geen geluid op hp pavilion dv 1230ed

[martieneke]

hallo; ik heb sinds enkele dagen geen geluid meer op mijn laptop.

het is een hp pavilion entertainment dv7 1230ed.

ik heb al op het forum rond gekeken en heb al iets gevonden, maar kom niet meer verder.

ik heb het programmaatje al gedownload en geinstalleerd.

kan mij iemand verder helpen.

groeten martieneke.

[kape]

Download RSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

• RSIT 32 bit (RSIT.exe)
  
• RSIT 64 bit (RSITx64.exe)
  

Dubbelklik op RSIT.exe om de tool te starten.

• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  
• Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  
• Plaats de inhoud hiervan in het volgende bericht.
  

[martieneke]

hoi kape, hier volgt het bericht met het log bestand.

Logfile of random's system information tool 1.09 (written by random/random)

Run by Martiene at 2013-12-19 20:05:34

Microsoft® Windows Vista™ Home Premium Service Pack 2

System drive C: has 52 GB (18%) free of 294 GB

Total RAM: 3069 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 20:05:52, on 19-12-2013

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16526)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

c:\Program Files\Hewlett-Packard\Media\Live TV\TVAgent.exe

C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe

C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe

C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe

C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe

C:\Program Files\AVG\AVG2013\avgui.exe

C:\Windows\WindowsMobile\wmdcBase.exe

C:\Program Files\IDT\WDM\sttray.exe

C:\Program Files\HP\HP Software Update\hpwuschd2.exe

C:\Windows\ehome\ehtray.exe

C:\Windows\System32\accelerometerST.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Windows\ehome\ehmsas.exe

C:\Windows\System32\mobsync.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe

C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe

C:\Windows\system32\conime.exe

C:\Windows\SYSTEM32\WISPTIS.EXE

C:\Program Files\Spotnet\Spotnet.exe

C:\Program Files\Spotnet\SABnzbd.exe

C:\Program Files\AVG\AVG2013\avgcfgex.exe

C:\Program Files\Windows Live\Mail\wlmail.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe

C:\Users\Martiene\Downloads\RSIT.exe

C:\Program Files\trend micro\Martiene.exe

C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = YeahABC-Best homepage

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Home Page}

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Home Page}

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.nl/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = YeahABC-Best homepage

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = YeahABC-Best homepage

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Home Page}

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Home Page}

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: (no name) - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)

O3 - Toolbar: (no name) - !{5018CFD2-804D-4C99-9F81-25EAEA2769DE} - (no file)

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [updatePPShortCut] "C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"

O4 - HKLM\..\Run: [updatePDIRShortCut] "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"

O4 - HKLM\..\Run: [updateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Hewlett-Packard\Media\Webcam" update "Software\Hewlett-Packard\Media\Webcam"

O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [smartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe

O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"

O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start

O4 - HKLM\..\Run: [CLMLServer for HP TouchSmart] "C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"

O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [Windows Mobile-based device management] %WINDIR%\WindowsMobile\wmdcBase.exe

O4 - HKLM\..\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [DVDAgent] "C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe"

O4 - HKLM\..\RunOnce: "C:\Windows\system32\rundll32.exe" "C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax",DllRegisterServer

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [AccelerometerSysTrayApplet] "C:\Windows\system32\AccelerometerSt.Exe"

O4 - HKCU\..\Run: [Google Update] "C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - Startup: Dropbox.lnk = Martiene\AppData\Roaming\Dropbox\bin\Dropbox.exe

O4 - Global Startup: BTTray.lnk = ?

O8 - Extra context menu item: &AOL-werkbalk Zoeken - C:\ProgramData\AOL\ieToolbar\resources\nl-NL\local\search.html

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Converteren naar Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: Doel van koppeling converteren naar Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

O8 - Extra context menu item: Doel van koppeling toevoegen aan bestaande PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O8 - Extra context menu item: Toevoegen aan bestaande PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: AllShare Play Service - Copyright 2013 SAMSUNG - C:\Program Files\Samsung\AllShare Play\AllShare Play Service.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgfws.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: CyberLink Product - 2012/05/16 13:00:39 (CLKMSVC10_CDD7036C) - CyberLink - C:\Program Files\CyberLink\PowerProducer\BDSDK\NavFilter\kmsvc.exe

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe

O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Recovery Service for Windows - Unknown owner - C:\Program Files\SMINST\BLService.exe

O23 - Service: Samsung AllShare PC (SamsungAllShareV2.0) - Samsung Electronics Co., Ltd. - C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe

O23 - Service: SimpleSlideShowServer - Samsung Electronics Co., Ltd. - C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe

O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e2247046\STacSV.exe

O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe

--

End of file - 16336 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000Core.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]

HP Print Enhancer - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

AVG Safe Search

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-08 4171464]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-12-14 194128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]

Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-09-03 343424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]

SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-09-03 343424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]

HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

!{2318C2B1-4965-11d4-9B18-009027A5CD4F}

!{5018CFD2-804D-4C99-9F81-25EAEA2769DE}

{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-09-03 343424]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2013-12-14 194128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-12-08 432432]

"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]

"UpdatePPShortCut"=C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [2010-09-17 222504]

"UpdatePDIRShortCut"=C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]

"UpdateP2GoShortCut"=C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]

"UCam_Menu"=C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [2008-11-14 218408]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-10-14 2299176]

"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-08-29 61440]

"SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2008-11-18 914224]

"RemoteControl10"=C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe [2010-02-02 87336]

"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-10-10 206128]

"CLMLServer for HP TouchSmart"=C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2008-12-25 189736]

"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]

"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-09-03 41336]

"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-09-03 840568]

""= []

"AVG_UI"=C:\Program Files\AVG\AVG2013\avgui.exe [2013-11-20 4411952]

"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdcBase.exe [2007-05-31 648072]

"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-07-21 458844]

"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2011-05-10 49208]

"DVDAgent"=C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe [2008-11-28 1148200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"B Register C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax"=C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax [2013-08-23 1404704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]

"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]

"AccelerometerSysTrayApplet"=C:\Windows\system32\AccelerometerSt.Exe [2008-04-17 73008]

"Google Update"=C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-06 116648]

"OfficeSyncProcess"=C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [2013-04-22 720064]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Users\Martiene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

Dropbox.lnk - C:\Users\Martiene\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-08 4171464]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Acrobat.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\acrodist.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\acrord32.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\adobe help.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\allshare play launcher.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dropbox.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dropboxuninstaller.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\formdesigner.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\groove.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hpbc.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hpdvdsmart.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hphc.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hpmediasmartwebcam.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hpsi.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hptouchsmartmusic.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hptouchsmartphoto.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hptouchsmartvideo.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\infopath.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\lightscribecontrolpanel.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\lslauncher.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\misc.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoxmled.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mstore.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ois.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\onenote.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\outlook.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\photoshop elements 10.0.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\photoshopelementsorganizer.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninstall.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Winword.exe]

"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"vidc.cvid"=iccvid.dll

"MSVideo8"=VfWWDM32.dll

"msacm.l3codecp"=l3codecp.acm

"vidc.DIVX"=DivX.dll

"vidc.yv12"=DivX.dll

"wave3"=wdmaud.drv

"midi3"=wdmaud.drv

"mixer3"=wdmaud.drv

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-12-19 20:05:34 ----DC---- C:\rsit

2013-12-19 20:05:34 ----D---- C:\Program Files\trend micro

2013-12-14 16:45:28 ----D---- C:\ProgramData\Apple

2013-12-14 16:45:28 ----D---- C:\Program Files\Bonjour

2013-12-14 16:45:07 ----A---- C:\Windows\system32\hpbrprtmon.dll

2013-12-14 16:45:07 ----A---- C:\Windows\system32\hpbprtmonui.dll

2013-12-14 16:45:07 ----A---- C:\Windows\system32\hpbprtmon.dll

2013-12-14 16:42:04 ----DC---- C:\HP_ePrint

2013-12-13 08:13:51 ----A---- C:\Windows\system32\vbscript.dll

2013-12-13 08:13:51 ----A---- C:\Windows\system32\mshtmled.dll

2013-12-13 08:13:49 ----A---- C:\Windows\system32\wininet.dll

2013-12-13 08:13:49 ----A---- C:\Windows\system32\msfeeds.dll

2013-12-13 08:13:49 ----A---- C:\Windows\system32\jsproxy.dll

2013-12-13 08:13:49 ----A---- C:\Windows\system32\ieUnatt.exe

2013-12-13 08:13:49 ----A---- C:\Windows\system32\ieui.dll

2013-12-13 08:13:48 ----A---- C:\Windows\system32\url.dll

2013-12-13 08:13:48 ----A---- C:\Windows\system32\jscript9.dll

2013-12-13 08:13:48 ----A---- C:\Windows\system32\jscript.dll

2013-12-13 08:13:47 ----A---- C:\Windows\system32\iertutil.dll

2013-12-13 08:13:46 ----A---- C:\Windows\system32\urlmon.dll

2013-12-13 08:13:46 ----A---- C:\Windows\system32\mshtml.dll

2013-12-13 08:13:44 ----A---- C:\Windows\system32\ieframe.dll

2013-12-12 08:09:23 ----A---- C:\Windows\system32\win32k.sys

2013-12-12 08:09:16 ----A---- C:\Windows\system32\SysFxUI.dll

2013-12-12 08:09:16 ----A---- C:\Windows\system32\drivers\portcls.sys

2013-12-12 08:09:16 ----A---- C:\Windows\system32\drivers\drmk.sys

2013-12-12 08:09:02 ----A---- C:\Windows\system32\wscript.exe

2013-12-12 08:09:02 ----A---- C:\Windows\system32\cscript.exe

2013-12-12 08:09:01 ----A---- C:\Windows\system32\wshcon.dll

2013-12-12 08:09:01 ----A---- C:\Windows\system32\scrrun.dll

2013-12-12 08:08:52 ----A---- C:\Windows\system32\imagehlp.dll

2013-12-04 21:51:50 ----HDC---- C:\Config.Msi

2013-12-02 18:15:31 ----D---- C:\ProgramData\Oracle

2013-12-02 18:15:05 ----A---- C:\Windows\system32\javaws.exe

2013-12-02 18:14:51 ----A---- C:\Windows\system32\WindowsAccessBridge.dll

2013-12-02 18:14:51 ----A---- C:\Windows\system32\java.exe

2013-11-25 01:48:36 ----A---- C:\Windows\system32\drivers\avgidsdriverx.sys

======List of files/folders modified in the last 1 month======

2013-12-19 20:05:49 ----D---- C:\Windows\Temp

2013-12-19 20:05:49 ----D---- C:\Windows\Prefetch

2013-12-19 20:05:34 ----D---- C:\Program Files

2013-12-19 19:53:33 ----D---- C:\ProgramData\MFAData

2013-12-19 17:09:28 ----A---- C:\ProgramData\HPWALog.txt

2013-12-19 08:37:18 ----HD---- C:\ProgramData

2013-12-19 08:35:29 ----D---- C:\Windows\system32\drivers

2013-12-18 22:50:07 ----SHD---- C:\Windows\Installer

2013-12-18 22:49:38 ----SHD---- C:\System Volume Information

2013-12-18 21:34:30 ----RSD---- C:\Windows\assembly

2013-12-18 21:23:09 ----D---- C:\Windows\Debug

2013-12-17 20:17:09 ----D---- C:\Windows\twain_32

2013-12-16 16:00:17 ----D---- C:\Users\Martiene\AppData\Roaming\HpUpdate

2013-12-15 08:36:17 ----D---- C:\Windows\System32

2013-12-15 08:36:17 ----D---- C:\Windows\inf

2013-12-15 08:36:17 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-12-15 08:31:06 ----D---- C:\Windows

2013-12-14 19:32:21 ----A---- C:\Windows\win.ini

2013-12-14 16:44:30 ----D---- C:\Windows\system32\catroot

2013-12-14 16:29:41 ----D---- C:\Program Files\MSN Toolbar Installer

2013-12-14 08:51:51 ----D---- C:\Windows\system32\catroot2

2013-12-13 08:37:01 ----D---- C:\Windows\system32\migration

2013-12-13 08:36:58 ----D---- C:\Program Files\Internet Explorer

2013-12-13 08:20:50 ----D---- C:\Windows\winsxs

2013-12-13 08:20:16 ----D---- C:\ProgramData\Microsoft Help

2013-12-13 08:18:43 ----D---- C:\Windows\system32\MRT

2013-12-13 08:15:22 ----A---- C:\Windows\system32\mrt.exe

2013-12-11 16:35:15 ----A---- C:\Windows\system32\FlashPlayerApp.exe

2013-12-03 10:54:11 ----D---- C:\Windows\system32\Tasks

2013-12-02 18:15:26 ----D---- C:\Program Files\Common Files\Java

2013-12-02 18:14:51 ----D---- C:\Program Files\Java

2013-11-30 16:56:34 ----D---- C:\ProgramData\Spotnet

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2008-04-28 14352]

R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2013-07-20 60216]

R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2013-07-20 246072]

R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2013-07-01 96568]

R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2013-10-23 39224]

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]

R0 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2010-03-19 45648]

R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6x.sys [2012-09-04 50296]

R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2013-11-25 208184]

R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2013-10-23 22328]

R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2013-07-20 171320]

R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2013-03-21 182072]

R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2012/05/16 12:58:07]; \??\C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-11-17 87536]

R2 {55662437-DA8C-40c0-AADA-2C816A897A49};Power Control [2012/03/04 16:13:14]; \??\C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl [2008-11-28 87536]

R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]

R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-09-05 1183744]

R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-12-10 4172288]

R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-10 22528]

R3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]

R3 btwaudio;Bluetooth-audioapparaat; C:\Windows\system32\drivers\btwaudio.sys [2008-06-23 80424]

R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2008-06-23 81960]

R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2008-06-23 16168]

R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2008-01-24 52736]

R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]

R3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2009-04-10 236544]

R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]

R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2011-06-10 73344]

R3 moufiltr;Tablet Mouse Filter Driver; C:\Windows\system32\DRIVERS\moufiltr.sys [2009-03-08 6144]

R3 RFCOMM;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-10 148992]

R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-02-14 118784]

R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt.sys [2009-07-21 409088]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-10-14 299312]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [2013-09-18 12320]

R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2008-05-28 22072]

R3 usbvideo;USB-videoapparaat (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]

R3 vhidmini;Generic Virtual HID Driver; C:\Windows\system32\DRIVERS\walvhid.sys [2009-08-20 6144]

R3 WSDPrintDevice;WSD-ondersteuning voor afdrukken via UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys [2008-01-21 16896]

R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]

S1 SRTSP;SRTSP; \??\C:\Windows\system32\drivers\NIS\1000000.07D\SRTSP.SYS []

S1 SRTSPX;SRTSPX; \??\C:\Windows\system32\drivers\NIS\1000000.07D\SRTSPX.SYS []

S3 BthPan;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]

S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]

S3 Dot4;Microsoft IEEE-1284.4-stuurprogramma; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-21 131584]

S3 Dot4Print;Stuurprogramma voor printerklasse voor IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-21 16384]

S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-21 36864]

S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]

S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]

S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]

S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys []

S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys [2010-07-29 25112]

S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-07-21 100184]

S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]

S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]

S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]

S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]

S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.SYS []

S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.SYS []

S3 NETw3v32;Intel® PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2008-01-21 2225664]

S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50.sys []

S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]

S3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-21 9216]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]

S3 WinUSB;WinUsb-stuurprogramma; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-07-14 34944]

S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]

S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]

S3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2006-11-02 194048]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-12-10 724992]

R2 avgfws;AVG Firewall; C:\Program Files\AVG\AVG2013\avgfws.exe [2013-10-23 1432080]

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]

R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]

R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2008-05-05 165416]

R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-10-09 94208]

R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]

R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2013-12-17 46904]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]

R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]

R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]

R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 Recovery Service for Windows;Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [2008-12-02 365952]

R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e2247046\STacSV.exe [2009-07-21 221266]

R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [2013-10-08 1739064]

R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]

R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-21 21504]

R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-10-23 223232]

R3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 756392]

S2 CLKMSVC10_CDD7036C;CyberLink Product - 2012/05/16 13:00:39; C:\Program Files\CyberLink\PowerProducer\BDSDK\NavFilter\kmsvc.exe [2010-11-09 246256]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-09-11 136176]

S2 NetMsmqActivator;Net.Msmq Listener Adapter; c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S2 NetPipeActivator;Net.Pipe Listener Adapter; c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S2 NetTcpActivator;Net.Tcp Listener Adapter; c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S3 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10; C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [2011-09-14 169624]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]

S3 AllShare Play Service;AllShare Play Service; C:\Program Files\Samsung\AllShare Play\AllShare Play Service.exe [2013-02-21 631368]

S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]

S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-09-11 136176]

S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-09-12 194032]

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]

S3 SamsungAllShareV2.0;Samsung AllShare PC; C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [2012-03-02 25504]

S3 SimpleSlideShowServer;SimpleSlideShowServer; C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe [2012-03-02 27584]

S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-09 65640]

S4 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-11-19 222512]

S4 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-03-08 30798512]

S4 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]

S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2008-09-15 241734]

-----------------EOF-----------------

[kape]

Download Zoek.zip naar het bureaublad.

• Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  
• Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  
• Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  
• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

chromelook; 
firefoxlook; 
 {2318C2B1-4965-11d4-9B18-009027A5CD4F};c
 {5018CFD2-804D-4C99-9F81-25EAEA2769DE};c
 {08B0E5C0-4FCB-11CF-AAA5-00401C608501};c
 {F274614C-63F8-47D5-A4D1-FBDDE494F8D1};c
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run];r
 ""=-;r
 emptyfolderscheck;delete 
startupall; 
filesrcm;

• Klik op de knop "Options" en vink nu de onderstaande opties aan.
  
• Do a Quick Scan
  
  
• HijackThis Log
  
  
• IE Defaults
  
• Auto Clean
  
• De optie "Scan All Users" staat standaard aangevinkt.
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  
• Post nu de inhoud van het geopende logje in het volgende bericht.
  

[martieneke]

hallo kape, de volgende log.

Zoek.exe v5.0.0.0 Updated 18-December-2013

Tool run by Martiene on vr 20-12-2013 at 12:45:22,27.

Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Martiene\AppData\Local\Temp\Rar$EXa0.239\zoek.exe [scan all users] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2013-12-20-112734.log 43118 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Martiene\AppData\Local\Temp ====

2013-12-14 15:35:27 F5745DDD7A5945B73825EA5239B9A3ED 2278920 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\DeviceManager\DeviceManager.exe

2013-12-14 15:35:27 D671C7CC1308576B31EA69BE2D180D17 217408 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\FWManager.dll

2013-12-14 15:35:27 D199B1ADFFB14070E8C4DA9E879EDBEE 309760 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\DIFxAPI.dll

2013-12-14 15:35:27 C8E0738F6D3048B87881A5E103243C04 1695752 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\FileExtractor.exe

2013-12-14 15:35:27 B12842B441FD6E76EC814A6DA5455132 58176 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\OESISCore.dll

2013-12-14 15:35:27 98ABCBD70CDA02B76E1A1E46C16192FA 35176 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\hpodss01.dll

2013-12-14 15:35:27 67EC459E42D3081DD8FD34356F7CAFC1 770384 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\msvcr100.dll

2013-12-14 15:35:27 6137360F32A4620FC5D8571F5EE316C8 3130888 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\HPDiagnosticCore.dll

2013-12-14 15:35:27 585D2EB9FBED6B7B9D0107BFB5C94043 531512 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\DeviceManager\DIFxAPI.dll

2013-12-14 15:35:27 4D144541EE2E6FB2C26653C22BC419C7 77120 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\Impl_SoftwareProductLib.dll

2013-12-14 15:35:27 4046243A482465070E8336034D2BB2F6 495424 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\CoreUtils.dll

2013-12-14 15:35:27 38F548B446636444C00CA64D4BB8B3D0 60224 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\Impl_FirewallLib.dll

2013-12-14 15:35:27 370BDA83B756FBDCA3DA0020A48BF04F 4252680 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\HPDiagnosticCoreUI.exe

2013-12-14 15:35:27 03E9314004F504A14A61C3D364B62F66 421200 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\msvcp100.dll

2013-12-14 15:35:16 E7D7C1EEB2C9B20BA46ED7D4F006471D 6123336 ----a-w- C:\Users\Martiene\AppData\Local\Temp\HPPSdr.exe

2013-12-14 15:35:02 64488B4D7C765DFEEFB72DD9430199E1 4181000 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\HPDiagnosticCoreUI.exe

2013-12-14 15:35:01 E9FAE663D554C0836FA3C5F4679004BC 1695240 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\FileExtractor.exe

2013-12-14 15:34:59 D671C7CC1308576B31EA69BE2D180D17 217408 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\FWManager.dll

2013-12-14 15:34:59 D199B1ADFFB14070E8C4DA9E879EDBEE 309760 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\DIFxAPI.dll

2013-12-14 15:34:59 B12842B441FD6E76EC814A6DA5455132 58176 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\OESISCore.dll

2013-12-14 15:34:59 98ABCBD70CDA02B76E1A1E46C16192FA 35176 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\hpodss01.dll

2013-12-14 15:34:59 67EC459E42D3081DD8FD34356F7CAFC1 770384 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\msvcr100.dll

2013-12-14 15:34:59 585D2EB9FBED6B7B9D0107BFB5C94043 531512 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\DeviceManager\DIFxAPI.dll

2013-12-14 15:34:59 4D144541EE2E6FB2C26653C22BC419C7 77120 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\Impl_SoftwareProductLib.dll

2013-12-14 15:34:59 4ADF1502088DBF83908B0C0DF2683C3C 2278920 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\DeviceManager\DeviceManager.exe

2013-12-14 15:34:59 48AF3A3499E088D5368F930A589548B1 3073032 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\HPDiagnosticCore.dll

2013-12-14 15:34:59 4046243A482465070E8336034D2BB2F6 495424 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\CoreUtils.dll

2013-12-14 15:34:59 38F548B446636444C00CA64D4BB8B3D0 60224 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\Impl_FirewallLib.dll

2013-12-14 15:34:59 03E9314004F504A14A61C3D364B62F66 421200 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\msvcp100.dll

====== Java Cache =====

====== C:\Windows\system32 =====

2013-12-14 15:45:07 B0B96EFA409137961B3F0774719E833E 335360 ----a-w- C:\Windows\System32\hpbprtmon.dll

2013-12-14 15:45:07 4A0C13AF6F66DBD70B7D0011371C9386 516608 ----a-w- C:\Windows\System32\hpbrprtmon.dll

2013-12-14 15:45:07 2A7EDCC277E63A8269E49558A1C9B039 203776 ----a-w- C:\Windows\System32\hpbprtmonui.dll

2013-12-13 07:13:51 C2E35F6FCBD5B4DB2B52B32D1153EC04 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2013-12-13 07:13:51 ADB9477A9C95C79FDF5DC214225603B0 420864 ----a-w- C:\Windows\System32\vbscript.dll

2013-12-13 07:13:51 2429485305BCCFB1014B19BFB512E8F9 73216 ----a-w- C:\Windows\System32\mshtmled.dll

2013-12-13 07:13:49 E8F37AF4D09972684D9EE1786901F540 176640 ----a-w- C:\Windows\System32\ieui.dll

2013-12-13 07:13:49 A0C6AFE2C9C74573F5C0776CDE1128B1 142848 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-12-13 07:13:49 822E4743E61687933629AE3A8DECABC2 65024 ----a-w- C:\Windows\System32\jsproxy.dll

2013-12-13 07:13:49 4CC9DF09C3D915BA0A101A11DB684F26 1129472 ----a-w- C:\Windows\System32\wininet.dll

2013-12-13 07:13:49 36E4D129029784EE37A2C14393B6A4E8 607744 ----a-w- C:\Windows\System32\msfeeds.dll

2013-12-13 07:13:48 C05A60DB2ED385E9BB5CF7AE773A3D9B 717824 ----a-w- C:\Windows\System32\jscript.dll

2013-12-13 07:13:48 BDA52464C16707EAA513C8A2920ACE1F 231936 ----a-w- C:\Windows\System32\url.dll

2013-12-13 07:13:48 795202EFA9ED73F99C96235C1DC6A1AC 1806848 ----a-w- C:\Windows\System32\jscript9.dll

2013-12-13 07:13:47 B787EE3F327ABAC1EC47313B3A673598 1796096 ----a-w- C:\Windows\System32\iertutil.dll

2013-12-13 07:13:46 C89906FA43A58FD4CFC7EA06D885A597 12344320 ----a-w- C:\Windows\System32\mshtml.dll

2013-12-13 07:13:46 5AAFA41F2A09D68F43741EF13937650A 1105408 ----a-w- C:\Windows\System32\urlmon.dll

2013-12-13 07:13:46 06FDA396980A0157469A334E1BFEAF17 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl

2013-12-13 07:13:44 B231416DD7569B5C16F2DD2D2D64BB5A 9739264 ----a-w- C:\Windows\System32\ieframe.dll

2013-12-12 07:09:23 A6E18756EA7B6E971184B57B86251FC5 2050560 ----a-w- C:\Windows\System32\win32k.sys

2013-12-12 07:09:16 57390AF2F8939AB038FC4A5D10B50D52 335360 ----a-w- C:\Windows\System32\SysFxUI.dll

2013-12-12 07:09:02 B44B59C85DC2C2D39542F97BF545A308 135168 ----a-w- C:\Windows\System32\cscript.exe

2013-12-12 07:09:02 2497FD012104DFF64BF01DA98ECF6F75 131072 ----a-w- C:\Windows\System32\wshom.ocx

2013-12-12 07:09:02 1D0A82B11235D68CF55A54B2ADECB9F1 155648 ----a-w- C:\Windows\System32\wscript.exe

2013-12-12 07:09:01 F9D5C623E913CDAA198ECF0E6D2AA54A 36864 ----a-w- C:\Windows\System32\wshcon.dll

2013-12-12 07:09:01 DDEA43CDF00D6987F633F80AE4B7F2CE 172032 ----a-w- C:\Windows\System32\scrrun.dll

2013-12-12 07:08:52 09EA40F4DAD2EDB3587E5E0BAA9C3E15 158208 ----a-w- C:\Windows\System32\imagehlp.dll

====== C:\Windows\system32\drivers =====

2013-12-12 07:09:16 6DBA75306DD9B242B6F1C343179AD201 167936 ----a-w- C:\Windows\System32\drivers\portcls.sys

2013-12-12 07:09:16 2A63675F6FA8EF0FF9F5C72695584CAA 130048 ----a-w- C:\Windows\System32\drivers\drmk.sys

2013-11-25 00:48:36 5BCAE36134162830ED283F4C3D88476A 208184 ----a-w- C:\Windows\System32\drivers\avgidsdriverx.sys

====== C:\Windows\Tasks ======

2013-12-03 09:54:11 D04702EAC1350BE55C41BE3CB691CA2D 3676 ----a-w- C:\Windows\system32\Tasks\Java Update Scheduler

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-12-19 19:05:34 -------- d-----w- C:\Program Files\trend micro

2013-12-14 15:45:28 -------- d-----w- C:\Program Files\Bonjour

======= C: =====

====== C:\Users\Martiene\AppData\Roaming ======

2013-12-20 11:27:34 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp

2013-12-20 11:27:34 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp

2013-12-20 11:27:34 -------- d-----w- C:\Users\Default\AppData\Local\Temp

2013-12-20 11:27:34 -------- d-----w- C:\Users\Default User\AppData\Local\Temp

2013-12-14 22:13:45 8062B03BDB6077F54A5FA561D4DFDFB6 234952 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat

2013-12-06 14:57:52 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Roaming\DivX

====== C:\Users\Martiene ======

2013-12-19 19:05:15 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Martiene\Downloads\RSIT.exe

2013-12-14 15:45:28 -------- d-----w- C:\ProgramData\Apple

2013-12-11 08:20:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG

2013-12-02 17:15:31 -------- d-----w- C:\ProgramData\Oracle

2013-12-02 17:12:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

====== C: exe-files ==

2013-12-19 19:05:38 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Martiene.exe

2013-12-19 19:05:15 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Martiene\Downloads\RSIT.exe

2013-12-17 11:02:36 F9904ED12733CD531F4C91C54C9500B2 199992 ----a-w- C:\Program Files\HP\Common\HpDeviceDetection3.exe

2013-12-17 11:02:20 AD84BBE3E4FD74E5090D4575F0E54EC7 35128 ----a-w- C:\Program Files\HP\Common\AclmControl.exe

2013-12-15 17:05:55 F7B53B4BD50C13D17F5C54F82CDE7836 82944 ------w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Windows 7 x86 ISO\sources\dismhost.exe

2013-12-15 17:05:55 49769C0B2E9A27731859E44DFDDD5632 202752 ------w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Windows 7 x86 ISO\sources\dism.exe

2013-12-15 17:05:55 44C8F3F701161A6303FF28CF20A12ADE 491520 ------w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Windows 7 x86 ISO\sources\dlmanifests\microsoft-windows-iasserver-migplugin\iasmigreader.exe

2013-12-15 17:05:45 14396466089135A8EAF715394E77AD30 112400 ------w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Windows 7 x86 ISO\setup.exe

2013-12-15 17:05:44 748E3755D83E56206F810BE3626C88B2 97280 ------w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Windows 7 x86 ISO\boot\bootsect.exe

2013-12-15 17:05:44 261EC72933399CFAD5AC19897A838E6F 485760 ------w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Windows 7 x86 ISO\boot\memtest.exe

2013-12-15 16:30:46 DD4BA2D1B33E1E6D45EF343D1BFD7659 3195511 ----a-w- C:\Users\Martiene\Downloads\Windows 7 11-in-1 (32bits en 64bits)NL\Adje alles in 1\Windows 7 Activator By Daz\Windows Loader.exe

2013-12-15 16:30:46 AF911BE206423BF440EA9D4DF075A632 2721168 ----a-w- C:\Users\Martiene\Downloads\Windows 7 11-in-1 (32bits en 64bits)NL\Adje alles in 1\Windows7-USB-DVD-tool.exe

2013-12-15 16:13:56 89694DD5974D6CCCD2D219CC387F49A5 2940304 ----a-w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Losse extra Software\Windows Installeren vanaf usb stick\Windows7-USB-DVD-tool.exe

2013-12-15 16:13:55 93C7F185ACD1AF42C43F118A6F1E414A 8669472 ----a-w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Losse extra Software\Windows 7 Upgrade advisor\Windows7UpgradeAdvisorSetup.exe

2013-12-15 16:13:51 FEE9913DBB5237B09206F4B8648C042A 16437319 ----a-w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Losse extra Software\NZBee\NZBEE-v1.5.0.0-Setup.exe

2013-12-15 16:13:47 DE0298B5A77C8E3095A4A95827D08BD2 181156 ----a-w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Losse extra Software\Eset Pakketje\Removal Tool\nod32removal.exe

2013-12-15 16:13:37 4FEB8C643CC074468D496C31DE856F0D 15126424 ----a-w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Losse extra Software\Driver Genius\drvgenpro.exe

2013-12-14 15:43:43 2411D91FB138DCCFEAAB898A637052BE 468480 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\InstallerContent\Help\Launcher.exe

2013-12-14 15:43:42 7E13CD718EA98567F088E889A7CEE066 4807151 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\InstallerContent\Help\CSIHelp.exe

2013-12-14 15:43:41 FDBF64CF46C05F333639DA3593EAC739 241664 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniscan32.exe

2013-12-14 15:43:41 DC34F99F9BA66ACA49BF225B5D470D29 299008 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniprint32.exe

2013-12-14 15:43:41 B5B0DC76C0179D1A0ABEF6334DC1A5AD 24888 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbcsiServiceMarshaller.exe

2013-12-14 15:43:41 99AF5BA3C00F2CCFA1BF7B489A12DD58 164152 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbcsiInstaller.exe

2013-12-14 15:43:41 7B824C795C02E2FDA1D26FDAD214D9C9 293376 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniscan64.exe

2013-12-14 15:43:41 5392CDB57A8DA3B7F7A356D1269E37C1 384512 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniprint64.exe

2013-12-14 15:43:35 2B826E7E02896B254B483B2CFE3ACB9F 2381112 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Setup.exe

2013-12-14 15:42:20 FDBF64CF46C05F333639DA3593EAC739 241664 -c--a-w- C:\HP_ePrint\Installer\hpbniscan32.exe

2013-12-14 15:42:20 DC34F99F9BA66ACA49BF225B5D470D29 299008 -c--a-w- C:\HP_ePrint\Installer\hpbniprint32.exe

2013-12-14 15:42:20 D3DE8C9F0DD0887A34B0805943CCC572 268600 -c--a-w- C:\HP_ePrint\Installer\hpbcsiPostInstall.exe

2013-12-14 15:42:20 CCD32464AE5783BE2612D83E2C6B2926 874040 -c--a-w- C:\HP_ePrint\Utilities\FileToEmail.exe

2013-12-14 15:42:20 B5B0DC76C0179D1A0ABEF6334DC1A5AD 24888 -c--a-w- C:\HP_ePrint\Installer\hpbcsiServiceMarshaller.exe

2013-12-14 15:42:20 99AF5BA3C00F2CCFA1BF7B489A12DD58 164152 -c--a-w- C:\HP_ePrint\Installer\hpbcsiInstaller.exe

2013-12-14 15:42:20 7B824C795C02E2FDA1D26FDAD214D9C9 293376 -c--a-w- C:\HP_ePrint\Installer\hpbniscan64.exe

2013-12-14 15:42:20 72181AB163ED1E82A928E66DA096F0F1 207672 -c--a-w- C:\HP_ePrint\Utilities\Scrubber.exe

2013-12-14 15:42:20 6FB452D2762AD560440DBE8AA54FF677 141112 -c--a-w- C:\HP_ePrint\Installer\hpbcsiSWChooser.exe

2013-12-14 15:42:20 5D78438E97190DC96F8BAF6BCD7535D6 552528 -c--a-w- C:\HP_ePrint\Installer\DPInst_x32\dpinst.exe

2013-12-14 15:42:20 5392CDB57A8DA3B7F7A356D1269E37C1 384512 -c--a-w- C:\HP_ePrint\Installer\hpbniprint64.exe

2013-12-14 15:42:20 4AA50885D2CEC4394A095AED5323AED5 677952 -c--a-w- C:\HP_ePrint\Installer\DPInst_x64\dpinst.exe

2013-12-14 15:42:20 342F79337765760AD4E392EB67D5ED2C 2585872 -c--a-w- C:\HP_ePrint\Prerequisites\msi31\WindowsInstaller-KB893803-v2-x86.exe

2013-12-14 15:42:20 2B826E7E02896B254B483B2CFE3ACB9F 2381112 -c--a-w- C:\HP_ePrint\Setup.exe

2013-12-14 15:42:20 2411D91FB138DCCFEAAB898A637052BE 468480 -c--a-w- C:\HP_ePrint\InstallerContent\Help\Launcher.exe

2013-12-14 15:42:20 1E91469076894299504812CD0150B901 2381112 -c--a-w- C:\HP_ePrint\Uninstall.exe

2013-12-14 15:42:19 84679A6A94C0ED134EC25D19FE07F6C5 2381112 -c--a-w- C:\HP_ePrint\Autorun.exe

2013-12-14 15:42:19 7E13CD718EA98567F088E889A7CEE066 4807151 -c--a-w- C:\HP_ePrint\InstallerContent\Help\CSIHelp.exe

2013-12-14 15:35:27 F5745DDD7A5945B73825EA5239B9A3ED 2278920 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\DeviceManager\DeviceManager.exe

2013-12-14 15:35:27 C8E0738F6D3048B87881A5E103243C04 1695752 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\FileExtractor.exe

2013-12-14 15:35:27 370BDA83B756FBDCA3DA0020A48BF04F 4252680 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS48F5\HPDiagnosticCoreUI.exe

2013-12-14 15:35:16 E7D7C1EEB2C9B20BA46ED7D4F006471D 6123336 ----a-w- C:\Users\Martiene\AppData\Local\Temp\HPPSdr.exe

2013-12-14 15:35:02 64488B4D7C765DFEEFB72DD9430199E1 4181000 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\HPDiagnosticCoreUI.exe

2013-12-14 15:35:01 E9FAE663D554C0836FA3C5F4679004BC 1695240 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\FileExtractor.exe

2013-12-14 15:34:59 4ADF1502088DBF83908B0C0DF2683C3C 2278920 ----a-w- C:\Users\Martiene\AppData\Local\Temp\7zS489A\DeviceManager\DeviceManager.exe

2013-12-14 15:28:00 F61707B3F6F7D58FFC5FCB97E4D66BB7 1721704 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzrcv01.exe

2013-12-14 15:27:56 7DE0F6C5848D0234F410AA1FEA3FA99B 1713000 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzmsi01.exe

2013-12-14 15:27:52 BB6180CE08F002F682DAE89EBC41C590 1227624 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzstub.exe

2013-12-14 15:27:51 05546DBCA9B0B8261303880274A927E7 939880 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzpnp01.exe

2013-12-14 08:22:44 1ACCA74287FE5D7449FBB2B9F0C83341 309328 ----a-w- C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarUser_32_D053C89A9DB0461F.exe

2013-12-14 08:22:39 228A4633D638F7EEA6400D5ED5274397 1071696 ----a-w- C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_231F3FD17DB59CFD.exe

2013-12-14 08:21:50 BD5A28471F81D492D21A381610672411 531424 ----a-w- C:\Program Files\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\7.5.4805.320\GoogleToolbarInstaller_updater_signed.exe

=== C: other files ==

2013-12-20 11:44:38 EBA2630B1DE2CB0ED975F636F1A81887 2473881 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\2a0f0a61-5f76-47d3-b83e-d16a1cdc44a8.zip

2013-12-20 11:43:42 3581AE84BB4D4017DECD93F7E08BD32D 923479 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\f31c29a1-5f79-47d3-b83e-d16a1cdc44a8.zip

2013-12-20 11:34:10 605DF7AFA1E308F493E02154CD7A71C5 497 ----a-w- C:\Windows\Temp\f31be741-5f79-47d3-b83e-d16a1cdc44a8.zip

2013-12-20 11:27:38 1DC3AFC5FA8DD4B842DF76724CE51500 584958 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\d5f79a61-5f7e-47d3-b83e-d16a1cdc44a8.zip

2013-12-20 11:00:11 1230A354CB7C392F6583847AA4E59100 544 -c--a-w- C:\$RECYCLE.BIN\S-1-5-21-2007551767-2801189224-3982546447-1000\$IZAGLAO.zip

2013-12-20 10:58:57 6FAE618E97144626136F73343A80E61B 4061457 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2007551767-2801189224-3982546447-1000\$RZAGLAO.zip

2013-12-20 10:57:38 7815822EEF0F569AF50F488751BCAABB 544 -c--a-w- C:\$RECYCLE.BIN\S-1-5-21-2007551767-2801189224-3982546447-1000\$IGJ42EN.zip

2013-12-20 10:55:22 6FAE618E97144626136F73343A80E61B 4061457 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2007551767-2801189224-3982546447-1000\$RGJ42EN.zip

2013-12-18 07:17:53 2367508464EE8A4E2F58C0442BD47993 60960 ----a-w- C:\Windows\Temp\avgdiag2\bd5f731e-24f2-456f-87a1-3273efe38977\out\bd5f731e-24f2-456f-87a1-3273efe38977[30736627-5851-47d1-b90a-d16d38ad0a63].zip

2013-12-15 17:05:57 46E876C55F0B4A5EAC1DD6F36B10156D 6868 ------w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Windows 7 x86 ISO\sources\etwproviders\etwproviderinstall.vbs

2013-12-15 17:05:44 D4BEFEBF3CEF129AC087422B9E912788 4096 ------w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Windows 7 x86 ISO\boot\etfsboot.com

2013-12-15 16:13:37 D33505C0C9F48C813D0978F018BDA154 2560 ----a-w- C:\Users\Martiene\Downloads\Vinny windows-7-ultimate-sp1-nederlands-updated-juli-2013-32-64-bit Respot\WJLI13207HKGRK\Losse extra Software\Driver Genius\Crack\ru-board.com

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 -c--a-w- C:\HP_ePrint\Drivers\64bit\hpbje1301XPS.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 -c--a-w- C:\HP_ePrint\Drivers\32bit\hpbje1301XPS.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 ----a-w- C:\Windows\System32\spool\drivers\w32x86\3\hpbje1301XPS.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 ----a-w- C:\Windows\System32\DriverStore\FileRepository\hpbje1301xps.inf_0309b41d\hpbje1301XPS.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 -c--a-w- C:\HP_ePrint\Drivers\64bit\hpbmdnssearchjctps1301.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 -c--a-w- C:\HP_ePrint\Drivers\32bit\hpbmdnssearchjctps1301.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 ----a-w- C:\Windows\System32\spool\drivers\w32x86\3\hpbmdnssearchjctps1301.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 ----a-w- C:\Windows\System32\DriverStore\FileRepository\hpbje1301xps.inf_0309b41d\hpbmdnssearchjctps1301.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-2007551767-2801189224-3982546447-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden "

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"AccelerometerSysTrayApplet"="C:\Windows\system32\AccelerometerSt.Exe "

"Google Update"="C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe /c "

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE "

"GoPalAssistant"="C:\Program Files\MEDION GoPal Assistant\Assistant_Starter.exe /activesyncoff"

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"

"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

"UpdatePPShortCut"="C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerProducer update Software\CyberLink\PowerProducer\5.0"

"UpdatePDIRShortCut"="C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerDirector UpdateWithCreateOnce SOFTWARE\CyberLink\PowerDirector\7.0"

"UpdateP2GoShortCut"="C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0"

"UCam_Menu"="C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe C:\Program Files\Hewlett-Packard\Media\Webcam update Software\Hewlett-Packard\Media\Webcam"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe"

"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe"

"RemoteControl10"="C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"

"QlbCtrl.exe"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start "

"CLMLServer for HP TouchSmart"="C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"

"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices "

"Adobe Acrobat Speed Launcher"="C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe "

"Acrobat Assistant 8.0"="C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe "

"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"

"HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe"

"DVDAgent"="C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe "

"DivXUpdate"="C:\Program Files\DivX\DivX Update\DivXUpdate.exe /CHECKNOW"

"DivXMediaServer"="C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe"

"AllShareAgent"="C:\Program Files\Samsung\AllShare\AllShareAgent.exe"

"AllShare Play"="C:\Program Files\Samsung\AllShare Play\utils\AllShare Play Launcher.exe"

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"WinampAgent"="C:\Program Files\Winamp\winampa.exe"

"Windows Mobile-based device management"="%windir%\WindowsMobile\wmdcBase.exe"

"MacrokeyManager"="WTMKM.exe"

"Windows Mobile-based device management"="%WINDIR%\WindowsMobile\wmdcBase.exe "

"SysTrayApp"="C:\Program Files\IDT\WDM\sttray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"B Register C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax"="C:\Windows\system32\rundll32.exe C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax,DllRegisterServer"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden "

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"AccelerometerSysTrayApplet"="C:\Windows\system32\AccelerometerSt.Exe "

"Google Update"="C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe /c "

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE "

"GoPalAssistant"="C:\Program Files\MEDION GoPal Assistant\Assistant_Starter.exe /activesyncoff"

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeActiveFileMonitor7.0]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TVCapSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TVSched]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]

"HP Health Check Scheduler"="c:\\Program Files\\Hewlett-Packard\\HP Health Check\\HPHC_Scheduler.exe"

"SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\""

"TSMAgent"="\"C:\\Program Files\\Hewlett-Packard\\TouchSmart\\Media\\TSMAgent.exe\" "

"CLMLServer"="\"C:\\Program Files\\CyberLink\\Power2Go\\CLMLSvc.exe\""

"BDRegion"="C:\\Program Files\\Cyberlink\\Shared files\\brs.exe"

==== Startup Folders ======================

2013-10-17 16:34:00 989 ---ha-w- C:\Users\Martiene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

2013-05-11 07:18:11 797 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BTTray.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [11-12-2013 16:35]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [11-09-2012 10:32]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [11-09-2012 10:32]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000Core.job --a------ C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe [06-07-2013 06:57]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000UA.job --a------ C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe [06-07-2013 06:57]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\0" [c:\program files\internet explorer\iexplore.exe]

"C:\Windows\system32\tasks\5002" [wscript.exe C:\Users\Martiene\AppData\Local\Temp\launchie.vbs //B]

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\AutoKMS" [C:\Windows\AutoKMS.exe]

"C:\Windows\system32\tasks\CapSchedInst" [c:\Program Files\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe]

"C:\Windows\system32\tasks\CapSvcInst" [c:\Program Files\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe]

"C:\Windows\system32\tasks\CapUninst" [c:\Program Files\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe]

"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\system32\tasks\DeviceDetector" [C:\Program Files\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000Core" [C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000UA" [C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\Hewlett-Packard-online actualiseringsprogramma" [c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe]

"C:\Windows\system32\tasks\HP Health Check" ["c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"]

"C:\Windows\system32\tasks\HP-Online updateprogramma" [C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe]

"C:\Windows\system32\tasks\Java Update Scheduler" [C:\Program Files\Common Files\Java\Java Update\jusched.exe]

"C:\Windows\system32\tasks\NeroLiveEpgUpdate-Thuis_Martiene" [C:\Program Files\Nero\Nero 9\Nero Live\NeroLive.exe]

"C:\Windows\system32\tasks\Sun Microsystems-online actualiseringsprogramma" [C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe]

"C:\Windows\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files\AVG\AVG PC TuneUp\OneClick.exe]

"C:\Windows\system32\tasks\TVAgent" [c:\Program Files\Hewlett-Packard\Media\Live TV\TVAgent.exe]

"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [02-05-2013 19:21]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [02-05-2013 19:21]

==== Firefox Extensions ======================

==== Firefox Plugins ======================

==== Chrome Look ======================

Chrome In-App Payments service - Martiene - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="https://www.google.nl/"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="https://www.google.nl/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{0DCA15AD-CD87-4F04-8169-BEEF3D67788B} AOL Zoeken Url="{searchTerms} - AOL Search resultaten"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

{982DAD8D-EEEC-48F5-86DF-8BCF30223D50} Kelkoo Url="http://nl.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913935"

==== HijackThis Entries ======================

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.nl/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: (no name) - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)

O3 - Toolbar: (no name) - !{5018CFD2-804D-4C99-9F81-25EAEA2769DE} - (no file)

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [updatePPShortCut] "C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"

O4 - HKLM\..\Run: [updatePDIRShortCut] "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"

O4 - HKLM\..\Run: [updateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Hewlett-Packard\Media\Webcam" update "Software\Hewlett-Packard\Media\Webcam"

O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [smartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe

O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"

O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start

O4 - HKLM\..\Run: [CLMLServer for HP TouchSmart] "C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"

O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [Windows Mobile-based device management] %WINDIR%\WindowsMobile\wmdcBase.exe

O4 - HKLM\..\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [DVDAgent] "C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe"

O4 - HKLM\..\RunOnce: "C:\Windows\system32\rundll32.exe" "C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax",DllRegisterServer

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [AccelerometerSysTrayApplet] "C:\Windows\system32\AccelerometerSt.Exe"

O4 - HKCU\..\Run: [Google Update] "C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O4 - Startup: Dropbox.lnk = Martiene\AppData\Roaming\Dropbox\bin\Dropbox.exe

O4 - Global Startup: BTTray.lnk = ?

O8 - Extra context menu item: &AOL-werkbalk Zoeken - C:\ProgramData\AOL\ieToolbar\resources\nl-NL\local\search.html

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Converteren naar Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: Doel van koppeling converteren naar Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

O8 - Extra context menu item: Doel van koppeling toevoegen aan bestaande PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O8 - Extra context menu item: Toevoegen aan bestaande PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: AllShare Play Service - Copyright 2013 SAMSUNG - C:\Program Files\Samsung\AllShare Play\AllShare Play Service.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgfws.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: CyberLink Product - 2012/05/16 13:00:39 (CLKMSVC10_CDD7036C) - CyberLink - C:\Program Files\CyberLink\PowerProducer\BDSDK\NavFilter\kmsvc.exe

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe

O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Recovery Service for Windows - Unknown owner - C:\Program Files\SMINST\BLService.exe

O23 - Service: Samsung AllShare PC (SamsungAllShareV2.0) - Samsung Electronics Co., Ltd. - C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe

O23 - Service: SimpleSlideShowServer - Samsung Electronics Co., Ltd. - C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe

O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e2247046\STacSV.exe

O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Martiene\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Martiene\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Martiene\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Martiene\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Martiene\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on vr 20-12-2013 at 13:05:15,77 ======================

[kape]

Mag ik voor de zekerheid even dit weten: klopt het dat er een legale Win Vista en een illegale Win 7 op deze PC zitten ?

[martieneke]

het klopt dat er een legale windows vista op staat, en een illegale windows 7 maar deze is niet geinstalleerd en wordt ook niet op deze comp. geinstalleerd.

[kape]

Verplaats eerst zoek.exe van de tijdelijke map naar je bureaublad. En voer dan het volgende uit:

Dubbelklik op Zoek.exe om de tool te starten.

• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

  C:\Windows\system32\tasks\0;fs
 C:\Windows\system32\tasks\5002;fs
 C:\Windows\system32\tasks\AutoKMS;fs
 {2318C2B1-4965-11d4-9B18-009027A5CD4F};c
 {5018CFD2-804D-4C99-9F81-25EAEA2769DE};c
 {08B0E5C0-4FCB-11CF-AAA5-00401C608501};c
 {08B0E5C0-4FCB-11CF-AAA5-00401C608501};c
 {F274614C-63F8-47D5-A4D1-FBDDE494F8D1};c

• Klik op de knop "Options" en vink nu de onderstaande opties aan.
  
• Do a Quick Scan
  
  
• IE Defaults
  
• Auto Clean
  
• De optie "Scan All Users" staat standaard aangevinkt.
  
• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  
• Post nu de inhoud van het geopende logje in het volgende bericht.
  

[martieneke]

hallo Kape, het volgende blogje.

Zoek.exe v5.0.0.0 Updated 18-December-2013

Tool run by Martiene on za 21-12-2013 at 11:06:20,61.

Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Martiene\Downloads\zoek\zoek.exe [scan all users] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2013-12-20-112734.log 43118 bytes

C:\zoek-results2013-12-20-120515.log 51646 bytes

C:\zoek-results2013-12-20-162258.log 44297 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Martiene\AppData\Local\Temp ====

====== Java Cache =====

====== C:\Windows\system32 =====

2013-12-14 15:45:07 B0B96EFA409137961B3F0774719E833E 335360 ----a-w- C:\Windows\System32\hpbprtmon.dll

2013-12-14 15:45:07 4A0C13AF6F66DBD70B7D0011371C9386 516608 ----a-w- C:\Windows\System32\hpbrprtmon.dll

2013-12-14 15:45:07 2A7EDCC277E63A8269E49558A1C9B039 203776 ----a-w- C:\Windows\System32\hpbprtmonui.dll

2013-12-13 07:13:51 C2E35F6FCBD5B4DB2B52B32D1153EC04 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2013-12-13 07:13:51 ADB9477A9C95C79FDF5DC214225603B0 420864 ----a-w- C:\Windows\System32\vbscript.dll

2013-12-13 07:13:51 2429485305BCCFB1014B19BFB512E8F9 73216 ----a-w- C:\Windows\System32\mshtmled.dll

2013-12-13 07:13:49 E8F37AF4D09972684D9EE1786901F540 176640 ----a-w- C:\Windows\System32\ieui.dll

2013-12-13 07:13:49 A0C6AFE2C9C74573F5C0776CDE1128B1 142848 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-12-13 07:13:49 822E4743E61687933629AE3A8DECABC2 65024 ----a-w- C:\Windows\System32\jsproxy.dll

2013-12-13 07:13:49 4CC9DF09C3D915BA0A101A11DB684F26 1129472 ----a-w- C:\Windows\System32\wininet.dll

2013-12-13 07:13:49 36E4D129029784EE37A2C14393B6A4E8 607744 ----a-w- C:\Windows\System32\msfeeds.dll

2013-12-13 07:13:48 C05A60DB2ED385E9BB5CF7AE773A3D9B 717824 ----a-w- C:\Windows\System32\jscript.dll

2013-12-13 07:13:48 BDA52464C16707EAA513C8A2920ACE1F 231936 ----a-w- C:\Windows\System32\url.dll

2013-12-13 07:13:48 795202EFA9ED73F99C96235C1DC6A1AC 1806848 ----a-w- C:\Windows\System32\jscript9.dll

2013-12-13 07:13:47 B787EE3F327ABAC1EC47313B3A673598 1796096 ----a-w- C:\Windows\System32\iertutil.dll

2013-12-13 07:13:46 C89906FA43A58FD4CFC7EA06D885A597 12344320 ----a-w- C:\Windows\System32\mshtml.dll

2013-12-13 07:13:46 5AAFA41F2A09D68F43741EF13937650A 1105408 ----a-w- C:\Windows\System32\urlmon.dll

2013-12-13 07:13:46 06FDA396980A0157469A334E1BFEAF17 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl

2013-12-13 07:13:44 B231416DD7569B5C16F2DD2D2D64BB5A 9739264 ----a-w- C:\Windows\System32\ieframe.dll

2013-12-12 07:09:23 A6E18756EA7B6E971184B57B86251FC5 2050560 ----a-w- C:\Windows\System32\win32k.sys

2013-12-12 07:09:16 57390AF2F8939AB038FC4A5D10B50D52 335360 ----a-w- C:\Windows\System32\SysFxUI.dll

2013-12-12 07:09:02 B44B59C85DC2C2D39542F97BF545A308 135168 ----a-w- C:\Windows\System32\cscript.exe

2013-12-12 07:09:02 2497FD012104DFF64BF01DA98ECF6F75 131072 ----a-w- C:\Windows\System32\wshom.ocx

2013-12-12 07:09:02 1D0A82B11235D68CF55A54B2ADECB9F1 155648 ----a-w- C:\Windows\System32\wscript.exe

2013-12-12 07:09:01 F9D5C623E913CDAA198ECF0E6D2AA54A 36864 ----a-w- C:\Windows\System32\wshcon.dll

2013-12-12 07:09:01 DDEA43CDF00D6987F633F80AE4B7F2CE 172032 ----a-w- C:\Windows\System32\scrrun.dll

2013-12-12 07:08:52 09EA40F4DAD2EDB3587E5E0BAA9C3E15 158208 ----a-w- C:\Windows\System32\imagehlp.dll

====== C:\Windows\system32\drivers =====

2013-12-12 07:09:16 6DBA75306DD9B242B6F1C343179AD201 167936 ----a-w- C:\Windows\System32\drivers\portcls.sys

2013-12-12 07:09:16 2A63675F6FA8EF0FF9F5C72695584CAA 130048 ----a-w- C:\Windows\System32\drivers\drmk.sys

2013-11-25 00:48:36 5BCAE36134162830ED283F4C3D88476A 208184 ----a-w- C:\Windows\System32\drivers\avgidsdriverx.sys

====== C:\Windows\Tasks ======

2013-12-20 18:19:36 45B6E9B16C26F008EE73E0910D20347C 3044 ----a-w- C:\Windows\system32\Tasks\{6A553B65-B9E1-4160-994C-9B43C7180EAD}

2013-12-03 09:54:11 D04702EAC1350BE55C41BE3CB691CA2D 3676 ----a-w- C:\Windows\system32\Tasks\Java Update Scheduler

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-12-19 19:05:34 -------- d-----w- C:\Program Files\trend micro

2013-12-14 15:45:28 -------- d-----w- C:\Program Files\Bonjour

======= C: =====

2013-12-20 16:02:45 4CFDF8B585FBC76CF8D7E0A3D8235571 2543 -c--a-w- C:\runcheck.txt

====== C:\Users\Martiene\AppData\Roaming ======

2013-12-20 16:22:58 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp

2013-12-20 16:22:57 -------- dc----w- C:\Users\Martiene\AppData\Local\Temp

2013-12-20 16:22:57 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp

2013-12-20 16:22:57 -------- d-----w- C:\Users\Default\AppData\Local\Temp

2013-12-20 16:22:57 -------- d-----w- C:\Users\Default User\AppData\Local\Temp

2013-12-14 22:13:45 8062B03BDB6077F54A5FA561D4DFDFB6 234952 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat

2013-12-06 14:57:52 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Roaming\DivX

====== C:\Users\Martiene ======

2013-12-19 19:05:15 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Martiene\Downloads\RSIT.exe

2013-12-14 15:45:28 -------- d-----w- C:\ProgramData\Apple

2013-12-11 08:20:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG

2013-12-02 17:15:31 -------- d-----w- C:\ProgramData\Oracle

2013-12-02 17:12:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

====== C: exe-files ==

2013-12-19 19:05:38 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Martiene.exe

2013-12-19 19:05:15 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Martiene\Downloads\RSIT.exe

2013-12-17 11:02:36 F9904ED12733CD531F4C91C54C9500B2 199992 ----a-w- C:\Program Files\HP\Common\HpDeviceDetection3.exe

2013-12-17 11:02:20 AD84BBE3E4FD74E5090D4575F0E54EC7 35128 ----a-w- C:\Program Files\HP\Common\AclmControl.exe

2013-12-15 16:30:46 DD4BA2D1B33E1E6D45EF343D1BFD7659 3195511 ----a-w- C:\Users\Martiene\Downloads\Windows 7 11-in-1 (32bits en 64bits)NL\Adje alles in 1\Windows 7 Activator By Daz\Windows Loader.exe

2013-12-15 16:30:46 AF911BE206423BF440EA9D4DF075A632 2721168 ----a-w- C:\Users\Martiene\Downloads\Windows 7 11-in-1 (32bits en 64bits)NL\Adje alles in 1\Windows7-USB-DVD-tool.exe

2013-12-14 15:43:43 2411D91FB138DCCFEAAB898A637052BE 468480 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\InstallerContent\Help\Launcher.exe

2013-12-14 15:43:42 7E13CD718EA98567F088E889A7CEE066 4807151 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\InstallerContent\Help\CSIHelp.exe

2013-12-14 15:43:41 FDBF64CF46C05F333639DA3593EAC739 241664 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniscan32.exe

2013-12-14 15:43:41 DC34F99F9BA66ACA49BF225B5D470D29 299008 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniprint32.exe

2013-12-14 15:43:41 B5B0DC76C0179D1A0ABEF6334DC1A5AD 24888 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbcsiServiceMarshaller.exe

2013-12-14 15:43:41 99AF5BA3C00F2CCFA1BF7B489A12DD58 164152 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbcsiInstaller.exe

2013-12-14 15:43:41 7B824C795C02E2FDA1D26FDAD214D9C9 293376 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniscan64.exe

2013-12-14 15:43:41 5392CDB57A8DA3B7F7A356D1269E37C1 384512 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniprint64.exe

2013-12-14 15:43:35 2B826E7E02896B254B483B2CFE3ACB9F 2381112 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Setup.exe

2013-12-14 15:42:20 FDBF64CF46C05F333639DA3593EAC739 241664 -c--a-w- C:\HP_ePrint\Installer\hpbniscan32.exe

2013-12-14 15:42:20 DC34F99F9BA66ACA49BF225B5D470D29 299008 -c--a-w- C:\HP_ePrint\Installer\hpbniprint32.exe

2013-12-14 15:42:20 D3DE8C9F0DD0887A34B0805943CCC572 268600 -c--a-w- C:\HP_ePrint\Installer\hpbcsiPostInstall.exe

2013-12-14 15:42:20 CCD32464AE5783BE2612D83E2C6B2926 874040 -c--a-w- C:\HP_ePrint\Utilities\FileToEmail.exe

2013-12-14 15:42:20 B5B0DC76C0179D1A0ABEF6334DC1A5AD 24888 -c--a-w- C:\HP_ePrint\Installer\hpbcsiServiceMarshaller.exe

2013-12-14 15:42:20 99AF5BA3C00F2CCFA1BF7B489A12DD58 164152 -c--a-w- C:\HP_ePrint\Installer\hpbcsiInstaller.exe

2013-12-14 15:42:20 7B824C795C02E2FDA1D26FDAD214D9C9 293376 -c--a-w- C:\HP_ePrint\Installer\hpbniscan64.exe

2013-12-14 15:42:20 72181AB163ED1E82A928E66DA096F0F1 207672 -c--a-w- C:\HP_ePrint\Utilities\Scrubber.exe

2013-12-14 15:42:20 6FB452D2762AD560440DBE8AA54FF677 141112 -c--a-w- C:\HP_ePrint\Installer\hpbcsiSWChooser.exe

2013-12-14 15:42:20 5D78438E97190DC96F8BAF6BCD7535D6 552528 -c--a-w- C:\HP_ePrint\Installer\DPInst_x32\dpinst.exe

2013-12-14 15:42:20 5392CDB57A8DA3B7F7A356D1269E37C1 384512 -c--a-w- C:\HP_ePrint\Installer\hpbniprint64.exe

2013-12-14 15:42:20 4AA50885D2CEC4394A095AED5323AED5 677952 -c--a-w- C:\HP_ePrint\Installer\DPInst_x64\dpinst.exe

2013-12-14 15:42:20 342F79337765760AD4E392EB67D5ED2C 2585872 -c--a-w- C:\HP_ePrint\Prerequisites\msi31\WindowsInstaller-KB893803-v2-x86.exe

2013-12-14 15:42:20 2B826E7E02896B254B483B2CFE3ACB9F 2381112 -c--a-w- C:\HP_ePrint\Setup.exe

2013-12-14 15:42:20 2411D91FB138DCCFEAAB898A637052BE 468480 -c--a-w- C:\HP_ePrint\InstallerContent\Help\Launcher.exe

2013-12-14 15:42:20 1E91469076894299504812CD0150B901 2381112 -c--a-w- C:\HP_ePrint\Uninstall.exe

2013-12-14 15:42:19 84679A6A94C0ED134EC25D19FE07F6C5 2381112 -c--a-w- C:\HP_ePrint\Autorun.exe

2013-12-14 15:42:19 7E13CD718EA98567F088E889A7CEE066 4807151 -c--a-w- C:\HP_ePrint\InstallerContent\Help\CSIHelp.exe

2013-12-14 15:28:00 F61707B3F6F7D58FFC5FCB97E4D66BB7 1721704 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzrcv01.exe

2013-12-14 15:27:56 7DE0F6C5848D0234F410AA1FEA3FA99B 1713000 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzmsi01.exe

2013-12-14 15:27:52 BB6180CE08F002F682DAE89EBC41C590 1227624 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzstub.exe

2013-12-14 15:27:51 05546DBCA9B0B8261303880274A927E7 939880 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzpnp01.exe

=== C: other files ==

2013-12-21 10:05:50 CFC0C9194879C511A348424759186FB1 544 -c--a-w- C:\$RECYCLE.BIN\S-1-5-21-2007551767-2801189224-3982546447-1000\$I8FG1XH.zip

2013-12-21 10:05:46 001A35908B9EDF01E6D52B7B95768EEE 544 -c--a-w- C:\$RECYCLE.BIN\S-1-5-21-2007551767-2801189224-3982546447-1000\$ISMY2I1.zip

2013-12-20 18:16:22 6FAE618E97144626136F73343A80E61B 4061457 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2007551767-2801189224-3982546447-1000\$RSMY2I1.zip

2013-12-20 18:15:20 6FAE618E97144626136F73343A80E61B 4061457 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2007551767-2801189224-3982546447-1000\$R8FG1XH.zip

2013-12-20 16:53:20 1B35B972037718725F442A29E183DBAC 670881 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\5cc25589-5fad-47d3-a39f-d16a1cdc44a8.zip

2013-12-20 16:23:13 ABE663C737FC0047A9AADFF5E76026E5 270818 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\12db0e89-5f75-47d3-a39f-d16a1cdc44a8.zip

2013-12-20 11:44:38 EBA2630B1DE2CB0ED975F636F1A81887 2473881 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\2a0f0a61-5f76-47d3-b83e-d16a1cdc44a8.zip

2013-12-20 11:43:42 3581AE84BB4D4017DECD93F7E08BD32D 923479 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\f31c29a1-5f79-47d3-b83e-d16a1cdc44a8.zip

2013-12-20 11:27:38 1DC3AFC5FA8DD4B842DF76724CE51500 584958 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\d5f79a61-5f7e-47d3-b83e-d16a1cdc44a8.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 -c--a-w- C:\HP_ePrint\Drivers\64bit\hpbje1301XPS.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 -c--a-w- C:\HP_ePrint\Drivers\32bit\hpbje1301XPS.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 ----a-w- C:\Windows\System32\spool\drivers\w32x86\3\hpbje1301XPS.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 ----a-w- C:\Windows\System32\DriverStore\FileRepository\hpbje1301xps.inf_0309b41d\hpbje1301XPS.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 -c--a-w- C:\HP_ePrint\Drivers\64bit\hpbmdnssearchjctps1301.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 -c--a-w- C:\HP_ePrint\Drivers\32bit\hpbmdnssearchjctps1301.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 ----a-w- C:\Windows\System32\spool\drivers\w32x86\3\hpbmdnssearchjctps1301.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 ----a-w- C:\Windows\System32\DriverStore\FileRepository\hpbje1301xps.inf_0309b41d\hpbmdnssearchjctps1301.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-2007551767-2801189224-3982546447-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden "

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"AccelerometerSysTrayApplet"="C:\Windows\system32\AccelerometerSt.Exe "

"Google Update"="C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe /c "

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE "

"GoPalAssistant"="C:\Program Files\MEDION GoPal Assistant\Assistant_Starter.exe /activesyncoff"

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"

"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

"UpdatePPShortCut"="C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerProducer update Software\CyberLink\PowerProducer\5.0"

"UpdatePDIRShortCut"="C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerDirector UpdateWithCreateOnce SOFTWARE\CyberLink\PowerDirector\7.0"

"UpdateP2GoShortCut"="C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0"

"UCam_Menu"="C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe C:\Program Files\Hewlett-Packard\Media\Webcam update Software\Hewlett-Packard\Media\Webcam"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe"

"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe"

"RemoteControl10"="C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"

"QlbCtrl.exe"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start "

"CLMLServer for HP TouchSmart"="C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"

"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices "

"Adobe Acrobat Speed Launcher"="C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe "

"Acrobat Assistant 8.0"="C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe "

"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"

"HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe"

"DVDAgent"="C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe "

"DivXUpdate"="C:\Program Files\DivX\DivX Update\DivXUpdate.exe /CHECKNOW"

"DivXMediaServer"="C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe"

"AllShareAgent"="C:\Program Files\Samsung\AllShare\AllShareAgent.exe"

"AllShare Play"="C:\Program Files\Samsung\AllShare Play\utils\AllShare Play Launcher.exe"

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"WinampAgent"="C:\Program Files\Winamp\winampa.exe"

"Windows Mobile-based device management"="%windir%\WindowsMobile\wmdcBase.exe"

"MacrokeyManager"="WTMKM.exe"

"Windows Mobile-based device management"="%WINDIR%\WindowsMobile\wmdcBase.exe "

"SysTrayApp"="C:\Program Files\IDT\WDM\sttray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"B Register C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax"="C:\Windows\system32\rundll32.exe C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax,DllRegisterServer"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden "

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"AccelerometerSysTrayApplet"="C:\Windows\system32\AccelerometerSt.Exe "

"Google Update"="C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe /c "

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE "

"GoPalAssistant"="C:\Program Files\MEDION GoPal Assistant\Assistant_Starter.exe /activesyncoff"

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeActiveFileMonitor7.0]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TVCapSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TVSched]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]

"HP Health Check Scheduler"="c:\\Program Files\\Hewlett-Packard\\HP Health Check\\HPHC_Scheduler.exe"

"SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\""

"TSMAgent"="\"C:\\Program Files\\Hewlett-Packard\\TouchSmart\\Media\\TSMAgent.exe\" "

"CLMLServer"="\"C:\\Program Files\\CyberLink\\Power2Go\\CLMLSvc.exe\""

"BDRegion"="C:\\Program Files\\Cyberlink\\Shared files\\brs.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [11-09-2012 10:32]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [11-09-2012 10:32]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000Core.job --a------ C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe [06-07-2013 06:57]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000UA.job --a------ C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe [06-07-2013 06:57]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\0" [c:\program files\internet explorer\iexplore.exe]

"C:\Windows\system32\tasks\5002" [wscript.exe C:\Users\Martiene\AppData\Local\Temp\launchie.vbs //B]

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\AutoKMS" [C:\Windows\AutoKMS.exe]

"C:\Windows\system32\tasks\CapSchedInst" [c:\Program Files\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe]

"C:\Windows\system32\tasks\CapSvcInst" [c:\Program Files\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe]

"C:\Windows\system32\tasks\CapUninst" [c:\Program Files\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe]

"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\system32\tasks\DeviceDetector" [C:\Program Files\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000Core" [C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000UA" [C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\Hewlett-Packard-online actualiseringsprogramma" [c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe]

"C:\Windows\system32\tasks\HP Health Check" ["c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"]

"C:\Windows\system32\tasks\HP-Online updateprogramma" [C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe]

"C:\Windows\system32\tasks\Java Update Scheduler" [C:\Program Files\Common Files\Java\Java Update\jusched.exe]

"C:\Windows\system32\tasks\NeroLiveEpgUpdate-Thuis_Martiene" [C:\Program Files\Nero\Nero 9\Nero Live\NeroLive.exe]

"C:\Windows\system32\tasks\Sun Microsystems-online actualiseringsprogramma" [C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe]

"C:\Windows\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files\AVG\AVG PC TuneUp\OneClick.exe]

"C:\Windows\system32\tasks\TVAgent" [c:\Program Files\Hewlett-Packard\Media\Live TV\TVAgent.exe]

"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [02-05-2013 19:21]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [02-05-2013 19:21]

==== Firefox Extensions ======================

==== Firefox Plugins ======================

==== Chrome Look ======================

Chrome In-App Payments service - Martiene - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="https://www.google.nl/"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="https://www.google.nl/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{0DCA15AD-CD87-4F04-8169-BEEF3D67788B} AOL Zoeken Url="{searchTerms} - AOL Search resultaten"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

{982DAD8D-EEEC-48F5-86DF-8BCF30223D50} Kelkoo Url="http://nl.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913935"

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Martiene\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Martiene\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Martiene\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on za 21-12-2013 at 11:27:31,99 ======================

- - - Updated - - -

ik heb een foutje gemaakt, ik ben vergeten de code in het invulvenster te plakken.

[martieneke]

ik heb het programmaatje nog een keer laten draaien met de code, hier volgt het logje.

Zoek.exe v5.0.0.0 Updated 18-December-2013

Tool run by Martiene on za 21-12-2013 at 12:57:12,20.

Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Martiene\Downloads\zoek\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2013-12-20-112734.log 43118 bytes

C:\zoek-results2013-12-20-120515.log 51646 bytes

C:\zoek-results2013-12-20-162258.log 44297 bytes

C:\zoek-results2013-12-21-102731.log 29033 bytes

C:\zoek-results2013-12-21-115607.log 2332 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\Windows\system32\tasks\0 not found

C:\Windows\system32\tasks\5002 not found

C:\Windows\system32\tasks\AutoKMS not found

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Martiene\AppData\Local\Temp ====

====== Java Cache =====

====== C:\Windows\system32 =====

2013-12-14 15:45:07 B0B96EFA409137961B3F0774719E833E 335360 ----a-w- C:\Windows\System32\hpbprtmon.dll

2013-12-14 15:45:07 4A0C13AF6F66DBD70B7D0011371C9386 516608 ----a-w- C:\Windows\System32\hpbrprtmon.dll

2013-12-14 15:45:07 2A7EDCC277E63A8269E49558A1C9B039 203776 ----a-w- C:\Windows\System32\hpbprtmonui.dll

2013-12-13 07:13:51 C2E35F6FCBD5B4DB2B52B32D1153EC04 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2013-12-13 07:13:51 ADB9477A9C95C79FDF5DC214225603B0 420864 ----a-w- C:\Windows\System32\vbscript.dll

2013-12-13 07:13:51 2429485305BCCFB1014B19BFB512E8F9 73216 ----a-w- C:\Windows\System32\mshtmled.dll

2013-12-13 07:13:49 E8F37AF4D09972684D9EE1786901F540 176640 ----a-w- C:\Windows\System32\ieui.dll

2013-12-13 07:13:49 A0C6AFE2C9C74573F5C0776CDE1128B1 142848 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-12-13 07:13:49 822E4743E61687933629AE3A8DECABC2 65024 ----a-w- C:\Windows\System32\jsproxy.dll

2013-12-13 07:13:49 4CC9DF09C3D915BA0A101A11DB684F26 1129472 ----a-w- C:\Windows\System32\wininet.dll

2013-12-13 07:13:49 36E4D129029784EE37A2C14393B6A4E8 607744 ----a-w- C:\Windows\System32\msfeeds.dll

2013-12-13 07:13:48 C05A60DB2ED385E9BB5CF7AE773A3D9B 717824 ----a-w- C:\Windows\System32\jscript.dll

2013-12-13 07:13:48 BDA52464C16707EAA513C8A2920ACE1F 231936 ----a-w- C:\Windows\System32\url.dll

2013-12-13 07:13:48 795202EFA9ED73F99C96235C1DC6A1AC 1806848 ----a-w- C:\Windows\System32\jscript9.dll

2013-12-13 07:13:47 B787EE3F327ABAC1EC47313B3A673598 1796096 ----a-w- C:\Windows\System32\iertutil.dll

2013-12-13 07:13:46 C89906FA43A58FD4CFC7EA06D885A597 12344320 ----a-w- C:\Windows\System32\mshtml.dll

2013-12-13 07:13:46 5AAFA41F2A09D68F43741EF13937650A 1105408 ----a-w- C:\Windows\System32\urlmon.dll

2013-12-13 07:13:46 06FDA396980A0157469A334E1BFEAF17 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl

2013-12-13 07:13:44 B231416DD7569B5C16F2DD2D2D64BB5A 9739264 ----a-w- C:\Windows\System32\ieframe.dll

2013-12-12 07:09:23 A6E18756EA7B6E971184B57B86251FC5 2050560 ----a-w- C:\Windows\System32\win32k.sys

2013-12-12 07:09:16 57390AF2F8939AB038FC4A5D10B50D52 335360 ----a-w- C:\Windows\System32\SysFxUI.dll

2013-12-12 07:09:02 B44B59C85DC2C2D39542F97BF545A308 135168 ----a-w- C:\Windows\System32\cscript.exe

2013-12-12 07:09:02 2497FD012104DFF64BF01DA98ECF6F75 131072 ----a-w- C:\Windows\System32\wshom.ocx

2013-12-12 07:09:02 1D0A82B11235D68CF55A54B2ADECB9F1 155648 ----a-w- C:\Windows\System32\wscript.exe

2013-12-12 07:09:01 F9D5C623E913CDAA198ECF0E6D2AA54A 36864 ----a-w- C:\Windows\System32\wshcon.dll

2013-12-12 07:09:01 DDEA43CDF00D6987F633F80AE4B7F2CE 172032 ----a-w- C:\Windows\System32\scrrun.dll

2013-12-12 07:08:52 09EA40F4DAD2EDB3587E5E0BAA9C3E15 158208 ----a-w- C:\Windows\System32\imagehlp.dll

====== C:\Windows\system32\drivers =====

2013-12-12 07:09:16 6DBA75306DD9B242B6F1C343179AD201 167936 ----a-w- C:\Windows\System32\drivers\portcls.sys

2013-12-12 07:09:16 2A63675F6FA8EF0FF9F5C72695584CAA 130048 ----a-w- C:\Windows\System32\drivers\drmk.sys

2013-11-25 00:48:36 5BCAE36134162830ED283F4C3D88476A 208184 ----a-w- C:\Windows\System32\drivers\avgidsdriverx.sys

====== C:\Windows\Tasks ======

2013-12-20 18:19:36 45B6E9B16C26F008EE73E0910D20347C 3044 ----a-w- C:\Windows\system32\Tasks\{6A553B65-B9E1-4160-994C-9B43C7180EAD}

2013-12-03 09:54:11 D04702EAC1350BE55C41BE3CB691CA2D 3676 ----a-w- C:\Windows\system32\Tasks\Java Update Scheduler

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-12-19 19:05:34 -------- d-----w- C:\Program Files\trend micro

2013-12-14 15:45:28 -------- d-----w- C:\Program Files\Bonjour

======= C: =====

2013-12-21 11:57:11 F26DEEE72DE83C7C4E8D19B333899812 2632 -c--a-w- C:\runcheck.txt

====== C:\Users\Martiene\AppData\Roaming ======

2013-12-21 11:57:26 -------- d-----w- C:\Users\Martiene\AppData\Roaming\HPAppData

2013-12-21 10:24:03 -------- dc----w- C:\Users\Martiene\AppData\Local\Temp

2013-12-21 10:24:03 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp

2013-12-21 10:24:03 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp

2013-12-21 10:24:03 -------- d-----w- C:\Users\Default\AppData\Local\Temp

2013-12-21 10:24:03 -------- d-----w- C:\Users\Default User\AppData\Local\Temp

2013-12-14 22:13:45 8062B03BDB6077F54A5FA561D4DFDFB6 234952 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat

2013-12-06 14:57:52 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Roaming\DivX

====== C:\Users\Martiene ======

2013-12-19 19:05:15 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Martiene\Downloads\RSIT.exe

2013-12-14 15:45:28 -------- d-----w- C:\ProgramData\Apple

2013-12-11 08:20:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG

2013-12-02 17:15:31 -------- d-----w- C:\ProgramData\Oracle

2013-12-02 17:12:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

====== C: exe-files ==

2013-12-19 19:05:38 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Martiene.exe

2013-12-19 19:05:15 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Martiene\Downloads\RSIT.exe

2013-12-17 11:02:36 F9904ED12733CD531F4C91C54C9500B2 199992 ----a-w- C:\Program Files\HP\Common\HpDeviceDetection3.exe

2013-12-17 11:02:20 AD84BBE3E4FD74E5090D4575F0E54EC7 35128 ----a-w- C:\Program Files\HP\Common\AclmControl.exe

2013-12-15 16:30:46 DD4BA2D1B33E1E6D45EF343D1BFD7659 3195511 ----a-w- C:\Users\Martiene\Downloads\Windows 7 11-in-1 (32bits en 64bits)NL\Adje alles in 1\Windows 7 Activator By Daz\Windows Loader.exe

2013-12-15 16:30:46 AF911BE206423BF440EA9D4DF075A632 2721168 ----a-w- C:\Users\Martiene\Downloads\Windows 7 11-in-1 (32bits en 64bits)NL\Adje alles in 1\Windows7-USB-DVD-tool.exe

2013-12-14 15:43:43 2411D91FB138DCCFEAAB898A637052BE 468480 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\InstallerContent\Help\Launcher.exe

2013-12-14 15:43:42 7E13CD718EA98567F088E889A7CEE066 4807151 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\InstallerContent\Help\CSIHelp.exe

2013-12-14 15:43:41 FDBF64CF46C05F333639DA3593EAC739 241664 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniscan32.exe

2013-12-14 15:43:41 DC34F99F9BA66ACA49BF225B5D470D29 299008 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniprint32.exe

2013-12-14 15:43:41 B5B0DC76C0179D1A0ABEF6334DC1A5AD 24888 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbcsiServiceMarshaller.exe

2013-12-14 15:43:41 99AF5BA3C00F2CCFA1BF7B489A12DD58 164152 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbcsiInstaller.exe

2013-12-14 15:43:41 7B824C795C02E2FDA1D26FDAD214D9C9 293376 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniscan64.exe

2013-12-14 15:43:41 5392CDB57A8DA3B7F7A356D1269E37C1 384512 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Installer\hpbniprint64.exe

2013-12-14 15:43:35 2B826E7E02896B254B483B2CFE3ACB9F 2381112 ------w- C:\Program Files\HP\csiInstaller\2794875B-6CCF-48B8-84A5-5B10DB98BEE6\Setup.exe

2013-12-14 15:42:20 FDBF64CF46C05F333639DA3593EAC739 241664 -c--a-w- C:\HP_ePrint\Installer\hpbniscan32.exe

2013-12-14 15:42:20 DC34F99F9BA66ACA49BF225B5D470D29 299008 -c--a-w- C:\HP_ePrint\Installer\hpbniprint32.exe

2013-12-14 15:42:20 D3DE8C9F0DD0887A34B0805943CCC572 268600 -c--a-w- C:\HP_ePrint\Installer\hpbcsiPostInstall.exe

2013-12-14 15:42:20 CCD32464AE5783BE2612D83E2C6B2926 874040 -c--a-w- C:\HP_ePrint\Utilities\FileToEmail.exe

2013-12-14 15:42:20 B5B0DC76C0179D1A0ABEF6334DC1A5AD 24888 -c--a-w- C:\HP_ePrint\Installer\hpbcsiServiceMarshaller.exe

2013-12-14 15:42:20 99AF5BA3C00F2CCFA1BF7B489A12DD58 164152 -c--a-w- C:\HP_ePrint\Installer\hpbcsiInstaller.exe

2013-12-14 15:42:20 7B824C795C02E2FDA1D26FDAD214D9C9 293376 -c--a-w- C:\HP_ePrint\Installer\hpbniscan64.exe

2013-12-14 15:42:20 72181AB163ED1E82A928E66DA096F0F1 207672 -c--a-w- C:\HP_ePrint\Utilities\Scrubber.exe

2013-12-14 15:42:20 6FB452D2762AD560440DBE8AA54FF677 141112 -c--a-w- C:\HP_ePrint\Installer\hpbcsiSWChooser.exe

2013-12-14 15:42:20 5D78438E97190DC96F8BAF6BCD7535D6 552528 -c--a-w- C:\HP_ePrint\Installer\DPInst_x32\dpinst.exe

2013-12-14 15:42:20 5392CDB57A8DA3B7F7A356D1269E37C1 384512 -c--a-w- C:\HP_ePrint\Installer\hpbniprint64.exe

2013-12-14 15:42:20 4AA50885D2CEC4394A095AED5323AED5 677952 -c--a-w- C:\HP_ePrint\Installer\DPInst_x64\dpinst.exe

2013-12-14 15:42:20 342F79337765760AD4E392EB67D5ED2C 2585872 -c--a-w- C:\HP_ePrint\Prerequisites\msi31\WindowsInstaller-KB893803-v2-x86.exe

2013-12-14 15:42:20 2B826E7E02896B254B483B2CFE3ACB9F 2381112 -c--a-w- C:\HP_ePrint\Setup.exe

2013-12-14 15:42:20 2411D91FB138DCCFEAAB898A637052BE 468480 -c--a-w- C:\HP_ePrint\InstallerContent\Help\Launcher.exe

2013-12-14 15:42:20 1E91469076894299504812CD0150B901 2381112 -c--a-w- C:\HP_ePrint\Uninstall.exe

2013-12-14 15:42:19 84679A6A94C0ED134EC25D19FE07F6C5 2381112 -c--a-w- C:\HP_ePrint\Autorun.exe

2013-12-14 15:42:19 7E13CD718EA98567F088E889A7CEE066 4807151 -c--a-w- C:\HP_ePrint\InstallerContent\Help\CSIHelp.exe

2013-12-14 15:28:00 F61707B3F6F7D58FFC5FCB97E4D66BB7 1721704 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzrcv01.exe

2013-12-14 15:27:56 7DE0F6C5848D0234F410AA1FEA3FA99B 1713000 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzmsi01.exe

2013-12-14 15:27:52 BB6180CE08F002F682DAE89EBC41C590 1227624 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzstub.exe

2013-12-14 15:27:51 05546DBCA9B0B8261303880274A927E7 939880 ----a-r- C:\Program Files\HP\Temp\{EEEA9020-FCB0-4E35-82B9-D0994EF267B0}\setup\hpzpnp01.exe

=== C: other files ==

2013-12-20 16:53:20 1B35B972037718725F442A29E183DBAC 670881 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\5cc25589-5fad-47d3-a39f-d16a1cdc44a8.zip

2013-12-20 16:23:13 ABE663C737FC0047A9AADFF5E76026E5 270818 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\12db0e89-5f75-47d3-a39f-d16a1cdc44a8.zip

2013-12-20 11:44:38 EBA2630B1DE2CB0ED975F636F1A81887 2473881 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\2a0f0a61-5f76-47d3-b83e-d16a1cdc44a8.zip

2013-12-20 11:43:42 3581AE84BB4D4017DECD93F7E08BD32D 923479 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\f31c29a1-5f79-47d3-b83e-d16a1cdc44a8.zip

2013-12-20 11:27:38 1DC3AFC5FA8DD4B842DF76724CE51500 584958 ----a-w- C:\ProgramData\AVG2013\IDS\quarantine\d5f79a61-5f7e-47d3-b83e-d16a1cdc44a8.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 -c--a-w- C:\HP_ePrint\Drivers\64bit\hpbje1301XPS.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 -c--a-w- C:\HP_ePrint\Drivers\32bit\hpbje1301XPS.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 ----a-w- C:\Windows\System32\spool\drivers\w32x86\3\hpbje1301XPS.zip

2013-12-14 15:42:11 C427605CB57748F76A0FB0EFEC0C7E20 15110 ----a-w- C:\Windows\System32\DriverStore\FileRepository\hpbje1301xps.inf_0309b41d\hpbje1301XPS.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 -c--a-w- C:\HP_ePrint\Drivers\64bit\hpbmdnssearchjctps1301.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 -c--a-w- C:\HP_ePrint\Drivers\32bit\hpbmdnssearchjctps1301.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 ----a-w- C:\Windows\System32\spool\drivers\w32x86\3\hpbmdnssearchjctps1301.zip

2013-12-14 15:42:11 716F887DD98761FD71D9B4957D0FA441 15094 ----a-w- C:\Windows\System32\DriverStore\FileRepository\hpbje1301xps.inf_0309b41d\hpbmdnssearchjctps1301.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-2007551767-2801189224-3982546447-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden "

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"AccelerometerSysTrayApplet"="C:\Windows\system32\AccelerometerSt.Exe "

"Google Update"="C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe /c "

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE "

"GoPalAssistant"="C:\Program Files\MEDION GoPal Assistant\Assistant_Starter.exe /activesyncoff"

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"

"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

"UpdatePPShortCut"="C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerProducer update Software\CyberLink\PowerProducer\5.0"

"UpdatePDIRShortCut"="C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\PowerDirector UpdateWithCreateOnce SOFTWARE\CyberLink\PowerDirector\7.0"

"UpdateP2GoShortCut"="C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0"

"UCam_Menu"="C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe C:\Program Files\Hewlett-Packard\Media\Webcam update Software\Hewlett-Packard\Media\Webcam"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe"

"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe"

"RemoteControl10"="C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"

"QlbCtrl.exe"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start "

"CLMLServer for HP TouchSmart"="C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"

"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices "

"Adobe Acrobat Speed Launcher"="C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe "

"Acrobat Assistant 8.0"="C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe "

"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"

"HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe"

"DVDAgent"="C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe "

"DivXUpdate"="C:\Program Files\DivX\DivX Update\DivXUpdate.exe /CHECKNOW"

"DivXMediaServer"="C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe"

"AllShareAgent"="C:\Program Files\Samsung\AllShare\AllShareAgent.exe"

"AllShare Play"="C:\Program Files\Samsung\AllShare Play\utils\AllShare Play Launcher.exe"

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"WinampAgent"="C:\Program Files\Winamp\winampa.exe"

"Windows Mobile-based device management"="%windir%\WindowsMobile\wmdcBase.exe"

"MacrokeyManager"="WTMKM.exe"

"Windows Mobile-based device management"="%WINDIR%\WindowsMobile\wmdcBase.exe "

"SysTrayApp"="C:\Program Files\IDT\WDM\sttray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"B Register C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax"="C:\Windows\system32\rundll32.exe C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax,DllRegisterServer"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden "

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"AccelerometerSysTrayApplet"="C:\Windows\system32\AccelerometerSt.Exe "

"Google Update"="C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe /c "

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE "

"GoPalAssistant"="C:\Program Files\MEDION GoPal Assistant\Assistant_Starter.exe /activesyncoff"

"OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeActiveFileMonitor7.0]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TVCapSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TVSched]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]

"HP Health Check Scheduler"="c:\\Program Files\\Hewlett-Packard\\HP Health Check\\HPHC_Scheduler.exe"

"SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\""

"TSMAgent"="\"C:\\Program Files\\Hewlett-Packard\\TouchSmart\\Media\\TSMAgent.exe\" "

"CLMLServer"="\"C:\\Program Files\\CyberLink\\Power2Go\\CLMLSvc.exe\""

"BDRegion"="C:\\Program Files\\Cyberlink\\Shared files\\brs.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [11-12-2013 16:35]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [undetermined Task]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [11-09-2012 10:32]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000Core.job --a------ C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe [06-07-2013 06:57]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000UA.job --a------ C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe [06-07-2013 06:57]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\CapSchedInst" [c:\Program Files\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe]

"C:\Windows\system32\tasks\CapSvcInst" [c:\Program Files\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe]

"C:\Windows\system32\tasks\CapUninst" [c:\Program Files\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe]

"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\system32\tasks\DeviceDetector" [C:\Program Files\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000Core" [C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2007551767-2801189224-3982546447-1000UA" [C:\Users\Martiene\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\Hewlett-Packard-online actualiseringsprogramma" [c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe]

"C:\Windows\system32\tasks\HP Health Check" ["c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"]

"C:\Windows\system32\tasks\HP-Online updateprogramma" [C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe]

"C:\Windows\system32\tasks\Java Update Scheduler" [C:\Program Files\Common Files\Java\Java Update\jusched.exe]

"C:\Windows\system32\tasks\NeroLiveEpgUpdate-Thuis_Martiene" [C:\Program Files\Nero\Nero 9\Nero Live\NeroLive.exe]

"C:\Windows\system32\tasks\Sun Microsystems-online actualiseringsprogramma" [C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe]

"C:\Windows\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files\AVG\AVG PC TuneUp\OneClick.exe]

"C:\Windows\system32\tasks\TVAgent" [c:\Program Files\Hewlett-Packard\Media\Live TV\TVAgent.exe]

"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [02-05-2013 19:21]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [02-05-2013 19:21]

==== Firefox Extensions ======================

==== Firefox Plugins ======================

==== Chrome Look ======================

Chrome In-App Payments service - Martiene - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="https://www.google.nl/"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="https://www.google.nl/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{0DCA15AD-CD87-4F04-8169-BEEF3D67788B} AOL Zoeken Url="{searchTerms} - AOL Search resultaten"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

{982DAD8D-EEEC-48F5-86DF-8BCF30223D50} Kelkoo Url="http://nl.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913935"

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Martiene\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Martiene\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Martiene\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Martiene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on za 21-12-2013 at 13:17:45,81 ======================