Ga naar inhoud

Aanbevolen berichten

Geplaatst:

Hallo,

Ik heb nu 2 á 3 jaar een Dell laptop, werkte altijd goed..niks op aan te merken. Maar de laatste tijd is het ding velen malen trager dan zou moeten. Sinds vandaag heb ik ook een heel irritante pieptoon bij elke toetsaanslag, ik heb al overal op internet rondgekeken hoe ik dit weg krijg, maar wat bij anderen wel werkt..werkt bij mij dus niet. [Kan die pieptoon misschien komen omdat mijn accu vervangen dient te worden?]

Verder zit het ding vol met Malware en virussen heb ik het idee.. al heel veel opschoningsprogramma's geprobeerd.

Ik ben eraan het denken om mijn laptop gewoon helemaal leeg te gooien, ik heb hier echter geen ervaring mee.

Hoe kan ik dit het beste doen?

Want volgens mij ben ik dan ook word, excel etc. kwijt.. maar dit zou ik er via de productsleutel op die sticker onderop mijn laptop gewoon weer op kunnen zetten lijkt me??

Zijn dan ook meteen de virussen en dergelijke eraf?

Mvg,

Nick

  • Reacties 24
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Geplaatste afbeeldingen

Geplaatst:

Eerst eens even kijken of we iets aan die malware kunnen doen ?

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Bekijk ook de instructievideo.

Geplaatst:

Logfile of random's system information tool 1.09 (written by random/random)

Run by Nicky at 2013-12-27 13:16:33

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 622 GB (89%) free of 695 GB

Total RAM: 8086 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:21:05, on 27-12-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE

C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe

C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe

C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe

C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe

C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe

C:\Program Files (x86)\Skype\Phone\Skype.exe

C:\Users\Nicky\AppData\Roaming\Movdap\WebCakeDesktop.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Users\Nicky\Qtrax\Player\Notification.exe

C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe

C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe

C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe

C:\Program Files (x86)\Ask.com\Updater\Updater.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe

C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Nero\SyncUP\Nero.AndroidServer.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files\trend micro\Nicky.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\8.5\ytdToolbarIE.dll

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: WebCake Layers - {2A5A2A90-3B30-4E6E-A955-2F232C6EF517} - C:\Program Files (x86)\Tepfel\WebCakeIEClient.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120626224250.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: DealPly Shopping - {9cf699ca-2174-4ed8-bec1-ba82095edce0} - C:\Program Files (x86)\DealPly\DealPlyIE.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

O2 - BHO: DataMngr - {B939CF93-F2CB-443d-956C-DC523D85C9DB} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\BROWSE~1.DLL

O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.22.0\bh\delta.dll

O2 - BHO: Wincore Mediabar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll

O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\8.5\ytdToolbarIE.dll

O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)

O3 - Toolbar: Wincore Mediabar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll

O3 - Toolbar: Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.22.0\deltaTlbr.dll

O3 - Toolbar: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\8.5\ytdToolbarIE.dll

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

O4 - HKLM\..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe

O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"

O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"

O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [NeroLauncher] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe 900

O4 - HKLM\..\Run: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"

O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\DATAMN~1.EXE

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [searchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"

O4 - HKCU\..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe

O4 - HKCU\..\Run: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent

O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

O4 - HKCU\..\Run: [WebCake Desktop] C:\Users\Nicky\AppData\Roaming\Movdap\WebCakeDesktop.exe

O4 - HKCU\..\Run: [NTRedirect] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Nicky\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run

O4 - HKCU\..\Run: [QtraxNotification] C:\Users\Nicky\Qtrax\Player\Notification.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-21-1882776687-2153821112-904029361-1000\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')

O4 - HKUS\S-1-5-21-1882776687-2153821112-904029361-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')

O4 - Startup: MyPC Backup.lnk = C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - AppInit_DLLs: c:\progra~3\bitguard\271832~1.68\{c16c1~1\bitguard.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe

O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe

O23 - Service: Computer Backup (MyPC Backup) (BackupStack) - Just Develop It - C:\Program Files (x86)\MyPC Backup\BackupStack.exe

O23 - Service: BitGuard - Unknown owner - C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe

O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel® Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

O23 - Service: DealPly Live-service (dealplylive) (dealplylive) - DealPly Technologies Ltd - C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe

O23 - Service: DealPly Live-service (dealplylivem) (dealplylivem) - DealPly Technologies Ltd - C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\mcafee\msc\mcawfwk.exe

O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe

O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe

O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)

O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe

O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe

O23 - Service: Intel® Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel® Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: WebCakeUpdater - cake bake - C:\Program Files (x86)\Movdap\WBDesktop.Updater.1.0.0.16.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 19910 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\WLANExt.exe 29388704

\??\C:\Windows\system32\conhost.exe "1231794320-1449714187130021759562828755102423157418788043581712988677-354652688

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"

C:\Windows\system32\nvvsvc.exe -session -first

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"

"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"

"C:\Program Files (x86)\MyPC Backup\BackupStack.exe"

C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe

"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"

"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"

"C:\Windows\system32\mfevtps.exe"

"C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe" SERVICE

"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"

"C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE"

"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files (x86)\Movdap\WBDesktop.Updater.1.0.0.16.exe"

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"

"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"

"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc

WLIDSvcM.exe 2876

C:\Windows\system32\wbem\unsecapp.exe -Embedding

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

"C:\Program Files (x86)\Nero\Update\NASvc.exe"

"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

"taskhost.exe"

taskeng.exe {E8544CBF-0759-4C60-9153-B5CE60939484}

"C:\Windows\system32\Dwm.exe"

"C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe" /PROTECT

"C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE" C:\Users\Nicky

C:\Windows\Explorer.EXE

"C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe" autolaunch

"C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE"

"C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe" -rem

"C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe"

"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"

"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"

"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s

"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX3

"C:\Windows\System32\igfxtray.exe"

"C:\Windows\System32\hkcmd.exe"

"C:\Windows\System32\igfxpers.exe"

"C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe"

"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray

"C:\Program Files\Dell\QuickSet\quickset.exe"

"C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe" -Quiet

C:\Windows\system32\wbem\unsecapp.exe -Embedding

StageRemoteService.exe

C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe

"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

"C:\Users\Nicky\AppData\Roaming\Movdap\WebCakeDesktop.exe"

"C:\Windows\SysWOW64\rundll32.exe" "C:\Users\Nicky\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run

"C:\Users\Nicky\Qtrax\Player\Notification.exe"

"C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe"

"C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

"C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"

"C:\Program Files\mcafee.com\agent\mcagent.exe" /runkey

"C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup

"C:\Program Files (x86)\Ask.com\Updater\Updater.exe"

"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -scheduled

"C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe"

"C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" DFROMKITAUTOUPDATE

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1812.0.601883294\1504291396" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0116 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2455 --ignored=" --type=renderer " /prefetch:822062411

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group4 pct:10c stable:r7 use_cacheable_ntp:1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --disable-accelerated-video-decode --channel="1812.1.1884911925\602558955" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group4 pct:10c stable:r7 use_cacheable_ntp:1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --disable-accelerated-video-decode --channel="1812.2.1073075862\2055053451" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group4 pct:10c stable:r7 use_cacheable_ntp:1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --disable-accelerated-video-decode --channel="1812.3.676696460\1297489986" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group4 pct:10c stable:r7 use_cacheable_ntp:1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --disable-accelerated-video-decode --channel="1812.5.1052119899\2017717328" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="1812.6.284545702\1920438135" --ppapi-flash-args --lang=nl --ignored=" --type=renderer " /prefetch:-632637702

"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe"

adb -sp 9033 fork-server server

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group4 pct:10c stable:r7 use_cacheable_ntp:1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --disable-accelerated-video-decode --channel="1812.17.377312967\674019501" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group4 pct:10c stable:r7 use_cacheable_ntp:1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --disable-accelerated-video-decode --channel="1812.19.435850782\1434926461" /prefetch:673131151

"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"

C:\Windows\system32\wbem\wmiprvse.exe

taskeng.exe {DB3931FC-CA9A-41CD-B922-8220732A8B7D}

"C:\Users\Nicky\Downloads\RSITx64 (2).exe"

"C:\Windows\system32\mspaint.exe"

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

"C:\Windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572

======Scheduled tasks folder======

C:\Windows\tasks\Dealply.job

C:\Windows\tasks\DealPlyLiveUpdateTaskMachineCore.job

C:\Windows\tasks\DealPlyLiveUpdateTaskMachineUA.job

C:\Windows\tasks\DSite.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job

C:\Windows\tasks\RegClean Pro_DEFAULT.job

C:\Windows\tasks\RegClean Pro_UPDATES.job

C:\Windows\tasks\SystemToolsDailyTest.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default

prefs.js - "keyword.URL" - "http://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=100000027&locale=nl_NL&apn_uid=AB767293-8680-4256-AF5A-849BB566CDBF&apn_ptnrs=U3&apn_sauid=7B84045C-9A6C-49E1-8C8E-258B41F3C928&apn_dtid=OSJ000YYNL&&q="

prefs.js - "browser.startup.homepage" - "http://nl.msn.com/?pc=UP97&ocid=UP97DHP"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]

"Description"=Adobe Shockwave Player

"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.9.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]

"Description"=McAfee Total Protection MIME Plugin

"Path"=c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]

"Description"=Office Authorization plug-in for NPAPI browsers

"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]

"Description"=Microsoft SharePoint Plug-in for Firefox

"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@ngm.nexoneu.com/NxGame]

"Description"=Nexon Game Controller

"Path"=C:\ProgramData\NexonEU\NGM\npNxGameeu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]

"Description"=NVIDIA stereo images plugin for Mozilla browsers

"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]

"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers

"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=3]

"Description"=DealPlyLive Update

"Path"=C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=9]

"Description"=DealPlyLive Update

"Path"=C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]

"Description"=McAfee Total Protection MIME Plugin

"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]

"Description"=Office Authorization plug-in for NPAPI browsers

"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\searchplugins\

aartemis.xml

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default\extensions\

{f80bc79c-ab5e-418a-a0be-3d9e66b4e976}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]

scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120626224250.dll [2012-05-25 94720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]

DataMngr - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\x64\BROWSE~1.DLL [2012-07-09 103896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-12-17 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]

Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2013-10-08 515848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}]

WebCake - C:\Program Files (x86)\Tepfel\WebCakeIEClient.dll [2013-08-10 202008]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-11-11 449512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]

scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120626224250.dll [2012-05-25 79776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9cf699ca-2174-4ed8-bec1-ba82095edce0}]

DealPly Shopping - C:\Program Files (x86)\DealPly\DealPlyIE.dll [2013-07-21 100384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]

DataMngr - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\BROWSE~1.DLL [2012-07-09 89048]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]

delta Helper Object - C:\Program Files (x86)\Delta\delta\1.8.22.0\bh\delta.dll [2013-07-23 311536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}]

Wincore Mediabar - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll [2011-12-27 87480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]

Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-10-17 1521352]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-11-11 155384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436a-86E4-9690573BEE8A}]

YTD Toolbar - C:\Program Files (x86)\YTD Toolbar\IE\8.5\ytdToolbarIE.dll [2013-12-13 1398080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]

Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2013-10-08 448776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{F3FEE66E-E034-436a-86E4-9690573BEE8A} - YTD Toolbar - C:\Program Files (x86)\YTD Toolbar\IE\8.5\ytdToolbarIE64.dll [2013-12-13 1996608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-10-17 1521352]

{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]

{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - Wincore Mediabar - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll [2011-12-27 87480]

{82E1477C-B154-48D3-9891-33D83C26BCD3} - Delta Toolbar - C:\Program Files (x86)\Delta\delta\1.8.22.0\deltaTlbr.dll [2013-07-23 300952]

{F3FEE66E-E034-436a-86E4-9690573BEE8A} - YTD Toolbar - C:\Program Files (x86)\YTD Toolbar\IE\8.5\ytdToolbarIE.dll [2013-12-13 1398080]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-12-17 2531624]

"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2011-02-19 6611048]

"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-01-18 2188904]

"NVHotkey"=C:\Windows\system32\nvHotkey.dll [2011-04-22 312936]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-05 167704]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-05 392472]

"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-05 416024]

"FreeFallProtection"=C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [2010-12-17 686704]

"IntelPAN"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2011-09-16 1935120]

"QuickSet"=c:\Program Files\Dell\QuickSet\QuickSet.exe [2011-01-25 4479648]

"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []

"Stage Remote"=C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe [2011-06-28 2022976]

"DellStage"=C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [2011-04-30 2055016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"KPeerNexonEU"=C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe [2011-12-21 438272]

"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2013-12-04 1823656]

"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14 20584608]

"WebCake Desktop"=C:\Users\Nicky\AppData\Roaming\Movdap\WebCakeDesktop.exe [2013-08-15 50968]

"NTRedirect"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]

"QtraxNotification"=C:\Users\Nicky\Qtrax\Player\Notification.exe [2013-08-11 118568]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2013-09-03 40312]

"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

"Dell Webcam Central"=C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2011-04-13 503942]

"Dell DataSafe Online"=C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [2010-08-26 1117528]

"RoxWatchTray"=C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [2010-11-25 240112]

"Desktop Disc Tool"=C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [2010-11-17 514544]

"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2013-01-14 1534504]

"NeroLauncher"=C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe [2012-08-21 67496]

"AccuWeatherWidget"=C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [2011-04-30 885760]

"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]

"ApnUpdater"=C:\Program Files (x86)\Ask.com\Updater\Updater.exe [2012-10-17 1573576]

"DATAMNGR"=C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\DATAMN~1.EXE []

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

""= []

"SearchSettings"=C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [2013-12-13 1383232]

C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

MyPC Backup.lnk - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="c:\progra~3\bitguard\271832~1.68\{c16c1~1\loader.dll c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll c:\windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2011-07-20 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=0

"ConsentPromptBehaviorUser"=3

"EnableLUA"=0

"EnableUIADesktopToggle"=0

"PromptOnSecureDesktop"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"MSVideo8"=VfWWDM32.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"VIDC.FPS1"=frapsv64.dll

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"aux2"=wdmaud.drv

"wave3"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

"aux3"=wdmaud.drv

"wave4"=wdmaud.drv

"midi4"=wdmaud.drv

"mixer4"=wdmaud.drv

"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-12-27 13:16:33 ----D---- C:\rsit

2013-12-27 13:16:33 ----D---- C:\Program Files\trend micro

2013-12-27 09:46:06 ----D---- C:\Program Files (x86)\Application Updater

2013-12-27 09:46:05 ----D---- C:\Program Files (x86)\YTD Toolbar

2013-12-21 13:10:44 ----D---- C:\Program Files (x86)\ESET

2013-12-18 08:09:53 ----D---- C:\ProgramData\WPM

2013-12-18 08:09:47 ----D---- C:\Users\Nicky\AppData\Roaming\aartemis

2013-12-18 08:09:33 ----D---- C:\Program Files (x86)\Mobogenie

2013-12-15 21:34:31 ----D---- C:\Users\Nicky\AppData\Roaming\AVG2014

2013-12-15 21:33:56 ----D---- C:\Users\Nicky\AppData\Roaming\TuneUp Software

2013-12-15 21:33:20 ----HD---- C:\$AVG

2013-12-15 21:33:19 ----D---- C:\ProgramData\AVG2014

2013-12-15 21:30:47 ----D---- C:\ProgramData\MFAData

2013-12-15 16:30:40 ----D---- C:\Users\Nicky\AppData\Roaming\AVG

2013-12-15 16:30:24 ----D---- C:\Program Files (x86)\AVG

2013-12-15 16:30:00 ----D---- C:\ProgramData\AVG

2013-12-15 16:29:51 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

2013-12-15 16:29:51 ----HD---- C:\ProgramData\Common Files

2013-12-08 22:19:03 ----D---- C:\ProgramData\3228

2013-12-06 11:17:56 ----D---- C:\Program Files\Adblock Plus for IE

2013-12-06 11:17:52 ----D---- C:\ProgramData\Package Cache

2013-12-04 09:50:03 ----A---- C:\Windows\system32\IEUDINIT.EXE

2013-12-04 09:45:23 ----A---- C:\Windows\SYSWOW64\elshyph.dll

2013-12-04 09:45:23 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\wininet.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\wextract.exe

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\webcheck.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\vbscript.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\url.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\pngfilt.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\occache.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\msrating.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\msls31.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\mshtmler.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\mshta.exe

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\licmgr10.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\jsIntl.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\jscript.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\inseng.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\imgutil.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\iexpress.exe

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\ieui.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\iesysprep.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\iesetup.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\iernonce.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\iepeers.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\icardie.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

2013-12-04 09:45:15 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\wininet.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\wextract.exe

2013-12-04 09:45:15 ----A---- C:\Windows\system32\webcheck.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\vbscript.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\urlmon.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\url.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\SetIEInstalledDate.exe

2013-12-04 09:45:15 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2013-12-04 09:45:15 ----A---- C:\Windows\system32\pngfilt.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\occache.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\msrating.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\msls31.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\mshtmlmedia.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\mshtmler.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\mshtmled.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\MshtmlDac.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\mshtml.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\mshta.exe

2013-12-04 09:45:15 ----A---- C:\Windows\system32\msfeedssync.exe

2013-12-04 09:45:15 ----A---- C:\Windows\system32\msfeedsbs.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\msfeeds.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\licmgr10.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\jsproxy.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\jsIntl.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\jscript9diag.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\jscript9.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\jscript.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\inseng.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\imgutil.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\iexpress.exe

2013-12-04 09:45:15 ----A---- C:\Windows\system32\ieUnatt.exe

2013-12-04 09:45:15 ----A---- C:\Windows\system32\ieui.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\iesysprep.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\iesetup.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\iertutil.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\iernonce.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\iepeers.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\ieframe.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\ieetwproxystub.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\ieetwcollector.exe

2013-12-04 09:45:15 ----A---- C:\Windows\system32\iedkcs32.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\ieapfltr.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\ieapfltr.dat

2013-12-04 09:45:15 ----A---- C:\Windows\system32\IEAdvpack.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\ie4uinit.exe

2013-12-04 09:45:15 ----A---- C:\Windows\system32\icardie.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\elshyph.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\dxtrans.dll

2013-12-04 09:45:15 ----A---- C:\Windows\system32\dxtmsft.dll

======List of files/folders modified in the last 1 month======

2013-12-27 13:19:02 ----D---- C:\Windows\Temp

2013-12-27 13:18:10 ----D---- C:\Users\Nicky\AppData\Roaming\Movdap

2013-12-27 13:16:33 ----D---- C:\Program Files

2013-12-27 13:14:02 ----D---- C:\Users\Nicky\AppData\Roaming\Skype

2013-12-27 10:19:08 ----D---- C:\Windows\System32

2013-12-27 10:19:08 ----D---- C:\Windows\inf

2013-12-27 10:19:08 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-12-27 10:02:12 ----D---- C:\Windows\system32\config

2013-12-27 09:50:44 ----D---- C:\Windows\system32\Tasks

2013-12-27 09:46:12 ----SHD---- C:\Windows\Installer

2013-12-27 09:46:11 ----SHD---- C:\Config.Msi

2013-12-27 09:46:06 ----RD---- C:\Program Files (x86)

2013-12-27 09:45:57 ----D---- C:\Program Files (x86)\Steam

2013-12-27 09:44:18 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup

2013-12-27 09:41:56 ----A---- C:\Windows\SYSWOW64\log.txt

2013-12-27 09:39:34 ----D---- C:\ProgramData\NVIDIA

2013-12-27 09:38:48 ----D---- C:\Windows\SysWOW64

2013-12-27 09:38:08 ----D---- C:\Windows\Tasks

2013-12-27 09:38:07 ----D---- C:\Windows\system32\wfp

2013-12-27 09:38:07 ----D---- C:\Windows\system32\wbem

2013-12-27 09:38:05 ----D---- C:\Windows\servicing

2013-12-27 09:37:59 ----D---- C:\Windows\system32\drivers

2013-12-27 09:37:58 ----D---- C:\Windows\winsxs

2013-12-27 09:37:56 ----D---- C:\Windows

2013-12-27 09:35:50 ----D---- C:\Windows\SYSWOW64\wbem

2013-12-27 09:35:50 ----D---- C:\Windows\system32\DriverStore

2013-12-27 09:35:50 ----D---- C:\Program Files\Windows Media Player

2013-12-27 09:35:50 ----D---- C:\Program Files (x86)\Windows Media Player

2013-12-27 09:35:49 ----D---- C:\Windows\SYSWOW64\nl-NL

2013-12-27 09:35:49 ----D---- C:\Windows\system32\nl-NL

2013-12-27 09:35:49 ----D---- C:\Windows\system32\catroot2

2013-12-27 09:35:49 ----D---- C:\Windows\rescache

2013-12-27 09:35:49 ----D---- C:\Windows\ehome

2013-12-27 09:35:49 ----D---- C:\Windows\AppPatch

2013-12-27 09:35:49 ----D---- C:\Program Files\Windows Photo Viewer

2013-12-27 09:35:49 ----D---- C:\Program Files\Windows Defender

2013-12-27 09:35:49 ----D---- C:\Program Files\Internet Explorer

2013-12-27 09:35:49 ----D---- C:\Program Files (x86)\Windows Defender

2013-12-27 09:35:49 ----D---- C:\Program Files (x86)\Internet Explorer

2013-12-27 09:34:35 ----D---- C:\Windows\system32\NDF

2013-12-27 09:34:31 ----D---- C:\Windows\system32\CodeIntegrity

2013-12-27 09:34:05 ----D---- C:\Windows\AppCompat

2013-12-27 09:34:05 ----D---- C:\Users\Nicky\AppData\Roaming\Tepfel

2013-12-27 09:34:03 ----D---- C:\Users\Nicky\AppData\Roaming\File Scout

2013-12-27 09:33:48 ----HDC---- C:\ProgramData\{6F1B3060-90C7-4F21-AFFB-07B6150C73EA}

2013-12-27 09:33:46 ----D---- C:\ProgramData\Microsoft Help

2013-12-27 09:33:45 ----D---- C:\ProgramData\Intel

2013-12-27 09:33:44 ----HD---- C:\ProgramData

2013-12-27 09:33:44 ----D---- C:\ProgramData\BitGuard

2013-12-27 09:33:44 ----D---- C:\Program Files\NVIDIA Corporation

2013-12-27 09:33:41 ----D---- C:\Program Files (x86)\Yontoo

2013-12-27 09:33:41 ----D---- C:\Program Files (x86)\Tepfel

2013-12-27 09:33:39 ----D---- C:\Program Files (x86)\MyPC Backup

2013-12-27 09:33:39 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service

2013-12-27 09:33:39 ----D---- C:\Program Files (x86)\Mozilla Firefox

2013-12-27 09:33:38 ----D---- C:\Program Files (x86)\Movdap

2013-12-27 09:33:24 ----D---- C:\Program Files (x86)\Common Files

2013-12-27 09:33:23 ----D---- C:\Program Files (x86)\Advanced System Protector

2013-12-27 09:31:07 ----D---- C:\Windows\registration

2013-12-27 09:31:06 ----D---- C:\Zylon Gaming

2013-12-27 09:30:26 ----D---- C:\Windows\Web

2013-12-27 09:30:26 ----D---- C:\Windows\Vss

2013-12-27 09:30:26 ----D---- C:\Windows\SYSWOW64\XPSViewer

2013-12-27 09:30:23 ----D---- C:\Windows\SYSWOW64\winrm

2013-12-27 09:30:22 ----D---- C:\Windows\SYSWOW64\WindowsPowerShell

2013-12-27 09:30:22 ----D---- C:\Windows\SYSWOW64\wdi

2013-12-27 09:30:22 ----D---- C:\Windows\SYSWOW64\WCN

2013-12-27 09:30:20 ----D---- C:\Windows\SYSWOW64\spp

2013-12-27 09:30:20 ----D---- C:\Windows\SYSWOW64\Speech

2013-12-27 09:30:20 ----D---- C:\Windows\SYSWOW64\slmgr

2013-12-27 09:30:18 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts

2013-12-27 09:30:15 ----D---- C:\Windows\SYSWOW64\MUI

2013-12-27 09:30:12 ----D---- C:\Windows\SYSWOW64\migwiz

2013-12-27 09:30:12 ----D---- C:\Windows\SYSWOW64\migration

2013-12-27 09:30:11 ----D---- C:\Windows\SYSWOW64\Macromed

2013-12-27 09:30:10 ----D---- C:\Windows\SYSWOW64\InstallShield

2013-12-27 09:30:10 ----D---- C:\Windows\SYSWOW64\IME

2013-12-27 09:30:06 ----D---- C:\Windows\SYSWOW64\DriverStore

2013-12-27 09:30:06 ----D---- C:\Windows\SYSWOW64\drivers

2013-12-27 09:30:06 ----D---- C:\Windows\SYSWOW64\Dism

2013-12-27 09:30:04 ----D---- C:\Windows\SYSWOW64\com

2013-12-27 09:30:02 ----D---- C:\Windows\SYSWOW64\Adobe

2013-12-27 09:29:58 ----D---- C:\Windows\system32\winrm

2013-12-27 09:29:57 ----D---- C:\Windows\system32\WindowsPowerShell

2013-12-27 09:29:57 ----D---- C:\Windows\system32\WinBioPlugIns

2013-12-27 09:29:55 ----D---- C:\Windows\system32\WCN

2013-12-27 09:29:50 ----D---- C:\Windows\system32\sysprep

2013-12-27 09:29:48 ----D---- C:\Windows\system32\SRSLabs

2013-12-27 09:29:48 ----D---- C:\Windows\system32\spp

2013-12-27 09:29:48 ----D---- C:\Windows\system32\spool

2013-12-27 09:29:47 ----D---- C:\Windows\system32\Speech

2013-12-27 09:29:47 ----D---- C:\Windows\system32\SMI

2013-12-27 09:29:47 ----D---- C:\Windows\system32\slmgr

2013-12-27 09:29:42 ----D---- C:\Windows\system32\Printing_Admin_Scripts

2013-12-27 09:29:41 ----D---- C:\Windows\system32\oobe

2013-12-27 09:29:34 ----D---- C:\Windows\system32\MUI

2013-12-27 09:29:29 ----D---- C:\Windows\system32\migwiz

2013-12-27 09:29:28 ----SD---- C:\Windows\system32\Microsoft

2013-12-27 09:29:28 ----D---- C:\Windows\system32\migration

2013-12-27 09:29:28 ----D---- C:\Windows\system32\Macromed

2013-12-27 09:29:25 ----D---- C:\Windows\system32\IME

2013-12-27 09:29:18 ----DC---- C:\Windows\system32\DRVSTORE

2013-12-27 09:29:16 ----D---- C:\Windows\system32\drivers\UMDF

2013-12-27 09:29:16 ----D---- C:\Windows\system32\Dism

2013-12-27 09:29:13 ----D---- C:\Windows\system32\com

2013-12-27 09:29:12 ----D---- C:\Windows\system32\catroot

2013-12-27 09:29:10 ----D---- C:\Windows\system32\Boot

2013-12-27 09:29:08 ----D---- C:\Windows\Speech

2013-12-27 09:29:08 ----D---- C:\Windows\Setup

2013-12-27 09:29:08 ----D---- C:\Windows\security

2013-12-27 09:29:08 ----D---- C:\Windows\schemas

2013-12-27 09:29:07 ----D---- C:\Windows\Resources

2013-12-27 09:29:07 ----D---- C:\Windows\PolicyDefinitions

2013-12-27 09:29:07 ----D---- C:\Windows\PLA

2013-12-27 09:29:06 ----D---- C:\Windows\Performance

2013-12-27 09:29:02 ----RSD---- C:\Windows\Media

2013-12-27 09:29:02 ----D---- C:\Windows\Microsoft.NET

2013-12-27 09:28:58 ----D---- C:\Windows\IME

2013-12-27 09:28:58 ----D---- C:\Windows\Help

2013-12-27 09:28:58 ----D---- C:\Windows\Globalization

2013-12-27 09:28:57 ----D---- C:\Windows\diagnostics

2013-12-27 09:28:56 ----D---- C:\Windows\Branding

2013-12-27 09:28:53 ----D---- C:\Windows\Boot

2013-12-27 09:28:52 ----RSD---- C:\Windows\assembly

2013-12-27 09:28:32 ----RD---- C:\Users

2013-12-27 09:28:30 ----D---- C:\Users\Nicky\AppData\Roaming\Systweak

2013-12-27 09:28:30 ----D---- C:\Users\Nicky\AppData\Roaming\Roxio

2013-12-27 09:28:30 ----D---- C:\Users\Nicky\AppData\Roaming\PCDr

2013-12-27 09:28:28 ----D---- C:\Users\Nicky\AppData\Roaming\Mozilla

2013-12-27 09:28:24 ----SD---- C:\Users\Nicky\AppData\Roaming\Microsoft

2013-12-27 09:28:23 ----D---- C:\Users\Nicky\AppData\Roaming\Macrovision

2013-12-27 09:28:23 ----D---- C:\Users\Nicky\AppData\Roaming\Macromedia

2013-12-27 09:28:23 ----D---- C:\Users\Nicky\AppData\Roaming\Intel

2013-12-27 09:28:22 ----D---- C:\Users\Nicky\AppData\Roaming\DSite

2013-12-27 09:28:22 ----D---- C:\Users\Nicky\AppData\Roaming\Dealply

2013-12-27 09:28:22 ----D---- C:\Users\Nicky\AppData\Roaming\Creative

2013-12-27 09:28:22 ----D---- C:\Users\Nicky\AppData\Roaming\BabSolution

2013-12-27 09:28:22 ----D---- C:\Users\Nicky\AppData\Roaming\Adobe

2013-12-27 09:26:50 ----D---- C:\ProgramData\Uninstall

2013-12-27 09:26:50 ----D---- C:\ProgramData\Temp

2013-12-27 09:26:50 ----D---- C:\ProgramData\Tarma Installer

2013-12-27 09:26:50 ----D---- C:\ProgramData\SweetIM

2013-12-27 09:26:50 ----D---- C:\ProgramData\Skype

2013-12-27 09:26:50 ----D---- C:\ProgramData\PCDr

2013-12-27 09:26:47 ----D---- C:\ProgramData\NexonEU

2013-12-27 09:26:47 ----D---- C:\ProgramData\Nero

2013-12-27 09:26:46 ----SD---- C:\ProgramData\Microsoft

2013-12-27 09:26:45 ----D---- C:\ProgramData\McAfee

2013-12-27 09:26:44 ----HD---- C:\ProgramData\CanonBJ

2013-12-27 09:26:44 ----D---- C:\ProgramData\Macrovision

2013-12-27 09:26:44 ----D---- C:\ProgramData\Dell

2013-12-27 09:26:43 ----D---- C:\ProgramData\ArcSoft

2013-12-27 09:26:43 ----D---- C:\ProgramData\Adobe

2013-12-27 09:26:43 ----D---- C:\Program Files\Windows Sidebar

2013-12-27 09:26:42 ----D---- C:\Program Files\Windows NT

2013-12-27 09:26:42 ----D---- C:\Program Files\Windows Mail

2013-12-27 09:26:42 ----D---- C:\Program Files\Windows Live

2013-12-27 09:26:42 ----D---- C:\Program Files\Windows Journal

2013-12-27 09:26:42 ----D---- C:\Program Files\TeamSpeak 3 Client

2013-12-27 09:26:41 ----D---- C:\Program Files\Synaptics

2013-12-27 09:26:41 ----D---- C:\Program Files\STMicroelectronics

2013-12-27 09:26:41 ----D---- C:\Program Files\Roxio

2013-12-27 09:26:41 ----D---- C:\Program Files\Reference Assemblies

2013-12-27 09:26:40 ----D---- C:\Program Files\Realtek

2013-12-27 09:26:40 ----D---- C:\Program Files\MSBuild

2013-12-27 09:26:40 ----D---- C:\Program Files\Microsoft Silverlight

2013-12-27 09:26:39 ----D---- C:\Program Files\Microsoft Office

2013-12-27 09:26:39 ----D---- C:\Program Files\Microsoft Games

2013-12-27 09:26:38 ----D---- C:\Program Files\mcafee

2013-12-27 09:26:34 ----D---- C:\Program Files\mcafee.com

2013-12-27 09:26:34 ----D---- C:\Program Files\Java

2013-12-27 09:26:32 ----D---- C:\Program Files\Intel

2013-12-27 09:26:32 ----D---- C:\Program Files\DVD Maker

2013-12-27 09:26:31 ----D---- C:\Program Files\Dell Support Center

2013-12-27 09:26:31 ----D---- C:\Program Files\Dell Inc

2013-12-27 09:26:31 ----D---- C:\Program Files\Dell

2013-12-27 09:26:31 ----D---- C:\Program Files\Common Files\System

2013-12-27 09:26:31 ----D---- C:\Program Files\Common Files\SpeechEngines

2013-12-27 09:26:31 ----D---- C:\Program Files\Common Files\Microsoft Shared

2013-12-27 09:26:31 ----D---- C:\Program Files\Common Files

2013-12-27 09:26:30 ----D---- C:\Program Files\Common Files\mcafee

2013-12-27 09:26:28 ----D---- C:\Program Files\Common Files\Intel

2013-12-27 09:26:26 ----D---- C:\Program Files (x86)\Windows Sidebar

2013-12-27 09:26:26 ----D---- C:\Program Files (x86)\Windows Photo Viewer

2013-12-27 09:26:26 ----D---- C:\Program Files (x86)\Windows NT

2013-12-27 09:26:25 ----D---- C:\Program Files (x86)\Windows Mail

2013-12-27 09:26:25 ----D---- C:\Program Files (x86)\Windows Live

2013-12-27 09:26:24 ----D---- C:\Program Files (x86)\SweetIM

2013-12-27 09:26:24 ----D---- C:\Program Files (x86)\STMicroelectronics

2013-12-27 09:26:23 ----RD---- C:\Program Files (x86)\Skype

2013-12-27 09:26:21 ----D---- C:\Program Files (x86)\Roxio

2013-12-27 09:26:21 ----D---- C:\Program Files (x86)\Reference Assemblies

2013-12-27 09:26:20 ----D---- C:\Program Files (x86)\Red Sky

2013-12-27 09:26:20 ----D---- C:\Program Files (x86)\REACTOR

2013-12-27 09:26:20 ----D---- C:\Program Files (x86)\OpenIt

2013-12-27 09:26:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation

2013-12-27 09:26:19 ----D---- C:\Program Files (x86)\Nero

2013-12-27 09:26:17 ----D---- C:\Program Files (x86)\MSBuild

2013-12-27 09:26:06 ----D---- C:\Program Files (x86)\Microsoft.NET

2013-12-27 09:26:06 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8

2013-12-27 09:26:06 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services

2013-12-27 09:26:06 ----D---- C:\Program Files (x86)\Microsoft Sync Framework

2013-12-27 09:26:06 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

2013-12-27 09:26:06 ----D---- C:\Program Files (x86)\Microsoft Silverlight

2013-12-27 09:26:06 ----D---- C:\Program Files (x86)\Microsoft

2013-12-27 09:26:05 ----D---- C:\Program Files (x86)\Microsoft Office

2013-12-27 09:26:00 ----D---- C:\Program Files (x86)\Microsoft Analysis Services

2013-12-27 09:26:00 ----D---- C:\Program Files (x86)\mcafee.com

2013-12-27 09:26:00 ----D---- C:\Program Files (x86)\McAfee

2013-12-27 09:25:59 ----D---- C:\Program Files (x86)\Java

2013-12-27 09:25:58 ----D---- C:\Program Files (x86)\Intel

2013-12-27 09:25:57 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2013-12-27 09:25:56 ----D---- C:\Program Files (x86)\iLivid

2013-12-27 09:25:56 ----D---- C:\Program Files (x86)\GreenTree Applications

2013-12-27 09:25:56 ----D---- C:\Program Files (x86)\Google

2013-12-27 09:25:54 ----D---- C:\Program Files (x86)\Delta

2013-12-27 09:25:53 ----D---- C:\Program Files (x86)\Dell

2013-12-27 09:25:49 ----D---- C:\Program Files (x86)\Dell Webcam

2013-12-27 09:25:49 ----D---- C:\Program Files (x86)\Dell Stage

2013-12-27 09:25:48 ----D---- C:\Program Files (x86)\DealPlyLive

2013-12-27 09:25:48 ----D---- C:\Program Files (x86)\Cyberlink

2013-12-27 09:25:48 ----D---- C:\Program Files (x86)\Creative Live! Cam

2013-12-27 09:25:48 ----D---- C:\Program Files (x86)\Creative

2013-12-27 09:25:44 ----D---- C:\Program Files (x86)\Cisco

2013-12-27 09:25:43 ----D---- C:\Program Files (x86)\CAE Report Generator

2013-12-27 09:25:43 ----D---- C:\Program Files (x86)\BearShare Applications

2013-12-27 09:25:43 ----D---- C:\Program Files (x86)\Ask.com

2013-12-27 09:25:42 ----D---- C:\Program Files (x86)\Adobe

2013-12-27 09:25:41 ----SHD---- C:\$RECYCLE.BIN

2013-12-27 09:25:41 ----RHD---- C:\MSOCache

2013-12-27 09:25:41 ----D---- C:\Nexon

2013-12-27 09:25:41 ----D---- C:\Drivers

2013-12-27 09:25:41 ----D---- C:\DELL

2013-12-27 09:22:18 ----SHD---- C:\System Volume Information

2013-12-24 08:09:38 ----D---- C:\Windows\Prefetch

2013-12-15 19:50:40 ----D---- C:\Windows\system32\MRT

2013-12-11 08:47:57 ----A---- C:\Windows\win.ini

2013-12-08 22:47:23 ----D---- C:\Windows\SYSWOW64\en-US

2013-12-08 22:47:23 ----D---- C:\Windows\system32\en-US

2013-12-08 22:47:23 ----D---- C:\Windows\Offline Web Pages

2013-12-08 22:47:23 ----D---- C:\Windows\Downloaded Program Files

2013-12-04 09:50:03 ----D---- C:\Windows\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-01-13 439320]

R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2013-02-19 771536]

R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2013-02-19 340216]

R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-04-22 25960]

R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]

R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2010-08-20 21616]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]

R3 Acceler;Accelerometer Service; C:\Windows\system32\DRIVERS\Accelern.sys [2010-12-13 27760]

R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtuele adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2011-09-15 299008]

R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2013-02-19 70112]

R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2011-01-20 176096]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-07-20 12287456]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-02-19 2748520]

R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-16 317440]

R3 MEIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]

R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2013-02-19 179280]

R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2013-02-19 309840]

R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2013-02-19 515968]

R3 NETwNs64;___ Intel® Wireless WiFi Link 5000 Series adapter stuurprogramma onder Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2011-09-18 8604672]

R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2011-02-10 82432]

R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2011-02-10 181760]

R3 qicflt;upper Device Filter Driver; C:\Windows\system32\DRIVERS\qicflt.sys [2010-07-13 29288]

R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-02-17 428136]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-12-17 1404464]

R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]

S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2011-09-15 299008]

S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []

S3 HipShieldK;McAfee Inc. HipShieldK; C:\Windows\system32\drivers\HipShieldK.sys [2012-04-20 196440]

S3 Impcd;Impcd; C:\Windows\system32\drivers\Impcd.sys [2010-02-27 158976]

S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2010-12-15 174168]

S3 libusb0;libusb-win32 - Kernel Driver 04/08/2011 1.2.4.0; C:\Windows\system32\DRIVERS\libusb0.sys [2011-05-17 44480]

S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys []

S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2013-02-19 106552]

S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\Windows\system32\drivers\nvstusb.sys [2010-12-12 121960]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]

S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2006-11-01 151656]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-09 65640]

R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]

R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-09-15 1166848]

R2 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2013-12-13 807800]

R2 BackupStack;Computer Backup (MyPC Backup); C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2013-07-01 32808]

R2 BitGuard;BitGuard; C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [2013-11-18 3780064]

R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-06-03 134928]

R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-09-16 1518352]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2010-12-21 325656]

R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]

R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]

R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]

R2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]

R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]

R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2013-02-19 241456]

R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2013-02-19 218760]

R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2013-02-19 182752]

R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]

R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]

R2 NOBU;Dell DataSafe Online; C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe [2010-08-26 2823000]

R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-04-22 993896]

R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-04-22 2009704]

R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-09-16 844560]

R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-09-22 1692480]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-04-21 378472]

R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]

R2 WebCakeUpdater;WebCakeUpdater; C:\Program Files (x86)\Movdap\WBDesktop.Updater.1.0.0.16.exe [2013-08-15 51992]

R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]

R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

S2 dealplylive;DealPly Live-service (dealplylive); C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-08-11 148000]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-19 136176]

S2 RoxWatch12;Roxio Hard Drive Watcher 12; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]

S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]

S3 dealplylivem;DealPly Live-service (dealplylivem); C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-08-11 148000]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-19 136176]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-12-04 111616]

S3 McAWFwk;McAfee Activation Service; c:\PROGRA~1\mcafee\msc\mcawfwk.exe [2011-03-09 224704]

S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2012-11-16 383608]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-03-09 30798512]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-18 119408]

S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-09-16 340240]

S3 npggsvc;nProtect GameGuard Service; C:\Windows\syswow64\GameMon.des [2011-08-07 3804120]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]

S3 RoxMediaDB12OEM;RoxMediaDB12OEM; C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]

S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-03-16 407336]

S3 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2010-11-09 74392]

S3 TurboBoost;Intel® Turbo Boost Technology Monitor 2.0; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-22 1255736]

S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Geplaatst:

Oeps ... hier is werk aan de winkel, deze PC barst van de rotzooi:

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  {F3FEE66E-E034-436a-86E4-9690573BEE8A};c
 C:\Program Files (x86)\YTD Toolbar;fs
 {00000000-6E41-4FD3-8538-502F5495E5FC};c
 C:\Program Files (x86)\Ask.com;fs
 {2A5A2A90-3B30-4E6E-A955-2F232C6EF517};c
 C:\Program Files (x86)\Tepfel;fs
 {9cf699ca-2174-4ed8-bec1-ba82095edce0};c
 C:\Program Files (x86)\DealPly;fs
 {B939CF93-F2CB-443d-956C-DC523D85C9DB};c
 {C1AF5FA5-852C-4C90-812E-A7F75E011D87};c
 C:\Program Files (x86)\Delta;fs
 {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c};c
 {D4027C7F-154A-4066-A1AD-4243D8127440};c
 {8dcb7100-df86-4384-8842-8fa844297b3f};c
 C:\Program Files (x86)\Microsoft\BingBar;fs
 {82E1477C-B154-48D3-9891-33D83C26BCD3};c
 ApnUpdater;s
 DATAMNGR;s
 SearchSettings;s
 C:\Program Files (x86)\Common Files\Spigot;fs
 WebCake Desktop;s
 C:\Program Files (x86)\MyPC Backup;fs
 Dealplylive;s
 Dealplylivem;s
 Npggsvc;s
 WebCakeUpdater;s
 C:\Program Files (x86)\Movdap;fs
 C:\Users\Nicky\AppData\Roaming\Movdap;fs
 C:\ProgramData\BitGuard;fs
 C:\Program Files (x86)\RegClean Pro;fs
 C:\Users\Nicky\AppData\Roaming\Tepfel;fs
 C:\Program Files (x86)\Application Updater;fs
 C:\Windows\tasks\Dealply.job;f
 C:\Program Files (x86)\BearShare Applications;fs
 C:\Program Files (x86)\Yontoo;fs
 C:\Users\Nicky\AppData\Roaming\Systweak;fs
 C:\Users\Nicky\AppData\Roaming\BabSolution;fs
 C:\Windows\tasks\DealPlyLiveUpdateTaskMachineCore.job;f
 C:\Windows\tasks\DealPlyLiveUpdateTaskMachineUA.job;f
 C:\Windows\tasks\DSite.job;f
 C:\Users\Nicky\AppData\Roaming\DSite;fs
 C:\Users\Nicky\AppData\Roaming\Dealply;fs
 C:\ProgramData\Tarma Installer;fs
 C:\ProgramData\SweetIM;fs
 C:\Windows\tasks\RegClean Pro_DEFAULT.job;f
 C:\Windows\tasks\RegClean Pro_UPDATES.job;f
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9cf699ca-2174-4ed8-bec1-ba82095edce0}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436a-86E4-9690573BEE8A}];r64
 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r64
 "WebCake Desktop"=-;r64
 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
 "ApnUpdater"=-;r64
 "DATAMNGR"=-;r64
 ""=-;r64
 "SearchSettings"=-;r64
 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
 "AppInit_DLLs"=-;r64
 C:\Program Files (x86)\Mobogenie;fs
 C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308};fs
 C:\ProgramData\3228;fs
  emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Do a Deep Scan

  • HijackThis Log

  • Shortcut Fix
  • IE Defaults
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Geplaatst:

Wanneer ik alles uitpakken doe gebeurt er daarna niks, ik zie daarna geen zoek.exe staan.. dus kan de tool niet starten. Wel laat mcafee iedere keer weten een trojaans paard te hebben verwijderd. maar als ik de stappen in je link volg kan ik mcafee niet uitschakelen, als ik realtime scannen doe.. er staat alleen dat men abbonement is verlopen, maar nergens zie ik uitschakelen.

- - - Updated - - -

het is een laptop by the way..zal geen verschil maken, maar denk zeg het toch maar even

Geplaatst:

Zoek.exe v5.0.0.0 Updated 23-December-2013

Tool run by Nicky on vr 27-12-2013 at 18:21:57,95.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Nicky\Downloads\zoek (11)\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

27-12-2013 18:25:30 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\MSXML 4.0 deleted successfully

C:\ProgramData\Babylon deleted successfully

C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted successfully

C:\Users\Nicky\AppData\Roaming\ijjigame deleted successfully

C:\Users\Nicky\AppData\Roaming\WinRAR deleted successfully

C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking deleted successfully

C:\Users\Nicky\AppData\Local\cache deleted successfully

C:\Users\Nicky\AppData\Local\PackageAware deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9cf699ca-2174-4ed8-bec1-ba82095edce0} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9cf699ca-2174-4ed8-bec1-ba82095edce0} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\SearchScopes\{A7715BDA-4904-467F-9D62-8962F6CB0640} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{9cf699ca-2174-4ed8-bec1-ba82095edce0} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9cf699ca-2174-4ed8-bec1-ba82095edce0} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{9cf699ca-2174-4ed8-bec1-ba82095edce0} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{B939CF93-F2CB-443d-956C-DC523D85C9DB} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{82E1477C-B154-48D3-9891-33D83C26BCD3} deleted successfully

==== Running Processes ======================

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe

C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe

C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe

C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe

C:\Users\Nicky\AppData\Roaming\Movdap\WebCakeDesktop.exe

C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe

C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe

C:\Users\Nicky\Qtrax\Player\Notification.exe

C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe

C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe

C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe

C:\Program Files (x86)\Ask.com\Updater\Updater.exe

C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Program Files (x86)\Movdap\WBDesktop.Updater.1.0.0.16.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE

C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE

C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe

C:\Users\Nicky\Downloads\zoek (11)\zoek.exe

C:\Windows\SysWOW64\cmd.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\SysWOW64\cmd.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Nero\Update\NASvc.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Windows\SysWOW64\cmd.exe

C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe

C:\Program Files (x86)\Nero\SyncUP\Nero.AndroidServer.exe

C:\Program Files (x86)\Nero\SyncUP\Nero.AndroidServer.exe

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dealplylive deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Dealplylive deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dealplylivem deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Dealplylivem deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Npggsvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Npggsvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WebCakeUpdater deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WebCakeUpdater deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\WebCakeUpdater deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WebCakeUpdater deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BackupStack deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BackupStack deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\application updater deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\application updater deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BitGuard deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BitGuard deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default

---- Lines ask.com removed from prefs.js ----

user_pref("browser.search.defaultengine", "Ask.com");

user_pref("browser.search.defaultenginename", "Ask.com");

---- FireFox user.js and prefs.js backups ----

user_27-12-2013_1835_.backup

prefs_27-12-2013_1835_.backup

ProfilePath: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

---- Lines yontoo removed from user.js ----

user_pref("extentions.y2layers.defaultEnableAppsList", "twittube,ezLooker,pagerage,buzzdock,toprelatedtopics,YontooNewOffers");

---- FireFox user.js and prefs.js backups ----

user_27-12-2013_1835_.backup

prefs_27-12-2013_1835_.backup

ProfilePath: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com

---- FireFox user.js and prefs.js backups ----

user_27-12-2013_1835_.backup

prefs_27-12-2013_1835_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"bProtector Start Page"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"bProtectorDefaultScope"=-

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9cf699ca-2174-4ed8-bec1-ba82095edce0}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436a-86E4-9690573BEE8A}]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"WebCake Desktop"=-

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"ApnUpdater"=-

"DATAMNGR"=-

""=-

"SearchSettings"=-

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

C:\ProgramData\BitGuard not found

C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} not found

C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} not found

C:\Users\Nicky\Desktop\Schoon uw register gratis op.lnk not found

C:\Program Files (x86)\YTD Toolbar deleted

C:\Program Files (x86)\Tepfel deleted

C:\Program Files (x86)\DealPly deleted

C:\Program Files (x86)\Delta deleted

C:\Program Files (x86)\RegClean Pro deleted

C:\Users\Nicky\AppData\Roaming\Tepfel deleted

C:\Program Files (x86)\Application Updater deleted

C:\Program Files (x86)\Yontoo deleted

C:\Users\Nicky\AppData\Roaming\Systweak deleted

C:\Users\Nicky\AppData\Roaming\DSite deleted

C:\Users\Nicky\AppData\Roaming\Dealply deleted

C:\ProgramData\Tarma Installer deleted

C:\ProgramData\SweetIM deleted

C:\Program Files (x86)\Mobogenie deleted

C:\ProgramData\3228 deleted

C:\Users\Nicky\daemonprocess.txt deleted

C:\PROGRA~2\iLivid deleted

C:\PROGRA~2\DealPlyLive deleted

C:\PROGRA~2\1ClickDownload deleted

C:\PROGRA~2\OpenIt deleted

C:\PROGRA~2\Red Sky deleted

C:\PROGRA~2\GreenTree Applications deleted

C:\PROGRA~2\SweetIM deleted

C:\search.sqlite deleted

C:\found.000 deleted

C:\found.001 deleted

C:\found.002 deleted

C:\found.003 deleted

C:\found.004 deleted

C:\found.005 deleted

C:\found.006 deleted

C:\Users\Nicky\AppData\Roaming\aartemis deleted

C:\Users\Nicky\AppData\Roaming\Babylon deleted

C:\Users\Nicky\AppData\Roaming\File Scout deleted

C:\Users\Nicky\AppData\Roaming\Delta deleted

C:\Users\Nicky\Music\Qtrax Media Library deleted

C:\ProgramData\Systweak deleted

C:\ProgramData\Ask deleted

C:\ProgramData\boost_interprocess deleted

C:\ProgramData\DealPlyLive deleted

C:\ProgramData\WPM deleted

C:\ProgramData\YTD Video Downloader deleted

C:\ProgramData\Package Cache deleted

C:\Users\Nicky\AppData\Local\Ilivid Player deleted

C:\Users\Nicky\AppData\Local\newhb2.crx deleted

C:\Users\Nicky\AppData\Local\BIT11CC.tmp deleted

C:\Users\Nicky\AppData\Local\BIT5B96.tmp deleted

C:\Users\Nicky\AppData\Local\BIT7E37.tmp deleted

C:\Users\Nicky\AppData\Local\CRE deleted

C:\Users\Nicky\AppData\Local\APN deleted

C:\Users\Nicky\AppData\Local\Programs deleted

C:\Users\Nicky\AppData\Local\BearShare deleted

C:\Users\Nicky\AppData\Local\avgchrome deleted

C:\Users\Nicky\AppData\Local\DownTango deleted

C:\Users\Nicky\AppData\Local\DealPlyLive deleted

C:\Users\Nicky\AppData\Local\Mobogenie deleted

C:\Users\wangzhisong\AppData\Local\Mobogenie deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector deleted

C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup deleted

C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk deleted

C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly deleted

C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard deleted

C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qtrax Player.lnk deleted

C:\Windows\SysNative\roboot64.exe deleted

C:\Windows\Tasks\Dealply.job deleted

C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job deleted

C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job deleted

C:\windows\SysNative\Tasks\Dealply deleted

C:\windows\SysNative\Tasks\DealPlyLiveUpdateTaskMachineCore deleted

C:\windows\SysNative\Tasks\DealPlyLiveUpdateTaskMachineUA deleted

C:\windows\SysNative\Tasks\DealPlyUpdate deleted

C:\Windows\SysNative\sasnative64.exe deleted

C:\windows\SysNative\Tasks\DSite deleted

C:\Users\Nicky\AppData\LocalLow\mediabarbs deleted

C:\Users\Nicky\AppData\LocalLow\Search Settings deleted

C:\Users\Nicky\AppData\LocalLow\AskToolbar deleted

C:\Users\Nicky\AppData\LocalLow\Delta deleted

C:\Users\Nicky\AppData\LocalLow\DataMngr deleted

C:\Users\Nicky\AppData\LocalLow\microsoft\silverlight\outofbrowser\index\portal.qtrax.com deleted

C:\Users\Nicky\AppData\LocalLow\Conduit deleted

C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\Application Updater deleted

C:\windows\SysNative\TASKS\Scheduled Update for Ask Toolbar deleted

C:\windows\SysNative\Tasks\Advanced System Protector_startup deleted

C:\windows\SysNative\Tasks\EPUpdater deleted

C:\windows\SysNative\tasks\QtraxPlayer deleted

C:\Windows\tasks\DSite.job deleted

C:\windows\SysNative\tasks\BitGuard deleted

C:\windows\SysNative\tasks\RegClean Pro deleted

C:\windows\SysNative\tasks\RegClean Pro_DEFAULT deleted

C:\windows\SysNative\tasks\RegClean Pro_UPDATES deleted

C:\Windows\tasks\RegClean Pro_DEFAULT.job deleted

C:\Windows\tasks\RegClean Pro_UPDATES.job deleted

C:\prefs.js deleted

C:\end deleted

C:\Users\wangzhisong deleted

C:\Windows\SysWow64\searchplugins deleted

C:\Windows\SysWow64\Extensions deleted

C:\Users\Nicky\Documents\Mobogenie deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default\Invalidprefs.js deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default\bprotector_extensions.sqlite deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default\bprotector_prefs.js deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\extensions\staged deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com\searchplugins\askcom.xml deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com\extensions\staged deleted

C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted

C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} deleted

C:\Windows\Installer\{7683B745-6060-41FD-AA75-0BBB383FEAD4} deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\extensions\plugin@yontoo.com deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\OneClickDownload@OneClickDownload.com deleted

"C:\Users\Nicky\AppData\Local\{3E8ED9D9-7446-4806-8AFC-56AF23F4D485}" deleted

"C:\Users\Nicky\AppData\Local\{9A6D986D-63DA-4373-914B-AC7C944BCF29}" deleted

"C:\Users\Nicky\AppData\Local\{B9F3B401-CEA2-4DA2-B8C5-82047C089837}" deleted

"C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default\extensions\ytd@mybrowserbar.com" deleted

"C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\extensions\ytd@mybrowserbar.com" deleted

"C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com\extensions\ytd@mybrowserbar.com" deleted

"C:\Program Files (x86)\MyPC Backup\AWSSDK.dll" deleted

"C:\Program Files (x86)\MyPC Backup\GetText.dll" deleted

"C:\Program Files (x86)\MyPC Backup\MPCBClient.dll" deleted

"C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe" deleted

"C:\Program Files (x86)\MyPC Backup\Shared Stack.dll" deleted

"C:\Program Files (x86)\Movdap\WBDesktop.Updater.1.0.0.16.exe" deleted

"C:\Users\Nicky\AppData\Roaming\Movdap\WebCakeDesktop.exe" deleted

"C:\PROGRA~2\Advanced System Protector\AdvancedSystemProtector.exe" deleted

"C:\PROGRA~2\Advanced System Protector\aspsys.dll" deleted

"C:\PROGRA~2\Advanced System Protector\Microsoft.Win32.TaskScheduler.DLL" deleted

"C:\PROGRA~2\Advanced System Protector\System.Data.SQLite.dll" deleted

"C:\PROGRA~2\Advanced System Protector\Xceed.Compression.dll" deleted

"C:\PROGRA~2\Advanced System Protector\Xceed.FileSystem.dll" deleted

"C:\PROGRA~2\Advanced System Protector\Xceed.Zip.dll" deleted

"C:\PROGRA~2\Movdap\WBDesktop.Updater.1.0.0.16.exe" deleted

"C:\PROGRA~2\MyPC Backup\AWSSDK.dll" deleted

"C:\PROGRA~2\MyPC Backup\GetText.dll" deleted

"C:\PROGRA~2\MyPC Backup\MPCBClient.dll" deleted

"C:\PROGRA~2\MyPC Backup\MyPC Backup.exe" deleted

"C:\PROGRA~2\MyPC Backup\Shared Stack.dll" deleted

"C:\Users\Nicky\AppData\Roaming\Movdap\WebCakeDesktop.exe" deleted

"C:\Program Files (x86)\Ask.com\Updater\Updater.exe" deleted

"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE" deleted

"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE" deleted

"C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth175.dll" deleted

"C:\Program Files (x86)\MyPC Backup\Database\mpcb_settings.db" not deleted

"C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll" deleted

"C:\Users\Nicky\AppData\Roaming\Movdap\dat\Desktop.OS.dll" deleted

"C:\Users\Nicky\AppData\Roaming\Movdap\dat\sqlite3.dll" deleted

"C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\x64\BrowserConnection.dll" deleted

"C:\PROGRA~2\BearShare Applications\MediaBar\Datamngr\x64\BrowserConnection.dll" deleted

"C:\PROGRA~2\MyPC Backup\Database\mpcb_settings.db" not deleted

"C:\PROGRA~2\MyPC Backup\x64\System.Data.SQLite.dll" deleted

"C:\PROGRA~2\Ask.com\Updater\Updater.exe" deleted

"C:\PROGRA~2\COMMON~1\Spigot\Search Settings\wth175.dll" deleted

"C:\Users\Nicky\AppData\Roaming\Movdap\dat\Desktop.OS.dll" deleted

"C:\Users\Nicky\AppData\Roaming\Movdap\dat\sqlite3.dll" deleted

"C:\Users\Nicky\Qtrax\Player\Notification.exe" deleted

"C:\Program Files (x86)\Ask.com" deleted

"C:\Program Files (x86)\Microsoft\BingBar" not deleted

"C:\Program Files (x86)\Common Files\Spigot" not deleted

"C:\Program Files (x86)\MyPC Backup" not deleted

"C:\Program Files (x86)\Movdap" not deleted

"C:\Users\Nicky\AppData\Roaming\Movdap" deleted

"C:\Program Files (x86)\BearShare Applications" not deleted

"C:\Users\Nicky\AppData\Roaming\BabSolution" deleted

"C:\PROGRA~2\BearShare Applications\MediaBar" not deleted

"C:\PROGRA~2\Advanced System Protector" not deleted

"C:\PROGRA~2\Movdap" not deleted

"C:\PROGRA~2\MyPC Backup" not deleted

"C:\PROGRA~2\Ask.com" deleted

"C:\PROGRA~2\COMMON~1\Spigot" not deleted

"C:\Users\Nicky\AppData\Roaming\Movdap" deleted

"C:\Users\Nicky\AppData\Roaming\BabSolution" deleted

"C:\Users\Nicky\Qtrax" deleted

"C:\Program Files (x86)\Ask.com\Updater" deleted

"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0" not deleted

"C:\Program Files (x86)\Common Files\Spigot\Search Settings" not deleted

"C:\Program Files (x86)\MyPC Backup\Database" not deleted

"C:\Program Files (x86)\MyPC Backup\x64" not deleted

"C:\Users\Nicky\AppData\Roaming\Movdap\dat" deleted

"C:\Program Files (x86)\BearShare Applications\MediaBar" not deleted

"C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr" not deleted

"C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\x64" not deleted

"C:\PROGRA~2\BearShare Applications\MediaBar\Datamngr" not deleted

"C:\PROGRA~2\BearShare Applications\MediaBar\Datamngr\x64" not deleted

"C:\PROGRA~2\MyPC Backup\Database" not deleted

"C:\PROGRA~2\MyPC Backup\x64" not deleted

"C:\PROGRA~2\Ask.com\Updater" deleted

"C:\PROGRA~2\COMMON~1\Spigot\Search Settings" not deleted

"C:\Users\Nicky\AppData\Roaming\Movdap\dat" deleted

"C:\Users\Nicky\Qtrax\Player" deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)

Memory (RAM): 8087 MB

CPU Info: Intel® Core i7-2670QM CPU @ 2.20GHz

CPU Speed: 2174,6 MHz

Sound Card: Luidsprekers (Realtek High Defi |

Display Adapters: Intel® HD Graphics Family | Intel® HD Graphics Family | NVIDIA GeForce GT 540M | NVIDIA GeForce GT 540M | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver

Monitors: 1x; Algemeen PnP-beeldscherm |

Screen Resolution: 1366 X 768 - 32 bit

Network: Network Present

Network Adapters: Microsoft Virtual WiFi Miniport Adapter #2 | Microsoft Virtual WiFi Miniport Adapter | Intel® WiFi Link 1000 BGN | Realtek PCIe GBE Family Controller

CD / DVD Drives: 1x (D: | ) D: TSSTcorpDVD+-RW SN-208BB

Ports: COM Ports NOT Present. LPT Port NOT Present.

Mouse: 5 Button Wheel Mouse Present

Hard Disks: C: 679,0GB

Hard Disks - Free: C: 608,1GB

Manufacturer *: Dell Inc.

BIOS Info: AT/AT COMPATIBLE | 10/20/11 | DELL - 2

Time Zone: West-Europa (standaardtijd)

Motherboard *: Dell Inc. ÿÿÿÿÿÿ

Country: Nederland

Language: NLD

==== System Specs (Software) ======================

Anti-Virus: McAfee Antivirus en antispyware On-access scanning disabled (Outdated)

Anti-Spyware: McAfee Antivirus en antispyware disabled (Outdated)

Anti-Spyware: Windows Defender disabled (Outdated)

Firewall: McAfee Firewall disabled

Default Browser: Firefox 25.0.1

Internet Explorer Version: 11.0.9600.16428

Mozilla Firefox version: 25.0.1 (x86 nl)

Google Chrome version: 31.0.1650.63

Adobe Reader version: 10.1.8.24

Sun Java version: 1.7.0_09 (32-bit)

Sun Java version: 1.6.0_27 (64-bit)

Shockwave Player version: 12.0r112

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Nicky\AppData\Local\Temp ====

====== Java Cache =====

2013-12-26 20:47:44 CA6976C5C09260A644278199C68D1A1D 12778 ----a-w- C:\Users\Nicky\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\5205c740-596bd2b0

2013-12-26 20:47:44 FF2A7A2030158BA7EF7EDBBC3D435090 86299 ----a-w- C:\Users\Nicky\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\6e37ee91-267c02e4

====== C:\Windows\SysWOW64 =====

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

====== C:\Windows\Sysnative\drivers =====

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-12-27 12:16:33 -------- d-----w- C:\Program Files\trend micro

2013-12-06 10:17:56 -------- d-----w- C:\Program Files\Adblock Plus for IE

======= C:\PROGRA~2 =====

2013-12-21 12:10:44 -------- d-----w- C:\PROGRA~2\ESET

2013-12-15 15:30:24 -------- d-----w- C:\PROGRA~2\AVG

======= C: =====

====== C:\Users\Nicky\AppData\Roaming ======

2013-12-15 20:34:31 -------- d-----w- C:\Users\Nicky\AppData\Roaming\AVG2014

2013-12-15 20:33:58 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Avg2014

2013-12-15 20:33:56 -------- d-----w- C:\Users\Nicky\AppData\Roaming\TuneUp Software

2013-12-15 20:32:23 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Local\Avg2014

2013-12-15 20:30:47 -------- d-----w- C:\Users\Nicky\AppData\Local\Avg2014

2013-12-15 15:34:20 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\AVG

2013-12-15 15:30:40 -------- d-----w- C:\Users\Nicky\AppData\Roaming\AVG

2013-12-06 10:17:57 -------- d-----w- C:\Users\Nicky\AppData\Locallow\Adblock Plus for IE

====== C:\Users\Nicky ======

2013-12-27 12:16:14 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nicky\Downloads\RSITx64 (2).exe

2013-12-27 12:15:41 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nicky\Downloads\RSITx64 (1).exe

2013-12-27 12:15:19 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nicky\Downloads\RSITx64.exe

2013-12-15 20:33:19 -------- d-----w- C:\ProgramData\AVG2014

2013-12-15 15:31:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014

2013-12-15 15:30:00 -------- d-----w- C:\ProgramData\AVG

2013-12-15 15:29:51 -------- d--h--w- C:\ProgramData\Common Files

====== C: exe-files ==

2013-12-27 12:16:34 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Nicky.exe

2013-12-27 12:16:14 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nicky\Downloads\RSITx64 (2).exe

2013-12-27 12:15:41 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nicky\Downloads\RSITx64 (1).exe

2013-12-27 12:15:19 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nicky\Downloads\RSITx64.exe

=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"KPeerNexonEU"="C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe"

"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"

"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

"NTRedirect"="C:\Windows\SysWOW64\rundll32.exe C:\Users\Nicky\AppData\Roaming\BabSolution\Shared\enhancedNT.dll,Run"

"QtraxNotification"="C:\Users\Nicky\Qtrax\Player\Notification.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"Dell Webcam Central"="C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe /mode2"

"Dell DataSafe Online"="C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe"

"RoxWatchTray"="C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"

"Desktop Disc Tool"="C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"

"mcui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"

"NeroLauncher"="C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe 900"

"BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"AccuWeatherWidget"=""C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"KPeerNexonEU"="C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe"

"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"

"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

"NTRedirect"="C:\Windows\SysWOW64\rundll32.exe C:\Users\Nicky\AppData\Roaming\BabSolution\Shared\enhancedNT.dll,Run"

"QtraxNotification"="C:\Users\Nicky\Qtrax\Player\Notification.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="c:\\progra~3\\bitguard\\271832~1.68\\{c16c1~1\\bitguard.dll "

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"

"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3 "

"NVHotkey"="rundll32.exe C:\Windows\system32\nvHotkey.dll,Start"

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"FreeFallProtection"="C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe"

"IntelPAN"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PAN Tray"

"QuickSet"="c:\Program Files\Dell\QuickSet\QuickSet.exe"

"IntelTBRunOnce"="wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"

"Stage Remote"="C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe -Quiet"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

"DellStage"=""C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19-06-2012 12:37]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19-06-2012 12:37]

C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job --a------ C:\Program Files\Dell Support Center\uaclauncher.exe [29-03-2012 00:04]

C:\Windows\tasks\SystemToolsDailyTest.job --a------ C:\Program Files\Dell Support Center\uaclauncher.exe [29-03-2012 00:04]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\PCDEventLauncher" ["C:\Program Files\Dell Support Center\sessionchecker.exe"]

"C:\Windows\SysNative\tasks\PCDoctorBackgroundMonitorTask" [C:\Program Files\Dell Support Center\uaclauncher.exe]

"C:\Windows\SysNative\tasks\SystemToolsDailyTest" [C:\Program Files\Dell Support Center\uaclauncher.exe]

"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"{D19CA586-DD6C-4a0a-96F8-14644F340D60}"="C:\Program Files (x86)\Common Files\McAfee\SystemCore" [27-12-2013 09:25]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default

- WebToSave - %ProfilePath%\extensions\{f80bc79c-ab5e-418a-a0be-3d9e66b4e976}

- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

ProfilePath: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

- WebCake - %ProfilePath%\extensions\plugin@getwebcake.com

ProfilePath: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com

- WebCake - %ProfilePath%\extensions\plugin@getwebcake.com

ExtDir: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles

- Ask Toolbar - %ExtDir%\toolbar@ask.com

ExtDir: C:\Users\Nicky\AppData\Roaming\Mozilla\Extensions

- Ask Toolbar - C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default

CF25FDD7CA6BC88442A58F74DBB6CFA6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll - Shockwave for Director / Shockwave for Director

71B61A08992B0F895288CAAB2B43E3F7 - C:\Users\Nicky\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player

2C82D753EF779945977C82A3908DA20A - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.90.5

8C1CAFEBED8CA61926158CEE71F8A750 - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director

FFF2362F6B4A46D4BC1D147E79A7547B - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll - Nexon Game Controller

15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System

==== Deleted Firefox Extensions ======================

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\extensions\plugin@getwebcake.com deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com\extensions\plugin@getwebcake.com deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

bakijjialdiiboeaknfpmflphhmljfkd - C:\Users\Nicky\AppData\Local\newhb2.crx[]

ccbgjfdieajmokelnlapbedknchgenne - C:\Users\Nicky\AppData\Local\CRE\ccbgjfdieajmokelnlapbedknchgenne.crx[]

eooncjejnppfjjklapaamhcdmjbilmde - C:\Users\Nicky\AppData\Roaming\BabSolution\CR\Delta.crx[]

fjoijdanhaiflhibkljeklcghcmmfffh - C:\Program Files (x86)\Tepfel\WebCakeLayers.crx[]

icdlfehblmklkikfigmjhbmmpmkmpooj - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.2.crx[]

mhkaekfpcppmmioggniknbnbdbcigpkk - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

bakijjialdiiboeaknfpmflphhmljfkd - C:\Users\Nicky\AppData\Local\newhb2.crx[]

ccbgjfdieajmokelnlapbedknchgenne - C:\Users\Nicky\AppData\Local\CRE\ccbgjfdieajmokelnlapbedknchgenne.crx[]

Google Docs - Nicky - Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - Nicky - Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - Nicky - Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Game Master 2.1 - Nicky - Profile 1\Extensions\ccbgjfdieajmokelnlapbedknchgenne

Last updated at time on date - Nicky - Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb

Google Search - Nicky - Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Delta Toolbar - Nicky - Profile 1\Extensions\eooncjejnppfjjklapaamhcdmjbilmde

Web Cake - Nicky - Profile 1\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh

Domain Error Assistant - Nicky - Profile 1\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj

Slick Savings - Nicky - Profile 1\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk

Google Wallet - Nicky - Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - Nicky - Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_www1.delta-search.com_0.localstorage deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_www1.delta-search.com_0.localstorage-journal deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\bakijjialdiiboeaknfpmflphhmljfkd deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bakijjialdiiboeaknfpmflphhmljfkd deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbgjfdieajmokelnlapbedknchgenne deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ccbgjfdieajmokelnlapbedknchgenne deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ccbgjfdieajmokelnlapbedknchgenne deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_icdlfehblmklkikfigmjhbmmpmkmpooj_0.localstorage deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_icdlfehblmklkikfigmjhbmmpmkmpooj_0.localstorage-journal deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Local Extension Settings\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Local Extension Settings\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://nl.msn.com/?pc=UP97&ocid=UP97DHP"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}] not found

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://nl.msn.com/?pc=UP97&ocid=UP97DHP"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{483830EE-A4CD-4b71-B0A3-3D82E62A6909} Unknown Url="Not_Found"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1882776687-2153821112-904029361-1001\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} deleted successfully

==== Deleting CLSID Registry Values ======================

==== shortcuts on Users Desktops ======================

C:\Users\Nicky\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\Nicky\Desktop\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Nicky\Desktop\Muziek - Snelkoppeling.lnk - C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Libraries\Music.library-ms

C:\Users\Nicky\Desktop\Schoon uw register gratis op.lnk -

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Adobe Reader X.lnk - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe

C:\Users\Public\Desktop\BearShare.lnk - C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe

C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\Public\Desktop\SyncUP.lnk - C:\Windows\Installer\{40F06490-8C14-43AA-99D3-EEEFDBAC3CFC}\ScMobileSyncDeskto_7059606C03B248829B6770031DB2C21E.exe

C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee\McAfee SecurityCenter.lnk - C:\Program Files (x86)\mcafee.com\agent\mcagent.exe /desktopicon

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BearShare.lnk - C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ijji REACTOR.lnk - C:\Program Files (x86)\REACTOR\REACTOR.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9d91276b0be3e46b\pinned.lnk -

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\BearShare.lnk - C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Word 2010.lnk - C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\wordicon.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Windows Live Messenger.lnk - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AVG PC TuneUp - Start Center.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\McAfee SecurityCenter.lnk - C:\Program Files (x86)\mcafee.com\agent\mcagent.exe /desktopicon

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live Messenger.lnk - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bakijjialdiiboeaknfpmflphhmljfkd deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\bakijjialdiiboeaknfpmflphhmljfkd deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ccbgjfdieajmokelnlapbedknchgenne deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\bakijjialdiiboeaknfpmflphhmljfkd deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ccbgjfdieajmokelnlapbedknchgenne deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1 deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1 deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iLivid deleted successfully

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dealply deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} deleted successfully

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Qtrax Connection Manager deleted successfully

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\2503089107.portal.qtrax.com deleted successfully

HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\D14143D5782BEE842A45208B63A8E465 deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120626224250.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

O4 - HKLM\..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe

O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"

O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"

O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [NeroLauncher] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe 900

O4 - HKLM\..\Run: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe

O4 - HKCU\..\Run: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent

O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

O4 - HKCU\..\Run: [NTRedirect] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Nicky\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run

O4 - HKCU\..\Run: [QtraxNotification] C:\Users\Nicky\Qtrax\Player\Notification.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-21-1882776687-2153821112-904029361-1000\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')

O4 - HKUS\S-1-5-21-1882776687-2153821112-904029361-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - AppInit_DLLs: c:\progra~3\bitguard\271832~1.68\{c16c1~1\bitguard.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe

O23 - Service: BingBar Service (BBSvc) - Unknown owner - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe (file missing)

O23 - Service: BBUpdate - Unknown owner - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe (file missing)

O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel® Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\mcafee\msc\mcawfwk.exe

O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe

O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe

O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe

O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe

O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

O23 - Service: RoxMediaDB12OEM - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe

O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe

O23 - Service: Intel® Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel® Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Nicky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Nicky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Nicky\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Nicky\AppData\Local\Mozilla\Firefox\Profiles\2t12okyf.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=12673 folders=4000 864307735 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Nicky\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Nicky\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Program Files (x86)\MyPC Backup\Database\mpcb_settings.db" not found

"C:\PROGRA~2\MyPC Backup\Database\mpcb_settings.db" not found

"C:\Program Files (x86)\Microsoft\BingBar" not found

"C:\Program Files (x86)\Common Files\Spigot" not found

"C:\Program Files (x86)\MyPC Backup" not found

"C:\Program Files (x86)\Movdap" not found

"C:\Program Files (x86)\BearShare Applications" not found

"C:\PROGRA~2\BearShare Applications\MediaBar" not found

"C:\PROGRA~2\Advanced System Protector" not found

"C:\PROGRA~2\Movdap" not found

"C:\PROGRA~2\MyPC Backup" not found

"C:\PROGRA~2\COMMON~1\Spigot" not found

==== EOF on vr 27-12-2013 at 18:51:39,73 ======================

Geplaatst:

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  C:\Users\Nicky\Downloads\RSITx64 (2).exe;f
 C:\Users\Nicky\Downloads\RSITx64 (1).exe;f
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows];r64
 "AppInit_DLLs"=-;r64
 C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default\extensions\{f80bc79c-ab5e-418a-a0be-3d9e66b4e976};fs
 C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com;fs
 C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ijji REACTOR.lnk;f
 C:\Program Files (x86)\Microsoft\BingBar;fs
 BBSvc;s
 BBUpdate;s
 autoclean;

  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Geplaatst:

Zoek.exe v5.0.0.0 Updated 23-December-2013

Tool run by Nicky on za 28-12-2013 at 7:16:25,61.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Nicky\Downloads\zoek (11)\zoek.exe [scan all users] [script inserted]

==== Older Logs ======================

C:\zoek-results2013-12-27-175139.log 70561 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\BBSvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BBSvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\BBSvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BBSvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BBUpdate deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BBUpdate deleted successfully

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Microsoft\BingBar not found

C:\Users\Nicky\Desktop\Schoon uw register gratis op.lnk not found

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default\extensions\{f80bc79c-ab5e-418a-a0be-3d9e66b4e976} deleted

C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\toolbar@ask.com deleted

"C:\Users\Nicky\Downloads\RSITx64 (2).exe" deleted

"C:\Users\Nicky\Downloads\RSITx64 (1).exe" deleted

"C:\Users\Nicky\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ijji REACTOR.lnk" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"{D19CA586-DD6C-4a0a-96F8-14644F340D60}"="C:\Program Files (x86)\Common Files\McAfee\SystemCore" [27-12-2013 09:25]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default

- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Nicky\AppData\Roaming\Mozilla\Firefox\Profiles\2t12okyf.default

CF25FDD7CA6BC88442A58F74DBB6CFA6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll - Shockwave for Director / Shockwave for Director

71B61A08992B0F895288CAAB2B43E3F7 - C:\Users\Nicky\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player

2C82D753EF779945977C82A3908DA20A - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.90.5

8C1CAFEBED8CA61926158CEE71F8A750 - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director

FFF2362F6B4A46D4BC1D147E79A7547B - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll - Nexon Game Controller

15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System

==== Chrome Look ======================

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://nl.msn.com/?pc=UP97&ocid=UP97DHP"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://nl.msn.com/?pc=UP97&ocid=UP97DHP"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Nicky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Nicky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Nicky\AppData\Local\Mozilla\Firefox\Profiles\2t12okyf.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully

C:\Users\Nicky\AppData\Local\Google\Chrome\User Data\Profile 1\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=12834 folders=4013 866721460 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Nicky\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Nicky\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on za 28-12-2013 at 7:29:26,63 ======================

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.