Ga naar inhoud

virusen verwijderen


Aanbevolen berichten

  • Reacties 42
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Je hebt hetzelfde logje geplaatst als eerder, zie naar datum en uur: Tool run by Jolanda Resier on vr 31-01-2014 at 5:17:06,69. In dat nieuwe logje zijn de verbeteringen van bericht 6 nog niet uitgevoerd. Deze moet je eerst doen en daarna een nieuw logje van zoek plaatsen in een volgend bericht. Dit om te controleren of de verbeteringen gelukt zijn ?

Link naar reactie
Delen op andere sites

ok dat word weer een jarenplan met deze computer hij heeft z'n eigen leventje momenteel weet niet waar die mee bezig is om een map te openen duurt al een eeuw

:(

- - - Updated - - -

ow hij is nu bezig met run script van zoek.exe :)

- - - Updated - - -

Zoek.exe v5.0.0.0 Updated 31-January-2014

Tool run by Jolanda Resier on vr 31-01-2014 at 21:30:33,74.

Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Jolanda Resier\Documents\Downloads\zoek (4).exe [scan all users] [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-01-31-044006.log 50389 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"DATAMNGR"=-

"Search Protection"=-

""=-

==== Deleting Files \ Folders ======================

C:\Program Files\SupTab not found

C:\Users\Jolanda Resier\AppData\Roaming\DefaultTab not found

C:\ProgramData\Search Protection not found

C:\ProgramData\Search Protection not found

C:\ProgramData\blekko toolbars not found

C:\Users\Jolanda Resier\AppData\Roaming\SecureSearch not found

C:\Users\Jolanda Resier\AppData\Roaming\Systweak not found

C:\Program Files\Yontoo not found

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2014-01-31 14:45:51 9F3EBB4043FE60711A738650C025201D 106911150 ----a-w- C:\Windows\MEMORY.DMP

2014-01-29 13:57:49 0245D0889C3443F5DC9194558583FE59 43152 ----a-w- C:\Windows\avastSS.scr

====== C:\Users\JOLAND~1\AppData\Local\Temp ====

2014-01-31 03:21:40 9911EF198C1A01F11D8D6F777F9A9261 1070088 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\install_flashplayer12x32axau_mssa_aaa_aih.exe

2014-01-31 02:29:24 A412399D2431857141FAB8FA598EC426 166792 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\psmachine.dll

2014-01-31 02:29:24 A32E19DB8623C6E50DF6F8C0768881BE 166792 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\psuser.dll

2014-01-31 02:29:23 C36444D7301A8C881FC7296B092609C7 578440 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\npGoogleUpdate3.dll

2014-01-31 02:28:28 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateSetup.exe

2014-01-31 02:28:28 A7495E342A2EE0160812AC856C11F6CF 847752 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\goopdate.dll

2014-01-31 02:28:28 600B1A4BCC0823A96DC7B86F005ADBB8 51080 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateOnDemand.exe

2014-01-31 02:28:27 FBF1CE5A3D017271CF979A3DFF872BFB 26112 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateHelper.msi

2014-01-31 02:28:27 CA0A340ABCF0C14A09691CBC90186AB4 51080 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateBroker.exe

2014-01-31 02:28:26 9CCBA5E2489E603BB1578D1D541252A8 273800 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleCrashHandler64.exe

2014-01-31 02:28:26 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdate.exe

2014-01-31 02:28:26 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleCrashHandler.exe

2014-01-30 19:42:47 E6633716EE2AC06BCB4A58FF993015F3 155976 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\instup.exe

2014-01-30 19:42:47 DC730F5EA07F8CE98E49BBBD110EAA14 3167112 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\HTMLayout.dll

2014-01-30 19:42:47 D11625C81FB88DC8A607BB9D76920A3D 2966792 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\aswOfferTool.exe

2014-01-30 19:42:47 BCDEA07CD91EF85BBCC869DF4906C8C1 7201640 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\Instup.dll

2014-01-30 19:42:47 B8FA402B238DB49C35CAF711D5BC9843 1093216 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\avBugReport.exe

2014-01-30 19:41:55 E6633716EE2AC06BCB4A58FF993015F3 155976 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\instup.exe

2014-01-30 19:41:53 DC730F5EA07F8CE98E49BBBD110EAA14 3167112 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\HTMLayout.dll

2014-01-30 19:41:44 BCDEA07CD91EF85BBCC869DF4906C8C1 7201640 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\Instup.dll

2014-01-30 19:41:24 B8FA402B238DB49C35CAF711D5BC9843 1093216 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\avBugReport.exe

2014-01-30 17:22:47 511942E0C59CFE4419604A2E070E79CC 8192 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\OKitSpaceSetup.exe

2014-01-30 17:22:21 8A27DB882C784B0F205B1FF72C72F841 4624785 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\systemspeedup.exe

2014-01-30 17:21:45 9A7348E0F5C4A56455C1533E8B4EB313 882672 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\vit_sweet-page.exe

2014-01-30 12:06:34 6BF0239E4E680068A1D93FDA830DAF71 603988 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\instloffer.exe

2014-01-30 01:25:43 C54B767CA838D6DD39CABC8DF017C34C 4048592 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\5677a7de-6b0f-45d6-b279-9fa4d36c1159.exe

2014-01-29 22:03:53 4F93663C1849D7723F160586F84465DA 178064 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\NGM.exe

2014-01-29 22:03:52 8DB30A62D73A072E601C80AE257A480C 399704 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\NGMResource.dll

2014-01-29 22:03:52 0AF2FC1A37EFDD0E3F5493B43B97026C 911256 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\NGMDll.dll

2014-01-23 00:54:20 9E343AE10F8B2F8C75B957E065D004D4 100864 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\fullpackage_temp1391102550\QQBrowserFrame.dll

2014-01-23 00:54:20 2EEE15B1927EADFF45013E94B0CB0D94 131640 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\fullpackage_temp1391102550\QQBrowser.exe

====== Java Cache =====

====== C:\Windows\system32 =====

2014-01-30 15:54:49 ABE0D5749C3C41510121241112389C91 409752 ----a-w- C:\Windows\System32\FNTCACHE.DAT

2014-01-29 13:20:58 C74500A1BCB4113A7310295DD3FA4440 2724864 ----a-w- C:\Windows\System32\mshtml.tlb

2014-01-29 13:20:57 A6B0B7F006F1CB84B48981499F6B7210 208896 ----a-w- C:\Windows\System32\ie4uinit.exe

2014-01-29 13:20:56 3D43EAC957F2F797BE82CF6B04A933F8 43008 ----a-w- C:\Windows\System32\jsproxy.dll

2014-01-29 13:20:55 BE8480727660354B93E32B0ED709BF0E 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll

2014-01-29 13:20:55 355BF103E2CF862B00EEB3731E25E802 440832 ----a-w- C:\Windows\System32\ieui.dll

2014-01-29 13:20:54 491B4F34BA2CD7EFCAC934C7EFF48F52 61952 ----a-w- C:\Windows\System32\iesetup.dll

2014-01-29 13:20:54 36D150C4F80DF88ED97D14598C24692F 32768 ----a-w- C:\Windows\System32\iernonce.dll

2014-01-29 13:20:54 08881C59F795C356DE12067E44FFD260 703488 ----a-w- C:\Windows\System32\ieapfltr.dll

2014-01-29 13:20:53 C8AF3CF3030C3962B978FA3871D759FF 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe

2014-01-29 13:20:53 7C7FF72C48AF9DD8CA7ABA2EA97A6670 51200 ----a-w- C:\Windows\System32\ieetwproxystub.dll

2014-01-29 13:20:53 3DE9521C90F7CC4413CBF6569A8B85B5 112128 ----a-w- C:\Windows\System32\ieUnatt.exe

2014-01-29 13:20:53 35DE59C975A0C97E8DBBE095BCC3644E 553472 ----a-w- C:\Windows\System32\jscript9diag.dll

2014-01-29 13:20:51 927FA6456AD6D7630F6854828D2FD16B 1820160 ----a-w- C:\Windows\System32\wininet.dll

2014-01-29 13:20:50 B2E1F7B212502BB49AAD4EFAD37C5CF5 2166784 ----a-w- C:\Windows\System32\iertutil.dll

2014-01-29 13:20:50 84EAF0A08C7742697816E148C066D757 1928192 ----a-w- C:\Windows\System32\inetcpl.cpl

2014-01-29 13:20:50 0763C5D8660436D4D961F72609E33BBE 1157632 ----a-w- C:\Windows\System32\urlmon.dll

2014-01-29 13:20:48 4B638CE3DAA3A082E576C0DDF9D635D4 11221504 ----a-w- C:\Windows\System32\ieframe.dll

2014-01-29 13:20:46 BFAFE990C4A191E83843362B5AC64A9B 17112576 ----a-w- C:\Windows\System32\mshtml.dll

2014-01-29 13:20:46 A60A222D3126DD9E380F9D8B651BC13D 4243968 ----a-w- C:\Windows\System32\jscript9.dll

2014-01-29 02:22:28 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\System32\wmp.dll

2014-01-29 02:22:22 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\System32\wmploc.DLL

2014-01-29 02:13:05 C611C6ED5ECFE4608BA79472DFE3D49C 646144 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe

2014-01-29 02:13:05 AD27563BC16AB1EAACAE3033E99C2F78 194048 ----a-w- C:\Windows\System32\elshyph.dll

2014-01-29 02:13:04 C1A6E565B2782C09BC40AD749B46D9ED 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2014-01-29 02:13:04 9B8701A380CEE1B05D651B4ED4048C8F 645120 ----a-w- C:\Windows\System32\jsIntl.dll

2014-01-29 02:13:04 298FDE634538B62CEEEC266D8773B21A 182272 ----a-w- C:\Windows\System32\msls31.dll

2014-01-29 02:13:03 44D5C650C971910827EA65B4D989ED94 164864 ----a-w- C:\Windows\System32\msrating.dll

2014-01-29 02:13:02 FB0D1CC2911A0645DDA6C0608473EB55 34816 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll

2014-01-29 02:13:02 F862CD08F1AD4EE39BD506853F3C6103 16284 ----a-w- C:\Windows\System32\ieuinit.inf

2014-01-29 02:13:02 D9F12F54E3B5A092F1D5F191F5286E53 337408 ----a-w- C:\Windows\System32\html.iec

2014-01-29 02:13:02 CFCE4EFF1D6D909EE2EA3AFCB8F1E677 233472 ----a-w- C:\Windows\System32\url.dll

2014-01-29 02:13:02 C3B0DBD04CC18574B0706CA119902474 367104 ----a-w- C:\Windows\System32\dxtmsft.dll

2014-01-29 02:13:02 C17139EAF939964142C7A1AEEE02DC81 616104 ----a-w- C:\Windows\System32\ieapfltr.dat

2014-01-29 02:13:02 9E170B0AF156B478BD2B1FD6A2250C9E 62464 ----a-w- C:\Windows\System32\tdc.ocx

2014-01-29 02:13:02 4F032F1FDEFEA5EC8EEA3562643B5EE8 69120 ----a-w- C:\Windows\System32\icardie.dll

2014-01-29 02:13:02 2AF48780D879AFC43733159CB29CD8BD 1051136 ----a-w- C:\Windows\System32\mshtmlmedia.dll

2014-01-29 02:13:02 08B56CF57B7CE44315034247CC76D0F1 244736 ----a-w- C:\Windows\System32\dxtrans.dll

2014-01-29 02:13:01 6922D7ED84AE102504174922D5D42F49 238288 ----a-w- C:\Windows\System32\iedkcs32.dll

2014-01-29 02:12:59 EC7038154490E50ACD405A022F51B204 83456 ----a-w- C:\Windows\System32\inseng.dll

2014-01-29 02:12:59 AB3B2CA52AFB695AFCDD2620A21E5B21 24576 ----a-w- C:\Windows\System32\licmgr10.dll

2014-01-29 02:12:59 9A33FDDD687A836A1FD478B43C5A95FD 151552 ----a-w- C:\Windows\System32\iexpress.exe

2014-01-29 02:12:59 71144A47CD02FDDC77DDF5EB5315767F 523776 ----a-w- C:\Windows\System32\msfeeds.dll

2014-01-29 02:12:59 6A92CEC8532056791C6832B2725D170D 139264 ----a-w- C:\Windows\System32\wextract.exe

2014-01-29 02:12:59 6A794439B6612E43FEDE0217C919B652 454656 ----a-w- C:\Windows\System32\vbscript.dll

2014-01-29 02:12:59 64831CAD496A073398853A34A5813675 69632 ----a-w- C:\Windows\System32\mshtmled.dll

2014-01-29 02:12:59 03B3541AE6986602CF9CB5B3AD169C33 208384 ----a-w- C:\Windows\System32\webcheck.dll

2014-01-29 02:12:58 ABDFC692D9FE43E2BA8FE6CB5A8CB95A 13312 ----a-w- C:\Windows\System32\mshta.exe

2014-01-29 02:12:58 4BCC7EB5F20840DA67943BD86AE95735 56832 ----a-w- C:\Windows\System32\pngfilt.dll

2014-01-29 02:12:58 1200D9C7DB0ADC1B8143A0A9921BF7DA 127488 ----a-w- C:\Windows\System32\occache.dll

2014-01-29 02:12:57 F7B6E341F4B1947BEC0E14EEBE3C627E 111616 ----a-w- C:\Windows\System32\IEAdvpack.dll

2014-01-29 02:12:57 887055A3C8DD6C87D200D11EAFDBD45B 74240 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe

2014-01-29 02:12:57 779E142FE2159935E78C0FA2E190FF1E 610304 ----a-w- C:\Windows\System32\jscript.dll

2014-01-29 02:12:57 6EB0B7301E00F717BD68A742D1391FAF 36352 ----a-w- C:\Windows\System32\imgutil.dll

2014-01-29 02:12:57 5EC13202430A3EB68DFF44CF1FEEA2BE 61952 ----a-w- C:\Windows\System32\MshtmlDac.dll

2014-01-29 02:12:57 55969AADF0210A614700F89B48976F68 43008 ----a-w- C:\Windows\System32\msfeedsbs.dll

2014-01-29 02:12:57 53FC62C51CB18C9100A7DFAF2D2A6C47 12800 ----a-w- C:\Windows\System32\msfeedssync.exe

2014-01-29 02:12:57 1AFBAA54BDF637F69B8E02A5578286B0 116736 ----a-w- C:\Windows\System32\iepeers.dll

2014-01-29 02:12:56 AE6A2C5ECD3E96556E22F12816842F60 48640 ----a-w- C:\Windows\System32\mshtmler.dll

2014-01-29 02:12:56 83F49FD1BC0A999B006D564C540C7258 86016 ----a-w- C:\Windows\System32\iesysprep.dll

2014-01-28 18:24:35 EE7CB55F77465CDAC4C80F587FF7C278 1796096 ----a-w- C:\Windows\System32\authui.dll

2014-01-28 18:24:35 E9BB0CD09DA17C71FD1B9954D75AEEF7 168960 ----a-w- C:\Windows\System32\credui.dll

2014-01-28 18:24:35 4BCC63ED1C3D15B2635A8AE2B854B3EB 152576 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll

2014-01-28 18:13:47 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\System32\msieftp.dll

2014-01-28 18:13:18 AA6F6457116B559B76BC6A012CB4C293 247808 ----a-w- C:\Windows\System32\schannel.dll

2014-01-28 18:12:55 EF6950D7B24AAF4E477065F5455DD4F8 1038848 ----a-w- C:\Windows\System32\lsasrv.dll

2014-01-28 18:12:54 BD6B9BC84D004C6BEE89CF7BDB95E1FC 99840 ----a-w- C:\Windows\System32\sspicli.dll

2014-01-28 18:12:54 AD7FB087A238883D1618F29F7BBBD584 220160 ----a-w- C:\Windows\System32\ncrypt.dll

2014-01-28 18:12:52 803B370865D907EA21DC0C2B6A8936B5 22016 ----a-w- C:\Windows\System32\lsass.exe

2014-01-28 18:12:52 372948BB5E41CE42341C4398DE572E56 22016 ----a-w- C:\Windows\System32\secur32.dll

2014-01-28 18:12:51 D89077E2E1C88A29C57F21FAD28DAC45 15872 ----a-w- C:\Windows\System32\sspisrv.dll

2014-01-28 18:11:51 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\System32\imagehlp.dll

2014-01-28 18:11:41 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\System32\wscript.exe

2014-01-28 18:11:41 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\System32\wshom.ocx

2014-01-28 18:11:40 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\System32\scrrun.dll

2014-01-28 18:11:39 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\System32\cscript.exe

2014-01-28 18:11:24 E9504E484076585F6DA3C59F0E20E122 417792 ----a-w- C:\Windows\System32\WMPhoto.dll

2014-01-28 18:10:35 4EC2C3B15B9EC41AD0D6CD918D20376E 2048 ----a-w- C:\Windows\System32\tzres.dll

2014-01-28 18:08:15 1E882889A4314D6DF5DED4F6EC994E72 2349056 ----a-w- C:\Windows\System32\win32k.sys

2014-01-28 18:08:01 5A775CAE7CCCAC581C05B8D2C92C0DF1 305152 ----a-w- C:\Windows\System32\gdi32.dll

2014-01-28 18:07:50 B9C54120F46392100478F58F374E5709 679424 ----a-w- C:\Windows\System32\IKEEXT.DLL

2014-01-28 18:07:48 F0D0E883EBBDC7615DC9EDEA0FFB2817 216576 ----a-w- C:\Windows\System32\FWPUCLNT.DLL

2014-01-28 18:07:48 CE2A48CD0D2B39FB77FA4797C6434E71 656896 ----a-w- C:\Windows\System32\nshwfp.dll

2014-01-28 18:07:34 CC09E0C9A2D89C6E71D093DC8BD121B7 1168384 ----a-w- C:\Windows\System32\crypt32.dll

====== C:\Windows\system32\drivers =====

2014-01-29 13:59:09 BFE2A154BC197656ACA0FF917564406D 64168 ----a-w- C:\Windows\System32\drivers\aswStm.sys

2014-01-29 13:59:08 1B0662514A68C3A42E60D240C5ABEF28 180248 ----a-w- C:\Windows\System32\drivers\aswVmm.sys

2014-01-29 13:59:07 8CD8710457FCC1CDE88CBFA3AA119B92 775952 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2014-01-29 13:59:04 C1F95C9481F46B96E23A276639C55AC9 410784 ----a-w- C:\Windows\System32\drivers\aswSP.sys

2014-01-29 13:59:03 F385467DF95D0A73775CB3B076B8B969 49944 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys

2014-01-29 13:59:02 61953E5E1FFAEAF246A610BEE2554879 67824 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2014-01-29 13:59:01 2206985EF126AB90F3D7F1A020589DC9 79720 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2014-01-28 18:13:16 D7C760D57B1656DD748B9E4AB6CB5A51 136640 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2014-01-28 18:13:16 85449EEBE8F8EBD6481EFBF0F352B4EB 369848 ----a-w- C:\Windows\System32\drivers\cng.sys

2014-01-28 18:13:11 F286830298323272260332D6ABC905C1 67520 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2014-01-28 18:08:06 EB6137D696A9B4E9718AC6F8641CB4C9 177152 ----a-w- C:\Windows\System32\drivers\portcls.sys

2014-01-28 18:08:06 9842041E2F5ACE1E2F5FB4EF02053DC8 81408 ----a-w- C:\Windows\System32\drivers\drmk.sys

2014-01-28 18:07:56 5DBD4F73E2A52FEED61DBAB3752E329C 240576 ----a-w- C:\Windows\System32\drivers\netio.sys

2014-01-28 18:06:24 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2014-01-28 18:06:24 EC2C5AF37B76D7B58C642CB74423DB7A 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys

2014-01-28 18:06:24 D40855F89B69305140BBD7E9A3BA2DA6 43520 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2014-01-28 18:06:24 0803FBA9FE829D61AE26EC0BCC910C46 76288 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2014-01-28 18:06:23 9828C8D14CC2676421778F0DE638CF97 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2014-01-28 18:06:23 800AABFD625EEFF899F7E5496BDE37AB 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2014-01-28 18:06:23 74F805AB12EB0E3E49E469F19FF02640 6016 ----a-w- C:\Windows\System32\drivers\usbd.sys

====== C:\Windows\Tasks ======

2014-01-31 03:33:11 D3F98456B1EDDAEE19EF8FFB2384E1F8 3396 ----a-w- C:\Windows\system32\Tasks\Install_SSD

2014-01-30 17:24:33 08A5CBBFB7800E7B7C26B9978556845F 3044 ----a-w- C:\Windows\system32\Tasks\PassWidget Update

2014-01-30 17:24:25 820F556D9E0CB0D3E63A9D8888E3C2F1 378 ----a-w- C:\Windows\Tasks\PassWidget Update.job

2014-01-29 22:28:32 89C5613414DDB996BCE9C11A3803D0F8 3088 ----a-w- C:\Windows\system32\Tasks\{A2BDF64C-A442-4806-A954-A31C9516C370}

2014-01-29 13:59:44 4F28E8EED716C990D7B988D7350B5233 4182 ----a-w- C:\Windows\system32\Tasks\avast! Emergency Update

2014-01-13 22:28:25 69A282A7293F02873D323B356E18D715 3826 ----a-w- C:\Windows\system32\Tasks\DTReg

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-01-30 21:23:39 -------- d-----w- C:\Program Files\trend micro

2014-01-30 17:24:21 -------- d-----w- C:\Program Files\Pass-Widget

2014-01-30 01:27:16 -------- d-----w- C:\Program Files\Lavasoft

2014-01-30 01:23:13 -------- d-----w- C:\Program Files\Common Files\Lavasoft

======= C: =====

====== C:\Users\Jolanda Resier\AppData\Roaming ======

2014-01-31 03:10:14 EBB503CAAFF9F403EEAF584A1F41C635 2272 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat

2014-01-31 01:54:43 -------- d-----w- C:\Users\Jolanda Resier\AppData\Local\ElevatedDiagnostics

2014-01-30 15:57:01 781DF97ACD1A977D94D5132494360DCA 109600 ----a-w- C:\Users\Jolanda Resier\AppData\Local\GDIPFONTCACHEV1.DAT

2014-01-30 03:59:08 -------- d-----w- C:\Users\Jolanda Resier\AppData\Roaming\LavasoftStatistics

2014-01-30 01:49:43 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014

2014-01-30 01:25:15 -------- d-----w- C:\Users\Jolanda Resier\AppData\Roaming\Lavasoft

2014-01-30 01:23:26 -------- d-----w- C:\Users\Jolanda Resier\AppData\Local\Avg2014

2014-01-29 14:28:15 -------- d-----w- C:\Users\Jolanda Resier\AppData\Roaming\TuneUp Software

====== C:\Users\Jolanda Resier ======

2014-01-31 03:15:50 -------- d-----r- C:\Users\Jolanda Resier\Documents

2014-01-31 01:41:58 -------- d-----r- C:\Users\Jolanda Resier\Favorites

2014-01-31 01:12:56 -------- d-----r- C:\Users\Jolanda Resier\Desktop

2014-01-30 17:37:42 -------- d-----w- C:\ProgramData\IePluginService

2014-01-30 17:36:57 -------- d-----w- C:\ProgramData\WPM

2014-01-30 01:17:09 -------- d-----w- C:\ProgramData\Lavasoft

2014-01-28 18:34:04 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

====== C: exe-files ==

2014-01-31 03:21:40 9911EF198C1A01F11D8D6F777F9A9261 1070088 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\install_flashplayer12x32axau_mssa_aaa_aih.exe

2014-01-31 02:31:19 75B0D4CC6E1BFD6344EEF198270A773D 36532904 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\32.0.1700.102\32.0.1700.102_chrome_installer.exe

2014-01-31 02:28:28 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateSetup.exe

2014-01-31 02:28:28 600B1A4BCC0823A96DC7B86F005ADBB8 51080 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateOnDemand.exe

2014-01-31 02:28:27 CA0A340ABCF0C14A09691CBC90186AB4 51080 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateBroker.exe

2014-01-31 02:28:26 9CCBA5E2489E603BB1578D1D541252A8 273800 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleCrashHandler64.exe

2014-01-31 02:28:26 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdate.exe

2014-01-31 02:28:26 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleCrashHandler.exe

2014-01-30 21:23:42 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Jolanda Resier.exe

2014-01-30 19:42:47 E6633716EE2AC06BCB4A58FF993015F3 155976 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\instup.exe

2014-01-30 19:42:47 D11625C81FB88DC8A607BB9D76920A3D 2966792 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\aswOfferTool.exe

2014-01-30 19:42:47 B8FA402B238DB49C35CAF711D5BC9843 1093216 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\avBugReport.exe

2014-01-30 19:41:55 E6633716EE2AC06BCB4A58FF993015F3 155976 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\instup.exe

2014-01-30 19:41:24 B8FA402B238DB49C35CAF711D5BC9843 1093216 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\avBugReport.exe

2014-01-30 17:37:42 D1EBE337782B1F32A52C0C80A98FC08B 508016 ----a-w- C:\ProgramData\IePluginService\PluginService.exe

2014-01-30 17:36:58 39531D54F2AFA4473BB4A97F64E99271 493568 ----a-w- C:\ProgramData\WPM\wprotectmanager.exe

2014-01-30 17:24:06 6AA0AF80E07736DEFC8361811C582685 160135 ----a-w- C:\Program Files\Pass-Widget\Uninstall.exe

2014-01-30 17:23:55 3CC34C3F48B39E081FDCEF02C472C5F3 251904 ----a-w- C:\Program Files\Pass-Widget\passwup.exe

2014-01-30 17:22:47 AA16CCAE722A70A380ACF4AE0693ACFD 8521 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W46S49UL\OKitSpaceSetup[1].exe

2014-01-30 17:22:47 511942E0C59CFE4419604A2E070E79CC 8192 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\OKitSpaceSetup.exe

2014-01-30 17:22:21 8A27DB882C784B0F205B1FF72C72F841 4624785 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\systemspeedup.exe

2014-01-30 17:21:45 9A7348E0F5C4A56455C1533E8B4EB313 882672 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\vit_sweet-page.exe

2014-01-30 12:06:34 6BF0239E4E680068A1D93FDA830DAF71 603988 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\instloffer.exe

2014-01-30 01:25:43 C54B767CA838D6DD39CABC8DF017C34C 4048592 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\5677a7de-6b0f-45d6-b279-9fa4d36c1159.exe

2014-01-29 22:03:53 4F93663C1849D7723F160586F84465DA 178064 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\NGM.exe

2014-01-29 13:20:51 0E1D755673453108415F802C90704327 469504 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe

2014-01-29 04:04:34 67FF24E267534F997E4874BBD30C941C 12607144 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\32.0.1700.102\32.0.1700.102_30.0.1599.101_chrome_updater.exe

2014-01-29 02:22:22 9AED8E824CF5FAAB67957EDBC5512060 164864 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe

2014-01-29 02:13:04 C8A8321292A459B0A17FB39A782A5C74 806096 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2014-01-29 02:13:02 CC02FE4520CA886508069245D9A6962F 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe

2014-01-29 02:13:02 2AFAE62B727EE7190450D4A14C287422 359632 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe

2014-01-29 02:12:57 7F7F391491C315A4A72EFCAC0D34FA93 25600 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe

2014-01-28 22:58:06 CA0A340ABCF0C14A09691CBC90186AB4 51080 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdateBroker.exe

2014-01-28 22:58:06 600B1A4BCC0823A96DC7B86F005ADBB8 51080 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdateOnDemand.exe

2014-01-28 22:58:04 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdateSetup.exe

2014-01-28 22:57:20 9CCBA5E2489E603BB1578D1D541252A8 273800 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler64.exe

2014-01-28 22:57:20 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe

2014-01-28 22:57:15 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdate.exe

2014-01-28 22:56:40 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.3\GoogleUpdateSetup.exe

2014-01-28 18:31:57 3842C46F2FBC7522EF625F1833530804 145408 ----a-w- C:\Users\Jolanda Resier\AppData\LocalLow\Sun\Java\jre1.7.0_51\lzma.exe

=== C: other files ==

2014-01-30 17:29:39 099D2BB54063A342296D39A199180554 1439487 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\fullpackage_temp1391102550\tmp\package2.zip

2014-01-30 17:29:27 89C1D511BADC8074138F237D89D381EB 325038 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx

2014-01-30 17:24:21 3D956C0AA82A29DD8AB9B4CD3F5E6FE2 9789 ----a-w- C:\Program Files\Pass-Widget\150.xpi

2014-01-30 17:23:28 1834F81E48E1D06EDFB9F6A55C48E5B8 17922 ----a-w- C:\Program Files\Pass-Widget\150.crx

2014-01-30 17:22:49 DAE050612482639114C4DBE70EAD6B58 1877249 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\fullpackage_temp1391102550\package1.zip

2014-01-30 00:10:46 CC20AA0EE104065B6FA346B9D048485A 32128 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfpfdjclhabpjncikdngdoldjjjegnbe\2.1.2_0\american-racing-2-3d.crx

2014-01-29 13:59:09 BFE2A154BC197656ACA0FF917564406D 64168 ----a-w- C:\Windows\System32\drivers\aswStm.sys

2014-01-29 13:59:08 1B0662514A68C3A42E60D240C5ABEF28 180248 ----a-w- C:\Windows\System32\drivers\aswVmm.sys

2014-01-29 13:59:07 8CD8710457FCC1CDE88CBFA3AA119B92 775952 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2014-01-29 13:59:04 C1F95C9481F46B96E23A276639C55AC9 410784 ----a-w- C:\Windows\System32\drivers\aswSP.sys

2014-01-29 13:59:03 F385467DF95D0A73775CB3B076B8B969 49944 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys

2014-01-29 13:59:02 61953E5E1FFAEAF246A610BEE2554879 67824 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2014-01-29 13:59:01 2206985EF126AB90F3D7F1A020589DC9 79720 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2014-01-28 18:13:16 D7C760D57B1656DD748B9E4AB6CB5A51 136640 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2014-01-28 18:13:16 85449EEBE8F8EBD6481EFBF0F352B4EB 369848 ----a-w- C:\Windows\System32\drivers\cng.sys

2014-01-28 18:13:11 F286830298323272260332D6ABC905C1 67520 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2014-01-28 18:08:15 1E882889A4314D6DF5DED4F6EC994E72 2349056 ----a-w- C:\Windows\System32\win32k.sys

2014-01-28 18:08:06 EB6137D696A9B4E9718AC6F8641CB4C9 177152 ----a-w- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_neutral_df2ea65e936720f7\portcls.sys

2014-01-28 18:08:06 EB6137D696A9B4E9718AC6F8641CB4C9 177152 ----a-w- C:\Windows\System32\drivers\portcls.sys

2014-01-28 18:08:06 9842041E2F5ACE1E2F5FB4EF02053DC8 81408 ----a-w- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_neutral_df2ea65e936720f7\drmk.sys

2014-01-28 18:08:06 9842041E2F5ACE1E2F5FB4EF02053DC8 81408 ----a-w- C:\Windows\System32\drivers\drmk.sys

2014-01-28 18:07:56 5DBD4F73E2A52FEED61DBAB3752E329C 240576 ----a-w- C:\Windows\System32\drivers\netio.sys

2014-01-28 18:06:24 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbhub.sys

2014-01-28 18:06:24 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usb.inf_x86_neutral_4232097e28daf017\usbhub.sys

2014-01-28 18:06:24 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2014-01-28 18:06:24 EC2C5AF37B76D7B58C642CB74423DB7A 284672 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbport.sys

2014-01-28 18:06:24 EC2C5AF37B76D7B58C642CB74423DB7A 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys

2014-01-28 18:06:24 D40855F89B69305140BBD7E9A3BA2DA6 43520 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbehci.sys

2014-01-28 18:06:24 D40855F89B69305140BBD7E9A3BA2DA6 43520 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2014-01-28 18:06:24 0803FBA9FE829D61AE26EC0BCC910C46 76288 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usb.inf_x86_neutral_4232097e28daf017\usbccgp.sys

2014-01-28 18:06:24 0803FBA9FE829D61AE26EC0BCC910C46 76288 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2014-01-28 18:06:23 9828C8D14CC2676421778F0DE638CF97 20480 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbohci.sys

2014-01-28 18:06:23 9828C8D14CC2676421778F0DE638CF97 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2014-01-28 18:06:23 800AABFD625EEFF899F7E5496BDE37AB 24064 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbuhci.sys

2014-01-28 18:06:23 800AABFD625EEFF899F7E5496BDE37AB 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2014-01-28 18:06:23 74F805AB12EB0E3E49E469F19FF02640 6016 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbd.sys

2014-01-28 18:06:23 74F805AB12EB0E3E49E469F19FF02640 6016 ----a-w- C:\Windows\System32\drivers\usbd.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-4027270910-661022722-644475913-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler"

"Pando Media Booster"="C:\Program Files\Pando Networks\Media Booster\PMB.exe"

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler"

"Pando Media Booster"="C:\Program Files\Pando Networks\Media Booster\PMB.exe"

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\(default)]

"command"=""

"hkey"="HKLM"

"item"="(default)"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Ad-Aware Browsing Protection]

"command"="\"C:\\ProgramData\\Ad-Aware Browsing Protection\\adawarebp.exe\""

"hkey"="HKLM"

"item"="Ad-Aware Browsing Protection"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdAwareTray]

"command"="\"C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.1.5354.0\\AdAwareTray.exe\""

"hkey"="HKLM"

"item"="AdAwareTray"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ArcSoft Connection Service]

"command"="C:\\Program Files\\Common Files\\ArcSoft\\Connection Service\\Bin\\ACDaemon.exe"

"hkey"="HKLM"

"item"="ArcSoft Connection Service"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]

"command"="\"C:\\Program Files\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

"hkey"="HKLM"

"item"="BCSSync"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ClamWin]

"command"="\"C:\\Program Files\\ClamWin\\bin\\ClamTray.exe\" --logon"

"hkey"="HKLM"

"item"="ClamWin"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DATAMNGR]

"command"="C:\\PROGRA~1\\WIA6EB~1\\Datamngr\\DATAMN~1.EXE"

"hkey"="HKLM"

"item"="DATAMNGR"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]

"command"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"

"hkey"="HKLM"

"item"="HP Software Update"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\hpqSRMon]

"command"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqSRMon.exe"

"hkey"="HKLM"

"item"="hpqSRMon"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSC]

"command"="\"C:\\Program Files\\Microsoft Security Client\\msseces.exe\" -hide -runkey"

"hkey"="HKLM"

"item"="MSC"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Nikon Transfer Monitor]

"command"="C:\\Program Files\\Common Files\\Nikon\\Monitor\\NkMonitor.exe"

"hkey"="HKLM"

"item"="Nikon Transfer Monitor"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Search Protection]

"command"="C:\\ProgramData\\Search Protection\\SearchProtection.exe"

"hkey"="HKLM"

"item"="Search Protection"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TkBellExe]

"command"="\"c:\\program files\\real\\realplayer\\Update\\realsched.exe\" -osboot"

"hkey"="HKLM"

"item"="TkBellExe"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

==== Startup Folders ======================

2011-03-31 18:58:39 2069 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [28-01-2014 18:37]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [28-03-2011 14:32]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [28-03-2011 14:32]

C:\Windows\tasks\PassWidget Update.job --a------ C:\Program Files\Pass-Widget\passwup.exe [30-01-2014 18:24]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\system32\tasks\DTReg" [C:\Users\Jolanda Resier\AppData\Roaming\DefaultTab\DefaultTab\DTReg.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\Install_SSD" [C:\Users\Jolanda]

"C:\Windows\system32\tasks\PassWidget Update" [C:\Program Files\Pass-Widget\passwup.exe]

"C:\Windows\system32\tasks\RealUpgradeLogonTaskS-1-5-21-4027270910-661022722-644475913-1001" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\system32\tasks\RealUpgradeScheduledTaskS-1-5-21-4027270910-661022722-644475913-1001" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\system32\tasks\Run RoboForm TaskBar Icon" [C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe]

"C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]

"C:\Windows\system32\tasks\User_Feed_Synchronization-{98BD8F3E-E746-4F16-8D2A-42DBE591DA0B}" [C:\Windows\system32\msfeedssync.exe]

"C:\Windows\system32\tasks\{14029CE4-12A6-47E4-81F3-DAECB7FE72EB}" [E:\Nikon Transfer\WMFDist.exe]

"C:\Windows\system32\tasks\{46E36538-E172-430C-9463-EC359DFF60B9}" [C:\Users\Jolanda Resier\Contacts\Downloads\install_flashplayer10_mssd_aih.exe]

"C:\Windows\system32\tasks\{7888A96D-1C3F-441D-96C6-4F34BC9821B1}" [C:\Users\Jolanda Resier\Contacts\Downloads\install_flashplayer10_mssd_aih.exe]

"C:\Windows\system32\tasks\{B808D153-9F0E-46CC-A5B3-78EDFF6D716F}" [C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe]

"C:\Windows\system32\tasks\{D2A6F8A0-C576-478E-A264-1E5B10600354}" [C:\Users\Jolanda Resier\Contacts\Downloads\install_flashplayer10_mssd_aih.exe]

"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"="C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext" [24-11-2011 12:26]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"{f9820cf4-de9a-441e-b465-d0219fdd147e}"="C:\Program Files\Pass-Widget\150.xpi" [30-01-2014 18:24]

==== Firefox Extensions ======================

ExtDir: C:\Users\Jolanda Resier\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

- 1ClickMovieDownloader - %ExtDir%\clickmoviedownloader@clickmoviedownloader.com.xpi

==== Firefox Plugins ======================

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

bcjagnifjocnddgeknajocbkkhlgibem - C:\Program Files\Chrome\surfcanyon.crx[22-07-2011 17:46]

dhpigdnmefdjeemeldnnmbckmpogpbji - C:\Program Files\1clickmoviedownloader.com\clickmoviedownloader10.crx[]

fbdagnimlohkpamglloopgfnoiijpmoj - C:\Program Files\Pass-Widget\150.crx[30-01-2014 18:23]

gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[29-01-2014 14:57]

jfmjfhklogoienhpfnppmbcbjfjnkonk - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx[24-11-2011 12:26]

kdidombaedgpfiiedeimiebkmbilgmlc - C:\Program Files\DefaultTab\DefaultTab.crx[16-09-2013 15:03]

niapdbllcanepiiimjjndipklodoedlc - No path found[]

oejkcgajlodefenbbjdnaiahmbnnoole - C:\Program Files\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx[]

pgafcinpmmpklohkojmllohd****efph - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx[]

pkndmigholgfjlniaohblojbhgjbkakn - C:\Users\Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx[14-01-2014 00:20]

Surf Canyon - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcjagnifjocnddgeknajocbkkhlgibem

Improved sequel. 12 new courses 45 more events better handling upgrades. - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfpfdjclhabpjncikdngdoldjjjegnbe

Extended Protection - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml

PassWidget - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbdagnimlohkpamglloopgfnoiijpmoj

avast Online Security - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

RealPlayer HTML5Video Downloader Extension - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk

DefaultTab - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc

Google Wallet - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Lightning speedDial - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkndmigholgfjlniaohblojbhgjbkakn

DefaultTab - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc

undetermined - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx

==== C:\zoek_backup content ======================

C:\zoek_backup (files=68 folders=31 6528163 bytes)

==== EOF on vr 31-01-2014 at 21:43:01,79 ======================

- - - Updated - - -

Zoek.exe v5.0.0.0 Updated 31-January-2014

Tool run by Jolanda Resier on vr 31-01-2014 at 21:30:33,74.

Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Jolanda Resier\Documents\Downloads\zoek (4).exe [scan all users] [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-01-31-044006.log 50389 bytes

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"DATAMNGR"=-

"Search Protection"=-

""=-

==== Deleting Files \ Folders ======================

C:\Program Files\SupTab not found

C:\Users\Jolanda Resier\AppData\Roaming\DefaultTab not found

C:\ProgramData\Search Protection not found

C:\ProgramData\Search Protection not found

C:\ProgramData\blekko toolbars not found

C:\Users\Jolanda Resier\AppData\Roaming\SecureSearch not found

C:\Users\Jolanda Resier\AppData\Roaming\Systweak not found

C:\Program Files\Yontoo not found

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2014-01-31 14:45:51 9F3EBB4043FE60711A738650C025201D 106911150 ----a-w- C:\Windows\MEMORY.DMP

2014-01-29 13:57:49 0245D0889C3443F5DC9194558583FE59 43152 ----a-w- C:\Windows\avastSS.scr

====== C:\Users\JOLAND~1\AppData\Local\Temp ====

2014-01-31 03:21:40 9911EF198C1A01F11D8D6F777F9A9261 1070088 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\install_flashplayer12x32axau_mssa_aaa_aih.exe

2014-01-31 02:29:24 A412399D2431857141FAB8FA598EC426 166792 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\psmachine.dll

2014-01-31 02:29:24 A32E19DB8623C6E50DF6F8C0768881BE 166792 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\psuser.dll

2014-01-31 02:29:23 C36444D7301A8C881FC7296B092609C7 578440 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\npGoogleUpdate3.dll

2014-01-31 02:28:28 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateSetup.exe

2014-01-31 02:28:28 A7495E342A2EE0160812AC856C11F6CF 847752 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\goopdate.dll

2014-01-31 02:28:28 600B1A4BCC0823A96DC7B86F005ADBB8 51080 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateOnDemand.exe

2014-01-31 02:28:27 FBF1CE5A3D017271CF979A3DFF872BFB 26112 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateHelper.msi

2014-01-31 02:28:27 CA0A340ABCF0C14A09691CBC90186AB4 51080 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateBroker.exe

2014-01-31 02:28:26 9CCBA5E2489E603BB1578D1D541252A8 273800 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleCrashHandler64.exe

2014-01-31 02:28:26 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdate.exe

2014-01-31 02:28:26 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleCrashHandler.exe

2014-01-30 19:42:47 E6633716EE2AC06BCB4A58FF993015F3 155976 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\instup.exe

2014-01-30 19:42:47 DC730F5EA07F8CE98E49BBBD110EAA14 3167112 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\HTMLayout.dll

2014-01-30 19:42:47 D11625C81FB88DC8A607BB9D76920A3D 2966792 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\aswOfferTool.exe

2014-01-30 19:42:47 BCDEA07CD91EF85BBCC869DF4906C8C1 7201640 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\Instup.dll

2014-01-30 19:42:47 B8FA402B238DB49C35CAF711D5BC9843 1093216 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\avBugReport.exe

2014-01-30 19:41:55 E6633716EE2AC06BCB4A58FF993015F3 155976 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\instup.exe

2014-01-30 19:41:53 DC730F5EA07F8CE98E49BBBD110EAA14 3167112 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\HTMLayout.dll

2014-01-30 19:41:44 BCDEA07CD91EF85BBCC869DF4906C8C1 7201640 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\Instup.dll

2014-01-30 19:41:24 B8FA402B238DB49C35CAF711D5BC9843 1093216 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\avBugReport.exe

2014-01-30 17:22:47 511942E0C59CFE4419604A2E070E79CC 8192 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\OKitSpaceSetup.exe

2014-01-30 17:22:21 8A27DB882C784B0F205B1FF72C72F841 4624785 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\systemspeedup.exe

2014-01-30 17:21:45 9A7348E0F5C4A56455C1533E8B4EB313 882672 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\vit_sweet-page.exe

2014-01-30 12:06:34 6BF0239E4E680068A1D93FDA830DAF71 603988 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\instloffer.exe

2014-01-30 01:25:43 C54B767CA838D6DD39CABC8DF017C34C 4048592 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\5677a7de-6b0f-45d6-b279-9fa4d36c1159.exe

2014-01-29 22:03:53 4F93663C1849D7723F160586F84465DA 178064 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\NGM.exe

2014-01-29 22:03:52 8DB30A62D73A072E601C80AE257A480C 399704 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\NGMResource.dll

2014-01-29 22:03:52 0AF2FC1A37EFDD0E3F5493B43B97026C 911256 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\NGMDll.dll

2014-01-23 00:54:20 9E343AE10F8B2F8C75B957E065D004D4 100864 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\fullpackage_temp1391102550\QQBrowserFrame.dll

2014-01-23 00:54:20 2EEE15B1927EADFF45013E94B0CB0D94 131640 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\fullpackage_temp1391102550\QQBrowser.exe

====== Java Cache =====

====== C:\Windows\system32 =====

2014-01-30 15:54:49 ABE0D5749C3C41510121241112389C91 409752 ----a-w- C:\Windows\System32\FNTCACHE.DAT

2014-01-29 13:20:58 C74500A1BCB4113A7310295DD3FA4440 2724864 ----a-w- C:\Windows\System32\mshtml.tlb

2014-01-29 13:20:57 A6B0B7F006F1CB84B48981499F6B7210 208896 ----a-w- C:\Windows\System32\ie4uinit.exe

2014-01-29 13:20:56 3D43EAC957F2F797BE82CF6B04A933F8 43008 ----a-w- C:\Windows\System32\jsproxy.dll

2014-01-29 13:20:55 BE8480727660354B93E32B0ED709BF0E 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll

2014-01-29 13:20:55 355BF103E2CF862B00EEB3731E25E802 440832 ----a-w- C:\Windows\System32\ieui.dll

2014-01-29 13:20:54 491B4F34BA2CD7EFCAC934C7EFF48F52 61952 ----a-w- C:\Windows\System32\iesetup.dll

2014-01-29 13:20:54 36D150C4F80DF88ED97D14598C24692F 32768 ----a-w- C:\Windows\System32\iernonce.dll

2014-01-29 13:20:54 08881C59F795C356DE12067E44FFD260 703488 ----a-w- C:\Windows\System32\ieapfltr.dll

2014-01-29 13:20:53 C8AF3CF3030C3962B978FA3871D759FF 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe

2014-01-29 13:20:53 7C7FF72C48AF9DD8CA7ABA2EA97A6670 51200 ----a-w- C:\Windows\System32\ieetwproxystub.dll

2014-01-29 13:20:53 3DE9521C90F7CC4413CBF6569A8B85B5 112128 ----a-w- C:\Windows\System32\ieUnatt.exe

2014-01-29 13:20:53 35DE59C975A0C97E8DBBE095BCC3644E 553472 ----a-w- C:\Windows\System32\jscript9diag.dll

2014-01-29 13:20:51 927FA6456AD6D7630F6854828D2FD16B 1820160 ----a-w- C:\Windows\System32\wininet.dll

2014-01-29 13:20:50 B2E1F7B212502BB49AAD4EFAD37C5CF5 2166784 ----a-w- C:\Windows\System32\iertutil.dll

2014-01-29 13:20:50 84EAF0A08C7742697816E148C066D757 1928192 ----a-w- C:\Windows\System32\inetcpl.cpl

2014-01-29 13:20:50 0763C5D8660436D4D961F72609E33BBE 1157632 ----a-w- C:\Windows\System32\urlmon.dll

2014-01-29 13:20:48 4B638CE3DAA3A082E576C0DDF9D635D4 11221504 ----a-w- C:\Windows\System32\ieframe.dll

2014-01-29 13:20:46 BFAFE990C4A191E83843362B5AC64A9B 17112576 ----a-w- C:\Windows\System32\mshtml.dll

2014-01-29 13:20:46 A60A222D3126DD9E380F9D8B651BC13D 4243968 ----a-w- C:\Windows\System32\jscript9.dll

2014-01-29 02:22:28 6C4B2E1A25841077084EB9F76FF6FFA7 11410432 ----a-w- C:\Windows\System32\wmp.dll

2014-01-29 02:22:22 02DF0628BE8B64B84D50FBE53549AA3B 12625408 ----a-w- C:\Windows\System32\wmploc.DLL

2014-01-29 02:13:05 C611C6ED5ECFE4608BA79472DFE3D49C 646144 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe

2014-01-29 02:13:05 AD27563BC16AB1EAACAE3033E99C2F78 194048 ----a-w- C:\Windows\System32\elshyph.dll

2014-01-29 02:13:04 C1A6E565B2782C09BC40AD749B46D9ED 71680 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe

2014-01-29 02:13:04 9B8701A380CEE1B05D651B4ED4048C8F 645120 ----a-w- C:\Windows\System32\jsIntl.dll

2014-01-29 02:13:04 298FDE634538B62CEEEC266D8773B21A 182272 ----a-w- C:\Windows\System32\msls31.dll

2014-01-29 02:13:03 44D5C650C971910827EA65B4D989ED94 164864 ----a-w- C:\Windows\System32\msrating.dll

2014-01-29 02:13:02 FB0D1CC2911A0645DDA6C0608473EB55 34816 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll

2014-01-29 02:13:02 F862CD08F1AD4EE39BD506853F3C6103 16284 ----a-w- C:\Windows\System32\ieuinit.inf

2014-01-29 02:13:02 D9F12F54E3B5A092F1D5F191F5286E53 337408 ----a-w- C:\Windows\System32\html.iec

2014-01-29 02:13:02 CFCE4EFF1D6D909EE2EA3AFCB8F1E677 233472 ----a-w- C:\Windows\System32\url.dll

2014-01-29 02:13:02 C3B0DBD04CC18574B0706CA119902474 367104 ----a-w- C:\Windows\System32\dxtmsft.dll

2014-01-29 02:13:02 C17139EAF939964142C7A1AEEE02DC81 616104 ----a-w- C:\Windows\System32\ieapfltr.dat

2014-01-29 02:13:02 9E170B0AF156B478BD2B1FD6A2250C9E 62464 ----a-w- C:\Windows\System32\tdc.ocx

2014-01-29 02:13:02 4F032F1FDEFEA5EC8EEA3562643B5EE8 69120 ----a-w- C:\Windows\System32\icardie.dll

2014-01-29 02:13:02 2AF48780D879AFC43733159CB29CD8BD 1051136 ----a-w- C:\Windows\System32\mshtmlmedia.dll

2014-01-29 02:13:02 08B56CF57B7CE44315034247CC76D0F1 244736 ----a-w- C:\Windows\System32\dxtrans.dll

2014-01-29 02:13:01 6922D7ED84AE102504174922D5D42F49 238288 ----a-w- C:\Windows\System32\iedkcs32.dll

2014-01-29 02:12:59 EC7038154490E50ACD405A022F51B204 83456 ----a-w- C:\Windows\System32\inseng.dll

2014-01-29 02:12:59 AB3B2CA52AFB695AFCDD2620A21E5B21 24576 ----a-w- C:\Windows\System32\licmgr10.dll

2014-01-29 02:12:59 9A33FDDD687A836A1FD478B43C5A95FD 151552 ----a-w- C:\Windows\System32\iexpress.exe

2014-01-29 02:12:59 71144A47CD02FDDC77DDF5EB5315767F 523776 ----a-w- C:\Windows\System32\msfeeds.dll

2014-01-29 02:12:59 6A92CEC8532056791C6832B2725D170D 139264 ----a-w- C:\Windows\System32\wextract.exe

2014-01-29 02:12:59 6A794439B6612E43FEDE0217C919B652 454656 ----a-w- C:\Windows\System32\vbscript.dll

2014-01-29 02:12:59 64831CAD496A073398853A34A5813675 69632 ----a-w- C:\Windows\System32\mshtmled.dll

2014-01-29 02:12:59 03B3541AE6986602CF9CB5B3AD169C33 208384 ----a-w- C:\Windows\System32\webcheck.dll

2014-01-29 02:12:58 ABDFC692D9FE43E2BA8FE6CB5A8CB95A 13312 ----a-w- C:\Windows\System32\mshta.exe

2014-01-29 02:12:58 4BCC7EB5F20840DA67943BD86AE95735 56832 ----a-w- C:\Windows\System32\pngfilt.dll

2014-01-29 02:12:58 1200D9C7DB0ADC1B8143A0A9921BF7DA 127488 ----a-w- C:\Windows\System32\occache.dll

2014-01-29 02:12:57 F7B6E341F4B1947BEC0E14EEBE3C627E 111616 ----a-w- C:\Windows\System32\IEAdvpack.dll

2014-01-29 02:12:57 887055A3C8DD6C87D200D11EAFDBD45B 74240 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe

2014-01-29 02:12:57 779E142FE2159935E78C0FA2E190FF1E 610304 ----a-w- C:\Windows\System32\jscript.dll

2014-01-29 02:12:57 6EB0B7301E00F717BD68A742D1391FAF 36352 ----a-w- C:\Windows\System32\imgutil.dll

2014-01-29 02:12:57 5EC13202430A3EB68DFF44CF1FEEA2BE 61952 ----a-w- C:\Windows\System32\MshtmlDac.dll

2014-01-29 02:12:57 55969AADF0210A614700F89B48976F68 43008 ----a-w- C:\Windows\System32\msfeedsbs.dll

2014-01-29 02:12:57 53FC62C51CB18C9100A7DFAF2D2A6C47 12800 ----a-w- C:\Windows\System32\msfeedssync.exe

2014-01-29 02:12:57 1AFBAA54BDF637F69B8E02A5578286B0 116736 ----a-w- C:\Windows\System32\iepeers.dll

2014-01-29 02:12:56 AE6A2C5ECD3E96556E22F12816842F60 48640 ----a-w- C:\Windows\System32\mshtmler.dll

2014-01-29 02:12:56 83F49FD1BC0A999B006D564C540C7258 86016 ----a-w- C:\Windows\System32\iesysprep.dll

2014-01-28 18:24:35 EE7CB55F77465CDAC4C80F587FF7C278 1796096 ----a-w- C:\Windows\System32\authui.dll

2014-01-28 18:24:35 E9BB0CD09DA17C71FD1B9954D75AEEF7 168960 ----a-w- C:\Windows\System32\credui.dll

2014-01-28 18:24:35 4BCC63ED1C3D15B2635A8AE2B854B3EB 152576 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll

2014-01-28 18:13:47 AFA53BD631FB0509A91A99391209BB70 301568 ----a-w- C:\Windows\System32\msieftp.dll

2014-01-28 18:13:18 AA6F6457116B559B76BC6A012CB4C293 247808 ----a-w- C:\Windows\System32\schannel.dll

2014-01-28 18:12:55 EF6950D7B24AAF4E477065F5455DD4F8 1038848 ----a-w- C:\Windows\System32\lsasrv.dll

2014-01-28 18:12:54 BD6B9BC84D004C6BEE89CF7BDB95E1FC 99840 ----a-w- C:\Windows\System32\sspicli.dll

2014-01-28 18:12:54 AD7FB087A238883D1618F29F7BBBD584 220160 ----a-w- C:\Windows\System32\ncrypt.dll

2014-01-28 18:12:52 803B370865D907EA21DC0C2B6A8936B5 22016 ----a-w- C:\Windows\System32\lsass.exe

2014-01-28 18:12:52 372948BB5E41CE42341C4398DE572E56 22016 ----a-w- C:\Windows\System32\secur32.dll

2014-01-28 18:12:51 D89077E2E1C88A29C57F21FAD28DAC45 15872 ----a-w- C:\Windows\System32\sspisrv.dll

2014-01-28 18:11:51 E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 159232 ----a-w- C:\Windows\System32\imagehlp.dll

2014-01-28 18:11:41 979D74799EA6C8B8167869A68DF5204A 141824 ----a-w- C:\Windows\System32\wscript.exe

2014-01-28 18:11:41 09F65975C1C9793B923BB52A7FA83453 121856 ----a-w- C:\Windows\System32\wshom.ocx

2014-01-28 18:11:40 A3B1D1312602280839A4A2AFBDFD066E 163840 ----a-w- C:\Windows\System32\scrrun.dll

2014-01-28 18:11:39 A3A35EE79C64A640152B3113E6E254E2 126976 ----a-w- C:\Windows\System32\cscript.exe

2014-01-28 18:11:24 E9504E484076585F6DA3C59F0E20E122 417792 ----a-w- C:\Windows\System32\WMPhoto.dll

2014-01-28 18:10:35 4EC2C3B15B9EC41AD0D6CD918D20376E 2048 ----a-w- C:\Windows\System32\tzres.dll

2014-01-28 18:08:15 1E882889A4314D6DF5DED4F6EC994E72 2349056 ----a-w- C:\Windows\System32\win32k.sys

2014-01-28 18:08:01 5A775CAE7CCCAC581C05B8D2C92C0DF1 305152 ----a-w- C:\Windows\System32\gdi32.dll

2014-01-28 18:07:50 B9C54120F46392100478F58F374E5709 679424 ----a-w- C:\Windows\System32\IKEEXT.DLL

2014-01-28 18:07:48 F0D0E883EBBDC7615DC9EDEA0FFB2817 216576 ----a-w- C:\Windows\System32\FWPUCLNT.DLL

2014-01-28 18:07:48 CE2A48CD0D2B39FB77FA4797C6434E71 656896 ----a-w- C:\Windows\System32\nshwfp.dll

2014-01-28 18:07:34 CC09E0C9A2D89C6E71D093DC8BD121B7 1168384 ----a-w- C:\Windows\System32\crypt32.dll

====== C:\Windows\system32\drivers =====

2014-01-29 13:59:09 BFE2A154BC197656ACA0FF917564406D 64168 ----a-w- C:\Windows\System32\drivers\aswStm.sys

2014-01-29 13:59:08 1B0662514A68C3A42E60D240C5ABEF28 180248 ----a-w- C:\Windows\System32\drivers\aswVmm.sys

2014-01-29 13:59:07 8CD8710457FCC1CDE88CBFA3AA119B92 775952 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2014-01-29 13:59:04 C1F95C9481F46B96E23A276639C55AC9 410784 ----a-w- C:\Windows\System32\drivers\aswSP.sys

2014-01-29 13:59:03 F385467DF95D0A73775CB3B076B8B969 49944 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys

2014-01-29 13:59:02 61953E5E1FFAEAF246A610BEE2554879 67824 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2014-01-29 13:59:01 2206985EF126AB90F3D7F1A020589DC9 79720 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2014-01-28 18:13:16 D7C760D57B1656DD748B9E4AB6CB5A51 136640 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2014-01-28 18:13:16 85449EEBE8F8EBD6481EFBF0F352B4EB 369848 ----a-w- C:\Windows\System32\drivers\cng.sys

2014-01-28 18:13:11 F286830298323272260332D6ABC905C1 67520 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2014-01-28 18:08:06 EB6137D696A9B4E9718AC6F8641CB4C9 177152 ----a-w- C:\Windows\System32\drivers\portcls.sys

2014-01-28 18:08:06 9842041E2F5ACE1E2F5FB4EF02053DC8 81408 ----a-w- C:\Windows\System32\drivers\drmk.sys

2014-01-28 18:07:56 5DBD4F73E2A52FEED61DBAB3752E329C 240576 ----a-w- C:\Windows\System32\drivers\netio.sys

2014-01-28 18:06:24 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2014-01-28 18:06:24 EC2C5AF37B76D7B58C642CB74423DB7A 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys

2014-01-28 18:06:24 D40855F89B69305140BBD7E9A3BA2DA6 43520 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2014-01-28 18:06:24 0803FBA9FE829D61AE26EC0BCC910C46 76288 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2014-01-28 18:06:23 9828C8D14CC2676421778F0DE638CF97 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2014-01-28 18:06:23 800AABFD625EEFF899F7E5496BDE37AB 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2014-01-28 18:06:23 74F805AB12EB0E3E49E469F19FF02640 6016 ----a-w- C:\Windows\System32\drivers\usbd.sys

====== C:\Windows\Tasks ======

2014-01-31 03:33:11 D3F98456B1EDDAEE19EF8FFB2384E1F8 3396 ----a-w- C:\Windows\system32\Tasks\Install_SSD

2014-01-30 17:24:33 08A5CBBFB7800E7B7C26B9978556845F 3044 ----a-w- C:\Windows\system32\Tasks\PassWidget Update

2014-01-30 17:24:25 820F556D9E0CB0D3E63A9D8888E3C2F1 378 ----a-w- C:\Windows\Tasks\PassWidget Update.job

2014-01-29 22:28:32 89C5613414DDB996BCE9C11A3803D0F8 3088 ----a-w- C:\Windows\system32\Tasks\{A2BDF64C-A442-4806-A954-A31C9516C370}

2014-01-29 13:59:44 4F28E8EED716C990D7B988D7350B5233 4182 ----a-w- C:\Windows\system32\Tasks\avast! Emergency Update

2014-01-13 22:28:25 69A282A7293F02873D323B356E18D715 3826 ----a-w- C:\Windows\system32\Tasks\DTReg

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-01-30 21:23:39 -------- d-----w- C:\Program Files\trend micro

2014-01-30 17:24:21 -------- d-----w- C:\Program Files\Pass-Widget

2014-01-30 01:27:16 -------- d-----w- C:\Program Files\Lavasoft

2014-01-30 01:23:13 -------- d-----w- C:\Program Files\Common Files\Lavasoft

======= C: =====

====== C:\Users\Jolanda Resier\AppData\Roaming ======

2014-01-31 03:10:14 EBB503CAAFF9F403EEAF584A1F41C635 2272 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat

2014-01-31 01:54:43 -------- d-----w- C:\Users\Jolanda Resier\AppData\Local\ElevatedDiagnostics

2014-01-30 15:57:01 781DF97ACD1A977D94D5132494360DCA 109600 ----a-w- C:\Users\Jolanda Resier\AppData\Local\GDIPFONTCACHEV1.DAT

2014-01-30 03:59:08 -------- d-----w- C:\Users\Jolanda Resier\AppData\Roaming\LavasoftStatistics

2014-01-30 01:49:43 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014

2014-01-30 01:25:15 -------- d-----w- C:\Users\Jolanda Resier\AppData\Roaming\Lavasoft

2014-01-30 01:23:26 -------- d-----w- C:\Users\Jolanda Resier\AppData\Local\Avg2014

2014-01-29 14:28:15 -------- d-----w- C:\Users\Jolanda Resier\AppData\Roaming\TuneUp Software

====== C:\Users\Jolanda Resier ======

2014-01-31 03:15:50 -------- d-----r- C:\Users\Jolanda Resier\Documents

2014-01-31 01:41:58 -------- d-----r- C:\Users\Jolanda Resier\Favorites

2014-01-31 01:12:56 -------- d-----r- C:\Users\Jolanda Resier\Desktop

2014-01-30 17:37:42 -------- d-----w- C:\ProgramData\IePluginService

2014-01-30 17:36:57 -------- d-----w- C:\ProgramData\WPM

2014-01-30 01:17:09 -------- d-----w- C:\ProgramData\Lavasoft

2014-01-28 18:34:04 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

====== C: exe-files ==

2014-01-31 03:21:40 9911EF198C1A01F11D8D6F777F9A9261 1070088 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\install_flashplayer12x32axau_mssa_aaa_aih.exe

2014-01-31 02:31:19 75B0D4CC6E1BFD6344EEF198270A773D 36532904 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\32.0.1700.102\32.0.1700.102_chrome_installer.exe

2014-01-31 02:28:28 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateSetup.exe

2014-01-31 02:28:28 600B1A4BCC0823A96DC7B86F005ADBB8 51080 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateOnDemand.exe

2014-01-31 02:28:27 CA0A340ABCF0C14A09691CBC90186AB4 51080 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdateBroker.exe

2014-01-31 02:28:26 9CCBA5E2489E603BB1578D1D541252A8 273800 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleCrashHandler64.exe

2014-01-31 02:28:26 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleUpdate.exe

2014-01-31 02:28:26 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Users\Jolanda Resier\AppData\Local\Temp\{0792749F-0610-4FA5-B221-5AF52408EBD7}\GoogleCrashHandler.exe

2014-01-30 21:23:42 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Jolanda Resier.exe

2014-01-30 19:42:47 E6633716EE2AC06BCB4A58FF993015F3 155976 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\instup.exe

2014-01-30 19:42:47 D11625C81FB88DC8A607BB9D76920A3D 2966792 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\aswOfferTool.exe

2014-01-30 19:42:47 B8FA402B238DB49C35CAF711D5BC9843 1093216 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\New\avBugReport.exe

2014-01-30 19:41:55 E6633716EE2AC06BCB4A58FF993015F3 155976 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\instup.exe

2014-01-30 19:41:24 B8FA402B238DB49C35CAF711D5BC9843 1093216 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\_av_iup.tm~a05776\avBugReport.exe

2014-01-30 17:37:42 D1EBE337782B1F32A52C0C80A98FC08B 508016 ----a-w- C:\ProgramData\IePluginService\PluginService.exe

2014-01-30 17:36:58 39531D54F2AFA4473BB4A97F64E99271 493568 ----a-w- C:\ProgramData\WPM\wprotectmanager.exe

2014-01-30 17:24:06 6AA0AF80E07736DEFC8361811C582685 160135 ----a-w- C:\Program Files\Pass-Widget\Uninstall.exe

2014-01-30 17:23:55 3CC34C3F48B39E081FDCEF02C472C5F3 251904 ----a-w- C:\Program Files\Pass-Widget\passwup.exe

2014-01-30 17:22:47 AA16CCAE722A70A380ACF4AE0693ACFD 8521 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W46S49UL\OKitSpaceSetup[1].exe

2014-01-30 17:22:47 511942E0C59CFE4419604A2E070E79CC 8192 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\OKitSpaceSetup.exe

2014-01-30 17:22:21 8A27DB882C784B0F205B1FF72C72F841 4624785 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\systemspeedup.exe

2014-01-30 17:21:45 9A7348E0F5C4A56455C1533E8B4EB313 882672 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\vit_sweet-page.exe

2014-01-30 12:06:34 6BF0239E4E680068A1D93FDA830DAF71 603988 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\instloffer.exe

2014-01-30 01:25:43 C54B767CA838D6DD39CABC8DF017C34C 4048592 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\5677a7de-6b0f-45d6-b279-9fa4d36c1159.exe

2014-01-29 22:03:53 4F93663C1849D7723F160586F84465DA 178064 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\NGM.exe

2014-01-29 13:20:51 0E1D755673453108415F802C90704327 469504 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe

2014-01-29 04:04:34 67FF24E267534F997E4874BBD30C941C 12607144 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\32.0.1700.102\32.0.1700.102_30.0.1599.101_chrome_updater.exe

2014-01-29 02:22:22 9AED8E824CF5FAAB67957EDBC5512060 164864 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe

2014-01-29 02:13:04 C8A8321292A459B0A17FB39A782A5C74 806096 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2014-01-29 02:13:02 CC02FE4520CA886508069245D9A6962F 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe

2014-01-29 02:13:02 2AFAE62B727EE7190450D4A14C287422 359632 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe

2014-01-29 02:12:57 7F7F391491C315A4A72EFCAC0D34FA93 25600 ----a-w- C:\Program Files\Internet Explorer\ExtExport.exe

2014-01-28 22:58:06 CA0A340ABCF0C14A09691CBC90186AB4 51080 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdateBroker.exe

2014-01-28 22:58:06 600B1A4BCC0823A96DC7B86F005ADBB8 51080 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdateOnDemand.exe

2014-01-28 22:58:04 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdateSetup.exe

2014-01-28 22:57:20 9CCBA5E2489E603BB1578D1D541252A8 273800 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler64.exe

2014-01-28 22:57:20 465680BDE344CE4FF6646626AA3A9125 223112 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe

2014-01-28 22:57:15 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files\Google\Update\1.3.22.3\GoogleUpdate.exe

2014-01-28 22:56:40 C98E0215F7B65F0DDEE0591BD57EDFA6 847128 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.3\GoogleUpdateSetup.exe

2014-01-28 18:31:57 3842C46F2FBC7522EF625F1833530804 145408 ----a-w- C:\Users\Jolanda Resier\AppData\LocalLow\Sun\Java\jre1.7.0_51\lzma.exe

=== C: other files ==

2014-01-30 17:29:39 099D2BB54063A342296D39A199180554 1439487 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\fullpackage_temp1391102550\tmp\package2.zip

2014-01-30 17:29:27 89C1D511BADC8074138F237D89D381EB 325038 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx

2014-01-30 17:24:21 3D956C0AA82A29DD8AB9B4CD3F5E6FE2 9789 ----a-w- C:\Program Files\Pass-Widget\150.xpi

2014-01-30 17:23:28 1834F81E48E1D06EDFB9F6A55C48E5B8 17922 ----a-w- C:\Program Files\Pass-Widget\150.crx

2014-01-30 17:22:49 DAE050612482639114C4DBE70EAD6B58 1877249 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Temp\fullpackage_temp1391102550\package1.zip

2014-01-30 00:10:46 CC20AA0EE104065B6FA346B9D048485A 32128 ----a-w- C:\Users\Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfpfdjclhabpjncikdngdoldjjjegnbe\2.1.2_0\american-racing-2-3d.crx

2014-01-29 13:59:09 BFE2A154BC197656ACA0FF917564406D 64168 ----a-w- C:\Windows\System32\drivers\aswStm.sys

2014-01-29 13:59:08 1B0662514A68C3A42E60D240C5ABEF28 180248 ----a-w- C:\Windows\System32\drivers\aswVmm.sys

2014-01-29 13:59:07 8CD8710457FCC1CDE88CBFA3AA119B92 775952 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2014-01-29 13:59:04 C1F95C9481F46B96E23A276639C55AC9 410784 ----a-w- C:\Windows\System32\drivers\aswSP.sys

2014-01-29 13:59:03 F385467DF95D0A73775CB3B076B8B969 49944 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys

2014-01-29 13:59:02 61953E5E1FFAEAF246A610BEE2554879 67824 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2014-01-29 13:59:01 2206985EF126AB90F3D7F1A020589DC9 79720 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2014-01-28 18:13:16 D7C760D57B1656DD748B9E4AB6CB5A51 136640 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2014-01-28 18:13:16 85449EEBE8F8EBD6481EFBF0F352B4EB 369848 ----a-w- C:\Windows\System32\drivers\cng.sys

2014-01-28 18:13:11 F286830298323272260332D6ABC905C1 67520 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2014-01-28 18:08:15 1E882889A4314D6DF5DED4F6EC994E72 2349056 ----a-w- C:\Windows\System32\win32k.sys

2014-01-28 18:08:06 EB6137D696A9B4E9718AC6F8641CB4C9 177152 ----a-w- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_neutral_df2ea65e936720f7\portcls.sys

2014-01-28 18:08:06 EB6137D696A9B4E9718AC6F8641CB4C9 177152 ----a-w- C:\Windows\System32\drivers\portcls.sys

2014-01-28 18:08:06 9842041E2F5ACE1E2F5FB4EF02053DC8 81408 ----a-w- C:\Windows\System32\DriverStore\FileRepository\wdmaudio.inf_x86_neutral_df2ea65e936720f7\drmk.sys

2014-01-28 18:08:06 9842041E2F5ACE1E2F5FB4EF02053DC8 81408 ----a-w- C:\Windows\System32\drivers\drmk.sys

2014-01-28 18:07:56 5DBD4F73E2A52FEED61DBAB3752E329C 240576 ----a-w- C:\Windows\System32\drivers\netio.sys

2014-01-28 18:06:24 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbhub.sys

2014-01-28 18:06:24 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usb.inf_x86_neutral_4232097e28daf017\usbhub.sys

2014-01-28 18:06:24 EDF2DF71C4F1E13A6AC75F5224DE655A 258560 ----a-w- C:\Windows\System32\drivers\usbhub.sys

2014-01-28 18:06:24 EC2C5AF37B76D7B58C642CB74423DB7A 284672 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbport.sys

2014-01-28 18:06:24 EC2C5AF37B76D7B58C642CB74423DB7A 284672 ----a-w- C:\Windows\System32\drivers\usbport.sys

2014-01-28 18:06:24 D40855F89B69305140BBD7E9A3BA2DA6 43520 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbehci.sys

2014-01-28 18:06:24 D40855F89B69305140BBD7E9A3BA2DA6 43520 ----a-w- C:\Windows\System32\drivers\usbehci.sys

2014-01-28 18:06:24 0803FBA9FE829D61AE26EC0BCC910C46 76288 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usb.inf_x86_neutral_4232097e28daf017\usbccgp.sys

2014-01-28 18:06:24 0803FBA9FE829D61AE26EC0BCC910C46 76288 ----a-w- C:\Windows\System32\drivers\usbccgp.sys

2014-01-28 18:06:23 9828C8D14CC2676421778F0DE638CF97 20480 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbohci.sys

2014-01-28 18:06:23 9828C8D14CC2676421778F0DE638CF97 20480 ----a-w- C:\Windows\System32\drivers\usbohci.sys

2014-01-28 18:06:23 800AABFD625EEFF899F7E5496BDE37AB 24064 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbuhci.sys

2014-01-28 18:06:23 800AABFD625EEFF899F7E5496BDE37AB 24064 ----a-w- C:\Windows\System32\drivers\usbuhci.sys

2014-01-28 18:06:23 74F805AB12EB0E3E49E469F19FF02640 6016 ----a-w- C:\Windows\System32\DriverStore\FileRepository\usbport.inf_x86_neutral_d53c05ca022d95f2\usbd.sys

2014-01-28 18:06:23 74F805AB12EB0E3E49E469F19FF02640 6016 ----a-w- C:\Windows\System32\drivers\usbd.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-4027270910-661022722-644475913-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler"

"Pando Media Booster"="C:\Program Files\Pando Networks\Media Booster\PMB.exe"

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler"

"Pando Media Booster"="C:\Program Files\Pando Networks\Media Booster\PMB.exe"

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\(default)]

"command"=""

"hkey"="HKLM"

"item"="(default)"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Ad-Aware Browsing Protection]

"command"="\"C:\\ProgramData\\Ad-Aware Browsing Protection\\adawarebp.exe\""

"hkey"="HKLM"

"item"="Ad-Aware Browsing Protection"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdAwareTray]

"command"="\"C:\\Program Files\\Lavasoft\\Ad-Aware Antivirus\\Ad-Aware Antivirus\\11.1.5354.0\\AdAwareTray.exe\""

"hkey"="HKLM"

"item"="AdAwareTray"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ArcSoft Connection Service]

"command"="C:\\Program Files\\Common Files\\ArcSoft\\Connection Service\\Bin\\ACDaemon.exe"

"hkey"="HKLM"

"item"="ArcSoft Connection Service"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]

"command"="\"C:\\Program Files\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

"hkey"="HKLM"

"item"="BCSSync"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ClamWin]

"command"="\"C:\\Program Files\\ClamWin\\bin\\ClamTray.exe\" --logon"

"hkey"="HKLM"

"item"="ClamWin"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DATAMNGR]

"command"="C:\\PROGRA~1\\WIA6EB~1\\Datamngr\\DATAMN~1.EXE"

"hkey"="HKLM"

"item"="DATAMNGR"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]

"command"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"

"hkey"="HKLM"

"item"="HP Software Update"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\hpqSRMon]

"command"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqSRMon.exe"

"hkey"="HKLM"

"item"="hpqSRMon"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSC]

"command"="\"C:\\Program Files\\Microsoft Security Client\\msseces.exe\" -hide -runkey"

"hkey"="HKLM"

"item"="MSC"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Nikon Transfer Monitor]

"command"="C:\\Program Files\\Common Files\\Nikon\\Monitor\\NkMonitor.exe"

"hkey"="HKLM"

"item"="Nikon Transfer Monitor"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Search Protection]

"command"="C:\\ProgramData\\Search Protection\\SearchProtection.exe"

"hkey"="HKLM"

"item"="Search Protection"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TkBellExe]

"command"="\"c:\\program files\\real\\realplayer\\Update\\realsched.exe\" -osboot"

"hkey"="HKLM"

"item"="TkBellExe"

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

==== Startup Folders ======================

2011-03-31 18:58:39 2069 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [28-01-2014 18:37]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [28-03-2011 14:32]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [28-03-2011 14:32]

C:\Windows\tasks\PassWidget Update.job --a------ C:\Program Files\Pass-Widget\passwup.exe [30-01-2014 18:24]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\system32\tasks\DTReg" [C:\Users\Jolanda Resier\AppData\Roaming\DefaultTab\DefaultTab\DTReg.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]

"C:\Windows\system32\tasks\Install_SSD" [C:\Users\Jolanda]

"C:\Windows\system32\tasks\PassWidget Update" [C:\Program Files\Pass-Widget\passwup.exe]

"C:\Windows\system32\tasks\RealUpgradeLogonTaskS-1-5-21-4027270910-661022722-644475913-1001" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\system32\tasks\RealUpgradeScheduledTaskS-1-5-21-4027270910-661022722-644475913-1001" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\system32\tasks\Run RoboForm TaskBar Icon" [C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe]

"C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]

"C:\Windows\system32\tasks\User_Feed_Synchronization-{98BD8F3E-E746-4F16-8D2A-42DBE591DA0B}" [C:\Windows\system32\msfeedssync.exe]

"C:\Windows\system32\tasks\{14029CE4-12A6-47E4-81F3-DAECB7FE72EB}" [E:\Nikon Transfer\WMFDist.exe]

"C:\Windows\system32\tasks\{46E36538-E172-430C-9463-EC359DFF60B9}" [C:\Users\Jolanda Resier\Contacts\Downloads\install_flashplayer10_mssd_aih.exe]

"C:\Windows\system32\tasks\{7888A96D-1C3F-441D-96C6-4F34BC9821B1}" [C:\Users\Jolanda Resier\Contacts\Downloads\install_flashplayer10_mssd_aih.exe]

"C:\Windows\system32\tasks\{B808D153-9F0E-46CC-A5B3-78EDFF6D716F}" [C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe]

"C:\Windows\system32\tasks\{D2A6F8A0-C576-478E-A264-1E5B10600354}" [C:\Users\Jolanda Resier\Contacts\Downloads\install_flashplayer10_mssd_aih.exe]

"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]

"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"="C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext" [24-11-2011 12:26]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"{f9820cf4-de9a-441e-b465-d0219fdd147e}"="C:\Program Files\Pass-Widget\150.xpi" [30-01-2014 18:24]

==== Firefox Extensions ======================

ExtDir: C:\Users\Jolanda Resier\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

- 1ClickMovieDownloader - %ExtDir%\clickmoviedownloader@clickmoviedownloader.com.xpi

==== Firefox Plugins ======================

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

bcjagnifjocnddgeknajocbkkhlgibem - C:\Program Files\Chrome\surfcanyon.crx[22-07-2011 17:46]

dhpigdnmefdjeemeldnnmbckmpogpbji - C:\Program Files\1clickmoviedownloader.com\clickmoviedownloader10.crx[]

fbdagnimlohkpamglloopgfnoiijpmoj - C:\Program Files\Pass-Widget\150.crx[30-01-2014 18:23]

gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[29-01-2014 14:57]

jfmjfhklogoienhpfnppmbcbjfjnkonk - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx[24-11-2011 12:26]

kdidombaedgpfiiedeimiebkmbilgmlc - C:\Program Files\DefaultTab\DefaultTab.crx[16-09-2013 15:03]

niapdbllcanepiiimjjndipklodoedlc - No path found[]

oejkcgajlodefenbbjdnaiahmbnnoole - C:\Program Files\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx[]

pgafcinpmmpklohkojmllohd****efph - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx[]

pkndmigholgfjlniaohblojbhgjbkakn - C:\Users\Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx[14-01-2014 00:20]

Surf Canyon - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcjagnifjocnddgeknajocbkkhlgibem

Improved sequel. 12 new courses 45 more events better handling upgrades. - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfpfdjclhabpjncikdngdoldjjjegnbe

Extended Protection - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml

PassWidget - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbdagnimlohkpamglloopgfnoiijpmoj

avast Online Security - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

RealPlayer HTML5Video Downloader Extension - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk

DefaultTab - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc

Google Wallet - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Lightning speedDial - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkndmigholgfjlniaohblojbhgjbkakn

DefaultTab - C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc

undetermined - Jolanda Resier\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx

==== C:\zoek_backup content ======================

C:\zoek_backup (files=68 folders=31 6528163 bytes)

==== EOF on vr 31-01-2014 at 21:43:01,79 ======================

Link naar reactie
Delen op andere sites

Hoi

Als ik je logs zo bekijk dan heb ik de indruk dat je telkens het eerste script van Kape opnieuw draait.

Ook kan ik zien dat de checkbox van Auto Clean kennelijk niet gebruikt is.

Gebruik dus de checkbox van Auto Clean eens en druk op "Run Script" en gebruik ook de laatste code die Kape heeft gepost.

Link naar reactie
Delen op andere sites

Als je op de knop "Options" drukt verschijnen er een paar rijen met checkboxen, helemaal rechts onderin zit de checkbox voor Auto Clean

Zet daar een vinkje bij, die code van Kape zal ik nog even proberen te plaatsen

  [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DATAMNGR];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Search Protection];r
C:\Windows\system32\tasks\DTReg;s
C:\Users\Jolanda Resier\AppData\Roaming\DefaultTab;fs
C:\Windows\system32\tasks\{14029CE4-12A6-47E4-81F3-DAECB7FE72EB};fs
C:\Windows\system32\tasks\{46E36538-E172-430C-9463-EC359DFF60B9};fs
C:\Windows\system32\tasks\{7888A96D-1C3F-441D-96C6-4F34BC9821B1};fs
C:\Windows\system32\tasks\{B808D153-9F0E-46CC-A5B3-78EDFF6D716F};fs
C:\Windows\system32\tasks\{D2A6F8A0-C576-478E-A264-1E5B10600354};fs
C:\Users\Jolanda  Resier\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\clickmoviedownloader@clickmoviedownloader.com.xpi;f
 Bcjagnifjocnddgeknajocbkkhlgibem;chr
 C:\Program Files\Chrome\surfcanyon.crx;f
 Dhpigdnmefdjeemeldnnmbckmpogpbji;chr
 C:\Program Files\1clickmoviedownloader.com\clickmoviedownloader10.crx;f
 Kdidombaedgpfiiedeimiebkmbilgmlc;chr
 C:\Program Files\DefaultTab\DefaultTab.crx;f
niapdbllcanepiiimjjndipklodoedlc ;chr
oejkcgajlodefenbbjdnaiahmbnnoole;chr
C:\Program Files\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx;f
 pgafcinpmmpklohkojmllohd****efph;chr
 C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx;f
Bfpfdjclhabpjncikdngdoldjjjegnbe;chr
Cekcjpgehmohobmdiikfnopibipmgnml;chr
emptyfolderscheck;delete 
autoclean;
startupall; 
filesrcm;

Link naar reactie
Delen op andere sites


×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.