Ga naar inhoud

Extreeemmm trage laptop, waarschijnlijk een virus!

MellaBella3
 Delen

Aanbevolen berichten

MellaBella3 Groentje

MellaBella3

Geplaatst:
Geplaatst:

Hoi,

Ik heb een dringende vraag/verzoek,

Mn laptop werkt nu echt extreeeeemmm traag. Bij het opstarten geeft t al aan dat er een probleem is met de host en dan ik contact op moet nemen met Uniblue. Al geprobeerd maar geen enkele respons. Dan crasht mn flashplayer steeds en laatst kon ik bijnan niet eens mn lappie meeer in! Ik had me aangemeld en opeens stond er dat er een probleem was en dat ik me niet kon aanmelden. Dat heb ik dmv een windowspage opgelost, maar mn laptop doet zooo traag en alles crasht steeds. Eigenlijk geen twijfel dat dit een virus is he? Dus mijn vraag en verzoek zijn: Is er sprake van een virus en wat is de schade?? En hoe verwijder ik deze van mn laptop? Had mn tel aangesloten op mn lappie en die doet nu ook irritant. Dus help me please?? Ben verslaafd aan mn lappie...

Bij voorbaat dank!!!

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Link naar reactie
Delen op andere sites
MellaBella3 Groentje

MellaBella3

Geplaatst:
  • Auteur
Geplaatst:

Hallo,

Dit stond er in het log- kladblok:

Logfile of random's system information tool 1.09 (written by random/random)

Run by Mel at 2013-11-30 16:50:03

Microsoft® Windows Vista™ Home Basic Service Pack 2

System drive C: has 5 GB (5%) free of 104 GB

Total RAM: 1013 MB (18% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 16:52:57, on 30-11-2013

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16520)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Trusteer\Rapport\bin\RapportService.exe

C:\Program Files\Apoint2K\Apoint.exe

C:\Windows\RtHDVCpl.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe

C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

C:\Program Files\DivX\DivX Update\DivXUpdate.exe

C:\Program Files\AVG\AVG2014\avgui.exe

C:\Program Files\AVG Secure Search\vprot.exe

C:\Windows\vsnp2uvc.exe

C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe

C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe

C:\Program Files\OpenOffice.org 3\program\soffice.exe

C:\Program Files\OpenOffice.org 3\program\soffice.bin

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe

C:\Program Files\Apoint2K\ApMsgFwd.exe

C:\Program Files\Apoint2K\Apntex.exe

C:\Windows\system32\conime.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

C:\Windows\system32\sdclt.exe

C:\Windows\system32\DllHost.exe

C:\Program Files\AVAST Software\Avast\avastUi.exe

C:\Users\Mel\Downloads\RSIT (1).exe

C:\Program Files\trend micro\Mel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =   E510

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://nl.woofi.info/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe

O1 - Hosts: ::1 localhost

O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll

O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (file missing)

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll

O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll

O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [skytel] Skytel.exe

O4 - HKLM\..\Run: [iTSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START

O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"

O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe

O4 - HKLM\..\Run: [tsnp2uvc] C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe

O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\RunOnce: [browserBallot] browserchoice.exe

O4 - HKLM\..\RunOnce: [aswAhAScr.dll] "C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe" "C:\Program Files\Alwil Software\Avast5\AhAScr.dll"

O4 - HKLM\..\RunOnce: [OurBabyMaker_27bar Uninstall] rundll32 C:\PROGRA~1\27UNIN~1.DLL,O -3

O4 - HKLM\..\RunOnce: [aswasOutExt.dll] "C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe" "C:\Program Files\Alwil Software\Avast5\asOutExt.dll"

O4 - HKLM\..\RunOnce: [aswaswOtl.dll] "C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe" "C:\Program Files\Alwil Software\Avast5\aswOtl.dll"

O4 - HKLM\..\RunOnce: [installShieldSetup] C:\PROGRA~1\INSTAL~1\{785A6~1\setup.exe -rebootC:\PROGRA~1\INSTAL~1\{785A6~1\reboot.ini -l0x0409

O4 - HKLM\..\RunOnce: [brandClearStubs] RUNDLL32 IEDKCS32.DLL,BrandCleanInstallStubs >{B7573B6B-D52D-425C-A5D6-B4D2460150B8}

O4 - HKLM\..\RunOnce: [NoIE4StubProcessing] C:\Windows\system32\reg.exe DELETE "HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" /v "NoIE4StubProcessing" /f

O4 - HKLM\..\RunOnce: [aswredemption.dll] "C:\Program Files\AVAST Software\Avast\aswRegSvr.exe" "C:\Program Files\AVAST Software\Avast\redemption.dll"

O4 - HKLM\..\RunOnce: [removeiMeshdatamngr] cmd.exe /c RD /S /Q "C:\Program Files\iMesh Applications\Mediabar"

O4 - HKLM\..\RunOnce: [installShieldSetup1] C:\PROGRA~1\INSTAL~1\{399C3~1\setup.exe -rebootC:\PROGRA~1\INSTAL~1\{399C3~1\reboot.ini -l0x13

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - Startup: OpenOffice.org 3.0 .lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe

O4 - Global Startup: Bluetooth Manager.lnk = ?

O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm

O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll

O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Azada/Images/armhelper.ocx

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.0.12\ViProtocol.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe

O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe

O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe

O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe

O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

O23 - Service: Google Updateservice (gupdate1c9b462bb812ed0) (gupdate1c9b462bb812ed0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - Unknown owner - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe (file missing)

O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe

O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

O23 - Service: vToolbarUpdater17.1.2 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe

--

End of file - 13368 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\DriverCure.job

C:\Windows\tasks\DriverScanner.job

C:\Windows\tasks\dsmonitor.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\Norton Security Scan for Mel.job

C:\Windows\tasks\ParetoLogic Registration.job

C:\Windows\tasks\ParetoLogic Registration3.job

C:\Windows\tasks\ParetoLogic Update Version2.job

C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job

C:\Windows\tasks\ParetoLogic Update Version3.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]

MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll [2013-02-05 94112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]

Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]

DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-11-30 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]

avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-30 606544]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]

AVG Security Toolbar - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll [2013-09-17 3122864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-09 194640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-10-02 4119744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-11-30 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]

DVDVideoSoft WebPageAdjuster Class - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2013-04-05 280224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-30 606544]

{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll [2013-09-17 3122864]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-10-09 194640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2007-07-21 159744]

"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-04-24 6111232]

"Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816]

"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2007-09-28 75136]

"RIMBBLaunchAgent.exe"=C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [2011-02-18 79192]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2013-02-13 1263952]

"AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2013-11-07 4956176]

"vProt"=C:\Program Files\AVG Secure Search\vprot.exe [2013-11-11 2420248]

"snp2uvc"=C:\Windows\vsnp2uvc.exe [2009-08-12 662016]

"tsnp2uvc"=C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe [2010-09-20 321024]

"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-30 3568312]

"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"BrowserBallot"=C:\Windows\system32\browserchoice.exe [2010-02-12 293376]

"aswAhAScr.dll"=C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\AhAScr.dll []

"OurBabyMaker_27bar Uninstall"=rundll32 C:\PROGRA~1\27UNIN~1.DLL,O -3 []

"aswasOutExt.dll"=C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\asOutExt.dll []

"aswaswOtl.dll"=C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\aswOtl.dll []

"InstallShieldSetup"=C:\PROGRA~1\INSTAL~1\{785A6~1\setup.exe -rebootC:\PROGRA~1\INSTAL~1\{785A6~1\reboot.ini -l0x0409 []

"BrandClearStubs"=RUNDLL32 IEDKCS32.DLL,BrandCleanInstallStubs >{B7573B6B-D52D-425C-A5D6-B4D2460150B8} []

"NoIE4StubProcessing"=C:\Windows\system32\reg.exe [2009-04-11 61952]

"aswredemption.dll"=C:\Program Files\AVAST Software\Avast\aswRegSvr.exe C:\Program Files\AVAST Software\Avast\redemption.dll []

"removeiMeshdatamngr"=cmd.exe /c RD /S /Q C:\Program Files\iMesh Applications\Mediabar []

"InstallShieldSetup1"=C:\PROGRA~1\INSTAL~1\{399C3~1\setup.exe [2013-08-22 460248]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-01-02 39408]

"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-10-21 20549280]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe

McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe

C:\Users\Mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

OpenOffice.org 3.0 .lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=" C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2008-01-22 200704]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\Users\Mel\AppData\Local\Temp\refr03.10.exe"="C:\Users\Mel\AppData\Local\Temp\refr03.10.exe:*:Enabled:Windows Application Service"

"C:\Users\Mel\AppData\Local\Temp\cm25.09.exe"="C:\Users\Mel\AppData\Local\Temp\cm25.09.exe:*:Enabled:Windows Application Service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"MSVideo8"=VfWWDM32.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave2"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer2"=wdmaud.drv

"wave3"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer3"=wdmaud.drv

"wave4"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer4"=wdmaud.drv

"msacm.siren"=sirenacm.dll

"wave5"=wdmaud.drv

"midi4"=wdmaud.drv

"mixer5"=wdmaud.drv

"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-11-30 16:50:09 ----DC---- C:\Program Files\trend micro

2013-11-30 16:50:03 ----DC---- C:\rsit

2013-11-30 15:19:32 ----D---- C:\ProgramData\Oracle

2013-11-30 15:17:12 ----A---- C:\Windows\system32\javaws.exe

2013-11-30 15:15:32 ----A---- C:\Windows\system32\WindowsAccessBridge.dll

2013-11-30 15:15:31 ----A---- C:\Windows\system32\javaw.exe

2013-11-30 15:15:27 ----A---- C:\Windows\system32\java.exe

2013-11-30 14:44:47 ----D---- C:\Users\Mel\AppData\Roaming\AVAST Software

2013-11-30 14:39:19 ----A---- C:\Windows\system32\drivers\aswVmm.sys

2013-11-30 14:39:19 ----A---- C:\Windows\system32\drivers\aswTdi.sys

2013-11-30 14:39:18 ----A---- C:\Windows\system32\drivers\aswSP.sys

2013-11-30 14:39:17 ----A---- C:\Windows\system32\drivers\aswRvrt.sys

2013-11-30 14:39:16 ----A---- C:\Windows\system32\drivers\aswSnx.sys

2013-11-30 14:39:14 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys

2013-11-30 14:39:13 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys

2013-11-30 14:39:12 ----A---- C:\Windows\system32\drivers\aswRdr.sys

2013-11-30 14:38:40 ----A---- C:\Windows\avastSS.scr

2013-11-30 14:10:25 ----DC---- C:\Program Files\CCleaner

2013-11-28 09:16:49 ----SHDC---- C:\Config.Msi

2013-11-21 19:07:37 ----A---- C:\Windows\ntbtlog.txt

2013-11-20 07:53:19 ----SHD---- C:\found.008

2013-11-15 06:41:47 ----A---- C:\Windows\system32\vbscript.dll

2013-11-15 06:41:47 ----A---- C:\Windows\system32\mshtmled.dll

2013-11-15 06:41:44 ----A---- C:\Windows\system32\jsproxy.dll

2013-11-15 06:41:44 ----A---- C:\Windows\system32\ieui.dll

2013-11-15 06:41:43 ----A---- C:\Windows\system32\msfeeds.dll

2013-11-15 06:41:43 ----A---- C:\Windows\system32\ieUnatt.exe

2013-11-15 06:41:42 ----A---- C:\Windows\system32\wininet.dll

2013-11-15 06:41:41 ----A---- C:\Windows\system32\jscript9.dll

2013-11-15 06:41:41 ----A---- C:\Windows\system32\jscript.dll

2013-11-15 06:41:40 ----A---- C:\Windows\system32\url.dll

2013-11-15 06:41:40 ----A---- C:\Windows\system32\iertutil.dll

2013-11-15 06:41:37 ----A---- C:\Windows\system32\urlmon.dll

2013-11-15 06:41:35 ----A---- C:\Windows\system32\ieframe.dll

2013-11-15 06:41:34 ----A---- C:\Windows\system32\mshtml.dll

2013-11-14 10:05:46 ----A---- C:\Windows\system32\gdi32.dll

2013-11-14 10:05:35 ----A---- C:\Windows\system32\IKEEXT.DLL

2013-11-14 10:05:34 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2013-11-14 10:05:20 ----A---- C:\Windows\system32\crypt32.dll

2013-11-08 14:12:27 ----SHD---- C:\found.007

2013-11-05 21:50:48 ----A---- C:\Windows\system32\drivers\avgdiskx.sys

2013-11-04 21:57:30 ----A---- C:\Windows\system32\drivers\avgidsdriverx.sys

2013-10-31 23:00:28 ----A---- C:\Windows\system32\drivers\avgldx86.sys

2013-10-31 22:30:08 ----A---- C:\Windows\system32\drivers\avglogx.sys

======List of files/folders modified in the last 1 month======

2013-11-30 16:52:04 ----D---- C:\Windows\Temp

2013-11-30 16:50:09 ----RDC---- C:\Program Files

2013-11-30 16:48:41 ----D---- C:\Users\Mel\AppData\Roaming\Skype

2013-11-30 15:27:23 ----D---- C:\Windows\Prefetch

2013-11-30 15:20:07 ----SHD---- C:\Windows\Installer

2013-11-30 15:20:01 ----DC---- C:\Program Files\Common Files\Java

2013-11-30 15:19:32 ----HD---- C:\ProgramData

2013-11-30 15:17:12 ----D---- C:\Windows\System32

2013-11-30 15:13:38 ----DC---- C:\Program Files\Java

2013-11-30 15:08:23 ----A---- C:\Windows\system32\FlashPlayerApp.exe

2013-11-30 15:07:59 ----SHD---- C:\System Volume Information

2013-11-30 14:40:22 ----D---- C:\Windows\system32\Tasks

2013-11-30 14:39:19 ----D---- C:\Windows\system32\drivers

2013-11-30 14:39:01 ----D---- C:\Windows\winsxs

2013-11-30 14:38:54 ----D---- C:\Windows

2013-11-30 14:38:40 ----A---- C:\Windows\system32\aswBoot.exe

2013-11-30 14:31:32 ----D---- C:\ProgramData\AVAST Software

2013-11-30 14:24:49 ----DC---- C:\Program Files\Common Files

2013-11-30 14:21:42 ----D---- C:\ProgramData\Apple

2013-11-30 14:15:22 ----D---- C:\Windows\system32\catroot2

2013-11-30 14:11:36 ----DC---- C:\Program Files\NCH Swift Sound

2013-11-30 14:08:03 ----D---- C:\Program Files\Zylom Games

2013-11-30 11:02:32 ----D---- C:\ProgramData\MFAData

2013-11-29 09:46:19 ----D---- C:\Users\Mel\AppData\Roaming\uTorrent

2013-11-29 09:40:31 ----D---- C:\Windows\Tasks

2013-11-27 09:26:55 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-11-27 09:26:53 ----D---- C:\Windows\inf

2013-11-21 18:28:13 ----RD---- C:\Users

2013-11-17 16:13:19 ----D---- C:\ProgramData\Skype

2013-11-17 16:13:04 ----RD---- C:\Program Files\Skype

2013-11-15 07:46:33 ----D---- C:\Windows\rescache

2013-11-15 07:04:03 ----D---- C:\Windows\system32\migration

2013-11-15 07:03:54 ----DC---- C:\Program Files\Internet Explorer

2013-11-15 07:03:47 ----D---- C:\Windows\system32\nl-NL

2013-11-15 06:43:07 ----D---- C:\Windows\system32\catroot

2013-11-15 06:39:14 ----D---- C:\Windows\system32\MRT

2013-11-15 06:24:36 ----A---- C:\Windows\system32\mrt.exe

2013-11-11 10:24:13 ----DC---- C:\Program Files\AVG Secure Search

2013-11-06 16:16:15 ----SD---- C:\Users\Mel\AppData\Roaming\Microsoft

2013-11-01 19:09:53 ----D---- C:\Windows\system32\LogFiles

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-11-30 178304]

R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2013-10-24 147768]

R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2013-10-31 222520]

R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2013-10-01 102712]

R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2013-09-10 27448]

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-07-12 305176]

R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2011-10-04 45744]

R0 RapportKELL;RapportKELL; C:\Windows\System32\Drivers\RapportKELL.sys [2013-09-10 97008]

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2008-12-25 715248]

R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2012-08-21 18544]

R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr.sys [2013-11-30 54832]

R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-11-30 774392]

R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-30 403440]

R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-11-30 57672]

R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2013-11-05 120600]

R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2013-11-04 209176]

R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2013-09-17 22840]

R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2013-10-31 176952]

R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2013-08-01 193848]

R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2013-10-01 37664]

R1 RapportCerberus_56758;RapportCerberus_56758; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_56758.sys [2013-08-20 330960]

R1 RapportEI;RapportEI; \??\C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [2013-09-10 148688]

R1 RapportPG;RapportPG; \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [2013-09-10 222416]

R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2007-10-02 64128]

R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-11-30 35656]

R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-11-30 70384]

R2 int15;int15; \??\C:\Windows\system32\drivers\int15.sys [2008-04-03 15392]

R2 RMCAST;RMCAST (Pgm)-protocolstuurprogramma; C:\Windows\system32\DRIVERS\RMCAST.sys [2009-04-11 113664]

R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-12-11 163376]

R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712]

R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-01-22 2016256]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-04-24 2126688]

R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]

R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2008-12-01 47360]

R3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial.sys [2009-01-09 27136]

R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-21 8192]

R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2008-03-25 41472]

R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2008-03-25 131712]

R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2007-11-29 36608]

R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2008-03-19 74112]

R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-10-18 41856]

R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]

S0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-30 49944]

S1 DritekPortIO;Dritek General Port I/O; \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys []

S3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-08-18 921600]

S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]

S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]

S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]

S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]

S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]

S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]

S3 NCHSSVAD;SoundTap Recorder; C:\Windows\system32\drivers\nchssvad.sys [2009-06-28 27136]

S3 RimUsb;BlackBerry Smartphone; C:\Windows\System32\Drivers\RimUsb.sys [2011-02-16 64000]

S3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2010-09-13 3563776]

S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2005-08-30 58320]

S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2005-08-30 8304]

S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2005-08-30 94000]

S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]

S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\Windows\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]

S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\Windows\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]

S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-07 18612]

S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2008-01-22 54144]

S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys []

S3 usbaudio;Stuurprogramma voor USB-audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-07-12 73344]

S3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]

S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]

S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]

S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]

S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-30 50344]

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2013-11-11 3478544]

R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2013-09-24 348008]

R2 BUNAgentSvc;NTI Backup Now 5 Agent Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384]

R2 ETService;Empowering Technology Service; C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe [2008-04-03 24576]

R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-06 50424]

R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-04 131072]

R2 RapportMgmtService;Rapport Management Service; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2013-09-10 1435928]

R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]

R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-02 3064000]

R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-09-28 128360]

R2 vToolbarUpdater17.1.2;vToolbarUpdater17.1.2; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\ToolbarUpdater.exe [2013-11-11 1734680]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate1c9b462bb812ed0;Google Updateservice (gupdate1c9b462bb812ed0); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-03 133104]

S2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-07-12 354840]

S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]

S2 PCTAVSvc;PC Tools AntiVirus Engine; C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe []

S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-09-05 171680]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-30 257416]

S3 Boonty Games;Boonty Games; C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe [2008-09-25 69120]

S3 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-05-22 29744]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-03 133104]

S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-23 194032]

S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]

S4 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-02-05 235216]

-----------------EOF-----------------

En dit in info-kladblok:

info.txt logfile of random's system information tool 1.09 2013-11-30 16:53:16

======Uninstall list======

-->"C:\Program Files\InstallShield Installation Information\{8F1B6239-FEA0-450A-A950-B05276CE177C}\setup.exe" -runfromtemp -l0x0013 -removeonly

Aangifte inkomstenbelasting 2010-->C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2010\ib2010u.exe

Aangifte inkomstenbelasting 2011-->C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2011\ib2011u.exe

Aangifte inkomstenbelasting 2012-->C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2012\ib2012u.exe

Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE

Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall

Adobe AIR-->MsiExec.exe /I{A0087DDE-69D0-11E2-AD57-43CA6188709B}

Adobe Download Assistant-->msiexec /qb /x {5E21B617-F52E-BB10-92F9-C8AB2C799A8A}

Adobe Download Assistant-->MsiExec.exe /I{5E21B617-F52E-BB10-92F9-C8AB2C799A8A}

Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe -maintain activex

Adobe Flash Player 11 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_152_Plugin.exe -maintain plugin

Adobe Reader X (10.1.8) - Nederlands-->MsiExec.exe /I{AC76BA86-7AD7-1043-7B44-AA1000000001}

Adobe Shockwave Player 11.5-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"

ALPS Touch Pad Driver-->C:\Program Files\Apoint2K\Uninstap.exe ADDREMOVE

avast! Free Antivirus-->C:\Program Files\AVAST Software\Avast\Setup\Instup.exe /control_panel

AVG 2014-->"C:\Program Files\AVG\AVG2014\avgmfapx.exe" /AppMode=SETUP /Uninstall

AVG 2014-->MsiExec.exe /I{3B97ADB7-3DA1-4964-BC10-68384BA6A66F}

AVG 2014-->MsiExec.exe /I{EEAFDDCF-0B0E-44DB-995B-886FB139CF1F}

AVG Security Toolbar-->C:\Program Files\AVG Secure Search\UNINSTALL.exe /PROMPT /UNINSTALL

BlackBerry App World Browser Plugin-->MsiExec.exe /X{8DE03F6E-FCD2-4497-A8FF-F6C4430618B6}

BlackBerry Desktop Software 6.1-->MsiExec.exe /I{75157F34-02C6-4831-BD66-3BC49E7A8394}

BlackBerry Desktop Software 6.1-->MsiExec.exe /i{75157F34-02C6-4831-BD66-3BC49E7A8394}

BlackBerry Device Software Updater-->MsiExec.exe /X{12BAA98C-F8DD-4BC9-BBE6-1C8463114197}

Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}

Browser Address Error Redirector-->regsvr32 /u /s "c:\windows\system32\BAE.dll"

CCleaner-->"C:\Program Files\CCleaner\uninst.exe"

Conduit Engine-->C:\Program Files\ConduitEngine\ConduitEngineUninstall.exe

ConvertXtoDVD 3.0.0.1-->"C:\Program Files\VSO\ConvertX\3\unins000.exe"

D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}

DivX Setup-->C:\ProgramData\DivX\Setup\DivXSetup.exe /uninstall

DriverScanner-->"C:\Program Files\Uniblue\DriverScanner\unins000.exe"

eMachines Recovery Management-->"C:\Program Files\InstallShield Installation Information\{7F811A54-5A09-4579-90E1-C93498E230D9}\setup.exe" -runfromtemp -l0x0013 -removeonly

eMachines-->"C:\Program Files\Oberon Media\eMachines\Uninstall.exe" "C:\Program Files\Oberon Media\eMachines\install.log"

Express Burn-->C:\Program Files\NCH Swift Sound\ExpressBurn\uninst.exe

Free YouTube to MP3 Converter version 3.12.1.320-->C:\Program Files\Common Files\DVDVideoSoft\lib\Uninstall.exe

GameHouse-->"C:\Program Files\RealArcade\Installer\bin\gameinstaller.exe" "C:\Program Files\RealArcade\Installer\installerMain.clf" "C:\Program Files\RealArcade\Installer\uninstall\GameHouse.rguninst" "AddRemove"

Google Chrome-->"C:\Program Files\Google\Chrome\Application\31.0.1650.57\Installer\setup.exe" --uninstall --multi-install --chrome --system-level

Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall

Google Drive-->MsiExec.exe /X{192A227B-A8C8-4C6D-B939-21FAEB007E1E}

Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_08875ABF44579E20.exe" /uninstall

Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}

Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

GPL MPEG-1/2 DirectShow Decoder Filter-->MsiExec.exe /I{870815CA-6B60-47B6-88DD-A67F42D2F03E}

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""

Intel® Graphics Media Accelerator Driver-->C:\Windows\system32\igxpun.exe -uninstall

Intel® Matrix Storage Manager-->C:\Windows\System32\Imsmudlg.exe

Java 7 Update 45-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217045FF}

Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}

LAVMediaCodec 1.0.1-->"C:\Program Files\LAVMediaCodec\unins000.exe"

McAfee Security Scan Plus-->"C:\Program Files\McAfee Security Scan\uninstall.exe"

Microsoft .NET Framework 3.5 Language Pack SP1 - nld-->MsiExec.exe /I{101738D7-D805-37A9-BB91-1F2C351782BF}

Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe

Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

Microsoft .NET Framework 4 Client Profile NLD Language Pack-->MsiExec.exe /X{2617FA1F-0C04-3ABB-AF64-7D5B6620C341}

Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client

Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}

Microsoft Search Enhancement Pack-->MsiExec.exe /X{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}

Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

Microsoft SQL Server Compact 3.5 SP2 ENU-->MsiExec.exe /I{3A9FC03D-C685-4831-94CF-4EDFD3749497}

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218-->MsiExec.exe /X{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}

Microsoft Works-->MsiExec.exe /I{A2A0A82F-025F-458D-A0CD-9BB2320804B5}

MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}

MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}

MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}

Norton Security Scan-->C:\Program Files\NortonInstaller\{397E31AA-0D78-4649-A01C-339D73A2ED35}\NSS\LicenseType\2.7.3.34\InstStub.exe /X

NTI Backup Now 5-->C:\Program Files\InstallShield Installation Information\{12EFA1A4-AC3B-443C-8143-237EDE760403}\setup.exe -runfromtemp -l0x0413

OpenOffice.org 3.2-->MsiExec.exe /I{F578F3FA-1AFC-422F-BDF1-817E1E0C78BC}

ParetoLogic DriverCure-->C:\Program Files\ParetoLogic\DriverCure\uninstall.exe

Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe"

Rapport-->MsiExec.exe /X{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}

Real Alternative 1.7.5-->"C:\Program Files\Real Alternative\unins000.exe"

Realtek High Definition Audio Driver-->RtlUpd.exe -r -m -nrg2709

SAMSUNG CDMA Modem Driver Set-->C:\Windows\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe

SAMSUNG Mobile USB Modem 1.0 Software-->C:\Windows\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe

SAMSUNG Mobile USB Modem Software-->C:\Windows\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe

Samsung PC Studio 3 USB Driver Installer-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x13 -removeonly

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {94EFE014-E577-310B-B2D5-6973A21D8A90} /qb+ REBOOTPROMPT=""

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {939AF4BC-EC42-38D1-AE82-91D4A7ED8911} /qb+ REBOOTPROMPT=""

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8433C01-319F-3370-850E-87C35496299A} /qb+ REBOOTPROMPT=""

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {48B0C142-A0F4-3263-90E1-1984CBB8DD18} /qb+ REBOOTPROMPT=""

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {3E0806DB-3085-378A-840A-F0D3AE3609D1} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {9EC88EA8-4ABE-393C-87BD-90EABB1C4C9B} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {86BB5A25-8CC3-33CE-A393-CF28901682B2} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {16EEC04A-B924-37E0-97CF-422DCEFC1B63} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {C4D978AA-2668-3404-96DE-96E2AFC62FD7} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CD6D9B8A-BBC4-3FA7-B24D-D74CE90630CF} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B7C20E16-9A3A-3F05-A6B5-E15AA09200E0} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CF581973-77E0-3093-A1AC-A03130DE990F} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {80774950-A707-386B-9C9B-D052D20BD54B} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {576C07F8-777C-3981-B8BF-063A6B57254E} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {90EA7C4E-7F03-31FD-BE27-B1A9B4AE56BD} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {1E88AFAE-CEF7-3540-8FF6-6D00877B2767} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8BA4E34D-95C5-3907-87E4-62FBB31A2190} /parameterfolder Client

Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {21AEAFE4-6F0E-3169-A09C-9FB37C77E555} /parameterfolder Client

Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder ClientLP

Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder ClientLP

Segoe UI-->MsiExec.exe /I{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}

Skype Click to Call-->MsiExec.exe /I{B6CF2967-C81E-40C0-9815-C05774FEF120}

Skype™ 6.10-->MsiExec.exe /X{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}

Spelling Dictionaries Support For Adobe Reader 8-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-800000000003}

Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\setup.exe

Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1043 /parameterfolder ClientLP

Trust Webcam-->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x0013 -removeonly

Trusteer Eindpuntbeveiliging-->msiexec /x{1DD81E7D-0D28-4ceb-87B2-C041A4FCB215} /lvx+ "C:\ProgramData\Trusteer\Rapport\logs\uninstall.log"

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client

Update for Microsoft .NET Framework 4 Client Profile (KB2836939)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {0160BA31-409C-3FD0-9C87-C7D95BF46986} /parameterfolder Client

Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)-->c:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {D5B80B17-2443-3296-A700-792FAA0748BD} /parameterfolder Client

VC80CRTRedist - 8.0.50727.6195-->MsiExec.exe /I{933B4015-4618-4716-A828-5289FC03165F}

VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}

Verzoek of wijziging voorlopige aanslag 2013-->C:\Program Files\Belastingdienst\Verzoek of wijziging voorlopige aanslag\2013\va2013u.exe

Visual Studio 2012 x86 Redistributables-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}

VLC media player 2.1.1-->C:\Program Files\VideoLAN\VLC\uninstall.exe

Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}

Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe

Windows Live Essentials-->MsiExec.exe /I{2A07C35B-8384-4DA4-9A95-442B6C89A073}

Windows Live ID Sign-in Assistant-->MsiExec.exe /I{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}

Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}

Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}

Windows Live Mail-->MsiExec.exe /I{D588365A-AE39-4F27-BDAE-B4E72C8E900C}

Windows Live Messenger-->MsiExec.exe /X{48294D95-EE9A-4377-8213-44FC4265FB27}

Windows Live Messenger-->MsiExec.exe /X{E5B21F11-6933-4E0B-A25C-7963E3C07D11}

Windows Live MIME IFilter-->MsiExec.exe /I{AF844339-2F8A-4593-81B3-9F4C54038C4E}

Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}

Windows Live Movie Maker-->MsiExec.exe /X{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}

Windows Live Photo Common-->MsiExec.exe /X{9BD262D0-B788-4546-A0A5-F4F56EC3834B}

Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}

Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}

Windows Live Photo Gallery-->MsiExec.exe /X{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}

Windows Live PIMT Platform-->MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F}

Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}

Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}

Windows Live Sync-->MsiExec.exe /X{E34F703A-1C9D-4B1F-ABBE-D7E8800B860D}

Windows Live UX Platform Language Pack-->MsiExec.exe /I{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}

Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}

Windows Live Writer Resources-->MsiExec.exe /X{14B441B7-774D-4170-98EA-A13667AE6218}

Windows Live Writer-->MsiExec.exe /X{7E017923-16F8-4E32-94EF-0A150BD196FE}

Windows Live Writer-->MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04}

Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}

WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe

======Security center information======

AS: Windows Defender

======System event log======

Computer Name: PC_van_Mel

Event Code: 7036

Message: De Microsoft Software Shadow Copy Provider-service heeft nu de status gestopt.

Record Number: 404636

Source Name: Service Control Manager

Time Written: 20130709073708.000000-000

Event Type: Informatie

User:

Computer Name: PC_van_Mel

Event Code: 7036

Message: De Google Updateservice (gupdate1c9b462bb812ed0)-service heeft nu de status gestopt.

Record Number: 404635

Source Name: Service Control Manager

Time Written: 20130709073649.000000-000

Event Type: Informatie

User:

Computer Name: PC_van_Mel

Event Code: 7036

Message: De Google Updateservice (gupdate1c9b462bb812ed0)-service heeft nu de status wordt uitgevoerd.

Record Number: 404634

Source Name: Service Control Manager

Time Written: 20130709073612.000000-000

Event Type: Informatie

User:

Computer Name: PC_van_Mel

Event Code: 10029

Message: DCOM heeft de service gupdate1c9b462bb812ed0 met argumenten "/comsvc" gestart om de server te kunnen uitvoeren:

{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Record Number: 404633

Source Name: Microsoft-Windows-DistributedCOM

Time Written: 20130709073611.000000-000

Event Type: Informatie

User:

Computer Name: PC_van_Mel

Event Code: 19

Message: Installatie voltooid: de volgende update is geïnstalleerd: Definition Update for Windows Defender - KB915597 (Definition 1.153.1573.0)

Record Number: 404632

Source Name: Microsoft-Windows-WindowsUpdateClient

Time Written: 20130709073550.546311-000

Event Type: Informatie

User: NT AUTHORITY\SYSTEEM

=====Application event log=====

Computer Name: PC_VAN_MEL

Event Code: 100

Message:

Record Number: 110427

Source Name: Bonjour Service

Time Written: 20130404103530.000000-000

Event Type: Fout

User:

Computer Name: PC_VAN_MEL

Event Code: 100

Message:

Record Number: 110426

Source Name: Bonjour Service

Time Written: 20130404103530.000000-000

Event Type: Fout

User:

Computer Name: PC_VAN_MEL

Event Code: 100

Message:

Record Number: 110425

Source Name: Bonjour Service

Time Written: 20130404103530.000000-000

Event Type: Fout

User:

Computer Name: PC_VAN_MEL

Event Code: 100

Message:

Record Number: 110424

Source Name: Bonjour Service

Time Written: 20130404103529.000000-000

Event Type: Fout

User:

Computer Name: PC_VAN_MEL

Event Code: 100

Message:

Record Number: 110423

Source Name: Bonjour Service

Time Written: 20130404103529.000000-000

Event Type: Fout

User:

=====Security event log=====

Computer Name: PC_van_Mel

Event Code: 4648

Message: Poging tot aanmelden met expliciete referenties.

Onderwerp:

Beveiligings-id: S-1-5-18

Accountnaam: PC_VAN_MEL$

Accountdomein: WORKGROUP

Aanmeldings-id: 0x3e7

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Account waarvan de referenties zijn gebruikt:

Accountnaam: SYSTEEM

Accountdomein: NT AUTHORITY

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Doelserver:

Naam van doelserver: localhost

Aanvullende gegevens: localhost

Procesgegevens:

Proces-id: 0x324

Procesnaam: C:\Windows\System32\services.exe

Netwerkgegevens:

Netwerkadres: -

Poort: -

Deze gebeurtenis wordt gegenereerd wanneer een proces probeert zich op een account aan te melden door expliciet de referenties van die account op te geven. Meestal gebeurt dit in batchconfiguraties zoals geplande taken, of bij gebruik van de opdracht Uitvoeren als.

Record Number: 105562

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130321063656.499405-000

Event Type: Controle geslaagd

User:

Computer Name: PC_van_Mel

Event Code: 4672

Message: Speciale bevoegdheden toegewezen aan nieuwe aanmelding.

Onderwerp:

Beveiligings-id: S-1-5-21-2573614616-3536340799-1106661244-1000

Accountnaam: Mel

Accountdomein: PC_van_Mel

Aanmeldings-id: 0x2fe5b

Bevoegdheden: SeSecurityPrivilege

SeTakeOwnershipPrivilege

SeLoadDriverPrivilege

SeBackupPrivilege

SeRestorePrivilege

SeDebugPrivilege

SeSystemEnvironmentPrivilege

SeImpersonatePrivilege

Record Number: 105561

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130321063647.981805-000

Event Type: Controle geslaagd

User:

Computer Name: PC_van_Mel

Event Code: 4624

Message: Er is een account aangemeld.

Onderwerp:

Beveiligings-id: S-1-5-18

Accountnaam: PC_VAN_MEL$

Accountdomein: WORKGROUP

Aanmeldings-id: 0x3e7

Aanmeldingstype: 2

Nieuwe aanmelding:

Beveiligings-id: S-1-5-21-2573614616-3536340799-1106661244-1000

Accountnaam: Mel

Accountdomein: PC_van_Mel

Aanmeldings-id: 0x2feae

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Procesgegevens:

Proces-id: 0x314

Naam proces: C:\Windows\System32\winlogon.exe

Netwerkgegevens:

Naam van werkstation: PC_VAN_MEL

Netwerkadres van bron: 127.0.0.1

Poort van bron: 0

Gedetailleerde verificatiegegevens:

Aanmeldingsproces: User32

Verificatiepakket: Negotiate

Doorgezette services: -

Pakketnaam (alleen NTLM): -

Sleutellengte: 0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.

- Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.

- In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.

- Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.

- Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.

Record Number: 105560

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130321063647.981805-000

Event Type: Controle geslaagd

User:

Computer Name: PC_van_Mel

Event Code: 4624

Message: Er is een account aangemeld.

Onderwerp:

Beveiligings-id: S-1-5-18

Accountnaam: PC_VAN_MEL$

Accountdomein: WORKGROUP

Aanmeldings-id: 0x3e7

Aanmeldingstype: 2

Nieuwe aanmelding:

Beveiligings-id: S-1-5-21-2573614616-3536340799-1106661244-1000

Accountnaam: Mel

Accountdomein: PC_van_Mel

Aanmeldings-id: 0x2fe5b

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Procesgegevens:

Proces-id: 0x314

Naam proces: C:\Windows\System32\winlogon.exe

Netwerkgegevens:

Naam van werkstation: PC_VAN_MEL

Netwerkadres van bron: 127.0.0.1

Poort van bron: 0

Gedetailleerde verificatiegegevens:

Aanmeldingsproces: User32

Verificatiepakket: Negotiate

Doorgezette services: -

Pakketnaam (alleen NTLM): -

Sleutellengte: 0

Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen.

De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe.

In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk).

Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld.

In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn.

De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag.

- Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis.

- In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt.

- Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt.

- Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd.

Record Number: 105559

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130321063647.981805-000

Event Type: Controle geslaagd

User:

Computer Name: PC_van_Mel

Event Code: 4648

Message: Poging tot aanmelden met expliciete referenties.

Onderwerp:

Beveiligings-id: S-1-5-18

Accountnaam: PC_VAN_MEL$

Accountdomein: WORKGROUP

Aanmeldings-id: 0x3e7

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Account waarvan de referenties zijn gebruikt:

Accountnaam: Mel

Accountdomein: PC_van_Mel

Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000}

Doelserver:

Naam van doelserver: localhost

Aanvullende gegevens: localhost

Procesgegevens:

Proces-id: 0x314

Procesnaam: C:\Windows\System32\winlogon.exe

Netwerkgegevens:

Netwerkadres: 127.0.0.1

Poort: 0

Deze gebeurtenis wordt gegenereerd wanneer een proces probeert zich op een account aan te melden door expliciet de referenties van die account op te geven. Meestal gebeurt dit in batchconfiguraties zoals geplande taken, of bij gebruik van de opdracht Uitvoeren als.

Record Number: 105558

Source Name: Microsoft-Windows-Security-Auditing

Time Written: 20130321063647.981805-000

Event Type: Controle geslaagd

User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"Path"=C:\Program Files\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Smart Projects\IsoBuster;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Windows Live\Shared

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC

"PROCESSOR_ARCHITECTURE"=x86

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

"USERNAME"=SYSTEM

"windir"=%SystemRoot%

"PROCESSOR_LEVEL"=6

"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 22 Stepping 1, GenuineIntel

"PROCESSOR_REVISION"=1601

"NUMBER_OF_PROCESSORS"=1

"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat

"DFSTRACINGON"=FALSE

"Pathtem"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem

"NTIPath"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\NewTech Infosystems\NTI Backup Now 5\;

"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\

-----------------EOF-----------------

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
firefoxlook; 
emptyfolderscheck;delete 
 {30F9B915-B755-4826-820B-08FBA6BD249D};c
 C:\Program Files\ConduitEngine;fs
 {326E768D-4182-46FD-9C16-1449A49795F4};c
 {EE932B49-D5C0-4D19-A3DA-CE0849258DE6};c
 C:\Program Files\Common Files\DVDVideoSoft;fs
 {30F9B915-B755-4826-820B-08FBA6BD249D};c
 OurBabyMaker_27bar Uninstall;s
 removeiMeshdatamngr;s
 InstallShieldSetup;s
 BrandClearStubs;s
 NoIE4StubProcessing;s
 aswredemption.dll;s
 InstallShieldSetup1;s
 {CC450D71-CC90-424C-8638-1F2DBAC87A54};c
 Boonty Games;s
 C:\Program Files\Common Files\BOONTY Shared;fs
 PCTAVSvc;s
 C:\Program Files\PC Tools AntiVirus;fs
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}];r
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}];r
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce];r
 "OurBabyMaker_27bar Uninstall"=-;r
 "InstallShieldSetup"=-;r
 "BrandClearStubs"=-;r
 "NoIE4StubProcessing"=-;r
 "aswredemption.dll"=-;r
 "removeiMeshdatamngr"=-;r
 "InstallShieldSetup1"=-;r
 C:\found.008;fs
 C:\found.007;fs
 C:\Program Files\Uniblue\DriverScanner;fs
 C:\Windows\tasks\DriverCure.job;f
 C:\Windows\tasks\DriverScanner.job;f
 C:\Windows\tasks\dsmonitor.job;f
 startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Firefox Defaults
  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
MellaBella3 Groentje

MellaBella3

Geplaatst:
  • Auteur
Geplaatst:

Hallo,

Als ik op 'uitvoeren als administrator' klik dan verschijnt dit schermpje van Windows script host: Kan script-engine VBScript voor script C:\Users\Mel\Appdata\Local\Temp\drt.vbs niet vinden

doe ik iets verkeerd?

- - - Updated - - -

Ik heb het scherm al hoor, ik moet dus geen administrator gebruiken.

Link naar reactie
Delen op andere sites
MellaBella3 Groentje

MellaBella3

Geplaatst:
  • Auteur
Geplaatst:

Zoek.exe Version 4.0.0.5 Updated 24-November-2013

Tool run by Mel on za 30-11-2013 at 18:33:29,57.

Windows Vista Home Basic 6.0.6002 Service Pack 2 x86 WMI=failure

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Mel\Desktop\zoek.exe [script inserted] [Checkboxes used]

==== System Restore Info ======================

30-11-2013 19:11:37 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\Gamenext deleted successfully

C:\Program Files\iMesh Applications deleted successfully

C:\Program Files\MSXML 4.0 deleted successfully

C:\Program Files\SlySoft deleted successfully

C:\Program Files\Webteh deleted successfully

C:\ProgramData\Big Fish Games deleted successfully

C:\ProgramData\Browser Manager deleted successfully

C:\ProgramData\NtiDvdCopy deleted successfully

C:\ProgramData\Oracle deleted successfully

C:\ProgramData\Real deleted successfully

C:\Users\Mel\AppData\Roaming\Solvusoft deleted successfully

C:\Users\Mel\AppData\Roaming\Ukky deleted successfully

C:\Users\Mel\AppData\Roaming\WinRAR deleted successfully

C:\Users\Mel\AppData\Roaming\Xilisoft deleted successfully

C:\Users\Mel\AppData\Local\Conduit deleted successfully

C:\Users\Mel\AppData\Local\PackageAware deleted successfully

C:\Users\Mel\AppData\Local\Real deleted successfully

C:\Users\Mel\AppData\Local\WMTools Downloaded Files deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\SearchScopes\{41396b1b-447e-473b-a34b-bb583136c7fc} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} deleted successfully

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CC450D71-CC90-424C-8638-1F2DBAC87A54} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{CC450D71-CC90-424C-8638-1F2DBAC87A54} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PCTAVSvc deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater17.1.2 deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"OurBabyMaker_27bar Uninstall"=-

"InstallShieldSetup"=-

"BrandClearStubs"=-

"NoIE4StubProcessing"=-

"aswredemption.dll"=-

"removeiMeshdatamngr"=-

"InstallShieldSetup1"=-

==== Deleting Files \ Folders ======================

C:\Program Files\PC Tools AntiVirus not found

C:\Program Files\ConduitEngine deleted

C:\Program Files\Common Files\DVDVideoSoft deleted

C:\Program Files\Common Files\BOONTY Shared deleted

C:\found.008 deleted

C:\found.007 deleted

C:\Program Files\Uniblue\SpeedUpMyPC deleted

C:\Program Files\ParetoLogic deleted

C:\Program Files\Common Files\ParetoLogic deleted

C:\Program Files\LAVMediaCodec deleted

C:\Program Files\GamesBar deleted

C:\extensions deleted

C:\found.000 deleted

C:\found.001 deleted

C:\found.002 deleted

C:\found.003 deleted

C:\found.004 deleted

C:\found.005 deleted

C:\found.006 deleted

C:\Users\Mel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DriverScanner.lnk deleted

C:\Users\Mel\AppData\Roaming\Alawar deleted

C:\Users\Mel\AppData\Roaming\LimeWirePlus deleted

C:\Users\Mel\AppData\Roaming\eIntaller deleted

C:\Users\Mel\AppData\Roaming\DVDVideoSoftIEHelpers deleted

C:\Users\Mel\AppData\Roaming\DriverCure deleted

C:\ProgramData\DriverCure deleted

C:\ProgramData\boost_interprocess deleted

C:\ProgramData\ParetoLogic deleted

C:\ProgramData\Uniblue\DriverScanner deleted

C:\ProgramData\AVG Secure Search deleted

C:\ProgramData\Trymedia deleted

C:\Users\Mel\AppData\Local\AVG Secure Search deleted

C:\Users\Mel\AppData\Local\Pokki deleted

C:\Users\Mel\AppData\Local\SwvUpdater deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\DriverScanner deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParetoLogic deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue deleted

C:\Users\Mel\Downloads\avg_free_stb_all_2014_4116_cnet.exe deleted

C:\Users\Mel\Downloads\HKV-Coupon-970653 (1).pdf deleted

C:\Users\Mel\Downloads\HKV-Coupon-970653.pdf deleted

C:\Users\Mel\Downloads\FreeYouTubeToMP3Converter.exe deleted

C:\Users\Mel\AppData\LocalLow\AVG Secure Search deleted

C:\Users\Mel\AppData\LocalLow\boost_interprocess deleted

C:\Users\Mel\AppData\LocalLow\searchresultstb deleted

C:\Users\Mel\AppData\LocalLow\DataMngr deleted

C:\Users\Mel\AppData\LocalLow\PriceGong deleted

C:\Users\Mel\AppData\LocalLow\Conduit deleted

C:\Users\Mel\AppData\LocalLow\ConduitEngine deleted

C:\Users\Mel\AppData\LocalLow\Toolbar4 deleted

C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted

C:\Windows\wininit.ini deleted

C:\Windows\tasks\ParetoLogic Registration.job deleted

C:\Windows\tasks\ParetoLogic Registration3.job deleted

C:\Windows\tasks\ParetoLogic Update Version2.job deleted

C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job deleted

C:\Windows\tasks\ParetoLogic Update Version3.job deleted

C:\Windows\system32\tasks\RunAsStdUser Task deleted

C:\Windows\tasks\dsmonitor.job deleted

C:\END deleted

C:\Windows\system32\roboot.exe deleted

C:\Users\Public\Desktop\DriverScanner.lnk deleted

"C:\Windows\tasks\DriverCure.job" deleted

"C:\Windows\tasks\DriverScanner.job" deleted

"C:\Users\Mel\AppData\Roaming\Anna\ynegz.kec" deleted

"C:\Users\Mel\AppData\Roaming\Akviqe\ocky.irh" deleted

"C:\Users\Mel\AppData\Roaming\Anabel\save_00.sav" deleted

"C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe" deleted

"C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe" deleted

"C:\Program Files\AVG Secure Search\vprot.exe" deleted

"C:\Program Files\AVG Secure Search\vprot.exe" deleted

"C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.0.12\SiteSafety.dll" deleted

"C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2\log4cplusU.dll" deleted

"C:\Users\Mel\AppData\Roaming\Uniblue\DriverScanner\monitor.log" deleted

"C:\Users\Mel\AppData\Roaming\Anna" deleted

"C:\Users\Mel\AppData\Roaming\Akviqe" deleted

"C:\Users\Mel\AppData\Roaming\Anabel" deleted

"C:\Program Files\Uniblue\DriverScanner" deleted

"C:\Program Files\Uniblue\DriverScanner" deleted

"C:\Program Files\AVG Secure Search" deleted

"C:\Program Files\AVG Secure Search" deleted

"C:\Program Files\Common Files\AVG Secure Search" deleted

"C:\Users\Mel\AppData\Roaming\Uniblue" deleted

"C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller" deleted

"C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater" deleted

"C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.0.12" deleted

"C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.1.2" deleted

"C:\Users\Mel\AppData\Roaming\Uniblue\DriverScanner" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2013-11-30 13:38:40 466094E637732A9834710230CF700DC4 43152 ----a-w- C:\Windows\avastSS.scr

====== C:\Users\Mel\AppData\Local\Temp ====

2013-11-30 13:09:31 EFC281118CB8A07F10A93E16C1438AC3 466948 ----a-w- C:\Users\Mel\AppData\Local\Temp\uninst.exe

2013-11-30 13:06:08 17EE902D65EF1E2E2BFFC0FE2094EDC6 451152 ----a-w- C:\Users\Mel\AppData\Local\Temp\.zylominstallertemp1385816768\ZylomGameInstallerTemp.exe

====== Java Cache =====

====== C:\Windows\system32 =====

2013-11-30 14:17:12 9223A2810B73069F4A03A636052EF14A 264616 ----a-w- C:\Windows\System32\javaws.exe

2013-11-30 14:15:32 9BF46C7F21E75FA0BB03AA93368CC66C 94632 ----a-w- C:\Windows\System32\WindowsAccessBridge.dll

2013-11-30 14:15:31 DC1342498BEE7EF1646E9D63138B69CC 175016 ----a-w- C:\Windows\System32\javaw.exe

2013-11-30 14:15:27 658633D255FEF154EA1CB8705B4468C5 174504 ----a-w- C:\Windows\System32\java.exe

====== C:\Windows\system32\drivers =====

2013-11-30 13:39:19 BADA8FD627F1D0E22308211C33F0BDB5 178304 ----a-w- C:\Windows\System32\drivers\aswVmm.sys

2013-11-30 13:39:19 AB499F3325E62E157F8E8302065B1B30 57672 ----a-w- C:\Windows\System32\drivers\aswTdi.sys

2013-11-30 13:39:18 259E864BFB9268CD7CEFA5849A3B374B 403440 ----a-w- C:\Windows\System32\drivers\aswSP.sys

2013-11-30 13:39:17 F385467DF95D0A73775CB3B076B8B969 49944 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys

2013-11-30 13:39:16 BB27A67D7F465D2720D74B5223DD91E4 774392 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2013-11-30 13:39:14 AA3397F034871DE76A74585774029580 70384 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2013-11-30 13:39:13 74202D5A696A412733B387BD18400E4C 35656 ----a-w- C:\Windows\System32\drivers\aswFsBlk.sys

2013-11-30 13:39:12 9F597676EDA29D6619C5E76F523892D7 54832 ----a-w- C:\Windows\System32\drivers\aswRdr.sys

2013-11-05 20:50:48 9C7C45DE9E167F6268D32D6D10133F7D 120600 ----a-w- C:\Windows\System32\drivers\avgdiskx.sys

2013-11-04 20:57:30 C66B17D93F94622293608C2FB91C5806 209176 ----a-w- C:\Windows\System32\drivers\avgidsdriverx.sys

2013-10-31 22:00:28 578ECC3D911897B2C5B760EDAF8ED6CA 176952 ----a-w- C:\Windows\System32\drivers\avgldx86.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-11-30 15:50:09 -------- dc----w- C:\Program Files\trend micro

======= C: =====

====== C:\Users\Mel\AppData\Roaming ======

2013-11-29 08:21:38 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Trusteer

2013-11-21 17:28:21 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Temp

2013-11-21 17:28:21 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Microsoft Help

2013-11-21 17:28:21 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Microsoft

2013-11-21 17:28:21 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Google

2013-11-21 17:28:20 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Local\Trusteer

2013-11-21 17:28:19 -------- d-s---w- C:\Users\TEMP.PC_van_Mel\AppData\Roaming\Microsoft

2013-11-21 17:28:19 -------- d-----w- C:\Users\TEMP.PC_van_Mel\AppData\Roaming\TuneUp Software

2013-11-21 17:28:19 -------- d-----r- C:\Users\TEMP.PC_van_Mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2013-11-21 17:28:19 -------- d-----r- C:\Users\TEMP.PC_van_Mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

====== C:\Users\Mel ======

2013-11-30 15:42:13 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Mel\Downloads\RSIT (1).exe

2013-11-30 15:17:55 964F8D66B750F97A36309158EB4968E2 742313 ----a-w- C:\Users\Mel\Downloads\RSIT.exe

2013-11-30 14:26:05 7E89844169E755775F09AA4724680281 24489269 ----a-w- C:\Users\Mel\Downloads\vlc-2.1.1-win32 (1).exe

2013-11-30 14:15:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2013-11-30 13:57:59 58A1735CBCDB7171FF7AC31A00BC9A8B 24423733 ----a-w- C:\Users\Mel\Downloads\vlc-2.1.1-win32.exe

2013-11-30 13:57:19 AC924370C3A3EF6FCFEB4156356EB482 29040552 ----a-w- C:\Users\Mel\Downloads\jre-7u45-windows-i586.exe

2013-11-30 13:41:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast

2013-11-30 13:30:57 DA273435D552A5C346D65BD1CD1E56C8 4733592 ----a-w- C:\Users\Mel\Downloads\avast_free_antivirus_setup_online (1).exe

2013-11-30 13:03:22 CE2E04C5B0C4820E129886A874D92C03 4618136 ----a-w- C:\Users\Mel\Downloads\ccsetup408.exe

2013-11-28 08:13:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG

2013-11-21 18:09:07 -------- d-----r- C:\Windows\system32\config\systemprofile\Favorites

2013-11-21 18:08:35 -------- d-----r- C:\Windows\system32\config\systemprofile\Desktop

2013-11-21 17:28:18 -------- d--h--w- C:\Users\TEMP.PC_van_Mel\AppData

2013-11-21 17:28:18 -------- d-----w- C:\Users\TEMP.PC_van_Mel\Saved Games

2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Videos

2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Pictures

2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Music

2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Links

2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Favorites

2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Downloads

2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Documents

2013-11-21 17:28:18 -------- d-----r- C:\Users\TEMP.PC_van_Mel\Desktop

====== C: exe-files ==

2013-11-30 15:50:16 9A2347903D6EDB84C10F288BC0578C1C 388608 -c--a-w- C:\Program Files\trend micro\Mel.exe

2013-11-30 14:14:20 555651269833A415E1F9E594E8DD829F 146344 -c--a-w- C:\Program Files\Java\jre7\bin\unpack200.exe

2013-11-30 14:14:20 54A30377949D4984EE72C5510C58B83D 16296 -c--a-w- C:\Program Files\Java\jre7\bin\tnameserv.exe

2013-11-30 14:14:19 CC27986F45EF9FD700BC347355B002B3 15784 -c--a-w- C:\Program Files\Java\jre7\bin\rmid.exe

2013-11-30 14:14:19 738AF811C60870FB218D47C628D350AA 15784 -c--a-w- C:\Program Files\Java\jre7\bin\rmiregistry.exe

2013-11-30 14:14:19 707BFE32E04720B9D50562669A30F86C 49064 -c--a-w- C:\Program Files\Java\jre7\bin\ssvagent.exe

2013-11-30 14:14:19 3FB1EAAB3CD35126D1F3B9A0A5B7B2DC 15784 -c--a-w- C:\Program Files\Java\jre7\bin\policytool.exe

2013-11-30 14:14:19 15EBB4D4B54FCE42D8CB116145BB7EBA 15784 -c--a-w- C:\Program Files\Java\jre7\bin\servertool.exe

2013-11-30 14:14:18 5FA3FFE74E893E8A9443C2CF3DFA7A64 15784 -c--a-w- C:\Program Files\Java\jre7\bin\pack200.exe

2013-11-30 14:14:18 464358DE0429ABB319DFE3F5E5C85F77 15784 -c--a-w- C:\Program Files\Java\jre7\bin\orbd.exe

2013-11-30 14:14:17 CE10E75E10EB6952A7D813FA587EC632 15784 -c--a-w- C:\Program Files\Java\jre7\bin\ktab.exe

2013-11-30 14:14:17 CBFE91C51D4FA69FE9D140ABEB7E51DC 15784 -c--a-w- C:\Program Files\Java\jre7\bin\kinit.exe

2013-11-30 14:14:17 7814B0A3E6FE8FFF31B7108D16FC4591 15784 -c--a-w- C:\Program Files\Java\jre7\bin\keytool.exe

2013-11-30 14:14:17 5721DA732075E01569A287767CBCFA5A 15784 -c--a-w- C:\Program Files\Java\jre7\bin\klist.exe

2013-11-30 14:14:16 80A79264302910C7C24BA7E44267EFEF 182696 -c--a-w- C:\Program Files\Java\jre7\bin\jqs.exe

2013-11-30 14:14:14 7F55715977ECF32633857F16980F008E 52648 -c--a-w- C:\Program Files\Java\jre7\bin\jp2launcher.exe

2013-11-30 14:14:10 DC1342498BEE7EF1646E9D63138B69CC 175016 -c--a-w- C:\Program Files\Java\jre7\bin\javaw.exe

2013-11-30 14:14:10 9223A2810B73069F4A03A636052EF14A 264616 -c--a-w- C:\Program Files\Java\jre7\bin\javaws.exe

2013-11-30 14:14:09 83D790AA563347A026771D50E3D07A9B 66984 -c--a-w- C:\Program Files\Java\jre7\bin\javacpl.exe

2013-11-30 14:14:07 658633D255FEF154EA1CB8705B4468C5 174504 -c--a-w- C:\Program Files\Java\jre7\bin\java.exe

2013-11-30 14:14:07 2F7EBCD8FB6557997F0583508FFFE6B1 15784 -c--a-w- C:\Program Files\Java\jre7\bin\java-rmi.exe

2013-11-30 14:14:05 A9743D2D69B80800FEA5F24E7C4B02B3 48040 -c--a-w- C:\Program Files\Java\jre7\bin\jabswitch.exe

2013-11-28 08:01:12 1616A89B0034F53FC6760B9DB7185B33 5927000 -c--a-w- C:\Program Files\AVG\AVG2014\avgmfapx.exe

=== C: other files ==

2013-11-30 17:42:02 0BE568FD1E7D6C6D64D2272649F5C716 111 ----a-w- C:\Users\Mel\AppData\Local\Temp\scripttest.vbs

2013-11-30 14:14:21 0A35B7026416325DE4A3EEC131F6EE2C 18636 -c--a-w- C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip

2013-11-30 13:24:58 52627B676BDB5F8E928CB66C79908B6B 3103 ----a-w- C:\Users\Mel\AppData\Local\Temp\kill_PokkiDownloadHelper.vbs

2013-11-27 08:02:05 1CA4E115735C35D23945B5DF9B61A2F6 87923 ----a-w- C:\ProgramData\AVG2014\IDS\outbox\tmp_60c4d542-4948-47d3-9dd7-d157aaaad865.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-2573614616-3536340799-1106661244-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Apoint"="C:\Program Files\Apoint2K\Apoint.exe"

"RtHDVCpl"="RtHDVCpl.exe"

"Skytel"="Skytel.exe"

"RIMBBLaunchAgent.exe"="C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"DivXUpdate"="C:\Program Files\DivX\DivX Update\DivXUpdate.exe /CHECKNOW"

"AVG_UI"="C:\Program Files\AVG\AVG2014\avgui.exe /TRAYONLY"

"vProt"="C:\Program Files\AVG Secure Search\vprot.exe"

"snp2uvc"="C:\Windows\vsnp2uvc.exe"

"tsnp2uvc"="C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe"

"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

"ITSecMng"="%ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"BrowserBallot"="browserchoice.exe"

"aswAhAScr.dll"="C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\AhAScr.dll"

"aswasOutExt.dll"="C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\asOutExt.dll"

"aswaswOtl.dll"="C:\Program Files\Alwil Software\Avast5\aswRegSvr.exe C:\Program Files\Alwil Software\Avast5\aswOtl.dll"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=" C:\\PROGRA~1\\Google\\GOOGLE~1\\GOEC62~1.DLL"

==== Startup Folders ======================

2009-03-07 22:54:15 1030 ----a-w- C:\Users\Mel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0 .lnk

2009-12-23 18:21:46 821 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk

2013-05-17 17:35:44 1913 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [30-11-2013 15:08]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [03-04-2009 14:46]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [03-04-2009 14:46]

C:\Windows\tasks\Norton Security Scan for Mel.job --ah----- C:SC:\Program Files\Norton Security Scan\Norton Security Scan\Engine\2.7.3.34\Nss.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\Norton Security Scan for Mel" [C:\Program Files\Norton Security Scan\Norton Security Scan\Engine\2.7.3.34\Nss.exe]

"C:\Windows\system32\tasks\RunAsStdUser Task for VeohWebPlayer" [C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe]

"C:\Windows\system32\tasks\{1877F859-7EE3-4221-B282-F152720CA28D}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype

"C:\Windows\system32\tasks\{3912CB55-6503-4F18-8F91-A59486C775C5}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype

"C:\Windows\system32\tasks\{412763AC-AA11-4ABF-9420-105EFC6EB248}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.124.259/nl/go/help.faq.installer?source=lightinstaller&LastError=1618]

"C:\Windows\system32\tasks\{685C647F-C9FF-4886-B84D-84553ADB524B}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype

"C:\Windows\system32\tasks\{7389AF99-20C4-4147-BC0E-065C6CC11D06}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.124.259/nl/go/help.faq.installer?source=lightinstaller&LastError=1618]

"C:\Windows\system32\tasks\{A1D404D9-5183-4215-A141-601CC5E86897}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype

"C:\Windows\system32\tasks\{A5A37518-4D34-43AB-AF2E-3E59670581D8}" ["C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.124.259/nl/go/help.faq.installer?source=lightinstaller&LastError=1618]

"C:\Windows\system32\tasks\{B7DA7F00-B22E-401E-BAC6-3E7E9C73627B}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype

"C:\Windows\system32\tasks\{FE477C1C-1D85-46AF-ACF1-B0D9585BA005}" ["c:\program files\internet explorer\iexplore.exe" ]Download Skype op uw computer ? Mac, Windows, Linux ? Skype

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"="C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5" [09-06-2013 15:08]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[30-11-2013 14:38]

lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02-10-2012 12:14]

ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Secure Search\ChromeExt\17.1.2.1\avg.crx[]

nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[06-05-2013 09:12]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[]

Skype Click to Call - Mel - Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

DVDVideoSoft Browser Extension - Mel - Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp

Google Wallet - Mel - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

DivX Plus Web Player HTML5 \u003Cvideo\u003E - Mel - Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm

==== Chrome Fix ======================

C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.nl/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://nl.woofi.info/"

"Default_Page_URL"="http://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=&Br=EM&Loc=DUT_DE&Sys=PTB&M=eMachines E510"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]

@="http://www.google.com/search?q=%s"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"SearchAssistant"="http://www.google.com/ie"

"Default_Search_URL"="http://www.google.com/ie"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.nl/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="http://search.msn.com/results.asp?q=%s"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"

"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{4F11ACBB-393F-4c86-A214-FF3D0D155CC3} Burn4Free CD and DVD Werkbalk Url="http://search.burn4free-toolbar.com/search?p=Q&ts=ne&w={searchTerms}&csrc=search-field"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1 deleted successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Mel\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Mel\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\TEMP.PC_van_Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QHET3B51 will be deleted at reboot

C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Mel\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QHET3B51" not found

==== EOF on za 30-11-2013 at 21:07:38,04 ======================

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Het zal je zelf al wel opgevallen zijn in dit logje, dat er een berg rotzooi van de PC verwijderd is. We zijn er nog niet helemaal:

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  C:\Users\Mel\Downloads\RSIT (1).exe;f
 C:\Users\Mel\Downloads\vlc-2.1.1-win32 (1).exe;f
 C:\Users\Mel\Downloads\avast_free_antivirus_setup_online (1).exe;f
 C:\Windows\system32\tasks\{1877F859-7EE3-4221-B282-F152720CA28D};fs
 C:\Windows\system32\tasks\{3912CB55-6503-4F18-8F91-A59486C775C5};fs
 C:\Windows\system32\tasks\{412763AC-AA11-4ABF-9420-105EFC6EB248};fs
 C:\Windows\system32\tasks\{685C647F-C9FF-4886-B84D-84553ADB524B};fs
 C:\Windows\system32\tasks\{7389AF99-20C4-4147-BC0E-065C6CC11D06};fs
 C:\Windows\system32\tasks\{A1D404D9-5183-4215-A141-601CC5E86897};fs
 C:\Windows\system32\tasks\{A5A37518-4D34-43AB-AF2E-3E59670581D8};fs
 C:\Windows\system32\tasks\{B7DA7F00-B22E-401E-BAC6-3E7E9C73627B};fs
 C:\Windows\system32\tasks\{FE477C1C-1D85-46AF-ACF1-B0D9585BA005};fs
 autoclean;

  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
MellaBella3 Groentje

MellaBella3

Geplaatst:
  • Auteur
Geplaatst:

Zoek.exe Version 4.0.0.5 Updated 30-November-2013

Tool run by Mel on zo 01-12-2013 at 11:17:24,23.

Microsoft® Windows Vista™ Home Basic 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Mel\Desktop\zoek.exe [script inserted]

==== Older Logs ======================

C:\zoek-results2013-11-30-200738.log 32464 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\Windows\system32\tasks\{1877F859-7EE3-4221-B282-F152720CA28D} deleted

C:\Windows\system32\tasks\{3912CB55-6503-4F18-8F91-A59486C775C5} deleted

C:\Windows\system32\tasks\{412763AC-AA11-4ABF-9420-105EFC6EB248} deleted

C:\Windows\system32\tasks\{685C647F-C9FF-4886-B84D-84553ADB524B} deleted

C:\Windows\system32\tasks\{7389AF99-20C4-4147-BC0E-065C6CC11D06} deleted

C:\Windows\system32\tasks\{A1D404D9-5183-4215-A141-601CC5E86897} deleted

C:\Windows\system32\tasks\{A5A37518-4D34-43AB-AF2E-3E59670581D8} deleted

C:\Windows\system32\tasks\{B7DA7F00-B22E-401E-BAC6-3E7E9C73627B} deleted

C:\Windows\system32\tasks\{FE477C1C-1D85-46AF-ACF1-B0D9585BA005} deleted

"C:\Users\Mel\Downloads\RSIT (1).exe" deleted

"C:\Users\Mel\Downloads\vlc-2.1.1-win32 (1).exe" deleted

"C:\Users\Mel\Downloads\avast_free_antivirus_setup_online (1).exe" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"="C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5" [09-06-2013 15:08]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[30-11-2013 14:38]

lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[02-10-2012 12:14]

nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[06-05-2013 09:12]

avast Online Security - Mel - Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

Skype Click to Call - Mel - Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.nl/"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.nl/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{4F11ACBB-393F-4c86-A214-FF3D0D155CC3} Burn4Free CD and DVD Werkbalk Url="http://search.burn4free-toolbar.com/search?p=Q&ts=ne&w={searchTerms}&csrc=search-field"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\TEMP.PC_van_Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Users\Mel\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Mel\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Mel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on zo 01-12-2013 at 12:52:04,32 ======================

Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.