Ga naar inhoud

http://systweak.com pop-up


Aanbevolen berichten

Beste allemaal

Sinds een paar dagen heb ik last van pop-ups welke opduiken zodra ik Facebook open.

Deze geven een melding dat mn C schijf bijna vol is en andere aanverwante problemen.

Wanneer ik deze probeer te sluiten opent een pagina van Systweak - Download Software utilities for Windows optimization, Scan & Clean Spyware for Free

Help ik wil hier graag vanaf.:thumpdown:

Alvast hartelijk bedankt voor je reactie

Gr Nelski

Link naar reactie
Delen op andere sites

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Link naar reactie
Delen op andere sites

Logfile of random's system information tool 1.09 (written by random/random)

Run by Nelleke at 2013-12-15 10:43:06

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 862 GB (61%) free of 1417 GB

Total RAM: 6103 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 10:43:08, on 15-12-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe

C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe

C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe

C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe

C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe

C:\Program Files (x86)\QuickTime\QTTask.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\CNYHKEY.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe

Z:\utorrent versies\utorrent175.exe

C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe

c:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpressServer.exe

C:\PROGRA~2\CYBERL~1\SHARED~1\RICHVI~1.EXE

C:\Program Files (x86)\Google\Picasa3\Picasa3.exe

C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files\trend micro\Nelleke.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R3 - URLSearchHook: (no name) - {95324e44-4b0a-47a9-8f77-9c6415e51c29} - (no file)

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe

O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [bATINDICATOR] C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe

O4 - HKLM\..\Run: [LaunchHPOSIAPP] C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe

O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [DiscWizardMonitor.exe] "C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [Reader Application Helper] C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted IP range: http://192.168.1.1

O15 - ESC Trusted IP range: http://192.168.1.1

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: devolo Network Service (DevoloNetworkService) - Unknown owner - C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe

O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Realtek11nSU - Realtek - C:\Program Files (x86)\11n USB Wireless LAN Utility\RtlService.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Seagate Scheduler2 Service (SgtSch2Svc) - Seagate - C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 12548 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

"C:\Windows\system32\nvvsvc.exe"

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k LocalService

"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"

"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS

C:\Windows\system32\svchost.exe -k NetworkService

"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"

C:\Windows\system32\nvvsvc.exe -session -first

C:\Windows\System32\spoolsv.exe

taskeng.exe {781D86FA-8542-48E6-8385-B5B175B81995}

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"taskhost.exe"

"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

taskeng.exe {47965E97-50E5-4154-8FDD-318A48C90971}

"C:\Program Files\Bonjour\mDNSResponder.exe"

"C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe"

"C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe"

"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"

C:\Windows\SysWOW64\ezSharedSvcHost.exe

"c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"

"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService

"C:\Program Files (x86)\11n USB Wireless LAN Utility\RtlService.exe"

"C:\Program Files (x86)\11n USB Wireless LAN Utility\RtWlan.exe" /H

"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"

"C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe"

"C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe" /rep_new

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"

WLIDSvcM.exe 3420

"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"

C:\Windows\System32\alg.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-47235e73-b232-4743-bcc3-01ad3bfcfb38 -SystemEventPortName:HostProcess-8809bd22-536c-4d41-b97d-aca6381b7164 -IoCancelEventPortName:HostProcess-6600ffef-ab10-462a-9676-6d7274eb785b -NonStateChangingEventPortName:HostProcess-7255e765-90b4-4f74-b486-9ad0f250de0a -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:34b1b836-3818-401a-948c-85570a6b866f -DeviceGroupId:WpdFsGroup

"C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe"

"C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background

"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice

"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun

"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"

"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1

"C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

"C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe"

"C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe"

"C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"C:\Program Files (x86)\iTunes\iTunesHelper.exe"

"C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\CNYHKEY.exe"

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe" -Embedding

"C:\Program Files\iPod\bin\iPodService.exe"

"Z:\utorrent versies\utorrent175.exe" "Z:\Killing Season (2013) 1080p AC3+DTS NL Subs.mkv.torrent"

"C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" view=SYSTRAY

"c:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpressServer.exe"

"C:\PROGRA~2\CYBERL~1\SHARED~1\RICHVI~1.EXE" -Embedding

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"

"C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe"

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

C:\Windows\System32\svchost.exe -k secsvcs

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}

C:\Windows\system32\svchost.exe -k SDRSVC

"C:\Program Files (x86)\Google\Picasa3\Picasa3.exe" "N:\"

"C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe"

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe22_ Global\UsGthrCtrlFltPipeMssGthrPipe22 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\sppsvc.exe

"C:\Windows\system32\SearchFilterHost.exe" 0 544 548 556 65536 552

C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

"C:\Users\Nelleke\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001Core.job

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001UA.job

C:\Windows\tasks\HPCeeScheduleForerik.job

C:\Windows\tasks\HPCeeScheduleForNelleke.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005

prefs.js - "browser.startup.homepage" - "http://www.allemaal-series.org/browse.php"

prefs.js - "keyword.enabled" - false

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 11.9.900.170 Plugin

"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]

"Description"=iTunes Detector Plug-in

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]

"Description"=

"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]

"Description"=Picasa3 plugin

"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]

"Description"=Microsoft SharePoint Plug-in for Firefox

"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@sony.com/ReaderDesktop]

"Description"=Reader for PC is installed if this plugin exists

"Path"=C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]

"Description"=WildTangent Games App V2 Presence Detector Plugin

"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 11.9.900.170 Plugin

"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\

{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}

C:\Program Files (x86)\Mozilla Firefox\components\

nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\

nppdf32.dll

npqtplugin.dll

npqtplugin2.dll

npqtplugin3.dll

npqtplugin4.dll

npqtplugin5.dll

QuickTimePlugin.class

C:\Program Files (x86)\Mozilla Firefox\searchplugins\

yahoo.xml

C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\

en-US@dictionaries.addons.mozilla.org

feca4b87-3be4-43da-a1b1-137c24220968@jetpack

ffextension@weheartit.com

jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-06-13 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]

HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"hpsysdrv"=c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768]

"SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2010-01-18 568888]

"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-05-14 2692520]

"Seagate Scheduler2 Service"=C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe [2011-06-30 395152]

"MRT"=C:\Windows\system32\MRT.exe [2013-12-15 90708896]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2013-11-27 21720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]

"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-09-14 59720]

"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-09-15 59720]

"Facebook Update"=C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096]

"Spotify Web Helper"=C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2013-12-13 1168896]

"HPAdvisorDock"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe [2010-09-28 1715768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AllShareAgent]

C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2009-10-15 563736]

"IAStorIcon"=C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]

"BATINDICATOR"=C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe [2009-05-09 2068992]

"LaunchHPOSIAPP"=C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe [2009-04-04 385024]

"AppleSyncNotifier"=C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2011-09-27 59240]

"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

"DiscWizardMonitor.exe"=C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe [2011-06-30 2638152]

"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]

"Reader Application Helper"=C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [2013-11-27 899400]

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392]

""= []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="c:\progra~3\bitguard\271832~1.68\{16cdf~1\loader.dll c:\progra~3\bitguard\271769~1.27\{16cdf~1\loader.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2013-11-12 243200]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"DisableLockWorkstation"=0

"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"HideFastUserSwitching"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"EnableShellExecuteHooks"=1

"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=lvcod64.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"MSVideo"=vfwwdm32.dll

"MSVideo8"=VfWWDM32.dll

"wave5"=wdmaud.drv

"midi5"=wdmaud.drv

"mixer5"=wdmaud.drv

"aux1"=wdmaud.drv

"wave6"=wdmaud.drv

"midi6"=wdmaud.drv

"mixer6"=wdmaud.drv

"aux2"=wdmaud.drv

"wave7"=wdmaud.drv

"midi7"=wdmaud.drv

"mixer7"=wdmaud.drv

"aux3"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"wave3"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

"wave4"=wdmaud.drv

"midi4"=wdmaud.drv

"mixer4"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-12-15 10:43:06 ----D---- C:\rsit

2013-12-15 10:43:06 ----D---- C:\Program Files\trend micro

2013-12-14 21:57:20 ----D---- C:\Program Files (x86)\Sony

2013-12-13 20:27:04 ----D---- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}

2013-12-13 20:27:01 ----D---- C:\ProgramData\ProductData

2013-12-13 20:16:06 ----A---- C:\Windows\system32\RtNicProp64.dll

2013-12-13 20:16:05 ----A---- C:\Windows\system32\drivers\Rt64win7.sys

2013-12-13 20:14:41 ----D---- C:\Windows\system32\SRSLabs

2013-12-13 20:14:21 ----A---- C:\Windows\system32\SRSTSH64.dll

2013-12-13 20:14:21 ----A---- C:\Windows\system32\SRSHP64.dll

2013-12-13 20:14:20 ----A---- C:\Windows\system32\RtPgEx64.dll

2013-12-13 20:14:20 ----A---- C:\Windows\system32\RtlCPAPI64.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtkCoLDR64.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtkCfg64.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtkAPO64.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtkApi64.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\RTEEP64A.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\RTEEL64A.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\RTEEG64A.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\RTEED64A.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\RtDataProc64.dll

2013-12-13 20:14:19 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys

2013-12-13 20:14:18 ----A---- C:\Windows\system32\RTCOM64.dll

2013-12-13 20:14:18 ----A---- C:\Windows\system32\RP3DHT64.dll

2013-12-13 20:14:18 ----A---- C:\Windows\system32\RP3DAA64.dll

2013-12-13 20:14:18 ----A---- C:\Windows\system32\RCoRes64.dat

2013-12-13 20:14:18 ----A---- C:\Windows\system32\RCoInstII64.dll

2013-12-13 20:14:18 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT

2013-12-13 20:14:13 ----A---- C:\Windows\system32\FMAPO64.dll

2013-12-13 20:14:12 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll

2013-12-13 20:14:11 ----A---- C:\Windows\system32\AERTAR64.dll

2013-12-13 20:14:11 ----A---- C:\Windows\system32\AERTAC64.dll

2013-12-13 20:13:17 ----A---- C:\Windows\system32\nvhdap64.dll

2013-12-13 20:13:17 ----A---- C:\Windows\system32\nvhdagenco64.dll

2013-12-13 20:13:16 ----A---- C:\Windows\system32\drivers\nvhda64v.sys

2013-12-13 20:10:56 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll

2013-12-13 20:10:56 ----A---- C:\Windows\SYSWOW64\nvopencl.dll

2013-12-13 20:10:56 ----A---- C:\Windows\system32\nvwgf2umx.dll

2013-12-13 20:10:56 ----A---- C:\Windows\system32\nvopencl.dll

2013-12-13 20:10:56 ----A---- C:\Windows\system32\nvoglv64.dll

2013-12-13 20:10:55 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll

2013-12-13 20:10:55 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll

2013-12-13 20:10:55 ----A---- C:\Windows\system32\nvoglshim64.dll

2013-12-13 20:10:54 ----A---- C:\Windows\SYSWOW64\nvinit.dll

2013-12-13 20:10:54 ----A---- C:\Windows\SYSWOW64\NvIFR.dll

2013-12-13 20:10:54 ----A---- C:\Windows\system32\nvinitx.dll

2013-12-13 20:10:54 ----A---- C:\Windows\system32\NvIFR64.dll

2013-12-13 20:10:54 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys

2013-12-13 20:10:53 ----A---- C:\Windows\SYSWOW64\NvFBC.dll

2013-12-13 20:10:53 ----A---- C:\Windows\system32\NvFBC64.dll

2013-12-13 20:10:52 ----A---- C:\Windows\system32\nvdispgenco6433182.dll

2013-12-13 20:10:52 ----A---- C:\Windows\system32\nvdispco6433182.dll

2013-12-13 20:10:48 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll

2013-12-13 20:10:48 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll

2013-12-13 20:10:48 ----A---- C:\Windows\SYSWOW64\nvcuda.dll

2013-12-13 20:10:48 ----A---- C:\Windows\system32\nvd3dumx.dll

2013-12-13 20:10:48 ----A---- C:\Windows\system32\nvcuvid.dll

2013-12-13 20:10:48 ----A---- C:\Windows\system32\nvcuvenc.dll

2013-12-13 20:10:47 ----A---- C:\Windows\system32\nvcuda.dll

2013-12-13 20:10:42 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll

2013-12-13 20:10:41 ----A---- C:\Windows\system32\nvcompiler.dll

2013-12-13 20:10:40 ----A---- C:\Windows\SYSWOW64\nvapi.dll

2013-12-13 20:07:42 ----D---- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}

2013-12-13 20:07:39 ----D---- C:\IObit

2013-12-13 20:07:38 ----D---- C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F}

2013-12-13 20:07:00 ----D---- C:\ProgramData\IObit

2013-12-13 20:06:44 ----D---- C:\Users\Nelleke\AppData\Roaming\IObit

2013-12-13 20:06:39 ----D---- C:\Program Files (x86)\IObit

2013-12-11 22:19:40 ----D---- C:\ProgramData\Licenses

2013-12-11 22:19:36 ----D---- C:\Program Files (x86)\SpywareBlaster

2013-12-11 22:19:36 ----A---- C:\Windows\SYSWOW64\MSSTDFMT.DLL

2013-12-11 19:22:24 ----A---- C:\Windows\ntbtlog.txt

2013-12-11 13:09:20 ----D---- C:\Users\Nelleke\AppData\Roaming\AVAST Software

2013-12-11 13:07:26 ----A---- C:\Windows\system32\aswBoot.exe

2013-12-11 13:04:06 ----D---- C:\ProgramData\AVAST Software

2013-12-11 03:02:13 ----A---- C:\Windows\system32\wmploc.DLL

2013-12-11 03:02:12 ----A---- C:\Windows\SYSWOW64\wmploc.DLL

2013-12-11 03:02:12 ----A---- C:\Windows\SYSWOW64\wmp.dll

2013-12-11 03:02:10 ----A---- C:\Windows\system32\wmp.dll

2013-12-11 03:01:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll

2013-12-11 03:01:15 ----A---- C:\Windows\system32\ieui.dll

2013-12-11 03:01:14 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2013-12-11 03:01:14 ----A---- C:\Windows\SYSWOW64\ieui.dll

2013-12-11 03:01:14 ----A---- C:\Windows\system32\jsproxy.dll

2013-12-11 03:01:14 ----A---- C:\Windows\system32\ieUnatt.exe

2013-12-11 03:01:14 ----A---- C:\Windows\system32\iesetup.dll

2013-12-11 03:01:14 ----A---- C:\Windows\system32\iernonce.dll

2013-12-11 03:01:14 ----A---- C:\Windows\system32\ieetwproxystub.dll

2013-12-11 03:01:14 ----A---- C:\Windows\system32\ieetwcollector.exe

2013-12-11 03:01:14 ----A---- C:\Windows\system32\ie4uinit.exe

2013-12-11 03:01:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

2013-12-11 03:01:13 ----A---- C:\Windows\system32\mshtml.dll

2013-12-11 03:01:13 ----A---- C:\Windows\system32\jscript9diag.dll

2013-12-11 03:01:12 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2013-12-11 03:01:12 ----A---- C:\Windows\system32\iertutil.dll

2013-12-11 03:01:12 ----A---- C:\Windows\system32\ieapfltr.dll

2013-12-11 03:01:11 ----A---- C:\Windows\SYSWOW64\wininet.dll

2013-12-11 03:01:11 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2013-12-11 03:01:11 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2013-12-11 03:01:11 ----A---- C:\Windows\system32\wininet.dll

2013-12-11 03:01:11 ----A---- C:\Windows\system32\urlmon.dll

2013-12-11 03:01:10 ----A---- C:\Windows\system32\ieframe.dll

2013-12-11 03:01:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2013-12-11 03:01:07 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2013-12-11 03:01:07 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2013-12-11 03:01:07 ----A---- C:\Windows\system32\jscript9.dll

2013-12-11 02:07:39 ----A---- C:\Windows\SYSWOW64\tzres.dll

2013-12-11 02:07:39 ----A---- C:\Windows\system32\tzres.dll

2013-12-11 02:02:33 ----A---- C:\Windows\SYSWOW64\msieftp.dll

2013-12-11 02:02:33 ----A---- C:\Windows\system32\msieftp.dll

2013-12-11 02:02:29 ----A---- C:\Windows\system32\win32k.sys

2013-12-11 02:02:11 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll

2013-12-11 02:02:11 ----A---- C:\Windows\system32\WMPhoto.dll

2013-12-11 02:01:53 ----A---- C:\Windows\SYSWOW64\imagehlp.dll

2013-12-11 02:01:53 ----A---- C:\Windows\system32\imagehlp.dll

2013-12-11 01:59:00 ----A---- C:\Windows\system32\drivers\portcls.sys

2013-12-11 01:59:00 ----A---- C:\Windows\system32\drivers\drmk.sys

2013-12-11 01:58:42 ----A---- C:\Windows\SYSWOW64\wscript.exe

2013-12-11 01:58:42 ----A---- C:\Windows\SYSWOW64\scrrun.dll

2013-12-11 01:58:42 ----A---- C:\Windows\SYSWOW64\cscript.exe

2013-12-11 01:58:42 ----A---- C:\Windows\system32\wscript.exe

2013-12-11 01:58:42 ----A---- C:\Windows\system32\scrrun.dll

2013-12-11 01:58:42 ----A---- C:\Windows\system32\cscript.exe

2013-12-07 22:15:50 ----D---- C:\Users\Nelleke\AppData\Roaming\Nero

2013-12-07 22:06:34 ----D---- C:\ProgramData\Nero

2013-12-02 18:46:38 ----D---- C:\ProgramData\APN

2013-12-01 21:17:12 ----D---- C:\Windows\Migration

======List of files/folders modified in the last 1 month======

2013-12-15 10:43:08 ----D---- C:\Windows\Prefetch

2013-12-15 10:43:07 ----D---- C:\Windows\Temp

2013-12-15 10:43:06 ----RD---- C:\Program Files

2013-12-15 10:42:55 ----D---- C:\Users\Nelleke\AppData\Roaming\uTorrent

2013-12-15 07:51:52 ----D---- C:\Windows\system32\config

2013-12-15 03:03:13 ----D---- C:\ProgramData

2013-12-15 03:00:34 ----D---- C:\Windows\system32\MRT

2013-12-15 03:00:34 ----D---- C:\Windows\debug

2013-12-15 03:00:32 ----A---- C:\Windows\system32\MRT.exe

2013-12-15 03:00:24 ----SHD---- C:\System Volume Information

2013-12-14 22:21:25 ----AD---- C:\ProgramData\Temp

2013-12-14 22:20:33 ----D---- C:\Windows\system32\drivers

2013-12-14 21:57:34 ----SHD---- C:\Windows\Installer

2013-12-14 21:57:20 ----D---- C:\Program Files (x86)\Common Files

2013-12-14 21:57:20 ----D---- C:\Program Files (x86)

2013-12-14 21:31:59 ----D---- C:\Windows\System32

2013-12-14 21:31:59 ----D---- C:\Windows\inf

2013-12-14 21:31:59 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-12-14 20:08:13 ----D---- C:\Windows\system32\Tasks

2013-12-14 20:08:08 ----A---- C:\Windows\SYSWOW64\log.txt

2013-12-13 21:54:36 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2013-12-13 21:54:02 ----D---- C:\Windows\system32\catroot2

2013-12-13 21:51:54 ----D---- C:\Windows\Tasks

2013-12-13 21:51:13 ----D---- C:\Users\Nelleke\AppData\Roaming\HandBrake

2013-12-13 20:22:43 ----AD---- C:\Windows

2013-12-13 20:18:46 ----AD---- C:\Windows\SysWOW64

2013-12-13 20:16:28 ----D---- C:\Windows\system32\catroot

2013-12-13 20:16:27 ----D---- C:\Windows\system32\DriverStore

2013-12-13 20:16:06 ----A---- C:\Windows\system32\RTNUninst64.dll

2013-12-13 20:15:48 ----D---- C:\Users\Nelleke\AppData\Roaming\Spotify

2013-12-13 20:14:36 ----D---- C:\Windows\SYSWOW64\RTCOM

2013-12-13 20:13:02 ----D---- C:\ProgramData\NVIDIA

2013-12-13 20:11:39 ----D---- C:\Program Files\NVIDIA Corporation

2013-12-13 20:10:56 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll

2013-12-13 20:10:56 ----A---- C:\Windows\system32\nvumdshimx.dll

2013-12-13 20:10:48 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll

2013-12-13 20:10:41 ----A---- C:\Windows\system32\nvapi64.dll

2013-12-13 20:07:41 ----D---- C:\Users\Nelleke\AppData\Roaming\Apple Computer

2013-12-12 19:49:47 ----D---- C:\Users\Nelleke\AppData\Roaming\vlc

2013-12-11 21:59:24 ----D---- C:\Program Files (x86)\Google

2013-12-11 20:54:04 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

2013-12-11 13:07:26 ----D---- C:\Windows\winsxs

2013-12-11 08:07:51 ----RD---- C:\Users

2013-12-11 03:46:15 ----D---- C:\Windows\rescache

2013-12-11 03:18:18 ----D---- C:\Program Files (x86)\Windows Media Player

2013-12-11 03:18:14 ----D---- C:\Program Files\Windows Media Player

2013-12-11 03:18:14 ----D---- C:\Program Files (x86)\Internet Explorer

2013-12-11 03:18:13 ----D---- C:\Program Files\Internet Explorer

2013-12-11 03:18:09 ----D---- C:\Windows\SYSWOW64\nl-NL

2013-12-11 03:18:09 ----D---- C:\Windows\system32\nl-NL

2013-12-10 08:24:54 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt

2013-12-10 08:18:37 ----D---- C:\Users\Nelleke\AppData\Roaming\HpUpdate

2013-12-10 08:18:37 ----D---- C:\Users\Nelleke\AppData\Roaming\HP Support Assistant

2013-12-09 00:54:42 ----D---- C:\ProgramData\PDFC

2013-12-04 08:30:30 ----D---- C:\Users\Nelleke\AppData\Roaming\Vso

2013-12-03 19:44:53 ----D---- C:\ProgramData\DVD Shrink

2013-12-02 18:46:37 ----D---- C:\ProgramData\YTD Video Downloader

2013-12-01 21:44:48 ----D---- C:\Windows\Microsoft.NET

2013-12-01 21:26:26 ----RAD---- C:\hp

2013-12-01 21:24:16 ----D---- C:\Program Files (x86)\Hewlett-Packard

2013-12-01 21:21:49 ----RSD---- C:\Windows\assembly

2013-12-01 21:19:12 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

2013-12-01 21:17:21 ----D---- C:\Windows\SYSWOW64\en-US

2013-12-01 21:17:21 ----D---- C:\Windows\system32\en-US

2013-12-01 21:17:12 ----SD---- C:\ProgramData\Microsoft

2013-11-24 21:43:54 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel RAID Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2012-09-08 275552]

R0 timounter;Acronis Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2012-09-08 971360]

R0 vididr;Acronis Virtual Disk; C:\Windows\system32\DRIVERS\vididr.sys [2012-09-08 210016]

R0 vidsflt53;Acronis Disk Storage Filter (53); C:\Windows\system32\DRIVERS\vsflt53.sys [2012-09-08 141920]

R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-05-14 134024]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-05-14 142776]

R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-05-14 165960]

R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-05-14 44944]

R2 NPF_devolo;NetGroup Packet Filter Driver (devolo); C:\Windows\sysWOW64\drivers\npf_devolo.sys [2010-06-10 34048]

R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2009-05-14 33608]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-12-13 3760344]

R3 lvpepf64;Volume Adapter; C:\Windows\system32\DRIVERS\lv302a64.sys [2008-07-26 15768]

R3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]

R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]

R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 77824]

R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-01-22 180224]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-12-13 196384]

R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2011-01-26 82816]

R3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV302V64.SYS [2008-07-26 2624408]

R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-12-13 884952]

R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]

R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]

R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]

R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]

R3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

S0 PzWDM;PzWDM; C:\Windows\system32\Drivers\PzWDM.sys []

S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]

S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]

S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]

S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]

S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []

S3 cpudrv64;cpudrv64; \??\C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-06-02 17864]

S3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2; C:\Windows\system32\DRIVERS\aabed2.sys [2008-03-20 28672]

S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []

S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2011-05-10 22528]

S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsucx64.sys [2011-08-17 12800]

S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys [2011-08-17 171008]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]

S3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]

S3 RTL8192su;Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2009-12-29 676864]

S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]

S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]

S3 WinUsb;WinUsb-stuurprogramma; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]

R2 DevoloNetworkService;devolo Network Service; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [2010-07-19 2231616]

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2009-05-14 731840]

R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]

R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-05-19 73728]

R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2013-10-25 2151200]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2009-10-01 268824]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-11-11 922912]

R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2009-10-15 635416]

R2 Realtek11nSU;Realtek11nSU; C:\Program Files (x86)\11n USB Wireless LAN Utility\RtlService.exe [2009-12-07 40960]

R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-12-13 289496]

R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]

R2 SgtSch2Svc;Seagate Scheduler2 Service; C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe [2011-06-30 1191408]

R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-03-06 3560288]

R2 UNS;Intel® Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-10-01 2320920]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]

R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352]

R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]

S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-15 2458944]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]

S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]

S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-05-14 23296]

S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]

S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-15 119408]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]

S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

S3 Sony SCSI Helper Service;Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [2013-11-26 73728]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-16 1255736]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

- - - Updated - - -

Dank je alvast voor je hulp !:top:

Gr Nelski

- - - Updated - - -

aangepast door nelski
Link naar reactie
Delen op andere sites

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
firefoxlook; 
 {95324e44-4b0a-47a9-8f77-9c6415e51c29};c
 C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo.xml;f
 C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack;fs
 C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack;fs
 C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\ffextension@weheartit.com;fs
 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
 ""=-;r64
 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
 "AppInit_DLLs"=-;64
 emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Firefox Defaults
  • Reset Chrome
  • IE Defaults
  • Auto Clean
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Zoek.exe Version 4.0.0.5 Updated 14-December-2013

Tool run by Nelleke on zo 15-12-2013 at 19:53:45,98.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Nelleke\Desktop\zoek.exe [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2013-12-15-185020.log 79548 bytes

==== Empty Folders Check ======================

C:\PROGRA~2\AVS4YOU deleted successfully

C:\PROGRA~2\MSXML 4.0 deleted successfully

C:\PROGRA~2\Samsung deleted successfully

C:\PROGRA~2\COMMON~1\Nero deleted successfully

C:\ProgramData\Oracle deleted successfully

C:\Users\Nelleke\AppData\Roaming\TP deleted successfully

C:\Users\erik\AppData\Local\PDFC deleted successfully

C:\Users\erik\AppData\Local\VirtualStore deleted successfully

C:\Users\Nelleke\AppData\Local\Downloaded Installations deleted successfully

C:\Users\Nelleke\AppData\Local\HP MediaSmart Video deleted successfully

C:\Users\Nelleke\AppData\Local\PDFC deleted successfully

C:\Users\Nelleke\AppData\Local\Zylom Games deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2849121425-4159316806-1266491598-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{95324e44-4b0a-47a9-8f77-9c6415e51c29} deleted successfully

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\erik\AppData\Roaming\Mozilla\Firefox\Profiles\is1p0ty0.default\prefs.js:

Added to C:\Users\erik\AppData\Roaming\Mozilla\Firefox\Profiles\is1p0ty0.default\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

Deleted from C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\b6hp15ti.default\prefs.js:

user_pref("browser.search.defaultenginename", "Yahoo");

user_pref("browser.search.selectedEngine", "Yahoo");

user_pref("keyword.URL", "http://nl.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=");

Added to C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\b6hp15ti.default\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

Deleted from C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\prefs.js:

user_pref("browser.startup.homepage", "http://www.allemaal-series.org/browse.php");

Added to C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

Deleted from C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\mwdbv0eh.default\prefs.js:

user_pref("browser.startup.homepage", "about:home");

user_pref("browser.search.defaultenginename", "Yahoo");

user_pref("browser.search.selectedEngine", "Yahoo");

user_pref("keyword.URL", "http://nl.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=");

user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\mwdbv0eh.default\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

""=-

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

==== Deleting Files \ Folders ======================

C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack not found

C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack not found

C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\extensions\ffextension@weheartit.com deleted

"C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo.xml" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Nelleke\AppData\Local\Temp ====

====== Java Cache =====

====== C:\Windows\SysWOW64 =====

2013-12-13 19:10:56 E36E73F2326B20FFE745A3C20CD15D5B 1242400 ----a-w- C:\Windows\SysWOW64\nvumdshim.dll

2013-12-13 19:10:56 0EF0066D8CA7D594134D77100CBCBFA1 9619872 ----a-w- C:\Windows\SysWOW64\nvopencl.dll

2013-12-13 19:10:55 CD986F08852AF10909FD2F4D431300DF 266984 ----a-w- C:\Windows\SysWOW64\nvoglshim32.dll

2013-12-13 19:10:55 B3BFE514794A2A2E9DDB75827126B4EA 22951200 ----a-w- C:\Windows\SysWOW64\nvoglv32.dll

2013-12-13 19:10:54 7E8430B3220987031C025F7EE0DFE83A 141336 ----a-w- C:\Windows\SysWOW64\nvinit.dll

2013-12-13 19:10:54 769FD2BE69A664374F8ED621C9639D6F 562464 ----a-w- C:\Windows\SysWOW64\NvIFR.dll

2013-12-13 19:10:53 426D5FE9DA98EDBD018FBF06BD24B040 609568 ----a-w- C:\Windows\SysWOW64\NvFBC.dll

2013-12-13 19:10:48 EF4D3CEBCB9B10C1926628FFD768A2A2 2947872 ----a-w- C:\Windows\SysWOW64\nvcuvid.dll

2013-12-13 19:10:48 CB11E4C8547869C61427D3F5738EBF70 2747680 ----a-w- C:\Windows\SysWOW64\nvcuvenc.dll

2013-12-13 19:10:48 AD44C98F47A66CA79C10E43289D5559F 9691888 ----a-w- C:\Windows\SysWOW64\nvcuda.dll

2013-12-13 19:10:42 310C66540534F7C56221FC05B48C3BC3 17560352 ----a-w- C:\Windows\SysWOW64\nvcompiler.dll

2013-12-13 19:10:40 D98D3EC7D6A66D865CF47085BDB4B874 2697248 ----a-w- C:\Windows\SysWOW64\nvapi.dll

2013-12-11 21:19:36 3E62CF18441A03A440B280182E4B6935 129872 ----a-w- C:\Windows\SysWOW64\MSSTDFMT.DLL

2013-12-11 02:02:12 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\SysWOW64\wmp.dll

2013-12-11 02:02:12 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\SysWOW64\wmploc.DLL

2013-12-11 02:01:16 C74500A1BCB4113A7310295DD3FA4440 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb

2013-12-11 02:01:14 3D43EAC957F2F797BE82CF6B04A933F8 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll

2013-12-11 02:01:14 355BF103E2CF862B00EEB3731E25E802 440832 ----a-w- C:\Windows\SysWOW64\ieui.dll

2013-12-11 02:01:13 35DE59C975A0C97E8DBBE095BCC3644E 553472 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll

2013-12-11 02:01:12 08881C59F795C356DE12067E44FFD260 703488 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll

2013-12-11 02:01:11 B2E1F7B212502BB49AAD4EFAD37C5CF5 2166784 ----a-w- C:\Windows\SysWOW64\iertutil.dll

2013-12-11 02:01:11 927FA6456AD6D7630F6854828D2FD16B 1820160 ----a-w- C:\Windows\SysWOW64\wininet.dll

2013-12-11 02:01:11 0763C5D8660436D4D961F72609E33BBE 1157632 ----a-w- C:\Windows\SysWOW64\urlmon.dll

2013-12-11 02:01:10 84EAF0A08C7742697816E148C066D757 1928192 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl

2013-12-11 02:01:09 4B638CE3DAA3A082E576C0DDF9D635D4 11221504 ----a-w- C:\Windows\SysWOW64\ieframe.dll

2013-12-11 02:01:07 BFAFE990C4A191E83843362B5AC64A9B 17112576 ----a-w- C:\Windows\SysWOW64\mshtml.dll

2013-12-11 02:01:07 A60A222D3126DD9E380F9D8B651BC13D 4243968 ----a-w- C:\Windows\SysWOW64\jscript9.dll

2013-12-11 01:07:39 4EC2C3B15B9EC41AD0D6CD918D20376E 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll

2013-12-11 01:02:33 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\SysWOW64\msieftp.dll

2013-12-11 01:02:11 E9504E484076585F6DA3C59F0E20E122 417792 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll

2013-12-11 01:01:53 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\SysWOW64\imagehlp.dll

2013-12-11 00:58:42 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\SysWOW64\scrrun.dll

2013-12-11 00:58:42 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\SysWOW64\cscript.exe

2013-12-11 00:58:42 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\SysWOW64\wscript.exe

2013-12-11 00:58:42 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\SysWOW64\wshom.ocx

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2013-12-13 19:16:06 F57504806727758EED2632EB5CAED16A 74456 ----a-w- C:\Windows\Sysnative\RtNicProp64.dll

2013-12-13 19:14:21 A88BE9A6C4E646A2B2A1BD3A7F4B58E7 198896 ----a-w- C:\Windows\Sysnative\SRSHP64.dll

2013-12-13 19:14:21 A028717B791416182959B325D5B40679 211184 ----a-w- C:\Windows\Sysnative\SRSTSH64.dll

2013-12-13 19:14:20 CA1D7D09854D305A64B100DC1400BA21 331880 ----a-w- C:\Windows\Sysnative\RtlCPAPI64.dll

2013-12-13 19:14:20 3F8A63EDF6E0E6827D5494CD8720F7CC 1662024 ----a-w- C:\Windows\Sysnative\RTSnMg64.cpl

2013-12-13 19:14:20 0E2C5B7C842024F50B1795A980C4D0FF 2810072 ----a-w- C:\Windows\Sysnative\RtPgEx64.dll

2013-12-13 19:14:19 ECAEC5FBBBEF8612AF0A866AFA5F7EF2 101208 ----a-w- C:\Windows\Sysnative\RTEEL64A.dll

2013-12-13 19:14:19 D0D0D82B7366E691275E433CD34F89B2 375128 ----a-w- C:\Windows\Sysnative\RTEEP64A.dll

2013-12-13 19:14:19 C08DE9FE49B8DE126EE7A42C7C80450E 1021656 ----a-w- C:\Windows\Sysnative\RtkApi64.dll

2013-12-13 19:14:19 A6286A6C7A1BBFCBA17AA54384A21D1C 204120 ----a-w- C:\Windows\Sysnative\RTEED64A.dll

2013-12-13 19:14:19 8814A281406553A2640D6A04702C63BD 14952 ----a-w- C:\Windows\Sysnative\RtkCoLDR64.dll

2013-12-13 19:14:19 6F4CD493196100EEF349D7132CECAFD9 78680 ----a-w- C:\Windows\Sysnative\RTEEG64A.dll

2013-12-13 19:14:19 6090C634C996CBA3DEB6A4A18ED91345 2588888 ----a-w- C:\Windows\Sysnative\RtkAPO64.dll

2013-12-13 19:14:19 2A7224C314131592497D02A57D867218 618200 ----a-w- C:\Windows\Sysnative\RtDataProc64.dll

2013-12-13 19:14:19 0805289E121F3E3C458C970B08314EB2 149608 ----a-w- C:\Windows\Sysnative\RtkCfg64.dll

2013-12-13 19:14:18 E9D4A333DF15D06C68AC4BFB9B6581CB 310104 ----a-w- C:\Windows\Sysnative\RP3DAA64.dll

2013-12-13 19:14:18 B6FE01558CC03F3866C9AD0ED19261D8 310104 ----a-w- C:\Windows\Sysnative\RP3DHT64.dll

2013-12-13 19:14:18 9979375E79B7237DEC691A379BE3E7A7 154840 ----a-w- C:\Windows\Sysnative\RCoInstII64.dll

2013-12-13 19:14:18 60F991E160AF0E8CC5CDE1FA231D86F2 41974272 ----a-w- C:\Windows\Sysnative\RCoRes64.dat

2013-12-13 19:14:18 22CAB76AF907B82664FEDE6A653ABA2A 1286872 ----a-w- C:\Windows\Sysnative\RTCOM64.dll

2013-12-13 19:14:13 922CDA544EB5C5A57795B38ED5871B69 2743328 ----a-w- C:\Windows\Sysnative\FMAPO64.dll

2013-12-13 19:14:12 6E14F444A2506049EEC25CB5EDFE0905 113576 ----a-w- C:\Windows\Sysnative\CONEQMSAPOGUILibrary.dll

2013-12-13 19:14:11 B3E9EA31E37EDCC1D54CE20504549ABE 108640 ----a-w- C:\Windows\Sysnative\AERTAR64.dll

2013-12-13 19:14:11 2CBDC11690656A1A2D03EC65AE2BCE68 209096 ----a-w- C:\Windows\Sysnative\AERTAC64.dll

2013-12-13 19:13:17 F82F0CE80ACFA3557F5D2D5C954A00E6 31520 ----a-w- C:\Windows\Sysnative\nvhdap64.dll

2013-12-13 19:13:17 89C4FBECDD31F1689DFE5E42469F625D 1510176 ----a-w- C:\Windows\Sysnative\nvhdagenco64.dll

2013-12-13 19:10:56 BE4ECAFC366DDFCBBAE413D977A1A297 30361888 ----a-w- C:\Windows\Sysnative\nvoglv64.dll

2013-12-13 19:10:56 883D68F098D39E83308A58EE31448FFE 18293608 ----a-w- C:\Windows\Sysnative\nvwgf2umx.dll

2013-12-13 19:10:56 588C98756B76B61E4839328E0DC92717 11514624 ----a-w- C:\Windows\Sysnative\nvopencl.dll

2013-12-13 19:10:55 8459D332F3F816E7C61A8985BDE82E41 317472 ----a-w- C:\Windows\Sysnative\nvoglshim64.dll

2013-12-13 19:10:54 BF742DAD722646BB18F96F1F9B3B56D2 168616 ----a-w- C:\Windows\Sysnative\nvinitx.dll

2013-12-13 19:10:54 61A6605C74C789A6359C2C3474A1E7C7 657184 ----a-w- C:\Windows\Sysnative\NvIFR64.dll

2013-12-13 19:10:53 61593AE781A1DDB1EF0ED688F8BC3E97 707360 ----a-w- C:\Windows\Sysnative\NvFBC64.dll

2013-12-13 19:10:52 EFF5A2BA8306B52BB5D93E2A7F17B1AD 1511712 ----a-w- C:\Windows\Sysnative\nvdispgenco6433182.dll

2013-12-13 19:10:52 595830EF0174FC9ABF3BA2823F26ED3D 1884448 ----a-w- C:\Windows\Sysnative\nvdispco6433182.dll

2013-12-13 19:10:48 E20089273809A4C0941A6F32141002B8 3125024 ----a-w- C:\Windows\Sysnative\nvcuvenc.dll

2013-12-13 19:10:48 DB45E530F6844C7791AE4696BDE4ED25 18208624 ----a-w- C:\Windows\Sysnative\nvd3dumx.dll

2013-12-13 19:10:48 2A5C842EF353FFF4A9DFCBED5545E5BC 3132704 ----a-w- C:\Windows\Sysnative\nvcuvid.dll

2013-12-13 19:10:47 102D9A72B71844204CCC219021A352EA 11600432 ----a-w- C:\Windows\Sysnative\nvcuda.dll

2013-12-13 19:10:41 48AA8A36ECFE02A83A0A5A590621E3E4 25257248 ----a-w- C:\Windows\Sysnative\nvcompiler.dll

2013-12-11 12:07:26 FD6FE2728F8747C6A15E2650958037C3 334648 ----a-w- C:\Windows\Sysnative\aswBoot.exe

2013-12-11 02:02:13 AB272BBFB05A8585C3405EFA9F605774 12625920 ----a-w- C:\Windows\Sysnative\wmploc.DLL

2013-12-11 02:02:10 8CBBB27369F9F07BC5E874E750EAF9D0 14631424 ----a-w- C:\Windows\Sysnative\wmp.dll

2013-12-11 02:01:16 FB13F4873F6747AB4E3C37CAFEA8ACAE 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll

2013-12-11 02:01:16 A3427586C75749B51BF5DEBEDEB4AD5C 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb

2013-12-11 02:01:15 4E249022336591E9C6DE374A68C18EF6 574976 ----a-w- C:\Windows\Sysnative\ieui.dll

2013-12-11 02:01:14 EF098867663B07247587587C29E631DB 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll

2013-12-11 02:01:14 DACB9A752CEB29C1D931514EF73803E1 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe

2013-12-11 02:01:14 40B33A42F90DED26DE4F5AAFA00F24CA 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll

2013-12-11 02:01:14 3A722B49408BE7FE8A375C3B8FD57BB1 218624 ----a-w- C:\Windows\Sysnative\ie4uinit.exe

2013-12-11 02:01:14 2E2875FFC6C2DC1ACF4F46AFC7819BD5 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll

2013-12-11 02:01:14 2A0B7281854ACBECA25D8FDD06A4D714 53760 ----a-w- C:\Windows\Sysnative\jsproxy.dll

2013-12-11 02:01:14 0F753FDA08F495E515629210FF0DA59E 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe

2013-12-11 02:01:13 16B0A65F52531B769B891DC251ECC6C0 23183360 ----a-w- C:\Windows\Sysnative\mshtml.dll

2013-12-11 02:01:13 14074CF6190B937EB70BE2F93113B5FE 708608 ----a-w- C:\Windows\Sysnative\jscript9diag.dll

2013-12-11 02:01:12 95EED00D70485F6F82983EB7C03CC42A 817664 ----a-w- C:\Windows\Sysnative\ieapfltr.dll

2013-12-11 02:01:12 7016991D493B9F9FA492E75BD13D031D 2764288 ----a-w- C:\Windows\Sysnative\iertutil.dll

2013-12-11 02:01:11 C8CF11D73017CC588411FCB936891CF4 1395200 ----a-w- C:\Windows\Sysnative\urlmon.dll

2013-12-11 02:01:11 9B6678DB9C6A232C5A84D2FDFFF8B0E1 2334208 ----a-w- C:\Windows\Sysnative\wininet.dll

2013-12-11 02:01:10 FA30E3DC75EA42FE19B819F30FBDED8D 1995264 ----a-w- C:\Windows\Sysnative\inetcpl.cpl

2013-12-11 02:01:10 EDF5C6A9F33FBD3D717D1B77A9864C64 12996608 ----a-w- C:\Windows\Sysnative\ieframe.dll

2013-12-11 02:01:07 6491B719695D713335B431FCF0EAE28B 5769216 ----a-w- C:\Windows\Sysnative\jscript9.dll

2013-12-11 01:07:39 5FD67F205773EC80674DBBD609DB5315 2048 ----a-w- C:\Windows\Sysnative\tzres.dll

2013-12-11 01:02:33 AC38EC8D0C1B4C783CA6A24D239A71B7 335360 ----a-w- C:\Windows\Sysnative\msieftp.dll

2013-12-11 01:02:29 97D50B0CABF18A6D40F8883D02DDB519 3155968 ----a-w- C:\Windows\Sysnative\win32k.sys

2013-12-11 01:02:11 4EDF8812713291DBBFDA67CE6215F236 465920 ----a-w- C:\Windows\Sysnative\WMPhoto.dll

2013-12-11 01:01:53 B4F29F65AD3114051F01E9403346047F 81408 ----a-w- C:\Windows\Sysnative\imagehlp.dll

2013-12-11 00:58:42 ECB021CA3370582F0C7244B0CF06732C 156160 ----a-w- C:\Windows\Sysnative\cscript.exe

2013-12-11 00:58:42 731131A477F69476F2D739B0DB6A9281 202752 ----a-w- C:\Windows\Sysnative\scrrun.dll

2013-12-11 00:58:42 05D80FF3483BD8F268B01703C859198A 150016 ----a-w- C:\Windows\Sysnative\wshom.ocx

2013-12-11 00:58:42 045451FA238A75305CC26AC982472367 168960 ----a-w- C:\Windows\Sysnative\wscript.exe

====== C:\Windows\Sysnative\drivers =====

2013-12-13 19:16:05 FABCD0B9CA0A2DC84805DCC199439046 884952 ----a-w- C:\Windows\Sysnative\drivers\Rt64win7.sys

2013-12-13 19:14:19 7A3585C4000C8340AE6B7FA08F9EF50F 3760344 ----a-w- C:\Windows\Sysnative\drivers\RTKVHD64.sys

2013-12-13 19:14:18 3533C7D5CC53FDF149B72CCDAE1B92C0 693329 ----a-w- C:\Windows\Sysnative\drivers\RTAIODAT.DAT

2013-12-13 19:13:16 554964B900AE2954B8B589B6287034AC 196384 ----a-w- C:\Windows\Sysnative\drivers\nvhda64v.sys

2013-12-13 19:10:54 F554291C0A11F5B713B54C5886D4AA31 12613408 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys

2013-12-11 00:59:00 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys

2013-12-11 00:59:00 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys

====== C:\Windows\Tasks ======

2013-12-15 18:27:24 39A75631CF70391A0D7E1D067561513D 3134 ----a-w- C:\Windows\Sysnative\Tasks\{956B4BA9-5A05-4EA4-83F0-69B5C5CC03E8}

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-12-15 09:43:06 -------- d-----w- C:\Program Files\trend micro

======= C:\PROGRA~2 =====

2013-12-14 20:57:20 -------- d-----w- C:\PROGRA~2\Sony

2013-12-14 20:57:20 -------- d-----w- C:\PROGRA~2\COMMON~1\Sony Shared

2013-12-13 19:06:39 -------- d-----w- C:\PROGRA~2\IObit

2013-12-11 21:19:36 -------- d-----w- C:\PROGRA~2\SpywareBlaster

======= C: =====

====== C:\Users\Nelleke\AppData\Roaming ======

2013-12-15 18:47:47 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp

2013-12-15 18:47:46 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\Temp

2013-12-15 18:47:46 -------- d-----w- C:\Users\Public\AppData\Local\Temp

2013-12-15 18:47:46 -------- d-----w- C:\Users\Nelleke\AppData\Local\Temp

2013-12-15 18:47:46 -------- d-----w- C:\Users\erik\AppData\Local\Temp

2013-12-15 18:47:46 -------- d-----w- C:\Users\Default\AppData\Local\Temp

2013-12-15 18:47:46 -------- d-----w- C:\Users\Default User\AppData\Local\Temp

2013-12-13 19:22:49 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\IObit

2013-12-13 19:07:41 -------- d-----w- C:\Users\Nelleke\AppData\Locallow\IObit

2013-12-13 19:06:54 -------- d-----w- C:\Users\Nelleke\AppData\Locallow\ADSRemoval

2013-12-13 19:06:44 -------- d-----w- C:\Users\Nelleke\AppData\Roaming\IObit

2013-12-11 21:04:38 E3B1BA76798E2395DFD191EB0F775317 268360 ----a-w- C:\Users\Nelleke\AppData\Local\census.cache

2013-12-11 21:04:31 F6BDD0D34C5B20BEF86A9CFFEAD75847 126473 ----a-w- C:\Users\Nelleke\AppData\Local\ars.cache

2013-12-11 20:22:35 8F65C0CA3FD2405FD07E6815A60F4D87 36 ----a-w- C:\Users\Nelleke\AppData\Local\housecall.guid.cache

2013-12-07 21:15:50 -------- d-----w- C:\Users\Nelleke\AppData\Roaming\Nero

2013-12-07 21:15:46 -------- d-----w- C:\Users\Nelleke\AppData\Local\Nero

====== C:\Users\Nelleke ======

2013-12-15 09:42:38 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nelleke\Desktop\RSITx64.exe

2013-12-14 20:57:23 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reader for pc

2013-12-13 19:27:01 -------- d-----w- C:\ProgramData\ProductData

2013-12-13 19:11:58 37809BC5943630EC0109C60D7DF3E144 1725064 ----a-w- C:\Users\Nelleke\Desktop\Adaware_Installer.exe

2013-12-13 19:07:42 -------- d-----w- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}

2013-12-13 19:07:38 -------- d-----w- C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F}

2013-12-13 19:07:00 -------- d-----w- C:\ProgramData\IObit

2013-12-13 17:21:31 F778A8F345E103B97059A8B0AD60B850 127080 ----a-w- C:\Users\Nelleke\Desktop\SpotifySetup.exe

2013-12-11 21:19:40 -------- d-----w- C:\ProgramData\Licenses

2013-12-11 21:19:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster

2013-12-11 20:22:26 1FBB338FD54A8E1697488658705BAE05 2406064 ----a-w- C:\Users\Nelleke\Desktop\HousecallLauncher64.exe

2013-12-07 21:06:34 -------- d-----w- C:\ProgramData\Nero

====== C: exe-files ==

2013-12-15 09:43:06 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Nelleke.exe

2013-12-15 09:42:38 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Nelleke\Desktop\RSITx64.exe

2013-12-14 21:18:00 AE13FB6BD8086465217F6A063EC3FCC3 715038 ----a-w- C:\Program Files (x86)\SpywareBlaster\unins000.exe

2013-12-14 20:30:58 78C3D798F150754CD2CE9F8998B27233 44221288 ----a-w- C:\ProgramData\Sony Corporation\AutoUpdateClient\READER_DESKTOP\2.2.00.11270\ReaderInstaller.exe

2013-12-13 19:37:45 83D0F51B75B0A3B4FE824767EA909589 2126112 ----a-w- C:\Users\Nelleke\AppData\Roaming\IObit\IObit Uninstaller\UninstallPromotetemp.exe

2013-12-13 19:37:45 0FED953F65CA8C0F03BC456C93D99548 637760 ----a-w- C:\Users\Nelleke\AppData\Roaming\IObit\IObit Uninstaller\UninstallDisplaytemp.exe

2013-12-13 19:27:34 A19EA669CFC10017722B496B8D2ABC3A 379168 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\NewUpdate.exe

2013-12-13 19:27:05 BEFF149A82F78B648046108EB9D28893 2151200 ----a-w- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

2013-12-13 19:25:18 DD2DB12D0A1FD9521D36C303D04D3D95 34511248 ----a-w- C:\ProgramData\IObit\ASCDownloader\Advanced SystemCare.exe

2013-12-13 19:14:21 2A21E75EF80242E0646E7567993E977D 562792 ----a-w- C:\Program Files\Realtek\Audio\HDA\vncutil64.exe

2013-12-13 19:14:20 07622F6D69B93403FC9CBB40450DD842 1719000 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe

2013-12-13 19:14:19 DABD4AB3D049ECA6AFFD61B63A997728 289496 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

2013-12-13 19:14:19 B87F3F8EDFD0C3A01BA072845B3A9A34 7205592 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

2013-12-13 19:14:18 F31CDC26F3624750C2AE2DEFF1E598DA 1368792 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

2013-12-13 19:14:18 16438B000BF56F2CD7FDB5E6C3B38C7E 13662936 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

2013-12-13 19:14:13 0C57BAD785EEAD029ABF6CBCF43E9A39 51776 ----a-w- C:\Program Files\Realtek\Audio\HDA\FMAPP.exe

2013-12-13 19:13:29 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{4CABE4F5-5CF1-4EDF-BC29-A343403E7DC9}\setup.exe

2013-12-13 19:13:28 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{116F5246-2712-45AA-BFE9-8F2EAEAD5B04}\setup.exe

2013-12-13 19:13:27 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{217F4758-34C7-4874-BCA3-9A1DB3D50E7A}\setup.exe

2013-12-13 19:13:26 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{A9891BF7-7BBC-4572-BB7F-E51C488955A2}\setup.exe

2013-12-13 19:13:24 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{ADDAFF59-04F6-4B87-8183-571C51BFAA2B}\setup.exe

2013-12-13 19:13:24 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{00BD9B96-5F67-4641-99F5-90CEF8E22901}\setup.exe

2013-12-13 19:13:22 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{765C517C-834D-45E1-9CB8-C7F843012144}\setup.exe

2013-12-13 19:13:21 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{6057922E-86DA-4BD8-B6A7-A6C28940EED6}\setup.exe

2013-12-13 19:13:05 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{A91C49A5-3CCC-410F-AAEA-E26463D78C47}\setup.exe

2013-12-13 19:12:44 F584C975B1B2FCFD3189DB54E8BF190B 2450208 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\NvTray.exe

2013-12-13 19:12:44 CF8B94FEEA50E39EE0396B5150F05B44 1196832 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvxdsync.exe

2013-12-13 19:12:44 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\setup.exe

2013-12-13 19:12:44 8E99BF264C1F20934A67E91BC9F4FB20 922912 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvvsvc.exe

2013-12-13 19:12:43 7BF84F23080660504DC80C354F441F4C 6866208 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvcplui.exe

2013-12-13 19:12:43 528C3B63ADAC429EF2797DFBACD79523 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvSmartMaxapp64.exe

2013-12-13 19:12:43 3B0A1EAF7ACFE1550ACC993E17052E09 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{183F191F-86A6-4823-B991-E0922A2D1952}\nvSmartMaxapp.exe

2013-12-13 19:12:41 C65287B8AA3F77540FCD20192E3E8EB9 407328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{708D1A47-B345-4163-AF43-277D53BAF338}\setup.exe

2013-12-13 19:11:58 37809BC5943630EC0109C60D7DF3E144 1725064 ----a-w- C:\Users\Nelleke\Desktop\Adaware_Installer.exe

2013-12-13 19:11:49 958B3188E84C6E61ACAEF26D896EBAAF 37184 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCFixer.exe

2013-12-13 19:10:53 54E3E51EC2E2CA1D4A320B65B2ABBFEF 326944 ----a-w- C:\Program Files\NVIDIA Corporation\NVSMI\nvidia-smi.exe

2013-12-13 19:10:52 1CB9A605B28B1E55A06FDF965407F823 217888 ----a-w- C:\Program Files\NVIDIA Corporation\NVSMI\nvdebugdump.exe

2013-12-13 19:10:40 CCEFE5EBA300A493AD79E4B3D39F1FE5 250144 ----a-w- C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe

2013-12-13 19:10:40 96562BD5056254F0A5A18AB4A9788E69 842016 ----a-w- C:\Program Files\NVIDIA Corporation\NVSMI\MCU.exe

2013-12-13 19:08:09 3501FDCE917D0E41D1D2B4853CF5281B 4580160 ----a-w- C:\ProgramData\IObit\ASCDownloader\Smart Defrag.exe

2013-12-13 19:08:06 A18773FE92140C2D73DB4351ED747100 8691488 ----a-w- C:\ProgramData\IObit\ASCDownloader\Driver Booster.exe

2013-12-13 19:07:54 6120A0AD956D6F3157597CBFDE504207 561472 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Promote.exe

2013-12-13 19:07:47 6B798A617DC2CBF95CB352ADF1EF7BC3 11654912 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Update\imfpatch.exe

2013-12-13 19:07:01 361C7A180E8227314B05A2FEEE64DA95 60430120 ----a-w- C:\ProgramData\IObit\ASCDownloader\Advanced SystemCare Ultimate.exe

2013-12-13 17:21:31 F778A8F345E103B97059A8B0AD60B850 127080 ----a-w- C:\Users\Nelleke\Desktop\SpotifySetup.exe

2013-12-11 21:19:36 BE2EE9C219B016AEC95F604FBFFEE171 2115192 ----a-w- C:\Program Files (x86)\SpywareBlaster\sbautoupdate.exe

2013-12-11 21:19:36 1BE8001D5C4EEE56A97980CD6987EB40 2557544 ----a-w- C:\Program Files (x86)\SpywareBlaster\spywareblaster.exe

2013-12-11 21:19:36 0EED9CD892F88435BFD1AE41EF6ED60D 119976 ----a-w- C:\Program Files (x86)\SpywareBlaster\sburlhelper.exe

2013-12-11 20:22:26 1FBB338FD54A8E1697488658705BAE05 2406064 ----a-w- C:\Users\Nelleke\Desktop\HousecallLauncher64.exe

2013-12-11 02:02:14 D21DD7BFC81C8623DE48EBB17133D59C 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe

2013-12-11 02:02:14 9AED8E824CF5FAAB67957EDBC5512060 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe

2013-12-11 02:01:16 0E1D755673453108415F802C90704327 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe

2013-12-11 02:01:15 78CCC9D9665DC2A4DDC31CD99ED374FC 482816 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe

=== C: other files ==

2013-12-15 18:55:22 318F6C0B5E55722A8ECD82454E90010B 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2849121425-4159316806-1266491598-1001\$IG4C8JG.zip

2013-12-15 18:54:33 D11604FF6FC51E21E13B6E60CDD18D04 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2849121425-4159316806-1266491598-1001\$IOFFVE7.com

2013-12-15 18:26:21 BC7ACE2C646A01D194CBBD8B43CAD4DA 1398596 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2849121425-4159316806-1266491598-1001\$ROFFVE7.com

2013-12-15 18:25:58 FAFA407BA87C2C39455FC72D3DA863FE 4050563 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2849121425-4159316806-1266491598-1001\$RG4C8JG.zip

2013-12-11 19:05:01 EF04B98F6F60FECD2ED3A745598B6243 256739 ----a-w- C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack.xpi

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2849121425-4159316806-1266491598-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"

"Facebook Update"="C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"Spotify Web Helper"="C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"PDF Complete"="C:\Program Files (x86)\PDF Complete\pdfsty.exe"

"IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe"

"BATINDICATOR"="C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe"

"LaunchHPOSIAPP"="C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe"

"AppleSyncNotifier"="C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"DiscWizardMonitor.exe"="C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"

"Reader Application Helper"="C:\Program Files (x86)\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"

"Facebook Update"="C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"Spotify Web Helper"="C:\Users\Nelleke\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe"

"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background"

"egui"="C:\Program Files\ESET\ESET Smart Security\egui.exe /hide /waitservice"

"Seagate Scheduler2 Service"="C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="c:\\progra~3\\bitguard\\271832~1.68\\{16cdf~1\\loader.dll c:\\progra~3\\bitguard\\271769~1.27\\{16cdf~1\\loader.dll"

==== Startup Registry Disabled ======================

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-]

"Google Update"="\"C:\\Users\\Nelleke\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]

"HP Software Update"="c:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe"

"Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

"iTunesHelper"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

"SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

"QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11-12-2013 20:54]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001Core.job --a------ C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe [12-07-2012 00:14]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001UA.job --a------ C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe [12-07-2012 00:14]

C:\Windows\tasks\HPCeeScheduleForerik.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [05-01-2010 12:53]

C:\Windows\tasks\HPCeeScheduleForNelleke.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [05-01-2010 12:53]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]

"C:\Windows\SysNative\tasks\Apple Diagnostics" [C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe]

"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001Core" [C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2849121425-4159316806-1266491598-1001UA" [C:\Users\Nelleke\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\Windows\SysNative\tasks\Google Updater and Installer" [C:\Users\Nelleke\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\HP-Online updateprogramma" [c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe]

"C:\Windows\SysNative\tasks\HPCeeScheduleForerik" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]

"C:\Windows\SysNative\tasks\HPCeeScheduleForNelleke" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]

"C:\Windows\SysNative\tasks\HPOSIAPP64" ["%ProgramFiles(x86)%\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe"]

"C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]

"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{87CB33B6-B2AB-4BA6-B18B-C4C009689351}" [C:\Windows\system32\msfeedssync.exe]

"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]

"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\b6hp15ti.default

- Undetermined - %ProfilePath%\extensions\compatibility@addons.mozilla.org

ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005

- Undetermined - C:\Program Files (x86)\IObit Apps Toolbar\FF

- United States English Spellchecker - %ProfilePath%\extensions\en-US@dictionaries.addons.mozilla.org

- YouTube Video and Audio Downloader - %ProfilePath%\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi

- Kalp Tuu - %ProfilePath%\extensions\ffextension@weheartit.com.xpi

- Facebook Secret Emoticons - %ProfilePath%\extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack.xpi

ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\mwdbv0eh.default

- WOT - %ProfilePath%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005

F891089A6AB9E12FEDEBCC5EC0F40D66 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll - Shockwave Flash

0B31B0F8FA99CFD009C8FBEA9E20C9DE - C:\Users\Nelleke\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin

==== Chrome Look ======================

Advanced SystemCare Surfing Protection - Nelleke - Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page Restore"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page Restore"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

{D1221A34-81CE-4B3D-81E4-7AED338CCC73} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}"

==== Reset Google Chrome ======================

Nothing found to reset

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\erik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Nelleke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\erik\AppData\Local\Mozilla\Firefox\Profiles\is1p0ty0.default\Cache emptied successfully

C:\Users\Nelleke\AppData\Local\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Cache emptied successfully

C:\Users\Nelleke\AppData\Local\Mozilla\Firefox\Profiles\mwdbv0eh.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome Cache found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\erik\AppData\Local\Temp emptied successfully

C:\Users\Public\AppData\Local\Temp emptied successfully

C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Nelleke\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Nelleke\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on zo 15-12-2013 at 20:15:06,56 ======================

Link naar reactie
Delen op andere sites

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690};fs
 C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F};fs
 C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack.xpi;f
 autoclean;

  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Zoek.exe v5.0.0.0 Updated 16-December-2013

Tool run by Nelleke on ma 16-12-2013 at 9:25:09,21.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Nelleke\Desktop\zoek.scr [scan all users] [script inserted]

==== Older Logs ======================

C:\zoek-results2013-12-15-185020.log 79548 bytes

C:\zoek-results2013-12-15-191506.log 43099 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} deleted

C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F} deleted

C:\Users\Nelleke\AppData\LocalLow\ADSRemoval deleted

"C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Extensions\jid0-XZn6pYCdV3ANrfYigxlyyGDrxAM@jetpack.xpi" deleted

==== Firefox Extensions ======================

ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\b6hp15ti.default

- Undetermined - %ProfilePath%\extensions\compatibility@addons.mozilla.org

ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005

- Undetermined - C:\Program Files (x86)\IObit Apps Toolbar\FF

- United States English Spellchecker - %ProfilePath%\extensions\en-US@dictionaries.addons.mozilla.org

- YouTube Video and Audio Downloader - %ProfilePath%\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi

- Kalp Tuu - %ProfilePath%\extensions\ffextension@weheartit.com.xpi

ProfilePath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\mwdbv0eh.default

- WOT - %ProfilePath%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Nelleke\AppData\Roaming\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005

F891089A6AB9E12FEDEBCC5EC0F40D66 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll - Shockwave Flash

0B31B0F8FA99CFD009C8FBEA9E20C9DE - C:\Users\Nelleke\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page Restore"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page Restore"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

{D1221A34-81CE-4B3D-81E4-7AED338CCC73} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\erik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Nelleke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\erik\AppData\Local\Mozilla\Firefox\Profiles\is1p0ty0.default\Cache emptied successfully

C:\Users\Nelleke\AppData\Local\Mozilla\Firefox\Profiles\fiejsl2o.default-1357987608005\Cache emptied successfully

C:\Users\Nelleke\AppData\Local\Mozilla\Firefox\Profiles\mwdbv0eh.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome Cache found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\erik\AppData\Local\Temp emptied successfully

C:\Users\Public\AppData\Local\Temp emptied successfully

C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Nelleke\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Nelleke\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ma 16-12-2013 at 10:05:36,98 ======================

Link naar reactie
Delen op andere sites

Dan mag je de restjes en de gebruikte tools nog opruimen:

Download 51a5ce45263de-delfix.pngDelfix by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.

Zet nu vinkjes voor de volgende items:

  • Remove disinfection tools
  • Purge System Restore
  • Reset system settings

Klik nu op "Run" en wacht geduldig tot de tool gereed is.

Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

Download CCleaner. (Als je het nog niet hebt)

Installeer het (als je niet wilt dat Google Chrome op je PC als standaard-webbrowser wordt geïnstalleerd, moet je de 2 vinkjes wegdoen !!!) en start CCleaner op.

Klik in de linkse kolom op “Cleaner”. Klik achtereenvolgens op ‘Analyseren’ en na de analyse op 'Schoonmaken'. Klik vervolgens in de linkse kolom op “Register” en klik op ‘Scan naar problemen”. Als er fouten gevonden worden klik je op ”Herstel geselecteerde problemen” en ”OK”. Dan krijg je de vraag om een back-up te maken. Klik op “JA”. Kies dan “Herstel alle geselecteerde fouten”.

Soms is 1 analyse niet voldoende. Deze procedure mag je herhalen tot de analyse geen fouten meer aangeeft.

Sluit hierna CCleaner terug af.

Wil je dit uitgebreid in beeld bekijken, klik dan hier voor de handleiding.

Indien dit allemaal probleemloos verlopen is en je binnen dit topic verder geen vragen of problemen meer hebt, mag je dit onderwerp afsluiten door een klik op de knop "Markeer als opgelost", die je links onderaan kan terugvinden … zo blijft het voor iedereen overzichtelijk.

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.