187cb /iexplore 619fcb52-97b6-4b2f-93c7-d1d6739e6c39 /pr 9064 "C:\Program Files (x86)\Nero\Update\NASvc.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="940.0.1272529389\616933770" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,16 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x2a42 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2302 --ignored=" --type=renderer " /prefetch:822062411 "C:\Program Files (x86)\glindorus\bin\glindorus.BOASPRT.exe" /w 910 /h 100 /hw 525448 /g 3d97226d-853d-461d-9532-76fbd5709e6a /is grbgobe "C:\Program Files (x86)\glindorus\bin\glindorus.BOAS.exe" /w 910 /h 100 /hw 525448 /g 3d97226d-853d-461d-9532-76fbd5709e6a /is grbgobe /bt 0 /ps \\.\pipe\boa{CF1773FB-15D2-419F-A694-1FBE3A026BE6} /bv 38 "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe" "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" "C:\Users\Kevin\AppData\Local\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr.exe" /MINST "C:\Users\Kevin\AppData\Local\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr_x64.exe" /MINST C:\Windows\system32\wbem\unsecapp.exe -Embedding "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -Embedding "C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:5600 CREDAT:145409 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --disable-accelerated-video-decode --channel="940.9.641723059\135956998" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --disable-accelerated-video-decode --channel="940.10.1499567207\455177236" /prefetch:673131151 "C:\Windows\system32\RunDll32.exe" "C:\Windows\system32\WerConCpl.dll", LaunchErcApp -queuereporting taskeng.exe {4CF7288C-A2CA-4DBC-9A8B-B22D2CDA189A} C:\Users\Kevin\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="940.11.2065410496\2113261670" --ppapi-flash-args=enable_hw_video_decode=1 --lang=nl --ignored=" --type=renderer " /prefetch:-632637702 /c d8ad0f27-050e-483d-8b8b-0a9780d613e5 /i 619fcb52-97b6-4b2f-93c7-d1d6739e6c39 /f 06542003-bba4-4c24-8091-62ceab0187cb /z "n=glindorus&is=grbgobe&dpt=20" /c d8ad0f27-050e-483d-8b8b-0a9780d613e5 /i 619fcb52-97b6-4b2f-93c7-d1d6739e6c39 /f 06542003-bba4-4c24-8091-62ceab0187cb /z "n=glindorus&is=grbgobe&dpt=20" C:\Windows\system32\sppsvc.exe "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" C:\Windows\system32\vssvc.exe "C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512 C:\Windows\System32\svchost.exe -k swprv "C:\Users\Kevin\AppData\Local\Google\Update\GoogleUpdate.exe" -Embedding "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1945206362-4264351517-887193634-10003_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1945206362-4264351517-887193634-10003 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" "C:\Users\Kevin\Desktop\RSITx64.exe" ======Scheduled tasks folder====== C:\Windows\tasks\a2zLyrics Update.job - C:\Program Files (x86)\a2zLyrics-soft\a2zLyricspUb.exe /update C:\Windows\tasks\a2zLyrics_wd.job - C:\Program Files (x86)\a2zLyrics-soft\a2zLyricspUbMDw.exe C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-1.job - C:\Program Files (x86)\Plus-HD-9.6\Plus-HD-9.6-codedownloader.exe /PaDSlQIxQ /kHeyKtCnY=task /mLiPBeS='Plus-HD-9.6' /QPiZtrGsN=57304 /ucDecd='001618' /ETmUE='0' /KKmmnE='0' /QuSLO=48418CFC78844D7D8875FEF7B758B9B6IE /nVvOx=a215234d6c0a533f9be5723a8dc82b32 /AlfcCUDUr=1_34_05_29 /cXEcDlRD=1.34.5.29 /cZbRYEv=1402414673 /ruVmBU=http://stats.datademoserv.com /OxGjPrNBI=http://errors.datademoserv.com /XEVFhhjiK=http://js.datademoserv.com /zzndPsBc=ch /NJSvybU /ZfZrx='{"asw":[1213000, 33554437]}' /yfRmRb='http://update.datademoserv.com/ie_code_agent_updates/{CAMP_ID}/update.json' /kHeyKtCnY='task' /sToRA='' C:\Windows\tasks\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-2.job - C:\Program Files (x86)\Plus-HD-9.6\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-2.exe /SmETNU /mLiPBeS='Plus-HD-9.6' /QPiZtrGsN=57304 /ucDecd='001618' /ETmUE='0' /KKmmnE='0' /QuSLO=48418CFC78844D7D8875FEF7B758B9B6IE /nVvOx=a215234d6c0a533f9be5723a8dc82b32 /AlfcCUDUr=1_34_05_29 /cZbRYEv=1402414673 /ruVmBU=http://stats.datademoserv.com /OxGjPrNBI=http://errors.datademoserv.com /SPWCmZG=11111111-1111-1111-1111-110511731104 /zzndPsBc=ch /SalTAeoZ /NJSvybU /yfRmRb='http://update.datademoserv.com/ie_enable_agent_updates/{CAMP_ID}/update.json' /kHeyKtCnY='task' /sToRA='' C:\Windows\tasks\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-3.job - C:\Program Files (x86)\Plus-HD-9.6\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-3.exe /GTozbnLUb=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 C:\Windows\tasks\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-4.job - C:\Program Files (x86)\Plus-HD-9.6\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-4.exe /esNXVDvom /mLiPBeS='Plus-HD-9.6' /rVljPYLLk='C:\Program Files (x86)\Plus-HD-9.6\57304.xpi' /QPiZtrGsN=57304 /ucDecd='001618' /ETmUE='0' /KKmmnE='0' /QuSLO=48418CFC78844D7D8875FEF7B758B9B6IE /nVvOx=a215234d6c0a533f9be5723a8dc82b32 /AlfcCUDUr=1_34_05_29 /cXEcDlRD=1.34.5.29 /cZbRYEv=1402414673 /ruVmBU=http://stats.datademoserv.com /OxGjPrNBI=http://errors.datademoserv.com /tOYsg=300 /xnKvR=048da175-3ee8-49e5-9d6f-2feb4d4793d5@3f15bd8f-93f6-4d68-a7c5-ae4f792d6bd4.com /CNtCji=0.94 /UHYhnwpI=a048da1753ee849e59d6f2feb4d4793d53f15bd8f93f64d68a7c5ae4f792d6bd4com57304 /LUTzqdY=https://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/57304.rdf /ehdiWDRGM='Plus-HD-9.6' /UgiJrzf='Turn YouTube videos to High Definition by default' /NRWekuCA='Plus HD' /zzndPsBc=ch /ZfZrx='{"asw":[1213000, 33554437]}' /NJSvybU /GZRnKhLC /umCWeQz /yfRmRb='http://update.datademoserv.com/ff_agent_updates/{CAMP_ID}/update.json' /kHeyKtCnY='task' /sToRA='' C:\Windows\tasks\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-5.job - C:\Program Files (x86)\Plus-HD-9.6\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-5.exe /EcmAaiUga /mLiPBeS='Plus-HD-9.6' /QPiZtrGsN=57304 /ucDecd='001618' /ETmUE='0' /KKmmnE='0' /QuSLO=48418CFC78844D7D8875FEF7B758B9B6IE /nVvOx=a215234d6c0a533f9be5723a8dc82b32 /AlfcCUDUr=1_34_05_29 /cZbRYEv=1402414673 /ruVmBU=http://stats.datademoserv.com /OxGjPrNBI=http://errors.datademoserv.com /jIghucJf=http://ipgeoapi.com/ /XnGOGQcA=http://update.datademoserv.com /iOsuD=2 /MsYXR=http://logs.datademoserv.com /yfRmRb='http://update.datademoserv.com/updater_agent_updates/{CAMP_ID}/update.json' /kHeyKtCnY='task' /sToRA='' C:\Windows\tasks\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-6.job - C:\Program Files (x86)\Plus-HD-9.6\Plus-HD-9.6-novainstaller.exe /tYhOua /kHeyKtCnY=task /mLiPBeS='Plus-HD-9.6' /QPiZtrGsN=57304 /ucDecd='001618' /ETmUE='0' /KKmmnE='0' /QuSLO=48418CFC78844D7D8875FEF7B758B9B6IE /nVvOx=a215234d6c0a533f9be5723a8dc82b32 /AlfcCUDUr=1_34_05_29 /cXEcDlRD=1.34.5.29 /cZbRYEv=1402414673 /ruVmBU=http://stats.datademoserv.com /OxGjPrNBI=http://errors.datademoserv.com /XEVFhhjiK=http://js.datademoserv.com /zzndPsBc=ch /bdGcXmWLy /wNPTuGJ='nova' /ZfZrx='{"asw":[1213000, 33554437]}' /yfRmRb='http://update.datademoserv.com/novacode/{CAMP_ID}/update.json' /kHeyKtCnY='task' /sToRA='' C:\Windows\tasks\bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-7.job - C:\Program Files (x86)\Plus-HD-9.6\Plus-HD-9.6-nova.exe /mLiPBeS='Plus-HD-9.6' /QPiZtrGsN=57304 /ucDecd='001618' /ETmUE='0' /KKmmnE='0' /QuSLO=48418CFC78844D7D8875FEF7B758B9B6IE /nVvOx=a215234d6c0a533f9be5723a8dc82b32 /AlfcCUDUr=1_34_05_29 /cXEcDlRD=1.34.5.29 /cZbRYEv=1402414673 /ruVmBU=http://stats.datademoserv.com /OxGjPrNBI=http://errors.datademoserv.com /XEVFhhjiK=http://js.datademoserv.com /zzndPsBc=ch /bdGcXmWLy /wNPTuGJ='nova' /ZfZrx='{"asw":[1213000, 33554437]}' /yfRmRb='http://update.datademoserv.com/novarun/{CAMP_ID}/update.json' /kHeyKtCnY='task' /sToRA='' C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1945206362-4264351517-887193634-1000Core.job - C:\Users\Kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1945206362-4264351517-887193634-1000UA.job - C:\Users\Kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1945206362-4264351517-887193634-1000Core.job - C:\Users\Kevin\AppData\Local\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1945206362-4264351517-887193634-1000UA.job - C:\Users\Kevin\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\PC Performer_DEFAULT.job - C:\Program Files (x86)\PC Performer\PCPerformer.exe -default C:\Windows\tasks\PC Performer_UPDATES.job - C:\Program Files (x86)\PC Performer\PCPerformer.exe -updatecheck C:\Windows\tasks\RMSchedule.job - C:\Program Files (x86)\Registry Mechanic\RegMech.exe /F =========Mozilla firefox========= ProfilePath - C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\k3pnyvmb.default-1359316006378 prefs.js - "browser.startup.homepage" - "http://start.iminent.com/?appId=B751091D-CA95-4BDD-88D3-ADC8FA3D5800" prefs.js - "keyword.URL" - "http://rts.dsrlte.com/?q=" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 15.0.0.223 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin] "Description"=Google Earth in your browser "Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeLive,version=1.4] "Description"=Office Live Update v1.4 "Path"=C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308] "Description"=WLPG Install MIME type "Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10] "Description"=globalUpdate Update "Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4] "Description"=globalUpdate Update "Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0] "Description"=WildTangent Games App V2 Presence Detector Plugin "Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 15.0.0.223 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll C:\Program Files (x86)\Mozilla Firefox\searchplugins\ dosearches.xml StartWeb.xml C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\k3pnyvmb.default-1359316006378\extensions\ 8c16debec7f049958da48@6b84a53ea11c47beb7119259411feb.com battlefieldplay4free@ea.com ffox@bandoo.com ffxtlbr@buenosearch.com ffxtlbr@delta.com ffxtlbr@mixidj.com freegames4357@BestOffers speedtest4354@BestOffers C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\k3pnyvmb.default-1359316006378\searchplugins\ askcom.xml babylon.xml BrowserProtect.xml buenosearch.xml conduit-search.xml delta.xml dsrlte.xml keepmysearch.xml mixidj.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}] SnagIt Toolbar Loader - C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitBHO64.dll [2011-11-08 76176] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7}] Speed Test 127 - C:\Program Files (x86)\Speed Test 127\ScriptHost64.dll [2013-12-19 426496] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5348442D-5637-006A-76A7-7A786E7484D7}] Ask Toolbar - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\SHD-V7\Passport_x64.dll [2014-10-30 13720] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] IMinent WebBooster (BHO) - C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx64.dll [2014-02-19 359976] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}] Speed Analysis 3 - C:\Program Files (x86)\Speed Analysis 3\ScriptHost64.dll [2013-10-03 381760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C45EC9F0-8333-465D-9728-074BD41985C9}] Free Games 111 - C:\Program Files (x86)\Free Games 111\ScriptHost64.dll [2014-01-02 426496] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-09-02 43520] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] DVDVideoSoft IE Extension - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-05-27 357376] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4BD3468-8241-488D-B013-953D090FADCE}] Free Games 115 - C:\Program Files (x86)\Free Games 115\ScriptHost64.dll [2013-10-31 381760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}] SnagIt Toolbar Loader - C:\Program Files (x86)\TechSmith\Snagit 10\SnagitBHO.dll [2011-11-08 63888] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00cbb66b-1d3b-46d3-9577-323a336acb50}] Browser Companion Helper - C:\Program Files (x86)\BrowserCompanion\jsloader.dll [2012-06-28 225584] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7}] Speed Test 127 - C:\Program Files (x86)\Speed Test 127\ScriptHost.dll [2013-12-19 438784] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}] Babylon toolbar helper - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.26.16\bh\BabylonToolbar.dll [2013-10-16 299416] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D6A9BBF-402C-4301-B1EF-28D04F71D761}] mixidj Helper Object - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\bh\mixidj.dll [2013-04-26 307608] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50fafaf0-70a9-419d-a109-fa4b4ffd4e37}] WinZipBar Toolbar - C:\Program Files (x86)\WinZipBar\prxtbWin0.dll [2013-03-05 231168] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5348442D-5637-006A-76A7-7A786E7484D7}] Ask Toolbar - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\SHD-V7\Passport.dll [2014-10-30 12184] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}] Funmoods Helper Object - C:\PROGRA~2\Funmoods\1.5.23.22\bh\escort.dll [2012-08-24 243664] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-21 462760] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9}] AOL Toolbar BHO - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll [2008-07-02 1185120] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7e8cd3ea-a4d1-48f5-9fae-c8fe18e94ee6}] Music Toolbar (Dist. by Bandoo Media, Inc.) - C:\PROGRA~2\MUSICT~1\Datamngr\SRTOOL~3\IE\searchresultsDx.dll [2013-06-07 89288] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}] DefaultTab Browser Helper - C:\Users\Kevin\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll [2014-11-09 470648] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}] DVDVideoSoftTB Toolbar - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll [2011-05-09 176936] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9598e82a-7e09-4438-b425-b9e9718c3c73}] glindorus - C:\Program Files (x86)\glindorus\glindorusBHO.dll [2014-10-28 250144] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531}] Browser Companion Helper Verifier - C:\Program Files (x86)\BrowserCompanion\updatebhoWin32.dll [2012-06-28 141104] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}] Babylon IE plugin - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll [2010-08-10 253368] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}] Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] IMinent WebBooster (BHO) - C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll [2014-02-19 300072] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}] Speed Analysis 3 - C:\Program Files (x86)\Speed Analysis 3\ScriptHost.dll [2013-10-03 400704] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}] Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-22 321120] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] delta Helper Object - C:\Program Files (x86)\Delta\delta\1.8.16.16\bh\delta.dll [2013-03-13 251288] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C35B7206-62EB-F808-5475-18A6FDE7DD94}] Staging - c:\Users\All Users\dl159\159.dll [2014-11-23 153600] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C45EC9F0-8333-465D-9728-074BD41985C9}] Free Games 111 - C:\Program Files (x86)\Free Games 111\ScriptHost.dll [2014-01-02 438784] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-21 171944] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}] Softonic Helper Object - C:\Program Files (x86)\Softonic\Softonic\1.6.7.4\bh\Softonic.dll [2012-08-02 248936] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}] DVDVideoSoft Toolbar - C:\Program Files (x86)\DVDVideoSoft\tbDVDV.dll [2010-03-09 2355224] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}] BandooIEPlugin Class - C:\Program Files (x86)\Bandoo\Plugins\IE\ieplugin.dll [2011-12-14 2626960] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] DVDVideoSoft IE Extension - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2014-06-06 297128] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F1C81E40-2485-4DB6-8C9D-04BD596B281E}] buenosearch Helper Object - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\bh\buenosearch.dll [2013-11-08 280984] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4BD3468-8241-488D-B013-953D090FADCE}] Free Games 115 - C:\Program Files (x86)\Free Games 115\ScriptHost.dll [2013-10-31 400704] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - Snagit - C:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitIEAddin64.dll [2011-11-08 455056] {5348442D-5637-006A-76A7-7A786E7484D7} - Ask Toolbar - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\SHD-V7\Passport_x64.dll [2014-10-30 13720] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {DE9C389F-3316-41A7-809B-AA305ED9D922} - AOL Toolbar - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll [2008-07-02 1185120] {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-22 321120] {872b5b88-9db5-4310-bdd0-ac189557e5f5} - DVDVideoSoftTB Toolbar - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll [2011-05-09 176936] {98889811-442D-49dd-99D7-DC866BE87DBC} - Babylon Toolbar - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.26.16\BabylonToolbarTlbr.dll [2013-10-16 284056] {D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2011-05-17 1490312] {8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288] {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} {99079a25-328f-4bd4-be04-00955acaa0a7} {50fafaf0-70a9-419d-a109-fa4b4ffd4e37} - WinZipBar Toolbar - C:\Program Files (x86)\WinZipBar\prxtbWin0.dll [2013-03-05 231168] {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - Snagit - C:\Program Files (x86)\TechSmith\Snagit 10\SnagitIEAddin.dll [2011-11-08 205712] {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - Funmoods Toolbar - C:\PROGRA~2\Funmoods\1.5.23.22\escorTlbr.dll [2012-08-24 251856] {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - Softonic Toolbar - C:\Program Files (x86)\Softonic\Softonic\1.6.7.4\SoftonicTlbr.dll [2012-08-02 274536] {82E1477C-B154-48D3-9891-33D83C26BCD3} - Delta Toolbar - C:\Program Files (x86)\Delta\delta\1.8.16.16\deltaTlbr.dll [2013-03-13 325016] {CA9B9C89-4662-4ADC-9C23-A452BECD5D19} - MixiDJ Toolbar - C:\Program Files (x86)\mixidj\mixidj\1.8.18.8\mixidjTlbr.dll [2013-04-26 300952] {5348442D-5637-006A-76A7-7A786E7484D7} - Ask Toolbar - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\SHD-V7\Passport.dll [2014-10-30 12184] {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - DVDVideoSoft Toolbar - C:\Program Files (x86)\DVDVideoSoft\tbDVDV.dll [2010-03-09 2355224] {828DC97A-2277-4E10-92A9-4907FA0922A9} - buenosearch Toolbar - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\buenosearchTlbr.dll [2013-11-08 297368] {7e8cd3ea-a4d1-48f5-9fae-c8fe18e94ee6} - Music Toolbar (Dist. by Bandoo Media, Inc.) - C:\PROGRA~2\MUSICT~1\Datamngr\SRTOOL~3\IE\searchresultsDx.dll [2013-06-07 89288] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-27 2096424] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-09-02 171520] "SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-03-23 487424] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 162328] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 386584] "Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 417304] "MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-08-12 1356240] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "HPADVISOR"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-07-15 1668664] "LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616] "Steam"=C:\Program Files (x86)\Steam\Steam.exe [2013-10-30 1820584] "RGSC"=C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064] "Google Update"=C:\Users\Kevin\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-28 107912] "Spotify"=C:\Users\Kevin\AppData\Roaming\Spotify\Spotify.exe [2012-12-24 9478320] "Facebook Update"=C:\Users\Kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-08-24 138096] "Spotify Web Helper"=C:\Users\Kevin\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2012-12-24 932528] "Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-01-08 18708224] "Driver Pro"=C:\Program Files (x86)\Driver Pro\DPLauncher.exe [2012-10-30 340512] "Software Informer"=C:\Program Files\Software Informer\softinfo.exe [2013-05-06 8206848] "FLV Player"=C:\Users\Kevin\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [2012-10-26 202752] "uTorrent"=C:\Users\Kevin\AppData\Roaming\uTorrent\uTorrent.exe [2014-10-30 1385808] "DAEMON Tools Pro Agent"=C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [2012-10-23 3108480] "Softonic for Windows"=C:\Users\Kevin\AppData\Local\Softonic\Softonic.exe [2014-05-26 4170224] "Yahoo! Search"=C:\Users\Kevin\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe [2014-10-28 533352] "CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-30 6501656] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "FlashPlayerUpdate"=C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_223_ActiveX.exe [2014-11-16 855216] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "QPService"=C:\Program Files (x86)\HP\QuickPlay\QPService.exe [2009-08-05 468264] "UCam_Menu"=C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2009-02-17 218408] "QlbCtrl.exe"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-06-24 320056] "UpdatePRCShortCut"=C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe [2009-05-19 222504] "Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2009-06-22 60464] "SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336] "HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576] "WirelessAssistant"=C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-07-23 498744] "GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040] "Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [2006-10-22 620152] "Adobe_ID0EYTHM"=C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE [2007-03-20 1884160] "BabylonToolbar"=C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.15.10\BabylonToolbarsrv.exe [2010-08-09 286720] "Babylon Client"=C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe [2010-08-10 3824056] "SSDMonitor"=C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2010-08-05 104408] ""= [] "APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720] "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2012-10-25 421888] "Browser companion helper"=C:\Program Files (x86)\BrowserCompanion\BCHelper.exe [2011-12-16 187696] "ApnUpdater"=C:\Program Files (x86)\Ask.com\Updater\Updater.exe [2011-05-17 395144] "mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [2014-07-22 748736] "IminentMessenger"=C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [2014-01-07 884784] "Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176] "ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2014-11-21 2039192] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Adobe Acrobat Snelle start.lnk - C:\Windows\Installer\{AC76BA86-1040-7D00-7760-000000000003}\_SC_Acrobat.exe Adobe Reader Synchronizer.lnk - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe Snagit 10.lnk - C:\Program Files (x86)\TechSmith\Snagit 10\Snagit32.exe C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup OneNote 2007 Schermopname en Snel starten.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE tcbhn.lnk - C:\Users\Kevin\AppData\Roaming\BrowserCompanion\tcbhn.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\PROGRA~3\Wincert\WIN64C~1.DLL C:\PROGRA~2\MUSICT~1\Datamngr\x64\mgrldr.dll C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2011-02-11 272896] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2009-09-02 52272] "UPB:{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"= [] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "WallpaperStyle"=2 "DisableLockWorkstation"=0 "DisableTaskMgr"=0 "DisableChangePassword"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "HideFastUserSwitching"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "MSVideo8"=VfWWDM32.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "aux2"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "aux3"=wdmaud.drv "wave5"=wdmaud.drv "midi5"=wdmaud.drv "mixer5"=wdmaud.drv "aux4"=wdmaud.drv "wave6"=wdmaud.drv "midi6"=wdmaud.drv "mixer6"=wdmaud.drv "aux5"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS3\Dreamweaver.exe","%1" ======List of files/folders created in the last 1 month====== 2014-11-30 22:53:13 ----A---- C:\Windows\system32\drivers\{44a99463-0ff3-4b62-9d3c-802722bf3043}w64.sys 2014-11-30 22:44:57 ----N---- C:\bootsqm.dat 2014-11-23 16:57:59 ----D---- C:\ProgramData\dl159 2014-11-16 11:35:26 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe 2014-11-09 21:04:34 ----D---- C:\ProgramData\dtdata 2014-11-02 17:36:03 ----D---- C:\Program Files\CCleaner 2014-11-02 16:57:29 ----D---- C:\Users\Kevin\AppData\Roaming\BRT ======List of files/folders modified in the last 1 month====== 2014-11-30 23:04:34 ----D---- C:\Program Files\trend micro 2014-11-30 23:04:29 ----D---- C:\Users\Kevin\AppData\Roaming\uTorrent 2014-11-30 23:01:57 ----A---- C:\Windows\win.ini 2014-11-30 22:59:48 ----D---- C:\Windows\system32\config 2014-11-30 22:58:55 ----SHD---- C:\Windows\Installer 2014-11-30 22:58:55 ----D---- C:\Windows\Temp 2014-11-30 22:58:54 ----SHD---- C:\Config.Msi 2014-11-30 22:58:09 ----D---- C:\Users\Kevin\AppData\Roaming\Software Informer 2014-11-30 22:55:44 ----D---- C:\Windows\System32 2014-11-30 22:55:44 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-11-30 22:53:39 ----D---- C:\Windows\inf 2014-11-30 22:53:13 ----D---- C:\Windows\system32\drivers 2014-11-30 22:52:59 ----D---- C:\Program Files (x86)\glindorus 2014-11-30 22:50:07 ----A---- C:\ProgramData\HPWALog.txt 2014-11-30 22:49:39 ----D---- C:\Program Files (x86)\Steam 2014-11-30 22:48:34 ----A---- C:\ProgramData\hpqp.ini 2014-11-30 22:48:24 ----D---- C:\Users\Kevin\AppData\Roaming\Spotify 2014-11-30 22:47:46 ----D---- C:\ProgramData\Babylon 2014-11-30 22:47:45 ----D---- C:\ProgramData\80810f5c-7b66-4b02-af93-03f2b7680a45 2014-11-30 22:47:37 ----HD---- C:\ProgramData 2014-11-30 22:47:02 ----D---- C:\Users\Kevin\AppData\Roaming\BrowserCompanion 2014-11-30 22:45:35 ----D---- C:\Program Files (x86)\Mobogenie3 2014-11-30 22:45:34 ----D---- C:\Windows 2014-11-23 20:36:20 ----AD---- C:\ProgramData\Temp 2014-11-23 20:34:15 ----D---- C:\Users\Kevin\AppData\Roaming\Skype 2014-11-23 18:05:12 ----D---- C:\Windows\system32\catroot 2014-11-23 17:37:07 ----SHD---- C:\System Volume Information 2014-11-23 17:18:43 ----D---- C:\Program Files (x86) 2014-11-23 17:09:34 ----D---- C:\Windows\system32\Tasks 2014-11-23 17:09:12 ----D---- C:\Windows\Tasks 2014-11-23 16:58:26 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2014-11-19 18:37:41 ----D---- C:\Windows\SysWOW64 2014-11-19 18:37:21 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe 2014-11-04 07:23:54 ----D---- C:\Windows\system32\catroot2 2014-11-02 18:23:48 ----D---- C:\Program Files (x86)\Google 2014-11-02 17:54:38 ----D---- C:\Windows\system32\NDF 2014-11-02 17:50:06 ----D---- C:\Users\Kevin\AppData\Roaming\DAEMON Tools Pro 2014-11-02 17:49:08 ----D---- C:\Windows\Panther 2014-11-02 17:49:08 ----D---- C:\Windows\ModemLogs 2014-11-02 17:49:08 ----D---- C:\Windows\Minidump 2014-11-02 17:49:08 ----D---- C:\Windows\Logs 2014-11-02 17:49:08 ----D---- C:\Windows\debug 2014-11-02 17:36:03 ----RD---- C:\Program Files 2014-11-01 11:17:28 ----D---- C:\Windows\system32\DriverStore 2014-11-01 11:16:19 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2014-11-01 11:16:19 ----D---- C:\Program Files (x86)\Mozilla Firefox 2014-10-31 08:16:55 ----D---- C:\Program Files (x86)\Optimizer Pro ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-06-18 247216] R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-02-16 283200] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-09-22 1484800] R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 18432] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-02-11 10628640] R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2009-05-26 138752] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392] R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-03-23 505344] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-05-27 320560] S1 rnprmzwb;rnprmzwb; \??\C:\Windows\system32\drivers\rnprmzwb.sys [] S2 Ca1528av;SPCA1528 Video Camera Service; C:\Windows\System32\Drivers\Ca1528av.sys [] S3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880] S3 androidusb;ADB Interface Driver; C:\Windows\System32\Drivers\androidusb.sys [2010-10-18 38424] S3 Bulk1528;SPCA1528 Still Camera Service; C:\Windows\System32\Drivers\Bulk1528.sys [] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 48488] S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2008-12-13 116864] S3 hwusbfake;Huawei DataCard USB Fake; C:\Windows\system32\DRIVERS\ewusbfake.sys [2008-12-30 116224] S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368] S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-06-18 139616] S3 nmwcdcjx64;Nokia USB Port; C:\Windows\system32\drivers\nmwcdcjx64.sys [2007-06-28 17408] S3 nmwcdcmx64;Nokia USB Modem; C:\Windows\system32\drivers\nmwcdcmx64.sys [2007-06-28 17408] S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys [2008-05-02 23552] S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\nmwcdx64.sys [2007-06-28 173056] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-06-24 216576] S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys [] S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2009-10-10 109056] S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864] S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312] S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864] S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys [] S3 usbser;Nokia USB Serial Port; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768] S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltx64j.sys [2008-05-02 8704] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952] R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe [2009-03-02 89600] R2 APNMCP;Ask-updateservice; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-10-30 166296] R2 Bandoo Coordinator;Bandoo Coordinator; C:\Program Files (x86)\Bandoo\Bandoo.exe [2011-12-14 2051472] R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376] R2 DefaultTabSearch;DefaultTabSearch; C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe [2013-10-07 573952] R2 DefaultTabUpdate;DefaultTabUpdate; C:\Users\Kevin\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe [2013-12-03 107520] R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2009-07-09 124928] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728] R2 MaintainerSvc2.13.426751;MaintainerSvc2.13.426751; C:\ProgramData\80810f5c-7b66-4b02-af93-03f2b7680a45\maintainer.exe [2014-11-30 123680] R2 MgAssistService;MgAssist Service; C:\Program Files (x86)\Mobogenie\MgAssist.exe [2014-07-22 105664] R2 MobogenieService;MobogenieService; C:\Program Files (x86)\Mobogenie3\MobogenieService.exe [2014-11-20 116928] R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192] R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [2010-08-05 583640] R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-29 76888] R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-01-21 247152] R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648] R2 SProtection;SProtection; C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe [2014-11-09 3550880] R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe [2010-03-23 247808] R2 Update glindorus;Update glindorus; C:\Program Files (x86)\glindorus\updateglindorus.exe [2014-11-30 526112] R2 Util glindorus;Util glindorus; C:\Program Files (x86)\glindorus\bin\utilglindorus.exe [2014-11-30 526112] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096] R3 Com4QLBEx;Com4QLBEx; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408] R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-05-02 654848] R3 hpqwmiex;hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-10 68608] S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-28 107912] S2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-08-12 23808] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536] S3 Adobe Version Cue CS3;Adobe Version Cue CS3 {nl_NL} ; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [2007-03-20 153792] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-23 267440] S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376] S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840] S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2013-12-17 227904] S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072] S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-10 68608] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-28 107912] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408] S3 NisSrv;Microsoft Netwerkinspectie; c:\Program Files\Microsoft Security Client\NisSrv.exe [] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-03-21 489256] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-18 1255736] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] -----------------EOF-----------------