Ga naar inhoud

Plotseling continu hoog processorverbruik

scale
 Delen

Aanbevolen berichten

scale Groentje

scale

Geplaatst:
Geplaatst:

Hallo,

Ik heb al wat zitten surfen en heb gezien dat jullie reeds mensen met een gelijkaardig probleem hebben kunnen helpen.

Ik heb sinds 2 dagen een continu hoog processorverbruik (95-100%), ondanks dat buiten mijn browser niets openstaat of draait.

Ik heb reeds adwcleaner, MBAM en Hijackthis laten draaien, maar durf verder niets te doen vermits ik er ook de kennis niet van heb.

Hopelijk kunnen jullie mij de hulp bieden die tot de oplossing van dit vervelend probleem kan leiden.

Alvast van harte dank!

Scale

Link naar reactie
Delen op andere sites
  • Reacties 20
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

Geplaatste afbeeldingen

kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Bekijk ook de instructievideo.

En zet ook even dat logje van Malwarebytes mee in het volgende bericht.

Link naar reactie
Delen op andere sites
scale Groentje

scale

Geplaatst:
  • Auteur
Geplaatst:

Hallo,

Bedankt voor snelle respons!

Hierbij achtereenvolgend log-bestand van RSIT en MBAM.

Log RSIT:

Logfile of random's system information tool 1.09 (written by random/random)

Run by Pascal at 2013-12-27 12:19:12

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 215 GB (48%) free of 452 GB

Total RAM: 5942 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 12:19:54, on 27/12/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe

C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Users\Pascal\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Winamp\winampa.exe

C:\Program Files (x86)\AVG\AVG2012\avgtray.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe

C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe

C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Program Files\trend micro\Pascal.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Telenet.be

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Telenet Internet

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll

O2 - BHO: HP SimplePass Identity Protection Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: DefaultTabToolbarBHO - {96A25A24-2E87-4374-8A50-CC6F943FCE4D} - C:\Users\Pascal\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll (file missing)

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Related Searches - {96A25A24-2E87-4374-8A50-CC6F943FCE4D} - C:\Users\Pascal\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll (file missing)

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" UNATTENDED

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"

O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [beid] "C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe" /startup

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [iSkysoft Helper Compact.exe] C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe

O4 - HKLM\..\Run: [sDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKCU\..\Run: [Google Update] "C:\Users\Pascal\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Pascal\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Pascal\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - HKCU\..\Run: [spotify] "C:\Users\Pascal\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Free YouTube Download - C:\Users\Pascal\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O9 - Extra button: Unibet - {D6433F43-4948-41C7-9DF5-F8C23DB52DCF} - C:\Microgaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU)

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe

O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe

O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)

O23 - Service: HPWMISVC - Unknown owner - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe

O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe

O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe

O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 15136 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /boot

C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe /pipeName=ad3e4f3f-d81f-4851-821f-d260b6a31451 /coreSdkOptions=286 /logConfFile="C:\ProgramData\AVG2012\temp\aa28293a-d047-417a-8d11-c63d5c644973-1a0-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2012\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2012" /tempPath="C:\ProgramData\AVG2012\temp\"

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe

C:\Windows\system32\Hpservice.exe

C:\Windows\system32\vcsFPService.exe

C:\Windows\system32\svchost.exe -k NetworkService

atieclxx

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"C:\Program Files\DigitalPersona\Bin\DpHostW.exe"

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe

"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

"C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe"

"C:\Program Files\Bonjour\mDNSResponder.exe"

"C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe"

C:\Windows\SysWOW64\ezSharedSvcHost.exe

"C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"

"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"

"C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe"

"C:\Program Files (x86)\AVG\AVG2012\avgemca.exe"

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted

"C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe"

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"

WLIDSvcM.exe 2228

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"

"C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe"

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

"taskhost.exe"

"C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe"

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

"C:\Windows\System32\igfxpers.exe"

"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"

"C:\Program Files\IDT\WDM\sttray64.exe"

"C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"

C:\Windows\system32\igfxsrvc.exe -Embedding

"C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background

"C:\Program Files\Hewlett-Packard\HPToneControl\HPToneCtl.exe"

"C:\Program Files\Java\jre6\bin\jusched.exe"

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden

"C:\Users\Pascal\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"

"C:\Program Files\DigitalPersona\Bin\DPAgent.exe"

"C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe"

"C:\Program Files (x86)\Winamp\winampa.exe"

"C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"C:\Program Files (x86)\iTunes\iTunesHelper.exe"

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

"C:\Program Files\iPod\bin\iPodService.exe"

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"

"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"

"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"

"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0

"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" mode=windowless

taskmgr.exe /3

"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Wireless Assistant</Title><Text>WLAN: Aan</Text><IconPath>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WA_tray_32_on.ico</IconPath><ID>1145795317</ID><Path>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe</Path><Parameters></Parameters></Toast></hpNotification>"

"C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe"

"C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2008.0.503355767\770473059" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --reduce-gpu-sandbox --gpu-vendor-id=0x1002 --gpu-device-id=0x68c1 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.692.1.0 --ignored=" --type=renderer " /prefetch:822062411

"C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_14/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="2008.11.1509978452\2021160412" /prefetch:673131151

taskeng.exe {6EC91E12-3247-438D-85E3-5B2E248FB9AF}

taskeng.exe {C03ABA2D-C56B-4D8D-9B68-268CADBFDFDA}

"C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_14/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="2008.15.2130655401\1418783297" /prefetch:673131151

"C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_14/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="2008.18.1724841632\1431309137" /prefetch:673131151

"C:\Windows\system32\wuauclt.exe"

"C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="2008.19.812779759\1640057870" --ppapi-flash-args --lang=nl --ignored=" --type=renderer " /prefetch:-632637702

C:\Windows\servicing\TrustedInstaller.exe

/SCANCFG:11 /SCANTYPE:5 /SCHEDID:1

\??\C:\Windows\system32\conhost.exe "-641257446-9023187621725905609-1081610846-1108483600-1017216686-69683638-453407352

C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe /pipeName=4116975a-147d-4622-a949-b85dee146458 /coreSdkOptions=0 /binaryPath="C:\Program Files (x86)\AVG\AVG2012\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2012" /dataPath="C:\ProgramData\AVG2012\"

"C:\Users\Pascal\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000Core.job

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000UA.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000Core.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000UA.job

C:\Windows\tasks\ParetoLogic Registration3.job

C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job

C:\Windows\tasks\ParetoLogic Update Version3.job

C:\Windows\tasks\RegCure Pro.job

C:\Windows\tasks\ROC_REG_JAN_DELETE.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\lvy9nf0q.default

prefs.js - "extensions.enabledItems" - "otis@digitalpersona.com:5.0.0.4248, {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.7, belgiumeid@eid.belgium.be:1.0.16, {F53C93F1-07D5-430c-86D4-C9531B27DFAF}:12.0.0.2189, {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:12.0.0.2191, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 11.9.900.170 Plugin

"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]

"Description"=Adobe Shockwave Player

"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]

"Description"=iTunes Detector Plug-in

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]

"Description"=

"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]

"Description"=Google Earth in your browser

"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]

"Description"=WLPG Install MIME type

"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]

"Description"=VLC Multimedia Plugin

"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]

"Description"=VLC Multimedia Plugin

"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 11.9.900.170 Plugin

"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\

belgiumeid@eid.belgium.be

{972ce4c6-7e08-4474-a285-3208198ce6fd}

{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

C:\Program Files (x86)\Mozilla Firefox\components\

browser.xpt

browserdirprovider.dll

brwsrcmp.dll

components.list

FeedConverter.js

FeedProcessor.js

FeedWriter.js

fuelApplication.js

GPSDGeolocationProvider.js

jsconsole-clhandler.js

NetworkGeolocationProvider.js

nsAddonRepository.js

nsBadCertHandler.js

nsBlocklistService.js

nsBrowserContentHandler.js

nsBrowserGlue.js

nsContentDispatchChooser.js

nsContentPrefService.js

nsDefaultCLH.js

nsDownloadManagerUI.js

nsExtensionManager.js

nsFormAutoComplete.js

nsHandlerService.js

nsHelperAppDlg.js

nsINIProcessor.js

nsIQTScriptablePlugin.xpt

nsLivemarkService.js

nsLoginInfo.js

nsLoginManager.js

nsLoginManagerPrompter.js

nsMicrosummaryService.js

nsPlacesAutoComplete.js

nsPlacesDBFlush.js

nsPlacesTransactionsService.js

nsPrivateBrowsingService.js

nsProxyAutoConfig.js

nsSafebrowsingApplication.js

nsSearchService.js

nsSearchSuggestions.js

nsSessionStartup.js

nsSessionStore.js

nsSetDefaultBrowser.js

nsSidebar.js

nsTaggingService.js

nsTryToClose.js

nsUpdateService.js

nsUpdateServiceStub.js

nsUpdateTimerManager.js

nsUrlClassifierLib.js

nsUrlClassifierListManager.js

nsURLFormatter.js

nsWebHandlerApp.js

pluginGlue.js

storage-Legacy.js

storage-mozStorage.js

txEXSLTRegExFunctions.js

WebContentConverter.js

C:\Program Files (x86)\Mozilla Firefox\plugins\

npnul32.dll

NPOFF12.DLL

nppdf32.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\

bolcom-nl.xml

google.xml

marktplaats-nl.xml

vandale-nl.xml

wikipedia-nl.xml

yahoo-nl.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31332EEF-CB9F-458F-AFEB-D30E9A66B6BA}]

AVG Do Not Track - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll [2012-10-15 1393272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]

HP SimplePass Identity Protection Extension - C:\Program Files\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30 2213128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-23 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-30 75232]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31332EEF-CB9F-458F-AFEB-D30E9A66B6BA}]

AVG Do Not Track - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll [2012-10-15 938104]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]

HP SimplePass Identity Protection Extension - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30 1262856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96A25A24-2E87-4374-8A50-CC6F943FCE4D}]

Related Searches - C:\Users\Pascal\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]

Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{96A25A24-2E87-4374-8A50-CC6F943FCE4D} - Related Searches - C:\Users\Pascal\AppData\Roaming\defaulttab\defaulttab\Apps\RelatedLinksBHO.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-01-22 166424]

"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-01-22 390680]

"Persistence"=C:\Windows\system32\igfxpers.exe [2010-01-22 410136]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-12-17 2480936]

"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-01-14 487424]

"HP Quick Launch"=C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-01-18 451072]

"SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2010-01-20 611896]

"HPToneControl"=C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe [2009-08-19 107832]

"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2010-03-23 172032]

"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2009-12-16 8192]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"HPAdvisorDock"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-01-27 1712184]

"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-01-22 2363392]

"Google Update"=C:\Users\Pascal\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-14 136176]

"Spotify Web Helper"=C:\Users\Pascal\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2013-12-14 1168896]

"Facebook Update"=C:\Users\Pascal\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-17 138096]

"Spotify"=C:\Users\Pascal\AppData\Roaming\Spotify\Spotify.exe [2013-12-14 5951488]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-01-22 98304]

"NortonOnlineBackupReminder"=C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe [2009-12-03 3331944]

"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-07-31 38872]

"Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2010-01-25 61112]

"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]

""= []

"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2010-07-12 74752]

"AVG_TRAY"=C:\Program Files (x86)\AVG\AVG2012\avgtray.exe [2012-11-19 2598520]

"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]

"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-11 919008]

"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

"beid"=C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe /startup []

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]

"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]

"iSkysoft Helper Compact.exe"=C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe []

"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]

C:\Windows\system32\igfxdev.dll [2010-01-22 268800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-03-23 52920]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]

"notification packages"=DPPassFilter

scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"DisableLockWorkstation"=0

"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"HideFastUserSwitching"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"MSVideo8"=VfWWDM32.dll

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-12-27 12:19:16 ----D---- C:\Program Files\trend micro

2013-12-27 12:19:12 ----D---- C:\rsit

2013-12-26 22:33:20 ----D---- C:\Qoobox

2013-12-26 22:27:05 ----D---- C:\Windows\erdnt

2013-12-26 22:26:29 ----SD---- C:\32788R22FWJFW

2013-12-26 14:24:06 ----D---- C:\Users\Pascal\AppData\Roaming\DriverCure

2013-12-26 14:24:05 ----D---- C:\Users\Pascal\AppData\Roaming\ParetoLogic

2013-12-26 14:23:15 ----D---- C:\ProgramData\ParetoLogic

2013-12-26 14:23:15 ----D---- C:\Program Files (x86)\ParetoLogic

2013-12-25 18:13:09 ----HD---- C:\dvmexp

2013-12-25 18:06:20 ----D---- C:\Users\Pascal\AppData\Roaming\Malwarebytes

2013-12-25 17:58:35 ----D---- C:\ProgramData\Malwarebytes

2013-12-25 17:58:16 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-12-25 17:58:16 ----A---- C:\Windows\system32\drivers\mbam.sys

2013-12-25 17:47:35 ----D---- C:\AdwCleaner

2013-12-25 15:30:44 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

2013-12-25 15:13:46 ----D---- C:\Windows\Migration

2013-12-25 14:48:42 ----A---- C:\Windows\system32\drivers\usbehci.sys

2013-12-25 14:48:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2013-12-25 14:48:41 ----A---- C:\Windows\system32\drivers\usbport.sys

2013-12-25 14:48:41 ----A---- C:\Windows\system32\drivers\usbd.sys

2013-12-25 14:48:40 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2013-12-25 14:48:40 ----A---- C:\Windows\system32\drivers\usbohci.sys

2013-12-25 14:48:40 ----A---- C:\Windows\system32\drivers\usbhub.sys

2013-12-25 14:43:54 ----A---- C:\Windows\system32\sdnclean64.exe

2013-12-25 14:43:03 ----D---- C:\ProgramData\Spybot - Search & Destroy

2013-12-25 14:41:27 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2

2013-12-25 13:52:32 ----D---- C:\ProgramData\Oracle

2013-12-24 17:13:20 ----D---- C:\Windows\system32\MRT

2013-12-24 15:24:33 ----D---- C:\Users\Pascal\AppData\Roaming\iSkysoft Video Converter Ultimate

2013-12-14 12:12:44 ----A---- C:\Windows\system32\wmploc.DLL

2013-12-14 12:12:43 ----A---- C:\Windows\SYSWOW64\wmploc.DLL

2013-12-14 12:12:43 ----A---- C:\Windows\SYSWOW64\wmp.dll

2013-12-14 12:12:42 ----A---- C:\Windows\system32\wmp.dll

2013-12-14 12:10:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll

2013-12-14 12:10:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2013-12-14 12:10:58 ----A---- C:\Windows\SYSWOW64\ieui.dll

2013-12-14 12:10:58 ----A---- C:\Windows\system32\jsproxy.dll

2013-12-14 12:10:58 ----A---- C:\Windows\system32\ieui.dll

2013-12-14 12:10:57 ----A---- C:\Windows\system32\ieUnatt.exe

2013-12-14 12:10:57 ----A---- C:\Windows\system32\iesetup.dll

2013-12-14 12:10:57 ----A---- C:\Windows\system32\iernonce.dll

2013-12-14 12:10:57 ----A---- C:\Windows\system32\ieetwproxystub.dll

2013-12-14 12:10:57 ----A---- C:\Windows\system32\ieetwcollector.exe

2013-12-14 12:10:57 ----A---- C:\Windows\system32\ie4uinit.exe

2013-12-14 12:10:56 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

2013-12-14 12:10:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2013-12-14 12:10:56 ----A---- C:\Windows\system32\mshtml.dll

2013-12-14 12:10:56 ----A---- C:\Windows\system32\jscript9diag.dll

2013-12-14 12:10:56 ----A---- C:\Windows\system32\iertutil.dll

2013-12-14 12:10:56 ----A---- C:\Windows\system32\ieapfltr.dll

2013-12-14 12:10:55 ----A---- C:\Windows\SYSWOW64\wininet.dll

2013-12-14 12:10:55 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2013-12-14 12:10:55 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2013-12-14 12:10:55 ----A---- C:\Windows\system32\wininet.dll

2013-12-14 12:10:55 ----A---- C:\Windows\system32\urlmon.dll

2013-12-14 12:10:53 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2013-12-14 12:10:53 ----A---- C:\Windows\system32\ieframe.dll

2013-12-14 12:10:52 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2013-12-14 12:10:52 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2013-12-14 12:10:51 ----A---- C:\Windows\system32\jscript9.dll

2013-12-13 19:56:42 ----A---- C:\Windows\SYSWOW64\msieftp.dll

2013-12-13 19:56:42 ----A---- C:\Windows\system32\msieftp.dll

2013-12-13 19:56:41 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll

2013-12-13 19:56:41 ----A---- C:\Windows\system32\WMPhoto.dll

2013-12-13 19:56:41 ----A---- C:\Windows\system32\win32k.sys

2013-12-13 19:56:40 ----A---- C:\Windows\SYSWOW64\wscript.exe

2013-12-13 19:56:40 ----A---- C:\Windows\SYSWOW64\scrrun.dll

2013-12-13 19:56:40 ----A---- C:\Windows\SYSWOW64\imagehlp.dll

2013-12-13 19:56:40 ----A---- C:\Windows\SYSWOW64\cscript.exe

2013-12-13 19:56:40 ----A---- C:\Windows\system32\wscript.exe

2013-12-13 19:56:40 ----A---- C:\Windows\system32\scrrun.dll

2013-12-13 19:56:40 ----A---- C:\Windows\system32\imagehlp.dll

2013-12-13 19:56:40 ----A---- C:\Windows\system32\cscript.exe

2013-12-13 19:56:39 ----A---- C:\Windows\system32\drivers\portcls.sys

2013-12-13 19:56:39 ----A---- C:\Windows\system32\drivers\drmk.sys

2013-12-13 19:56:36 ----A---- C:\Windows\SYSWOW64\tzres.dll

2013-12-13 19:56:36 ----A---- C:\Windows\system32\tzres.dll

2013-11-30 14:09:58 ----D---- C:\Program Files (x86)\PdfMerge

2013-11-30 14:07:54 ----D---- C:\Program Files (x86)\Adobe Download Assistant

======List of files/folders modified in the last 1 month======

2013-12-27 12:19:20 ----D---- C:\Windows\Temp

2013-12-27 12:19:16 ----RD---- C:\Program Files

2013-12-27 12:17:56 ----D---- C:\Windows\system32\drivers\AVG

2013-12-27 12:14:10 ----D---- C:\Users\Pascal\AppData\Roaming\Spotify

2013-12-27 12:10:40 ----SHD---- C:\Windows\Installer

2013-12-27 12:08:24 ----D---- C:\Windows\system32\config

2013-12-27 12:07:33 ----SHD---- C:\Config.Msi

2013-12-27 12:07:24 ----D---- C:\Windows\SysWOW64

2013-12-27 12:07:15 ----D---- C:\Windows\inf

2013-12-27 12:07:10 ----D---- C:\Windows\System32

2013-12-27 12:07:10 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-12-26 22:35:40 ----A---- C:\Windows\SYSWOW64\log.txt

2013-12-26 22:33:26 ----D---- C:\Windows\system32\drivers

2013-12-26 22:27:05 ----D---- C:\Windows

2013-12-26 17:08:43 ----D---- C:\Windows\Microsoft.NET

2013-12-26 14:24:35 ----D---- C:\Windows\Tasks

2013-12-26 14:24:35 ----D---- C:\Windows\system32\Tasks

2013-12-26 14:23:23 ----D---- C:\Program Files (x86)\Common Files

2013-12-26 14:23:15 ----RD---- C:\Program Files (x86)

2013-12-26 14:23:15 ----HD---- C:\ProgramData

2013-12-26 14:09:17 ----SHD---- C:\System Volume Information

2013-12-26 13:54:34 ----D---- C:\Users\Pascal\AppData\Roaming\vlc

2013-12-26 13:51:50 ----D---- C:\Users\Pascal\AppData\Roaming\Winamp

2013-12-26 11:14:57 ----SD---- C:\ProgramData\Microsoft

2013-12-26 11:14:57 ----D---- C:\Program Files (x86)\Microsoft

2013-12-25 23:05:42 ----D---- C:\Windows\system32\wfp

2013-12-25 23:05:42 ----D---- C:\Windows\system32\catroot2

2013-12-25 23:05:41 ----D---- C:\Windows\system32\wbem

2013-12-25 23:05:36 ----D---- C:\Windows\registration

2013-12-25 23:05:09 ----D---- C:\Program Files (x86)\Java

2013-12-25 18:14:10 ----D---- C:\temp

2013-12-25 17:18:59 ----D---- C:\Windows\winsxs

2013-12-25 17:12:55 ----D---- C:\Windows\system32\DriverStore

2013-12-25 17:12:38 ----D---- C:\Windows\SYSWOW64\drivers

2013-12-25 16:01:31 ----RSD---- C:\Windows\assembly

2013-12-25 15:17:40 ----D---- C:\Windows\SYSWOW64\en-US

2013-12-25 15:17:39 ----D---- C:\Windows\system32\en-US

2013-12-25 14:07:30 ----D---- C:\Windows\Minidump

2013-12-25 13:39:24 ----D---- C:\Windows\Prefetch

2013-12-19 21:16:39 ----D---- C:\Program Files (x86)\Google

2013-12-15 17:07:00 ----D---- C:\Users\Pascal\AppData\Roaming\uTorrent

2013-12-14 23:52:56 ----D---- C:\Windows\rescache

2013-12-14 14:07:09 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

2013-12-14 12:29:44 ----D---- C:\Program Files\Windows Media Player

2013-12-14 12:29:44 ----D---- C:\Program Files (x86)\Windows Media Player

2013-12-14 12:29:43 ----D---- C:\Program Files\Internet Explorer

2013-12-14 12:29:43 ----D---- C:\Program Files (x86)\Internet Explorer

2013-12-14 12:29:41 ----D---- C:\Windows\SYSWOW64\nl-NL

2013-12-14 12:29:41 ----D---- C:\Windows\system32\nl-NL

2013-12-14 12:12:56 ----D---- C:\Windows\system32\catroot

2013-12-14 12:12:23 ----D---- C:\ProgramData\Microsoft Help

2013-12-01 14:42:38 ----A---- C:\Windows\system32\MRT.exe

2013-11-30 18:23:58 ----D---- C:\Windows\system32\FxsTmp

2013-11-30 14:12:14 ----HD---- C:\Windows\system32\GroupPolicy

2013-11-30 14:12:14 ----D---- C:\Windows\SYSWOW64\GroupPolicy

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480]

R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944]

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 30008]

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-11-20 537112]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2012-11-08 307040]

R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696]

R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-04-11 384800]

R1 DVMIO;DeviceVM IO Service; C:\Windows\system32\DRIVERS\dvmio.sys [2010-01-29 20056]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 41272]

R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-01-22 6233088]

R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-01-22 161280]

R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]

R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]

R3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2012-12-10 127328]

R3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]

R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2009-10-26 151936]

R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2010-01-22 8034368]

R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-01-14 505856]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-12-17 1403440]

R3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]

S3 A38CCID;CCID USB Smart Card Reader; C:\Windows\system32\DRIVERS\a38ccid.sys [2013-01-30 46720]

S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]

S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-03-08 48488]

S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-01-22 8034368]

S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-01-11 232992]

S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-11-28 295424]

S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]

S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]

S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]

S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]

S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-01-22 202752]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2013-10-16 5175856]

R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

R2 DpHost;@C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2009-12-30 444680]

R2 DvmMDES;DeviceVM Meta Data Export Service; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]

R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-01-25 514232]

R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2009-10-15 120832]

R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]

R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2009-07-08 30520]

R2 HPWMISVC;HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2009-10-01 268824]

R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]

R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]

R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]

R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe [2010-01-14 244736]

R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-07-10 2673064]

R2 UNS;Intel® Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]

R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-01-06 2184496]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]

R3 hpqwmiex;hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2009-12-17 230968]

R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-02 136176]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-03-01 161384]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-14 257416]

S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-03-08 1492840]

S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-01-04 238328]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-02 136176]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-15 1255736]

S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]

S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

Log MBAM:

Malwarebytes Anti-Malware 1.75.0.1300

Malwarebytes : Free Anti-Malware

Databaseversie: v2013.12.27.03

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.16476

Pascal :: PASCAL-PC [administrator]

27/12/2013 13:08:43

mbam-log-2013-12-27 (13-08-43).txt

Scan type: Snelle scan

Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM

Uitgeschakelde scan opties: P2P

Objecten gescand: 235090

Verstreken tijd: 1 uur/uren, 44 minuut/minuten, 21 seconde(n)

Geheugenprocessen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Mappen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  {96A25A24-2E87-4374-8A50-CC6F943FCE4D};c
 C:\Users\Pascal\AppData\Roaming\defaulttab;fs
 C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA};fs
 C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA};fs
 C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA};fs
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96A25A24-2E87-4374-8A50-CC6F943FCE4D}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar];r64
 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run];r64
 ""=-;r64
 emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan

  • Shortcut Fix
  • IE Defaults
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
scale Groentje

scale

Geplaatst:
  • Auteur
Geplaatst:

Hallo,

Ik heb de stappen doorlopen en de 'zoek' zip-file gedwnld, maar als ik de tool nu wil openen lukt dit niet.

Ik kan klikken op 'als administrator uitvoeren', maar nadien gebeurt er niks, het programma opent niet.

Doe ik ergens iets verkeerd..?

Link naar reactie
Delen op andere sites
scale Groentje

scale

Geplaatst:
  • Auteur
Geplaatst:

Ok... na nog een paar keer proberen is het eindelijk gelukt.

Blijkbaar duurde het heel lang vooraleer het 'zoek'-programma opende...

Onderstaand de log-file:

Zoek.exe v5.0.0.0 Updated 23-December-2013

Tool run by Pascal on vr 27/12/2013 at 17:38:39,08.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode No Internet Access Detected

Launched: C:\Users\Pascal\Downloads\zoek\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

27/12/2013 18:38:13 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\MSXML 4.0 deleted successfully

C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully

C:\Program Files\log deleted successfully

C:\ProgramData\Oracle deleted successfully

C:\ProgramData\xml_param deleted successfully

C:\Users\Pascal\AppData\Roaming\Windows Live Writer deleted successfully

C:\Users\Pascal\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A} deleted successfully

C:\Users\Pascal\AppData\Local\HP MediaSmart Video deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2694289020-3876444616-3841118796-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{96A25A24-2E87-4374-8A50-CC6F943FCE4D} deleted successfully

HKEY_USERS\S-1-5-21-2694289020-3876444616-3841118796-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{96A25A24-2E87-4374-8A50-CC6F943FCE4D} deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{96A25A24-2E87-4374-8A50-CC6F943FCE4D} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{96A25A24-2E87-4374-8A50-CC6F943FCE4D} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96A25A24-2E87-4374-8A50-CC6F943FCE4D} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{96A25A24-2E87-4374-8A50-CC6F943FCE4D} deleted successfully

==== Deleting Services ======================

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96A25A24-2E87-4374-8A50-CC6F943FCE4D}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

""=-

==== Deleting Files \ Folders ======================

C:\Users\Pascal\AppData\Roaming\defaulttab not found

C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} deleted

C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} deleted

C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} deleted

C:\Windows\syswow64\appdata deleted

C:\PROGRA~2\ParetoLogic deleted

C:\PROGRA~2\COMMON~1\ParetoLogic deleted

C:\extensions deleted

C:\found.000 deleted

C:\Users\Pascal\AppData\Roaming\ParetoLogic deleted

C:\Users\Pascal\AppData\Roaming\DriverCure deleted

C:\ProgramData\ParetoLogic deleted

C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic deleted

C:\Users\Pascal\AppData\LocalLow\DataMngr deleted

C:\Windows\tasks\ParetoLogic Registration3.job deleted

C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job deleted

C:\Windows\tasks\ParetoLogic Update Version3.job deleted

C:\user.js deleted

"C:\Windows\Installer\a03f62b.msi" deleted

"C:\Windows\Installer\5a046a94.msi" deleted

"C:\Windows\Installer\5a046a94.msi" deleted

"C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Pascal\AppData\Local\Temp ====

2013-12-26 12:54:17 B91FE1536AB4D680DDD77469EA3FD4BF 24097311 ----a-w- C:\Users\Pascal\AppData\Local\Temp\vlc-2.1.2-win32.exe

====== Java Cache =====

2013-12-25 12:54:06 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\Pascal\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-2a5de1e9

2013-12-25 12:53:40 9D405A26885DF6EE461DA6557991AA14 99 ----a-w- C:\Users\Pascal\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-6.0.lap

2013-12-25 12:53:40 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Pascal\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-6e350ebf

2013-12-25 12:53:31 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Pascal\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-5ce3203e

2013-12-15 13:47:52 5FD0F92A70CF369EC5B687D9C56531BC 17530 ----a-w- C:\Users\Pascal\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\2ea66e94-5ae70a02

2013-12-25 12:53:41 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Users\Pascal\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-7bcf704a

====== C:\Windows\SysWOW64 =====

2013-12-25 14:30:44 453B64CB444D4CE6FD831DE14ACA0101 1645628 ----a-w- C:\Windows\SysWOW64\PerfStringBackup.INI

2013-12-14 11:12:43 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\SysWOW64\wmp.dll

2013-12-14 11:12:43 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\SysWOW64\wmploc.DLL

2013-12-14 11:10:59 C74500A1BCB4113A7310295DD3FA4440 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb

2013-12-14 11:10:58 3D43EAC957F2F797BE82CF6B04A933F8 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll

2013-12-14 11:10:58 355BF103E2CF862B00EEB3731E25E802 440832 ----a-w- C:\Windows\SysWOW64\ieui.dll

2013-12-14 11:10:56 35DE59C975A0C97E8DBBE095BCC3644E 553472 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll

2013-12-14 11:10:56 08881C59F795C356DE12067E44FFD260 703488 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll

2013-12-14 11:10:55 B2E1F7B212502BB49AAD4EFAD37C5CF5 2166784 ----a-w- C:\Windows\SysWOW64\iertutil.dll

2013-12-14 11:10:55 927FA6456AD6D7630F6854828D2FD16B 1820160 ----a-w- C:\Windows\SysWOW64\wininet.dll

2013-12-14 11:10:55 84EAF0A08C7742697816E148C066D757 1928192 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl

2013-12-14 11:10:55 0763C5D8660436D4D961F72609E33BBE 1157632 ----a-w- C:\Windows\SysWOW64\urlmon.dll

2013-12-14 11:10:53 4B638CE3DAA3A082E576C0DDF9D635D4 11221504 ----a-w- C:\Windows\SysWOW64\ieframe.dll

2013-12-14 11:10:52 BFAFE990C4A191E83843362B5AC64A9B 17112576 ----a-w- C:\Windows\SysWOW64\mshtml.dll

2013-12-14 11:10:52 A60A222D3126DD9E380F9D8B651BC13D 4243968 ----a-w- C:\Windows\SysWOW64\jscript9.dll

2013-12-13 18:56:42 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\SysWOW64\msieftp.dll

2013-12-13 18:56:41 E9504E484076585F6DA3C59F0E20E122 417792 ----a-w- C:\Windows\SysWOW64\WMPhoto.dll

2013-12-13 18:56:40 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\SysWOW64\imagehlp.dll

2013-12-13 18:56:40 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\SysWOW64\scrrun.dll

2013-12-13 18:56:40 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\SysWOW64\cscript.exe

2013-12-13 18:56:40 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\SysWOW64\wscript.exe

2013-12-13 18:56:40 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\SysWOW64\wshom.ocx

2013-12-13 18:56:36 4EC2C3B15B9EC41AD0D6CD918D20376E 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2013-12-25 13:43:54 82446D358A9FB51CB9DA32A5C901D7A0 21040 ----a-w- C:\Windows\Sysnative\sdnclean64.exe

2013-12-14 11:12:44 AB272BBFB05A8585C3405EFA9F605774 12625920 ----a-w- C:\Windows\Sysnative\wmploc.DLL

2013-12-14 11:12:42 8CBBB27369F9F07BC5E874E750EAF9D0 14631424 ----a-w- C:\Windows\Sysnative\wmp.dll

2013-12-14 11:10:59 FB13F4873F6747AB4E3C37CAFEA8ACAE 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll

2013-12-14 11:10:59 A3427586C75749B51BF5DEBEDEB4AD5C 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb

2013-12-14 11:10:58 4E249022336591E9C6DE374A68C18EF6 574976 ----a-w- C:\Windows\Sysnative\ieui.dll

2013-12-14 11:10:58 2A0B7281854ACBECA25D8FDD06A4D714 53760 ----a-w- C:\Windows\Sysnative\jsproxy.dll

2013-12-14 11:10:57 EF098867663B07247587587C29E631DB 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll

2013-12-14 11:10:57 DACB9A752CEB29C1D931514EF73803E1 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe

2013-12-14 11:10:57 40B33A42F90DED26DE4F5AAFA00F24CA 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll

2013-12-14 11:10:57 3A722B49408BE7FE8A375C3B8FD57BB1 218624 ----a-w- C:\Windows\Sysnative\ie4uinit.exe

2013-12-14 11:10:57 2E2875FFC6C2DC1ACF4F46AFC7819BD5 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll

2013-12-14 11:10:57 0F753FDA08F495E515629210FF0DA59E 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe

2013-12-14 11:10:56 95EED00D70485F6F82983EB7C03CC42A 817664 ----a-w- C:\Windows\Sysnative\ieapfltr.dll

2013-12-14 11:10:56 7016991D493B9F9FA492E75BD13D031D 2764288 ----a-w- C:\Windows\Sysnative\iertutil.dll

2013-12-14 11:10:56 16B0A65F52531B769B891DC251ECC6C0 23183360 ----a-w- C:\Windows\Sysnative\mshtml.dll

2013-12-14 11:10:56 14074CF6190B937EB70BE2F93113B5FE 708608 ----a-w- C:\Windows\Sysnative\jscript9diag.dll

2013-12-14 11:10:55 C8CF11D73017CC588411FCB936891CF4 1395200 ----a-w- C:\Windows\Sysnative\urlmon.dll

2013-12-14 11:10:55 9B6678DB9C6A232C5A84D2FDFFF8B0E1 2334208 ----a-w- C:\Windows\Sysnative\wininet.dll

2013-12-14 11:10:54 FA30E3DC75EA42FE19B819F30FBDED8D 1995264 ----a-w- C:\Windows\Sysnative\inetcpl.cpl

2013-12-14 11:10:53 EDF5C6A9F33FBD3D717D1B77A9864C64 12996608 ----a-w- C:\Windows\Sysnative\ieframe.dll

2013-12-14 11:10:51 6491B719695D713335B431FCF0EAE28B 5769216 ----a-w- C:\Windows\Sysnative\jscript9.dll

2013-12-13 18:56:42 AC38EC8D0C1B4C783CA6A24D239A71B7 335360 ----a-w- C:\Windows\Sysnative\msieftp.dll

2013-12-13 18:56:41 97D50B0CABF18A6D40F8883D02DDB519 3155968 ----a-w- C:\Windows\Sysnative\win32k.sys

2013-12-13 18:56:41 4EDF8812713291DBBFDA67CE6215F236 465920 ----a-w- C:\Windows\Sysnative\WMPhoto.dll

2013-12-13 18:56:40 ECB021CA3370582F0C7244B0CF06732C 156160 ----a-w- C:\Windows\Sysnative\cscript.exe

2013-12-13 18:56:40 B4F29F65AD3114051F01E9403346047F 81408 ----a-w- C:\Windows\Sysnative\imagehlp.dll

2013-12-13 18:56:40 731131A477F69476F2D739B0DB6A9281 202752 ----a-w- C:\Windows\Sysnative\scrrun.dll

2013-12-13 18:56:40 05D80FF3483BD8F268B01703C859198A 150016 ----a-w- C:\Windows\Sysnative\wshom.ocx

2013-12-13 18:56:40 045451FA238A75305CC26AC982472367 168960 ----a-w- C:\Windows\Sysnative\wscript.exe

2013-12-13 18:56:36 5FD67F205773EC80674DBBD609DB5315 2048 ----a-w- C:\Windows\Sysnative\tzres.dll

====== C:\Windows\Sysnative\drivers =====

2013-12-25 16:58:16 0BB97D43299910CBFBA59C461B99B910 25928 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys

2013-12-25 13:48:42 ACCEA6BC68D0C9A78EB97EE159028B4E 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys

2013-12-25 13:48:42 311C1DD1088E55BEAE15954D17F50646 52736 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys

2013-12-25 13:48:41 E73A7A04FDAC9DD46EE2A4257F09E91C 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys

2013-12-25 13:48:41 861C197502A5057E68F0AC75D9EFCDD7 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys

2013-12-25 13:48:40 A83D0EC9AE4C31704442099D40BA2471 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys

2013-12-25 13:48:40 9406D801042FAF859CF81B2C886413DC 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys

2013-12-25 13:48:40 280E90CBF4B2DDD169F0728CB44D726F 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys

2013-12-13 18:56:39 E0D3CD5841E5C7BE7B94BA946AF1E498 116736 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys

2013-12-13 18:56:39 1E0B4CBBA91C6B041A14ECC2186F7E24 230400 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys

====== C:\Windows\Tasks ======

2013-12-26 13:23:28 E466BADE12D6482A18A01C37E26D3BE5 412 ----a-w- C:\Windows\Tasks\RegCure Pro.job

2013-12-26 13:23:28 8DCC41DA301FCF3774F8A5A2A177D9A2 3330 ----a-w- C:\Windows\Sysnative\Tasks\RegCure Pro

2013-12-25 13:47:54 -------- d-----w- C:\Windows\Sysnative\Tasks\Safer-Networking

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-12-27 11:19:16 -------- d-----w- C:\Program Files\trend micro

======= C:\PROGRA~2 =====

2013-11-30 13:09:58 -------- d-----w- C:\PROGRA~2\PdfMerge

2013-11-30 13:07:54 -------- d-----w- C:\PROGRA~2\Adobe Download Assistant

======= C: =====

2013-12-27 15:39:44 1B4CE925C1369904974E78E550156647 2999 ----a-w- C:\runcheck.txt

2013-12-25 17:14:10 7564C7CEE0D358FE6B465B55B21A5250 12 ---h--w- C:\dvmexp.idx

====== C:\Users\Pascal\AppData\Roaming ======

2013-12-25 16:09:51 3C6034492ED538F24A29E614F58413C2 7602 ----a-w- C:\Users\Pascal\AppData\Local\Resmon.ResmonCfg

2013-12-24 14:24:33 -------- d-----w- C:\Users\Pascal\AppData\Roaming\iSkysoft Video Converter Ultimate

====== C:\Users\Pascal ======

2013-12-27 11:09:54 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Pascal\Downloads\RSITx64.exe

2013-12-26 13:19:31 63C3C419200755087C7496933C298F8F 5162600 ----a-w- C:\Users\Pascal\Downloads\Repair-tool.exe

2013-12-26 11:57:37 -------- d-----w- C:\Users\Pascal\Films

2013-12-25 16:56:19 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\Pascal\Downloads\mbam-setup-1.75.0.1300.exe

2013-12-25 16:45:57 AF5C84446657B48C9B9B870C46438261 1233962 ----a-w- C:\Users\Pascal\Downloads\AdwCleaner.exe

2013-12-19 20:16:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth

2013-11-30 13:12:14 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\Users\Pascal\ntuser.pol

2013-11-30 13:09:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PdfMerge

====== C: exe-files ==

2013-12-27 11:19:18 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Pascal.exe

2013-12-26 21:33:20 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\32788R22FWJFW\PEV.exe

2013-12-26 21:33:19 753BC16326FEE4A421ACB636CCD602F4 60416 ----a-w- C:\32788R22FWJFW\NircmdB.exe

2013-12-26 12:56:57 6D42E3B2B85962E86097FE29A18C5474 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$I8FTOO4.exe

2013-12-26 12:12:45 8B0650A8F3F81D4B1300FF4ED17EDBB2 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$ITH29RT.exe

2013-12-26 12:12:29 E15E87A886F4807C5CFE8418E328B7C1 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IEZU3W1.exe

2013-12-26 12:12:19 0B0ACAACC945A53131C5A2A2CD18AF10 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IOOIQ08.exe

2013-12-21 11:15:42 77E3955EF8DDAF38B5039C1A3CB6AAE1 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IDV4R05.exe

2013-12-21 11:15:42 37FF909E304DEDC59CDB01442BB831D6 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$I4N6SDQ.exe

2013-12-21 11:15:32 C892A6A48B41AA460C219BE8DBB66A28 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IG2ELKZ.exe

2013-12-21 11:15:32 A73C05D6D66F20A0E254E59422609884 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$ISXCI3F.exe

2013-12-21 11:15:32 90866E6560BCE40B57222D71D2BD0494 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IRVOZ7U.exe

2013-12-21 11:15:32 88DDC235ADBAB93D141A91FC1616B0D6 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IMZ2O77.exe

2013-12-21 11:15:32 56851AD1487427AC1DA2E27317D49D83 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IW5YDOL.exe

2013-12-21 11:15:32 257A2EEAE4F704713831FD1E403CC452 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IZAXIJA.exe

2013-12-21 11:15:32 0364D9CB2F6A6CA42567AC6466E993E1 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$ILE11DA.exe

2013-12-21 11:14:10 36444BA07188429F9BC80C80204ECA13 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$I2SPZGM.exe

2013-12-21 11:14:10 0E74923BC8AE24B2F3F27AB4B18D7ECF 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$I844LEC.exe

=== C: other files ==

2013-12-27 15:45:58 6B2049FC59C05BA8524F21AB788117B3 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IXWGZ6Z.zip

2013-12-27 15:37:46 3E02820FF89462348EF711F79FB726D9 4079821 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$RXWGZ6Z.zip

2013-12-26 21:33:22 D875037251B54BFEB674F591350D3B23 19 ----a-w- C:\32788R22FWJFW\CHCP.bat

2013-12-26 21:32:56 480A16E9A348E0DEC8FF832BC66E8CB8 16 ----a-w- C:\32788R22FWJFW\VerCF.bat

2013-12-26 12:36:28 CB0265E8CBB3BAF356F4BFA9C1FE6FE9 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IJEG5Q5.zip

2013-12-26 12:36:28 6B8CAD063230EF59A013B015DBEA69AD 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IDFIBDH.zip

2013-12-26 12:36:28 29B8CB434FD526B907E3AD6CFD0B0996 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IUCRA3W.zip

2013-12-26 12:36:28 0C97B24ACBAE4EE0B2179F64868FAE7E 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$IYEKIHY.zip

2013-12-26 11:08:38 21FA6CD1A3D5ABFC25BD59DC2D4DC8AC 3216154 ----a-w- C:\32788R22FWJFW\List.bat

2013-12-26 11:08:08 FFEF205C658F7F8F3C9790E0AA027D90 286604 ----a-w- C:\32788R22FWJFW\List-C.bat

2013-12-24 16:51:18 967477AE364FCE148D6D4FE44C9529EF 36207 ----a-w- C:\32788R22FWJFW\List-B.bat

2013-12-21 11:06:47 C20FC3A39A3271ADFCEABC302CAFBDD9 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$I0XRNJ0.zip

2013-12-21 11:06:47 9DBD5FB709453CAC9A4A513C93D27929 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2694289020-3876444616-3841118796-1000\$ISGJ4L6.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2694289020-3876444616-3841118796-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"

"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"Google Update"="C:\Users\Pascal\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"Spotify Web Helper"="C:\Users\Pascal\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"Facebook Update"="C:\Users\Pascal\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"Spotify"="C:\Users\Pascal\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"NortonOnlineBackupReminder"="C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe UNATTENDED"

"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

"Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe"

"HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe"

"WinampAgent"="C:\Program Files (x86)\Winamp\winampa.exe"

"AVG_TRAY"="C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"beid"="C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe /startup"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

"iSkysoft Helper Compact.exe"="C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe"

"SDTray"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"

"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"Google Update"="C:\Users\Pascal\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"Spotify Web Helper"="C:\Users\Pascal\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

"Facebook Update"="C:\Users\Pascal\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"

"Spotify"="C:\Users\Pascal\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"HP Quick Launch"="C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"

"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background"

"HPToneControl"="C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe"

"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe"

"HPWirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=" "

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/12/2013 14:07]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000Core.job --a------ [undetermined Task]

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000UA.job --a------ C:\Users\Pascal\AppData\Local\Facebook\Update\FacebookUpdate.exe [17/01/2013 20:40]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02/12/2011 12:27]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02/12/2011 12:27]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000Core.job --a------ [undetermined Task]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000UA.job --a------ C:\Users\Pascal\AppData\Local\Google\Update\GoogleUpdate.exe [14/11/2010 14:34]

C:\Windows\tasks\RegCure Pro.job --a------ C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe []

C:\Windows\tasks\ROC_REG_JAN_DELETE.job --a------ C:\ProgramData\AVG January 2013 Campaign\ROC.exe [17/01/2013 22:16]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\CLMLSvc" [c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe]

"C:\Windows\SysNative\tasks\DVDAgent" [c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe]

"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000Core" [C:\Users\Pascal\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000UA" [C:\Users\Pascal\AppData\Local\Facebook\Update\FacebookUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000Core" [C:\Users\Pascal\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2694289020-3876444616-3841118796-1000UA" [C:\Users\Pascal\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\RecoveryCDWin7" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]

"C:\Windows\SysNative\tasks\RegCure Pro" [C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe]

"C:\Windows\SysNative\tasks\ROC_REG_JAN_DELETE" [C:\ProgramData\AVG January 2013 Campaign\ROC.exe]

"C:\Windows\SysNative\tasks\ServicePlan" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]

"C:\Windows\SysNative\tasks\{A2073036-4602-46F9-8C04-D95DBEBEACCE}" [C:\Program Files (x86)\uTorrent\uTorrent.exe]

"C:\Windows\SysNative\tasks\{EEC509F5-6DEC-4A6F-A075-30DE79B62548}" [C:\Program Files (x86)\uTorrent\uTorrent.exe]

"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]

"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]

"C:\Windows\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates" ["C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"]

"C:\Windows\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization" ["C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe"]

"C:\Windows\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system" ["C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe"]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"fmconverter@gmail.com"="C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox" [22/09/2013 12:46]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\lvy9nf0q.default

- DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt

- Belgium eID - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be

- AVG Do Not Track - C:\Program Files (x86)\AVG\AVG2012\Firefox\DoNotTrack

- AVG Safe Search - C:\Program Files (x86)\AVG\AVG2012\Firefox4

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be

- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\lvy9nf0q.default

2EE9DCAE1D70ABF4D058688DE35F8221 - C:\Windows\SysWOW64\npdeployJava1.dll - Java Deployment Toolkit 7.0.250.16

F7E675EBDE6DA3A1665F2DCFA683322F - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

jbolfgndggfhhpbnkgnpjkfhinclbigj - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[14/08/2013 15:40]

Google Drive - Pascal - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

Freemake Video Converter - Pascal - Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj

Google Wallet - Pascal - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

DefaultTab - C:\Windows\sysWoW64\config\systemprofile - Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc

==== Chrome Fix ======================

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adobe-acrobat-professional.nl.softonic.com_0.localstorage deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adobe-acrobat-professional.nl.softonic.com_0.localstorage-journal deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_free-mp3-cutter-and-editor.nl.softonic.com_0.localstorage deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_free-mp3-cutter-and-editor.nl.softonic.com_0.localstorage-journal deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nl.softonic.com_0.localstorage-journal deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pdf-split-and-merge.nl.softonic.com_0.localstorage deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pdf-split-and-merge.nl.softonic.com_0.localstorage-journal deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pdfcreator.nl.softonic.com_0.localstorage deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pdfcreator.nl.softonic.com_0.localstorage-journal deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pdfmerge.nl.softonic.com_0.localstorage deleted successfully

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pdfmerge.nl.softonic.com_0.localstorage-journal deleted successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.com"

"Default_Page_URL"="http://www.telenet.be"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{E9465CA2-2FCB-4B03-8385-72E437F5DB93}"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

{E9465CA2-2FCB-4B03-8385-72E437F5DB93} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox"

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== shortcuts on Users Desktops ======================

C:\Users\Pascal\Desktop\Continue Video To MP3 Converter Installation.lnk - C:\Program Files (x86)\FoxTabVideo2Mp3Converter\VideoToMp3Setup.exe /RR /DIR:0Czx1Y0P1C1F1N1C1T1HtT0F1L1I1P1BtTtL2VzzyCtK1Y0F1F2V0T1T1S0V1L1Q1P1FtB0M1EtA0C1F1G2X1P1C2Z1P1C1Y

C:\Users\Pascal\Desktop\FoxTab Video To MP3 Converter.lnk - C:\Program Files (x86)\FoxTabVideo2Mp3Converter\VideoToMP3Converter.exe

C:\Users\Pascal\Desktop\Google Chrome.lnk - C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Pascal\Desktop\PokerStars.be.lnk - C:\Program Files (x86)\PokerStars.BE\PokerStarsUpdate.exe

C:\Users\Pascal\Desktop\RegCure Pro.lnk - C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe

C:\Users\Pascal\Desktop\Spotify.lnk - C:\Users\Pascal\AppData\Roaming\Spotify\spotify.exe

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Adobe Download Assistant.lnk - C:\Program Files (x86)\Adobe Download Assistant\Adobe Download Assistant.exe

C:\Users\Public\Desktop\Adobe Reader 9.lnk - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe

C:\Users\Public\Desktop\AVG 2012.lnk - C:\Program Files (x86)\AVG\AVG2012\avgui.exe

C:\Users\Public\Desktop\eID Viewer.lnk - C:\Program Files (x86)\Belgium Identity Card\EidViewer\eID Viewer.exe

C:\Users\Public\Desktop\Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe

C:\Users\Public\Desktop\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe

C:\Users\Public\Desktop\Greetings Cards.lnk - C:\Program Files (x86)\Micro Application\Greetings Cards\PrintPratic.exe

C:\Users\Public\Desktop\HP Support Assistant.lnk - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe

C:\Users\Public\Desktop\iSkysoft Video Converter Ultimate.lnk - C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\ISVCUSplash.exe

C:\Users\Public\Desktop\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe

C:\Users\Public\Desktop\Magic Desktop.lnk - C:\Program Files (x86)\EasyBits For Kids\ezSecShield.exe

C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\Public\Desktop\PdfMerge.lnk - C:\Windows\Installer\{C70C90D2-D197-40E9-B712-6828BDA5F74A}\_8A1B750303E055EAE94560.exe

C:\Users\Public\Desktop\QuickTime Player.lnk - C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe

C:\Users\Public\Desktop\RarZilla Free Unrar.lnk - C:\Program Files (x86)\RarZilla Free Unrar\RarZillaFreeUnrar.exe

C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe

C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe

C:\Users\Public\Desktop\TeamViewer 7.lnk - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe

C:\Users\Public\Desktop\Unibet Fast Poker.lnk - C:\Program Files (x86)\Unibet Fast Poker\Unibet Fast Poker.exe

C:\Users\Public\Desktop\Unibet.lnk - C:\Microgaming\Poker\unibetpokerMPP\mppoker.exe

C:\Users\Public\Desktop\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe

C:\Users\Public\Desktop\Winamp.lnk - C:\Program Files (x86)\Winamp\winamp.exe

C:\Users\Public\Desktop\µTorrent.lnk - C:\Program Files (x86)\uTorrent\uTorrent.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff

C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\Pascal\AppData\Local\Google\Chrome\Application\chrome.exe

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk - C:\Program Files (x86)\Adobe Download Assistant\Adobe Download Assistant.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth starten in DirectX-modus.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe -setDX

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth starten in OpenGL-modus.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe -setOGL

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth verwijderen.lnk - C:\Windows\SysWOW64\msiexec.exe /x {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PdfMerge\PdfMerge.lnk - C:\Windows\Installer\{C70C90D2-D197-40E9-B712-6828BDA5F74A}\_40EA0F771DDEABED8802A3.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PdfMerge\readme.doc.lnk - C:\Windows\Installer\{C70C90D2-D197-40E9-B712-6828BDA5F74A}\_ADAEB78DD7D36045FC6FF4.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Create System Report.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDLogReport.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\File Scan.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Immunization.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Rootkit Scan.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDRootAlyzer.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\System Scan.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Tray Icon (Live Protection).lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Uninstall Spybot-S&D.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\unins000.exe

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\iMesh.lnk - C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\iSkysoft Video Converter Ultimate.lnk - C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\VideoConverterUltimate.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Unibet.lnk - C:\Microgaming\Poker\unibetpokerMPP\mppoker.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk - C:\Program Files (x86)\Winamp\winamp.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP MediaSmart.lnk - C:\Program Files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HPAdvisor.lnk - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW,SYSTRAY

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe

C:\Users\Pascal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1A594BF8F3A4D1C4DB72F3A32B6E7636 deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3192AA38321C641458DBDAF83979D193 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Pascal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Pascal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Pascal\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Pascal\AppData\Local\Mozilla\Firefox\Profiles\lvy9nf0q.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=476 folders=151 44510775 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Pascal\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Pascal\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on za 28/12/2013 at 14:46:30,35 ======================

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Dubbelklik op Zoek.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows];r
 "AppInit_DLLs"=-;r
 C:\Windows\tasks\RegCure Pro.job;f
 C:\Program Files (x86)\ParetoLogic\RegCure Pro;fs
 C:\Users\Pascal\Desktop\RegCure Pro.lnk;f

  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
scale Groentje

scale

Geplaatst:
  • Auteur
Geplaatst:

Hierbij het log-bestand:

Zoek.exe v5.0.0.0 Updated 23-December-2013

Tool run by Pascal on za 28/12/2013 at 16:36:01,10.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Pascal\Downloads\zoek (1)\zoek.exe [scan all users] [script inserted]

==== Older Logs ======================

C:\zoek-results2013-12-28-134630.log 43984 bytes

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\ParetoLogic\RegCure Pro not found

"C:\Windows\tasks\RegCure Pro.job" deleted

"C:\Users\Pascal\Desktop\RegCure Pro.lnk" deleted

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== C:\zoek_backup content ======================

C:\zoek_backup (files=478 folders=151 44512553 bytes)

==== EOF on za 28/12/2013 at 17:09:11,52 ======================

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.