Ga naar inhoud

IExplorerOpstart


Aanbevolen berichten

nu heb ik Yahoo er 1x opgezet voor chatten met een oude Vriend,

maar nu heb ik 2 raare Problemen

1:

elke keer start internet explorer op, ( heb nu proxy aan gezet voor reclame want dan start het niet door )

dan opent hij met een Link

http://click.cpvrdr.com/redirect.php***** Nummers*******

laat ik dit open, dan binnen 30 min, heb ik 30 internet explorers open.

2:

mijn startpagina is nu ook anders

was Google.

maar blijft wat ik ook doe

DO SEARCHES

Spybot vind niets. HijackThis ook niets. kan niets raars vinden

mijn Nod vind ook niets,

heb online scanner ook getest maar niets.

in register vind ik ook niet,

wat is er loos,

Help..

Link naar reactie
Delen op andere sites

Download 51a5f5d096dae-icon_RSIT.pngRSIT van de onderstaande locaties en sla deze op het bureaublad op.

Hier staat een beschrijving hoe je kan kijken of je een 32- of 64-bitversie van Windows heeft.

Dubbelklik op RSIT.exe om de tool te starten.

  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Vervolgens wordt de "Disclaimer of warranty" getoond, klik vervolgens op "Continue"
  • Wanneer de tool gereed is wordt er een kladblok bestand genaamd "Log" geopend.
  • Plaats de inhoud hiervan in het volgende bericht.

Bekijk ook de instructievideo.

Link naar reactie
Delen op andere sites

Hier is me Log:

Logfile of random's system information tool 1.09 (written by random/random)

Run by Gebruiker at 2014-01-05 19:09:01

Microsoft Windows 7 Ultimate Service Pack 1

System drive C: has 4 GB (8%) free of 45 GB

Total RAM: 2559 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 19:03:22, on 5-1-2014

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\Windows\SOUNDMAN.EXE

C:\Program Files (x86)\DU Meter\DUMeter.exe

C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe

C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe

C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe

C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files (x86)\HiJackThis\Gebruiker.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = DO SEARCHES

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.dosearches.com/web/?utm_source=b&utm_medium=mp3&utm_campaign=rg&utm_content=ds&from=mp3&uid=126614527_135152_D0CE2DA9&ts=1384015895&type=default&q={searchTerms}

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.dosearches.com/web/?utm_source=b&utm_medium=mp3&utm_campaign=rg&utm_content=ds&from=mp3&uid=126614527_135152_D0CE2DA9&ts=1384015895&type=default&q={searchTerms}

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = DO SEARCHES

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8080

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: Flashget Catch Url Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: FlashGet - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\fgiebar.dll

O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [sDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe

O4 - HKCU\..\Run: [DU Meter] C:\Program Files (x86)\DU Meter\DUMeter.exe

O4 - HKCU\..\Run: [HydraVisionMDEngine] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe"

O4 - HKCU\..\Run: [DVDFab VDrive] "C:\Program Files\DVDFab Virtual Drive\vdrive.exe"

O4 - HKCU\..\Run: [sandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"

O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"

O8 - Extra context menu item: &Ontvang alles met FlashGet - C:\Program Files (x86)\FlashGet\jc_all.htm

O8 - Extra context menu item: &Ontvang met FlashGet - C:\Program Files (x86)\FlashGet\jc_link.htm

O8 - Extra context menu item: Download all with Open Download Manager - file://C:\Program Files (x86)\OpenDownloaderManager\dlall.htm

O8 - Extra context menu item: Download selected with Open Download Manager - file://C:\Program Files (x86)\OpenDownloaderManager\dlselected.htm

O8 - Extra context menu item: Download video with Open Download Manager - file://C:\Program Files (x86)\OpenDownloaderManager\dlfvideo.htm

O8 - Extra context menu item: Download with Open Download Manager - file://C:\Program Files (x86)\OpenDownloaderManager\dllink.htm

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\flashget.exe

O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\flashget.exe

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{6E22990A-357E-45C8-B1FE-E64BDC790FF1}: NameServer = 192.168.0.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{6E22990A-357E-45C8-B1FE-E64BDC790FF1}: NameServer = 192.168.0.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{6E22990A-357E-45C8-B1FE-E64BDC790FF1}: NameServer = 192.168.0.1

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL

O18 - Protocol: WSIEChrome - {6D02ED5F-FD0D-4C4C - (no file)

O20 - AppInit_DLLs: c:\program files gpsort.dll

O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - Unknown owner - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd. - C:\Program Files (x86)\DU Meter\DUMeterSvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: GorillaPrice - Unknown owner - C:\Program Files (x86)\GorillaPrice\GorillaPrice.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe

O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe

O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe

O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: WatGorp - Unknown owner - C:\ProgramData\GorillaPrice\WatGorp.exe

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--

End of file - 12934 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

atieclxx

"C:\Program Files\Sandboxie\SbieSvc.exe"

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService

"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

"C:\Program Files\Bonjour\mDNSResponder.exe"

"C:\Program Files (x86)\DU Meter\DUMeterSvc.exe" /startedbyscm:E1F6D4BE-40E33354-DUMeterService

"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"

C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt

"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"

"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\System32\svchost.exe -k HPZ12

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"

C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe"

"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"

WLIDSvcM.exe 2376

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"

C:\Windows\system32\svchost.exe -k HPService

"taskhost.exe"

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

"C:\Windows\SOUNDMAN.EXE"

"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

"C:\Program Files (x86)\DU Meter\DUMeter.exe"

"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe"

"C:\Program Files\DVDFab Virtual Drive\vdrive.exe"

"C:\Program Files\Sandboxie\SbieCtrl.exe"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

"C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe"

"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow

HydraMD64.exe -h:65974

taskeng.exe {084068AB-C737-4223-B99C-B72F4D48A652}

"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe" /TUStart /pid:2216

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"

HydraDM64.exe -h:263030 "Maximaliseren tot volledig bureaublad" "Maximaliseren tot volledig venster" "Bureaublad herstellen"

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" DO SEARCHES

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3272.0.435160251\1906611247" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --gpu-vendor-id=0x1002 --gpu-device-id=0x9495 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.961.0.0 --ignored=" --type=renderer " /prefetch:822062411

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/RestoreNavsuggestControl_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_18/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="3272.1.1773952671\1557363047" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/RestoreNavsuggestControl_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_18/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="3272.3.1540432924\752262486" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/RestoreNavsuggestControl_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_18/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="3272.4.1982363710\607489471" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/RestoreNavsuggestControl_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_18/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="3272.6.1113978664\968845054" /prefetch:673131151

-new http://click.cpvrdr.com/redirect.php?ID=85119344&KEY=9483

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5040 CREDAT:78849 /prefetch:2

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2698163573-3053994796-557599598-10009_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2698163573-3053994796-557599598-10009 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"

"C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512

"C:\Users\Gebruiker\Desktop\RSITx64.exe"

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe10_ Global\UsGthrCtrlFltPipeMssGthrPipe10 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\AWC AutoSweep.job

C:\Windows\tasks\AWC Startup.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\79w8vumc.default-1384639594617

prefs.js - "browser.startup.homepage" - "http://www.iapphacks.com/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 11.9.900.170 Plugin

"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]

"Description"=iTunes Detector Plug-in

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]

"Description"=

"Path"=D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0]

"Description"=DivX Plus Web Player

"Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]

"Description"=DivX VOD Helper Plug-in

"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6]

"Description"=Yahoo Messenger State Plugin

"Path"=C:\Program Files (x86)\Yahoo!\Shared\npYState.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nexon.net/NxGame]

"Description"=Nexon Game Controller

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]

"Description"=This plugin detects and launches Pando Media Booster

"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0]

"Description"=BlackBerry Web Software Loading Helper Plug-In for Mozilla browsers

"Path"=C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]

"Description"=Google Update

"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]

"Description"=VLC Multimedia Plugin

"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]

"Description"=Handles PDFs in-place in Firefox

"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]

"Description"=Adobe® Flash® Player 11.9.900.170 Plugin

"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]

"Description"=DivX VOD Helper Plug-in

"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.10.2]

"Description"=Java™ Deployment Toolkit

"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2]

"Description"=Oracle® Next Generation Java™ Plug-In

"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]

"Description"=

"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]

"Description"=Ag Player Plugin

"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\components\

nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\

nppdf32.dll

npqtplugin.dll

npqtplugin2.dll

npqtplugin3.dll

npqtplugin4.dll

npqtplugin5.dll

QuickTimePlugin.class

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31ad400d-1b06-4e33-a59a-90c2c140cba0}]

Snap.DoEngine - C:\Windows\system32\mscoree.dll [2010-11-21 444752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-12-29 551400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-12-29 209384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]

HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]

Flashget Catch Url Class - C:\Program Files (x86)\FlashGet\jccatch.dll [2006-12-11 65536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]

DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-05-06 194912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Aanmeldhulp voor Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]

Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]

gFlash Class - C:\Program Files (x86)\FlashGet\getflash.dll [2006-11-06 122880]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]

HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{ae07101b-46d4-4a98-af68-0333ea26e113} - Snap.Do - C:\Windows\system32\mscoree.dll [2010-11-21 444752]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{E0E899AB-F487-11D5-8D29-0050BA6940E3} - FlashGet - C:\Program Files (x86)\FlashGet\fgiebar.dll [2006-11-19 98304]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"SoundMan"=C:\Windows\SOUNDMAN.EXE [2009-04-14 604704]

"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-22 4035152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"DU Meter"=C:\Program Files (x86)\DU Meter\DUMeter.exe [2012-06-23 2749984]

"HydraVisionMDEngine"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe [2012-04-05 569344]

"DVDFab VDrive"=C:\Program Files\DVDFab Virtual Drive\vdrive.exe [2013-11-06 364960]

"SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2013-06-17 759384]

"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2012-04-05 393216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]

C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXMediaServer]

C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [2013-08-21 450560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]

C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2013-08-29 1861968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]

C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2009-11-18 54576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

D:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jswtrayutil]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]

C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]

C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]

C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]

C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-11-29 3806544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]

C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-06-08 2221352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]

C:\Program Files (x86)\HP\DIGITA~1\bin\hpqtra08.exe [2009-11-18 275072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NETGEAR WG111v3 Smart Wizard.lnk]

[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NETGEAR WN111v2 Smart Wizard.lnk]

[]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []

"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-11-16 641704]

"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-05-16 3830224]

"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-11-29 3806544]

"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]

"ASUS Ai Charger"=C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [2012-08-13 547984]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

[]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="C:\Program Files gpcloud.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ioloSystemService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=0

"ConsentPromptBehaviorUser"=0

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=1

"NoResolveTrack"=1

"NoResolveSearch"=1

"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"vidc.uyvy"=msyuv.dll

"vidc.yuy2"=msyuv.dll

"vidc.yvyu"=msyuv.dll

"vidc.iyuv"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"vidc.yvu9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 3 months======

2014-01-05 18:55:57 ----D---- C:\rsit

2013-12-29 00:36:50 ----A---- C:\Windows\SYSWOW64\drivers\AiCharger.sys

2013-12-29 00:36:44 ----A---- C:\Windows\AsTaskSched.dll

2013-12-29 00:35:43 ----A---- C:\Windows\Language_trs.ini

2013-12-28 13:22:38 ----D---- C:\Program Files (x86)\Frhed

2013-12-20 12:32:39 ----D---- C:\Program Files (x86)\Mozilla Firefox

2013-12-19 17:39:46 ----D---- C:\Program Files\iPod

2013-12-19 17:39:40 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2013-12-19 17:39:40 ----D---- C:\Program Files\iTunes

2013-12-19 13:00:33 ----D---- C:\Program Files (x86)\FlashGet

2013-12-19 12:36:20 ----D---- C:\Users\Gebruiker\AppData\Roaming\Spotify

2013-12-18 23:19:11 ----D---- C:\Users\Gebruiker\AppData\Roaming\iFunbox_UserCache

2013-12-18 23:17:02 ----D---- C:\Program Files (x86)\i-Funbox DevTeam

2013-12-18 23:13:28 ----D---- C:\Users\Gebruiker\AppData\Roaming\Open Download Manager

2013-12-18 23:12:44 ----D---- C:\ProgramData\boost_interprocess

2013-12-18 23:12:42 ----A---- C:\Windows\SYSWOW64\gpsort.dll

2013-12-18 23:12:42 ----A---- C:\Windows\gpcloud.dll

2013-12-18 23:12:41 ----D---- C:\ProgramData\GorillaPrice

2013-12-18 23:12:41 ----D---- C:\Program Files (x86)\GorillaPrice

2013-12-18 23:10:53 ----D---- C:\Program Files (x86)\OpenDownloaderManager

2013-12-14 17:03:10 ----D---- C:\Users\Gebruiker\AppData\Roaming\Battle.net

2013-12-14 17:02:04 ----D---- C:\Program Files (x86)\Battle.net

2013-12-11 14:04:12 ----D---- C:\Windows\WinAVI Video Converter 9.0

2013-12-11 14:04:12 ----D---- C:\Program Files (x86)\WinAVI Video Converter 9.0

2013-12-11 14:04:09 ----A---- C:\Windows\WinAVI Video Converter 9.0 Setup Log.txt

2013-12-11 13:53:20 ----D---- C:\Users\Gebruiker\AppData\Roaming\Pegasys Inc

2013-12-11 12:33:37 ----A---- C:\Users\Gebruiker\AppData\Roaming\pcouffin.sys

2013-12-11 12:33:37 ----A---- C:\Users\Gebruiker\AppData\Roaming\inst.exe

2013-12-11 12:23:41 ----D---- C:\ProgramData\AVS4YOU

2013-12-11 12:19:22 ----D---- C:\Users\Gebruiker\AppData\Roaming\AVS4YOU

2013-12-11 12:12:45 ----A---- C:\Windows\SYSWOW64\msxml3a.dll

2013-12-11 12:12:44 ----D---- C:\Program Files (x86)\AVS4YOU

2013-12-08 18:47:39 ----D---- C:\ProgramData\Oracle

2013-12-08 18:43:00 ----A---- C:\Windows\SYSWOW64\javaws.exe

2013-12-08 18:42:50 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll

2013-12-08 18:42:50 ----A---- C:\Windows\SYSWOW64\javaw.exe

2013-12-08 18:42:50 ----A---- C:\Windows\SYSWOW64\java.exe

2013-12-03 16:57:43 ----D---- C:\Program Files (x86)\LogMeIn Hamachi

2013-12-02 21:03:43 ----D---- C:\Program Files (x86)\GUM1991.tmp

2013-11-30 16:14:02 ----D---- C:\Users\Gebruiker\AppData\Roaming\VideoReDo-TVSuite4

2013-11-30 16:14:02 ----D---- C:\Program Files (x86)\VideoReDoTVSuite4

2013-11-28 17:50:16 ----A---- C:\Windows\system32\IEUDINIT.EXE

2013-11-28 17:44:27 ----A---- C:\Windows\SYSWOW64\elshyph.dll

2013-11-28 17:44:27 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\wininet.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\urlmon.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\msrating.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\msls31.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\jsproxy.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\jsIntl.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\ieui.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\iertutil.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll

2013-11-28 17:44:15 ----A---- C:\Windows\SYSWOW64\dxtrans.dll

2013-11-28 17:44:15 ----A---- C:\Windows\system32\elshyph.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\wextract.exe

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\webcheck.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\vbscript.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\url.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\pngfilt.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\occache.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\mshtmled.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\mshtml.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\mshta.exe

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\msfeeds.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\licmgr10.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\jscript.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\inseng.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\imgutil.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iexpress.exe

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iesetup.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iernonce.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iepeers.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\icardie.dll

2013-11-28 17:44:14 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll

2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe

2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\mshtmler.dll

2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll

2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\jscript9.dll

2013-11-28 17:44:13 ----A---- C:\Windows\SYSWOW64\iesysprep.dll

2013-11-28 17:44:13 ----A---- C:\Windows\system32\urlmon.dll

2013-11-28 17:44:13 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-28 17:44:13 ----A---- C:\Windows\system32\msls31.dll

2013-11-28 17:44:13 ----A---- C:\Windows\system32\jsIntl.dll

2013-11-28 17:44:12 ----A---- C:\Windows\system32\wininet.dll

2013-11-28 17:44:12 ----A---- C:\Windows\system32\msrating.dll

2013-11-28 17:44:12 ----A---- C:\Windows\system32\msfeedssync.exe

2013-11-28 17:44:12 ----A---- C:\Windows\system32\msfeedsbs.dll

2013-11-28 17:44:12 ----A---- C:\Windows\system32\jsproxy.dll

2013-11-28 17:44:12 ----A---- C:\Windows\system32\iertutil.dll

2013-11-28 17:44:12 ----A---- C:\Windows\system32\IEAdvpack.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\wextract.exe

2013-11-28 17:44:11 ----A---- C:\Windows\system32\webcheck.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\vbscript.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\url.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\SetIEInstalledDate.exe

2013-11-28 17:44:11 ----A---- C:\Windows\system32\pngfilt.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\occache.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\mshtmlmedia.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\mshtmler.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\mshtmled.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\mshtml.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\msfeeds.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\licmgr10.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\jscript9diag.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\jscript9.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\inseng.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\iexpress.exe

2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieUnatt.exe

2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieui.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\iesysprep.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\iesetup.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\iernonce.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieframe.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\iedkcs32.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieapfltr.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\ieapfltr.dat

2013-11-28 17:44:11 ----A---- C:\Windows\system32\ie4uinit.exe

2013-11-28 17:44:11 ----A---- C:\Windows\system32\icardie.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\dxtrans.dll

2013-11-28 17:44:11 ----A---- C:\Windows\system32\dxtmsft.dll

2013-11-28 17:44:10 ----A---- C:\Windows\system32\mshta.exe

2013-11-28 17:44:10 ----A---- C:\Windows\system32\jscript.dll

2013-11-28 17:44:10 ----A---- C:\Windows\system32\ieetwproxystub.dll

2013-11-28 17:44:10 ----A---- C:\Windows\system32\ieetwcollectorres.dll

2013-11-28 17:44:10 ----A---- C:\Windows\system32\ieetwcollector.exe

2013-11-28 17:44:09 ----A---- C:\Windows\system32\MshtmlDac.dll

2013-11-28 17:44:09 ----A---- C:\Windows\system32\imgutil.dll

2013-11-28 17:44:09 ----A---- C:\Windows\system32\iepeers.dll

2013-11-16 16:22:15 ----D---- C:\Program Files (x86)\MakeMKV

2013-11-16 13:08:57 ----D---- C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP

2013-11-14 17:05:59 ----A---- C:\Windows\system32\crypt32.dll

2013-11-14 17:05:56 ----A---- C:\Windows\system32\cryptsvc.dll

2013-11-14 17:05:56 ----A---- C:\Windows\system32\cryptnet.dll

2013-11-14 17:05:55 ----A---- C:\Windows\SYSWOW64\cryptnet.dll

2013-11-14 17:05:55 ----A---- C:\Windows\SYSWOW64\crypt32.dll

2013-11-14 17:05:54 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll

2013-11-14 17:05:06 ----A---- C:\Windows\system32\drivers\afd.sys

2013-11-14 17:04:50 ----A---- C:\Windows\system32\authui.dll

2013-11-14 17:04:48 ----A---- C:\Windows\SYSWOW64\authui.dll

2013-11-14 17:04:48 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll

2013-11-14 17:04:48 ----A---- C:\Windows\system32\credui.dll

2013-11-14 17:04:47 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll

2013-11-14 17:04:46 ----A---- C:\Windows\SYSWOW64\credui.dll

2013-11-14 17:04:25 ----A---- C:\Windows\system32\schannel.dll

2013-11-14 17:04:25 ----A---- C:\Windows\system32\ncrypt.dll

2013-11-14 17:04:25 ----A---- C:\Windows\system32\lsasrv.dll

2013-11-14 17:04:24 ----A---- C:\Windows\SYSWOW64\schannel.dll

2013-11-14 17:04:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2013-11-14 17:04:24 ----A---- C:\Windows\system32\drivers\ksecdd.sys

2013-11-14 17:04:24 ----A---- C:\Windows\system32\drivers\cng.sys

2013-11-14 17:04:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll

2013-11-14 17:04:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll

2013-11-14 17:04:23 ----A---- C:\Windows\system32\sspicli.dll

2013-11-14 17:04:23 ----A---- C:\Windows\system32\lsass.exe

2013-11-14 17:04:22 ----A---- C:\Windows\SYSWOW64\secur32.dll

2013-11-14 17:04:22 ----A---- C:\Windows\system32\sspisrv.dll

2013-11-14 17:04:22 ----A---- C:\Windows\system32\secur32.dll

2013-11-14 17:04:18 ----A---- C:\Windows\SYSWOW64\gdi32.dll

2013-11-14 17:04:18 ----A---- C:\Windows\system32\gdi32.dll

2013-11-14 17:04:17 ----A---- C:\Windows\system32\IKEEXT.DLL

2013-11-14 17:04:17 ----A---- C:\Windows\system32\BFE.DLL

2013-11-14 17:04:16 ----A---- C:\Windows\SYSWOW64\nshwfp.dll

2013-11-14 17:04:16 ----A---- C:\Windows\system32\nshwfp.dll

2013-11-14 17:04:16 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2013-11-14 17:04:15 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL

2013-11-12 17:15:08 ----A---- C:\Windows\system32\TURegOpt.exe

2013-11-12 17:15:05 ----A---- C:\Windows\SYSWOW64\authuitu.dll

2013-11-12 17:15:05 ----A---- C:\Windows\system32\authuitu.dll

2013-11-11 22:33:32 ----D---- C:\Program Files (x86)\TuneUp Utilities 2012

2013-11-09 18:11:27 ----D---- C:\ProgramData\Research In Motion

2013-11-09 17:54:11 ----D---- C:\Program Files (x86)\GreyGray

2013-11-09 17:46:36 ----D---- C:\Users\Gebruiker\AppData\Roaming\Oxy

2013-11-09 16:54:39 ----D---- C:\Users\Gebruiker\AppData\Roaming\Yahoo!

2013-11-09 16:51:28 ----D---- C:\ProgramData\Yahoo!

2013-11-09 16:48:47 ----D---- C:\Program Files (x86)\Yahoo!

2013-11-06 21:38:07 ----D---- C:\iOrgSoft DvdRipper

2013-11-06 21:37:56 ----D---- C:\Program Files (x86)\iOrgSoft

2013-11-05 21:31:32 ----D---- C:\ProgramData\xml_param

2013-11-05 21:26:40 ----D---- C:\Users\Gebruiker\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}

2013-11-05 21:25:42 ----A---- C:\Windows\SYSWOW64\WPShellExt64.dll

2013-11-05 21:25:35 ----D---- C:\ProgramData\Wondershare Player

2013-11-05 21:25:35 ----D---- C:\ProgramData\Wondershare

2013-11-05 21:25:19 ----D---- C:\Program Files\Common Files\Wondershare

2013-11-05 21:24:24 ----D---- C:\ProgramData\Wondershare Video Converter Ultimate

2013-11-05 21:24:13 ----D---- C:\Program Files (x86)\Wondershare

2013-11-05 21:10:09 ----D---- C:\Users\Gebruiker\AppData\Roaming\Xilisoft

2013-11-05 21:09:22 ----D---- C:\ProgramData\Xilisoft

2013-11-05 21:09:22 ----D---- C:\Program Files (x86)\Xilisoft

2013-11-05 20:59:43 ----D---- C:\Program Files\MediaInfo

2013-10-29 18:14:32 ----D---- C:\Program Files (x86)\SuperScan

2013-10-28 01:12:12 ----A---- C:\Windows\system32\drivers\ssudmdm.sys

2013-10-28 01:12:10 ----A---- C:\Windows\system32\drivers\ssudbus.sys

2013-10-21 18:55:29 ----A---- C:\Windows\system32\sdnclean64.exe

2013-10-21 18:55:04 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2

2013-10-21 18:35:50 ----D---- C:\ProgramData\Spybot - Search & Destroy

2013-10-21 18:35:50 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy

2013-10-21 18:33:47 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-10-21 18:33:47 ----A---- C:\Windows\system32\drivers\mbam.sys

2013-10-17 20:22:06 ----D---- C:\ProgramData\Conduit

2013-10-17 20:21:35 ----D---- C:\Program Files (x86)\Conduit

2013-10-17 20:19:09 ----D---- C:\Users\Gebruiker\AppData\Roaming\OpenCandy

2013-10-17 20:19:09 ----D---- C:\Program Files (x86)\Cheat Engine 6.3

2013-10-14 03:44:36 ----A---- C:\Windows\SYSWOW64\rmoc3260.dll

2013-10-14 03:44:18 ----A---- C:\Windows\SYSWOW64\pncrt.dll

2013-10-10 15:57:25 ----D---- C:\Program Files (x86)\GUM9035.tmp

2013-10-10 15:55:16 ----A---- C:\Windows\SYSWOW64\comctl32.dll

2013-10-10 15:55:16 ----A---- C:\Windows\system32\comctl32.dll

2013-10-10 15:55:14 ----A---- C:\Windows\system32\atmfd.dll

2013-10-10 15:55:13 ----A---- C:\Windows\SYSWOW64\lpk.dll

2013-10-10 15:55:13 ----A---- C:\Windows\SYSWOW64\dciman32.dll

2013-10-10 15:55:13 ----A---- C:\Windows\SYSWOW64\atmfd.dll

2013-10-10 15:55:13 ----A---- C:\Windows\system32\lpk.dll

2013-10-10 15:55:13 ----A---- C:\Windows\system32\dciman32.dll

2013-10-10 15:55:12 ----A---- C:\Windows\SYSWOW64\fontsub.dll

2013-10-10 15:55:12 ----A---- C:\Windows\SYSWOW64\atmlib.dll

2013-10-10 15:55:12 ----A---- C:\Windows\system32\fontsub.dll

2013-10-10 15:55:12 ----A---- C:\Windows\system32\atmlib.dll

2013-10-10 15:55:11 ----A---- C:\Windows\system32\drivers\Wdf01000.sys

2013-10-10 15:55:07 ----A---- C:\Windows\system32\drivers\usbcir.sys

2013-10-10 15:55:06 ----A---- C:\Windows\system32\drivers\hidclass.sys

2013-10-10 15:55:05 ----A---- C:\Windows\system32\drivers\hidparse.sys

2013-10-10 15:55:04 ----A---- C:\Windows\SYSWOW64\WebClnt.dll

2013-10-10 15:55:04 ----A---- C:\Windows\SYSWOW64\davclnt.dll

2013-10-10 15:55:04 ----A---- C:\Windows\system32\WebClnt.dll

2013-10-10 15:55:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys

2013-10-10 15:55:04 ----A---- C:\Windows\system32\davclnt.dll

2013-10-10 15:55:02 ----A---- C:\Windows\system32\drivers\tcpip.sys

2013-10-10 15:55:01 ----A---- C:\Windows\system32\mswsock.dll

2013-10-10 15:55:00 ----A---- C:\Windows\system32\drivers\netio.sys

2013-10-10 15:55:00 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS

2013-10-10 15:54:59 ----A---- C:\Windows\SYSWOW64\mswsock.dll

2013-10-10 15:54:58 ----A---- C:\Windows\system32\win32k.sys

2013-10-10 15:54:44 ----A---- C:\Windows\system32\ntoskrnl.exe

2013-10-10 15:54:41 ----A---- C:\Windows\system32\ntdll.dll

2013-10-10 15:54:41 ----A---- C:\Windows\system32\advapi32.dll

2013-10-10 15:54:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe

2013-10-10 15:54:40 ----A---- C:\Windows\system32\KernelBase.dll

2013-10-10 15:54:38 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe

2013-10-10 15:54:37 ----A---- C:\Windows\system32\tdh.dll

2013-10-10 15:54:35 ----A---- C:\Windows\SYSWOW64\tdh.dll

2013-10-10 15:54:35 ----A---- C:\Windows\system32\wow64win.dll

2013-10-10 15:54:35 ----A---- C:\Windows\system32\kernel32.dll

2013-10-10 15:54:35 ----A---- C:\Windows\system32\appidpolicyconverter.exe

2013-10-10 15:54:34 ----A---- C:\Windows\SYSWOW64\ntdll.dll

2013-10-10 15:54:34 ----A---- C:\Windows\SYSWOW64\advapi32.dll

2013-10-10 15:54:34 ----A---- C:\Windows\system32\winsrv.dll

2013-10-10 15:54:33 ----A---- C:\Windows\SYSWOW64\KernelBase.dll

2013-10-10 15:54:33 ----A---- C:\Windows\SYSWOW64\kernel32.dll

2013-10-10 15:54:33 ----A---- C:\Windows\system32\appidsvc.dll

2013-10-10 15:54:32 ----A---- C:\Windows\SYSWOW64\appidapi.dll

2013-10-10 15:54:32 ----A---- C:\Windows\system32\wow64cpu.dll

2013-10-10 15:54:32 ----A---- C:\Windows\system32\wow64.dll

2013-10-10 15:54:32 ----A---- C:\Windows\system32\smss.exe

2013-10-10 15:54:32 ----A---- C:\Windows\system32\ntvdm64.dll

2013-10-10 15:54:32 ----A---- C:\Windows\system32\drivers\appid.sys

2013-10-10 15:54:32 ----A---- C:\Windows\system32\csrsrv.dll

2013-10-10 15:54:32 ----A---- C:\Windows\system32\conhost.exe

2013-10-10 15:54:32 ----A---- C:\Windows\system32\appidcertstorecheck.exe

2013-10-10 15:54:32 ----A---- C:\Windows\system32\appidapi.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-10-10 15:54:31 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2013-10-10 15:54:30 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-10-10 15:54:29 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2013-10-10 15:54:29 ----A---- C:\Windows\SYSWOW64\apisetschema.dll

2013-10-10 15:54:29 ----A---- C:\Windows\system32\apisetschema.dll

2013-10-10 15:54:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll

2013-10-10 15:54:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll

2013-10-10 15:54:28 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2013-10-10 15:54:28 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2013-10-10 15:54:28 ----A---- C:\Windows\SYSWOW64\wow32.dll

2013-10-10 15:54:28 ----A---- C:\Windows\SYSWOW64\setup16.exe

2013-10-10 15:54:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll

2013-10-10 15:54:28 ----A---- C:\Windows\SYSWOW64\instnm.exe

2013-10-10 15:54:27 ----A---- C:\Windows\SYSWOW64\user.exe

2013-10-10 15:54:15 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll

2013-10-10 15:54:15 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2013-10-10 15:54:14 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

2013-10-10 15:54:12 ----A---- C:\Windows\system32\scavengeui.dll

2013-10-09 16:35:57 ----D---- C:\Users\Gebruiker\AppData\Roaming\avidemux

2013-10-09 16:35:49 ----D---- C:\Program Files (x86)\Avidemux 2.6

======List of files/folders modified in the last 3 months======

2014-01-05 19:03:02 ----D---- C:\Program Files (x86)\HiJackThis

2014-01-05 19:00:54 ----D---- C:\Windows\temp

2014-01-05 18:54:07 ----D---- C:\Windows\Prefetch

2014-01-04 17:55:20 ----D---- C:\Users\Gebruiker\AppData\Roaming\vlc

2014-01-04 14:36:17 ----SHD---- C:\System Volume Information

2014-01-04 11:47:28 ----D---- C:\Windows\system32\config

2014-01-03 09:35:52 ----D---- C:\Windows\system32\catroot2

2014-01-01 23:10:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

2013-12-29 22:36:20 ----D---- C:\Windows\system32\Tasks

2013-12-29 00:36:50 ----D---- C:\Windows\SYSWOW64\drivers

2013-12-29 00:36:44 ----D---- C:\Windows

2013-12-29 00:36:42 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2013-12-29 00:36:42 ----D---- C:\Program Files (x86)\ASUS

2013-12-28 13:22:38 ----RD---- C:\Program Files (x86)

2013-12-25 12:12:52 ----SD---- C:\Users\Gebruiker\AppData\Roaming\Microsoft

2013-12-21 15:35:38 ----D---- C:\Windows\system32\NDF

2013-12-21 14:07:28 ----D---- C:\Windows\system32\drivers\etc

2013-12-20 21:32:53 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service

2013-12-19 22:20:07 ----D---- C:\Windows\system32\catroot

2013-12-19 17:41:27 ----SHD---- C:\Windows\Installer

2013-12-19 17:41:23 ----D---- C:\Config.Msi

2013-12-19 17:40:48 ----D---- C:\Windows\SysWOW64

2013-12-19 17:40:48 ----D---- C:\Windows\System32

2013-12-19 17:39:46 ----RD---- C:\Program Files

2013-12-19 17:39:40 ----D---- C:\ProgramData

2013-12-19 17:34:57 ----D---- C:\Windows\system32\DriverStore

2013-12-19 17:34:57 ----D---- C:\Windows\inf

2013-12-19 17:34:18 ----D---- C:\Program Files (x86)\Bonjour

2013-12-19 11:15:13 ----A---- C:\Windows\system32\PerfStringBackup.INI

2013-12-17 18:11:54 ----D---- C:\ProgramData\Samsung

2013-12-17 18:09:24 ----D---- C:\Windows\system32\drivers

2013-12-17 16:34:48 ----D---- C:\Users\Gebruiker\AppData\Roaming\uTorrent

2013-12-17 16:06:20 ----D---- C:\Users\Gebruiker\AppData\Roaming\dvdcss

2013-12-15 23:33:34 ----D---- C:\Windows\system32\wdi

2013-12-15 15:20:01 ----D---- C:\Users\Gebruiker\AppData\Roaming\Skype

2013-12-15 13:36:13 ----D---- C:\ProgramData\Skype

2013-12-15 13:36:08 ----RD---- C:\Program Files (x86)\Skype

2013-12-12 14:14:55 ----D---- C:\Program Files (x86)\Video Converter

2013-12-11 12:33:38 ----D---- C:\Users\Gebruiker\AppData\Roaming\Vso

2013-12-11 12:13:12 ----D---- C:\Program Files (x86)\Common Files

2013-12-11 12:13:11 ----D---- C:\Windows\winsxs

2013-12-08 18:42:50 ----D---- C:\Program Files (x86)\Java

2013-12-05 12:54:37 ----D---- C:\ProgramData\Spotnet

2013-12-04 18:18:38 ----D---- C:\Users\Gebruiker\AppData\Roaming\Dropbox

2013-12-03 18:11:01 ----D---- C:\Program Files (x86)\Mozilla Thunderbird

2013-11-30 16:17:25 ----AD---- C:\ProgramData\TEMP

2013-11-29 09:51:21 ----D---- C:\Windows\rescache

2013-11-29 08:21:42 ----D---- C:\Windows\SYSWOW64\nl-NL

2013-11-29 08:21:42 ----D---- C:\Windows\system32\nl-NL

2013-11-29 08:21:41 ----D---- C:\Program Files\Internet Explorer

2013-11-29 08:21:41 ----D---- C:\Program Files (x86)\Internet Explorer

2013-11-29 08:21:39 ----D---- C:\Windows\SYSWOW64\migration

2013-11-29 08:21:39 ----D---- C:\Windows\SYSWOW64\en-US

2013-11-29 08:21:37 ----D---- C:\Windows\system32\migration

2013-11-29 08:21:37 ----D---- C:\Windows\PolicyDefinitions

2013-11-29 08:21:36 ----D---- C:\Windows\system32\en-US

2013-11-28 17:50:16 ----D---- C:\Windows\Logs

2013-11-15 17:12:25 ----D---- C:\Program Files\DVDFab Virtual Drive

2013-11-14 19:19:28 ----D---- C:\Windows\system32\MRT

2013-11-14 19:15:18 ----A---- C:\Windows\system32\MRT.exe

2013-11-12 16:55:20 ----D---- C:\Windows\Tasks

2013-11-12 16:55:20 ----D---- C:\Windows\system32\wfp

2013-11-12 16:55:17 ----D---- C:\Windows\system32\wbem

2013-11-12 16:54:17 ----D---- C:\Windows\system32\CodeIntegrity

2013-11-12 16:54:13 ----D---- C:\Windows\registration

2013-11-09 18:17:58 ----D---- C:\Windows\Microsoft.NET

2013-11-09 17:58:58 ----D---- C:\Program Files (x86)\BlueStacks

2013-11-09 17:57:58 ----RSD---- C:\Windows\assembly

2013-11-05 21:25:19 ----D---- C:\Program Files\Common Files

2013-11-04 20:44:13 ----D---- C:\Users\Gebruiker\AppData\Roaming\DivX

2013-10-21 18:55:44 ----SD---- C:\ProgramData\Microsoft

2013-10-19 09:46:25 ----D---- C:\ProgramData\DivX

2013-10-19 09:46:23 ----D---- C:\Program Files (x86)\DivX

2013-10-18 11:28:27 ----D---- C:\Program Files (x86)\HMA! Pro VPN

2013-10-11 15:45:35 ----D---- C:\Windows\AppPatch

2013-10-10 22:06:18 ----D---- C:\Program Files\Microsoft Silverlight

2013-10-10 22:06:18 ----D---- C:\Program Files (x86)\Microsoft Silverlight

2013-10-09 16:27:00 ----D---- C:\Windows\system

2013-10-06 11:39:55 ----D---- C:\Program Files (x86)\Spotnet

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 inic1620;inic1620; C:\Windows\system32\DRIVERS\inic1620.sys [2009-07-31 36888]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-03-19 213888]

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-06-21 834544]

R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2007-12-17 14392]

R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2012-03-19 515072]

R1 dvdfabio;dvdfabio; \??\C:\Windows\system32\drivers\dvdfabio.sys [2013-11-06 9976]

R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]

R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\ElRawDsk.sys [2012-08-02 30752]

R1 NetworkX;NetworkX; C:\Windows\syswow64\ckldrv.sys []

R1 usedisk;USEDisk Driver; C:\Windows\system32\DRIVERS\usedisk.sys [2013-09-20 29208]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-03-19 60416]

R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576]

R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 137144]

R2 PDFsFilter;PDFsFilter; C:\Windows\system32\DRIVERS\PDFsFilter.sys [2012-08-02 82160]

R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]

R3 AiCharger;AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [2012-03-22 14848]

R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC64.SYS [2009-06-18 3491616]

R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]

R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-04-06 11174400]

R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-04-06 343040]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]

R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 25928]

R3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [2011-07-20 44032]

R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]

R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2013-06-17 198360]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2011-11-09 11856]

R3 vdrive;vdrive; C:\Windows\system32\DRIVERS\vdrive.sys [2013-11-06 42232]

S1 FileDisk;FileDisk; C:\Windows\system32\drivers\FileDisk.sys []

S1 PQNTDrv;PQNTDrv; C:\Windows\system32\drivers\PQNTDrv.sys []

S3 b06diag;Broadcom NetXtreme II Diag Driver; C:\Windows\system32\drivers\bxdiaga.sys [2010-12-16 88104]

S3 BFN7x64;Bigfoot Networks Killer Gaming Service; C:\Windows\system32\drivers\Xeno7x64.sys [2011-01-14 157288]

S3 BFNVis64;Bigfoot Networks Killer Gaming Service; C:\Windows\system32\drivers\XenoVa64.sys [2011-01-14 157288]

S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2012-03-19 95232]

S3 BXOIS;BXOIS; C:\Windows\system32\drivers\bxois.sys [2010-12-10 533544]

S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []

S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-10-28 107288]

S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]

S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []

S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []

S3 IAMTVE;Stuurprogramma voor Intel® Active Management Technology - KCS; C:\Windows\system32\drivers\IAMTVE.sys [2007-04-11 43416]

S3 IAMTXPE;Stuurprogramma voor Intel® Active Management Technology - KCS; C:\Windows\system32\drivers\IAMTXPE.sys [2007-04-11 51096]

S3 IFCoEMP;IFCoEMP; C:\Windows\system32\drivers\ifM60x64.sys [2011-09-13 388368]

S3 IFCoEVB;IFCoEVB; C:\Windows\system32\drivers\ifP60X64.sys [2011-09-13 77584]

S3 ioatdma1;ioatdma1; C:\Windows\System32\Drivers\qd162x64.sys [2009-11-16 40144]

S3 ioatdma2;Intel® QuickData Technology device ver.2; C:\Windows\System32\Drivers\qd262x64.sys [2009-11-16 42192]

S3 PCAMp50a64;PCAMp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCAMp50a64.sys [2006-11-28 43328]

S3 PCASp50a64;PCASp50a64 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50a64.sys [2006-11-28 41280]

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []

S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []

S3 RapportIaso;RapportIaso; \??\c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso64.sys []

S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2012-03-19 165888]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-01 19456]

S3 RimUsb;BlackBerry Smartphone; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [2011-07-25 74752]

S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]

S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-10-28 204568]

S3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\drivers\serscan.sys [2009-07-14 12288]

S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]

S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver; C:\Windows\system32\drivers\Synth3dVsc.sys [2012-03-19 88960]

S3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2011-07-13 30720]

S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-12-01 29696]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-12-01 57856]

S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-12-01 30208]

S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]

S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]

S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 32768]

S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []

S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]

S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

S3 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []

S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []

S3 vulfnths;VIA USB Host Controller Lower Filter; C:\Windows\System32\Drivers\vulfnth.sys []

S3 vulfntrs;VIA USB Roothub Lower Filter; C:\Windows\System32\Drivers\vulfntr.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-04-06 236544]

R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-11-16 361984]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

R2 DUMeterSvc;DU Meter Service; C:\Program Files (x86)\DU Meter\DUMeterSvc.exe [2009-09-04 1391136]

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-22 974944]

R2 GorillaPrice;GorillaPrice; C:\Program Files (x86)\GorillaPrice\GorillaPrice.exe [2013-12-16 643072]

R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2012-03-19 27648]

R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2012-03-19 27648]

R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2013-10-11 377104]

R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]

R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2012-03-19 27648]

R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2012-03-19 27648]

R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2013-06-17 180824]

R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-05-16 1817560]

R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-05-16 1033688]

R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-05-15 171928]

R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2011-11-23 2118976]

R2 WatGorp;WatGorp; C:\ProgramData\GorillaPrice\WatGorp.exe [2013-12-12 86528]

R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2012-03-19 27648]

S2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe []

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-01 257416]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-28 111616]

S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352]

S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-20 119408]

S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-06-22 1255736]

S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2012-03-19 27648]

S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-03-19 27648]

S4 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-08 877864]

S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2012-03-19 27648]

S4 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2012-03-19 27648]

S4 VRAID Log Service;VRAID Log Service; C:\Program Files (x86)\VIA\RAID\vialogsv.exe [2011-03-15 55920]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

   [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31ad400d-1b06-4e33-a59a-90c2c140cba0}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin];r64
 {ae07101b-46d4-4a98-af68-0333ea26e113};c
 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jswtrayutil];r64
 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
 "AppInit_DLLs"=-;r64
 C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP;f
 C:\ProgramData\Conduit;fs
 C:\Program Files (x86)\Conduit;fs
 C:\Users\Gebruiker\AppData\Roaming\OpenCandy;fs
 emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan

  • HijackThis Log

  • Shortcut Fix
  • IE Defaults
  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Dit snap ik niet,

Nod uit!!

ik start het programma als admin

dan in het scherm zet ik je code,

en dan vink ik die opties aan.

en dan run script,

ik heb eerst 6 uur laten lopen, Geen vast loper gehad geen Log,

dacht ok, via takenbeheer alles uit wat uit kan,

dan nod uit,

dan nog is starten, dan Heel de nacht + 8 uur van dat ik werken was,

ik kom thuis, zet monitor aan, Nog niets,

Geen log, en als ik X pak, krijg ik is Running,,

net of hij niet verder gaat op 1 punt, heb hem al 4 x opnieuw gepakt,

maar na de her-start krijg ik ook is geen geldig win32 programma,

dan sluit ik dat, en als ik hem weer start, dan start hij wel,

de troep is er nog wel, want had vannacht +300 Internet Explorers

zo veel dat er een scherm was, Cant start due no Memory available dus al me 6 GB ram was vol.. :S

Link naar reactie
Delen op andere sites

met internet aan, en uit,

in veiligemodes en zelfs Zonder Explorer niet,

hij start en dan blijft hij hangen,

heb hem nu 6 x laten lopen maar niets hoor,

wordt er niet goed van,

ik zie ook niets van loopt vast of kan niet laden,

nu moet ik wel Zeggen hij doet wel moeilijk met starten,

ik start hem als admin via rechts, maar dan nog moet ik 6 min wachten voor hij start

net of hij iets niet laad

misschien doet me Windows 7 iets raars ?

Link naar reactie
Delen op andere sites

Op de downloadpagina van zoek kan je nu apart de versie zoek.exe downloaden. Verwijder misschien eerst alle bestaande onderdelen van zoek en download dan dit uniek .exe-bestand. Dat doe je door enkel op het eerste deel van de link bovenaan de pagina te klikken en dan start de download van zoek.exe automatisch. Start dan zoek.exe op en probeer eens of je de opdracht dan wél kan uitvoeren binnen een redelijke tijdsperiode.

Link naar reactie
Delen op andere sites

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.