Ga naar inhoud

Aanbevolen berichten

Geplaatst:

Ik heb een logfile gedraaid (Zie onder) via RSIT 64 Bit. Wie kan op basis van deze log mij een logbestandje geven wat ik met Zoek.exe kan draaien om zo mijn laptop op te schonen en de span weg te krijgen.

Met vriendelijke groet Ebonny

Logfile of random's system information tool 1.09 (written by random/random)

Run by Acer at 2014-02-02 13:07:29

Microsoft Windows 7 Home Premium Service Pack 1

System drive C: has 232 GB (78%) free of 297 GB

Total RAM: 3957 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:07:35, on 2-2-2014

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16428)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe

C:\Windows\PLFSetI.exe

C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe

C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe

C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe

C:\Program Files (x86)\Launch Manager\LManager.exe

C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe

C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe

C:\Program Files (x86)\AVG\AVG2014\avgui.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\Program Files\trend micro\Acer.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll

O2 - BHO: SNT - {37513920-5F04-B6EC-523F-2ACF299DDE84} - C:\Program Files (x86)\SNT\A8H.dll

O2 - BHO: GreatssaVer - {3CA27BD5-E176-0D54-2CA1-16D0E458FE2D} - C:\Program Files (x86)\GreatssaVer\oQ78N.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: YoutubeAdblocker - {E51A1F78-F76F-D2D8-3352-11A18700CF9D} - C:\Program Files (x86)\YoutubeAdblocker\XOtZ.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll

O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k

O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe

O4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"

O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d

O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"

O4 - HKLM\..\Run: [Reader Library Launcher] C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_7360584B616087257445E78FC1FAACF2] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray

O4 - HKCU\..\Run: [Google Update] "C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [spUninstallDeleteDir] rmdir /s /q "\SearchProtect" (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [spUninstallDeleteDir] rmdir /s /q "\SearchProtect" (User 'Default user')

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm

O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm

O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Users\Acer\Desktop\PartyPoker.lnk

O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Users\Acer\Desktop\PartyPoker.lnk

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {82E5DF24-51E8-47CD-864A-F4BD5005AA73} (iCloud Web App Plugin) - https://www.icloud.com/system/iCloud.cab

O16 - DPF: {9E858349-A287-4D37-8C27-034330E160F9} (MijnAlbum Album Upload Software Control Control) - http://www.mijnalbum.nl/v3/skinsrc/core/system/aus8.0.35/Uploader8.cab

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - AppInit_DLLs: C:\Users\Acer\AppData\Local\DProtect\eBP.dll,C:\Users\Acer\AppData\Local\DProtect\eBPSD.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe

O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NTI, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 17139 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

C:\PROGRA~2\AVG\AVG2014\avgrsa.exe /boot

C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=7c57aa2b-e14e-4801-9c35-bf49e6ad730d /coreSdkOptions=4364 /logConfFile="C:\Windows\TEMP\201f7600-def0-494c-8669-50656d5fdf0d-19c-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\"

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

winlogon.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService

atieclxx

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

"C:\Program Files\LSI SoftModem\agr64svc.exe"

"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"

"C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe"

"C:\Program Files\Bonjour\mDNSResponder.exe"

"taskhost.exe"

"C:\Windows\system32\Dwm.exe"

C:\Windows\Explorer.EXE

"C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe"

"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s

"C:\Windows\PLFSetI.exe"

"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"

"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"

"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"

"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" -tray

"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"

"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k

"C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"

"C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe"

"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"

C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe"

C:\Windows\System32\svchost.exe -k HPZ12

"C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe" SERVICE

"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe"

"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"

C:\Windows\System32\svchost.exe -k HPZ12

"C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe"

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted

"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"

C:\Windows\system32\wbem\unsecapp.exe -Embedding

C:\Windows\system32\svchost.exe -k HPService

C:\Windows\system32\wbem\wmiprvse.exe

"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"

C:\Windows\system32\SearchIndexer.exe /Embedding

"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"

{11F12CA9-8EBE-4BEE-80FD-976659790DBE}

"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"

"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"

"C:\Program Files (x86)\Launch Manager\LManager.exe"

"C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"

"C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe"

"C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY

"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"C:\Program Files (x86)\iTunes\iTunesHelper.exe"

"C:\Program Files\iPod\bin\iPodService.exe"

{233D5269-C669-4E60-B1BF-2F3FB9778605}

"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Photosmart 3200 series#1379161594" -Startup

"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding

"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding

"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"

"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0

"C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe"

C:\Windows\System32\svchost.exe -k secsvcs

"C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe"

"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE"

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2668737801-3381503766-2512015713-100010_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2668737801-3381503766-2512015713-100010 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"

"C:\Program Files\Internet Explorer\iexplore.exe" [OPGELOST] foutmelding - Pagina 3

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7540 CREDAT:464129 /prefetch:2

C:\Windows\system32\Macromed\Flash\FlashUtil64_12_0_0_38_ActiveX.exe -Embedding

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7540 CREDAT:3413265 /prefetch:2

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe11_ Global\UsGthrCtrlFltPipeMssGthrPipe11 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

"C:\Users\Acer\Downloads\RSITx64.exe"

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524

======Scheduled tasks folder======

C:\Windows\tasks\AutoKMS.job

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000Core.job

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]

Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll [2013-12-16 1154720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37513920-5F04-B6EC-523F-2ACF299DDE84}]

SNT - C:\Program Files (x86)\SNT\A8H.x64.dll [2014-01-28 402944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA27BD5-E176-0D54-2CA1-16D0E458FE2D}]

GreatssaVer - C:\Program Files (x86)\GreatssaVer\oQ78N.x64.dll [2014-01-28 402944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-12-28 346736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]

Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-12-28 318960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E51A1F78-F76F-D2D8-3352-11A18700CF9D}]

YoutubeAdblocker - C:\Program Files (x86)\YoutubeAdblocker\XOtZ.x64.dll [2014-01-28 402944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]

HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]

Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll [2013-12-16 1432224]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37513920-5F04-B6EC-523F-2ACF299DDE84}]

SNT - C:\Program Files (x86)\SNT\A8H.dll [2013-01-28 371200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA27BD5-E176-0D54-2CA1-16D0E458FE2D}]

GreatssaVer - C:\Program Files (x86)\GreatssaVer\oQ78N.dll [2014-01-28 371200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2013-03-09 4171464]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live Aanmelden - Help - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-12-28 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]

Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-12-28 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]

Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-12-28 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E51A1F78-F76F-D2D8-3352-11A18700CF9D}]

YoutubeAdblocker - C:\Program Files (x86)\YoutubeAdblocker\XOtZ.dll [2014-01-28 371200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]

HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-12-28 346736]

{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll [2013-12-16 1154720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-12-28 256112]

{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll [2013-12-16 1432224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"mwlDaemon"=C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [2010-05-27 349552]

"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-10-29 8312352]

"PLFSetI"=C:\Windows\PLFSetI.exe [2010-06-09 206208]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-09-18 1842472]

"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2010-02-26 818720]

"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2010-06-10 324608]

"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"GoogleChromeAutoLaunch_7360584B616087257445E78FC1FAACF2"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-01-23 866584]

"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-11-20 59720]

"NokiaSuite.exe"=C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2013-04-19 1090912]

"Google Update"=C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-12 116648]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

"BackupManagerTray"=C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2010-06-29 265984]

"Norton Online Backup"=C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2010-06-02 1155928]

"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-05-27 337264]

"EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-03-11 201584]

"EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-03-11 407920]

"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-09 98304]

"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2009-11-02 1094736]

"ArcadeDeluxeAgent"=C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [2009-10-29 419112]

"Reader Library Launcher"=C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe [2010-07-13 906648]

"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-01-20 43848]

"hpqSRMon"=C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]

"AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2013-10-07 4908592]

"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]

"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-01-20 152392]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="C:\PROGRA~2\GS-ENA~1\ASSIST~2.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2013-03-09 4171464]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=5

"ConsentPromptBehaviorUser"=3

"EnableUIADesktopToggle"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=1

"NoActiveDesktopChanges"=1

"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.msadpcm"=msadp32.acm

"midimapper"=midimap.dll

"wavemapper"=msacm32.drv

"VIDC.UYVY"=msyuv.dll

"VIDC.YUY2"=msyuv.dll

"VIDC.YVYU"=msyuv.dll

"VIDC.IYUV"=iyuv_32.dll

"vidc.i420"=iyuv_32.dll

"VIDC.YVU9"=tsbyuv.dll

"msacm.l3acm"=C:\Windows\System32\l3codeca.acm

"MSVideo8"=VfWWDM32.dll

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

"aux"=wdmaud.drv

"wave1"=wdmaud.drv

"midi1"=wdmaud.drv

"mixer1"=wdmaud.drv

"aux1"=wdmaud.drv

"wave2"=wdmaud.drv

"midi2"=wdmaud.drv

"mixer2"=wdmaud.drv

"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-02-02 13:07:29 ----D---- C:\rsit

2014-02-01 19:46:12 ----D---- C:\AdwCleaner

2014-01-29 17:05:51 ----A---- C:\Windows\KMSEmulator.exe

2014-01-28 15:41:59 ----D---- C:\ProgramData\SNT

2014-01-28 15:41:58 ----D---- C:\ProgramData\House Of Soft

2014-01-28 15:41:58 ----D---- C:\Program Files (x86)\SNT

2014-01-28 15:40:57 ----D---- C:\ProgramData\YoutubeAdblocker

2014-01-28 15:40:56 ----D---- C:\Program Files (x86)\YoutubeAdblocker

2014-01-28 15:40:49 ----D---- C:\ProgramData\GreatssaVer

2014-01-28 15:40:48 ----D---- C:\Program Files (x86)\GreatssaVer

2014-01-28 15:40:42 ----D---- C:\ProgramData\5b76d4171c26f9e7

2014-01-28 15:40:16 ----D---- C:\ProgramData\InstallMate

2014-01-28 11:14:50 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2014-01-24 16:57:57 ----SHD---- C:\$RECYCLE.BIN

2014-01-24 16:32:26 ----A---- C:\Windows\zoek-delete.exe

2014-01-24 16:32:25 ----D---- C:\Windows\Temp

2014-01-24 16:29:06 ----D---- C:\zoek_backup

2014-01-24 16:22:00 ----D---- C:\zoek

2014-01-23 17:44:27 ----A---- C:\Windows\SYSWOW64\javaws.exe

2014-01-23 17:44:21 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll

2014-01-23 17:44:21 ----A---- C:\Windows\SYSWOW64\javaw.exe

2014-01-23 17:44:21 ----A---- C:\Windows\SYSWOW64\java.exe

2014-01-20 14:43:55 ----D---- C:\Program Files\Common Files\DESIGNER

2014-01-20 14:43:01 ----D---- C:\Program Files\Microsoft Synchronization Services

2014-01-20 14:42:22 ----D---- C:\Program Files\Microsoft Sync Framework

2014-01-20 14:42:22 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition

2014-01-20 14:41:01 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8

2014-01-20 14:40:07 ----D---- C:\Program Files\Microsoft Analysis Services

2014-01-20 14:40:07 ----D---- C:\Program Files (x86)\Microsoft Analysis Services

2014-01-20 14:39:27 ----D---- C:\Program Files (x86)\Microsoft Office

2014-01-20 14:39:05 ----D---- C:\Program Files\Microsoft Office

2014-01-20 14:38:28 ----RHD---- C:\MSOCache

2014-01-18 15:45:29 ----A---- C:\Users\Acer\AppData\Roaming\LiveSupport.exe_log.txt

2014-01-18 15:45:28 ----A---- C:\Users\Acer\AppData\Roaming\regsvr32.exe_log.txt

2014-01-15 13:42:02 ----A---- C:\Windows\system32\drivers\usbuhci.sys

2014-01-15 13:42:02 ----A---- C:\Windows\system32\drivers\usbport.sys

2014-01-15 13:42:02 ----A---- C:\Windows\system32\drivers\usbohci.sys

2014-01-15 13:42:02 ----A---- C:\Windows\system32\drivers\usbhub.sys

2014-01-15 13:42:02 ----A---- C:\Windows\system32\drivers\usbehci.sys

2014-01-15 13:42:02 ----A---- C:\Windows\system32\drivers\usbd.sys

2014-01-15 13:42:02 ----A---- C:\Windows\system32\drivers\usbccgp.sys

2014-01-15 13:42:01 ----A---- C:\Windows\system32\win32k.sys

2014-01-15 13:42:00 ----A---- C:\Windows\system32\drivers\netio.sys

2014-01-06 20:23:36 ----A---- C:\Windows\SYSWOW64\GPhotos.scr

======List of files/folders modified in the last 1 month======

2014-02-02 13:07:35 ----D---- C:\Windows\Prefetch

2014-02-02 13:07:34 ----D---- C:\Program Files\trend micro

2014-02-02 12:42:19 ----D---- C:\Windows\system32\config

2014-02-02 12:30:31 ----SHD---- C:\System Volume Information

2014-02-02 12:00:56 ----AD---- C:\Windows

2014-02-02 12:00:53 ----A---- C:\Windows\SYSWOW64\log.txt

2014-02-01 19:47:09 ----D---- C:\Windows\SysWOW64

2014-02-01 18:10:19 ----D---- C:\Windows\inf

2014-02-01 17:16:09 ----D---- C:\Windows\system32\catroot2

2014-02-01 17:02:44 ----HD---- C:\Config.Msi

2014-02-01 10:22:55 ----SHD---- C:\Windows\Installer

2014-02-01 10:22:55 ----RD---- C:\Program Files (x86)

2014-02-01 10:22:54 ----RSD---- C:\Windows\assembly

2014-02-01 10:22:51 ----HD---- C:\ProgramData

2014-02-01 10:22:51 ----D---- C:\Windows\system32\Tasks

2014-01-29 17:54:54 ----D---- C:\Windows\Microsoft.NET

2014-01-29 17:34:10 ----D---- C:\ProgramData\Microsoft Help

2014-01-29 17:29:59 ----D---- C:\Windows\AutoKMS

2014-01-29 17:21:18 ----D---- C:\Windows\Tasks

2014-01-28 14:19:40 ----A---- C:\DelFix.txt

2014-01-28 11:15:19 ----D---- C:\Windows\System32

2014-01-28 11:15:16 ----D---- C:\Program Files\iTunes

2014-01-28 11:15:16 ----D---- C:\Program Files (x86)\iTunes

2014-01-28 11:14:51 ----D---- C:\Program Files\iPod

2014-01-28 11:11:34 ----D---- C:\ProgramData\Apple

2014-01-27 19:47:09 ----D---- C:\Program Files (x86)\DVDVideoSoft

2014-01-27 19:46:40 ----D---- C:\Users\Acer\AppData\Roaming\DVDVideoSoft

2014-01-27 19:46:40 ----D---- C:\Program Files (x86)\Common Files

2014-01-24 23:09:01 ----A---- C:\Windows\NeroDigital.ini

2014-01-24 17:05:31 ----D---- C:\Windows\SoftwareDistribution

2014-01-24 17:03:43 ----D---- C:\Windows\debug

2014-01-23 17:44:21 ----D---- C:\Program Files (x86)\Java

2014-01-23 11:30:06 ----A---- C:\Windows\system32\PerfStringBackup.INI

2014-01-23 09:54:50 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

2014-01-20 19:44:49 ----A---- C:\Windows\win.ini

2014-01-20 14:44:03 ----RSD---- C:\Windows\Fonts

2014-01-20 14:43:56 ----D---- C:\Windows\ShellNew

2014-01-20 14:43:55 ----D---- C:\Program Files\Common Files\Microsoft Shared

2014-01-20 14:43:55 ----D---- C:\Program Files\Common Files

2014-01-20 14:43:01 ----RD---- C:\Program Files

2014-01-20 14:42:48 ----D---- C:\Program Files (x86)\MSBuild

2014-01-20 14:42:22 ----SD---- C:\ProgramData\Microsoft

2014-01-20 14:42:22 ----D---- C:\Program Files (x86)\Microsoft.NET

2014-01-20 14:41:44 ----D---- C:\Windows\winsxs

2014-01-19 14:20:55 ----SD---- C:\Users\Acer\AppData\Roaming\Microsoft

2014-01-18 15:44:27 ----RD---- C:\Users

2014-01-16 12:22:40 ----D---- C:\Windows\system32\DriverStore

2014-01-16 12:22:40 ----D---- C:\Windows\system32\drivers

2014-01-16 12:07:23 ----D---- C:\Windows\system32\MRT

2014-01-16 12:00:40 ----A---- C:\Windows\system32\MRT.exe

2014-01-15 13:41:54 ----D---- C:\Windows\system32\catroot

2014-01-12 18:43:53 ----D---- C:\Windows\system32\wbem

2014-01-12 18:43:10 ----D---- C:\Windows\registration

2014-01-12 18:39:12 ----D---- C:\Windows\system32\drivers\etc

2014-01-11 17:30:04 ----D---- C:\Program Files (x86)\Free Video Converter

2014-01-10 13:33:04 ----D---- C:\Windows\system32\FxsTmp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-09-02 192824]

R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-09-02 294712]

R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-08-20 123704]

R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-09-08 31544]

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-03 540696]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]

R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2013-09-25 148792]

R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-09-02 241464]

R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-09-02 212280]

R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-08-01 251192]

R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-11-11 46368]

R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]

R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]

R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]

R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-08-13 1209856]

R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-05-12 2229608]

R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-12-10 6179328]

R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]

R3 HECIx64;Intel® Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-10-28 2018080]

R3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2010-06-08 406056]

R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2010-04-28 18432]

R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2009-06-25 205472]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-09-18 292912]

R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2010-04-28 17408]

R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]

S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2010-06-10 40448]

S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]

S3 ASPI;Advanced SCSI Programming Interface Driver; \??\C:\Windows\System32\DRIVERS\ASPI32.sys []

S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]

S3 E1G60;Intel® PRO/1000 NDIS 6 Adapter Driver; C:\Windows\system32\DRIVERS\E1G6032E.sys [2009-06-10 145792]

S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]

S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]

S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]

S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]

S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsucx64.sys [2013-01-23 12800]

S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys [2013-01-23 171008]

S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]

S3 PCDSRVC{D1725DDC-01E99333-06020101}_0;PCDSRVC{D1725DDC-01E99333-06020101}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\users\acer\appdata\local\temp\ejcvpotesvv7\pcdrdiag\bin\pcdsrvc_x64.pkms []

S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]

S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]

S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]

S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]

S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]

S3 StillCam;Stuurprogramma voor seriële digitale fotocamera; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]

S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]

S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]

S3 USB28xxBGA;USB 2861 Device; C:\Windows\system32\DRIVERS\emBDA64.sys [2011-03-06 683136]

S3 USB28xxOEM;USB 28xx OEM Filter; C:\Windows\system32\DRIVERS\emOEM64.sys [2011-03-06 1189504]

S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]

S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-03-28 16896]

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-12-10 202752]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-01-07 43336]

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-10-03 3538480]

R2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]

R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-02-26 841248]

R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]

R2 hpqddsvc;HP CUE DeviceDiscovery-service; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2010-03-03 268824]

R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 NOBU;Norton Online Backup; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-06-02 2804568]

R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-06-29 255744]

R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2010-04-17 144640]

R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [2009-04-17 247152]

R2 UNS;Intel® Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]

R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-01-29 243232]

R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe [2013-12-16 247968]

R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2014-01-20 641352]

R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]

S2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-09-25 301152]

S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe [2013-12-16 193696]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

S2 e81a9dc1;GS-Supporter; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544]

S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-10 136176]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-04-19 161384]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-10 136176]

S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-12-28 182768]

S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-03-09 50921648]

S3 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-05-27 305520]

S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2010-04-17 50432]

S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]

S3 Sony SCSI Helper Service;Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [2010-04-02 73728]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-17 1255736]

-----------------EOF-----------------

Geplaatst:

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

Download 51a612a8b27e2-Zoek.pngZoek.exe naar het bureaublad (niet de .zip- of .rar-versie)

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

  {1dad3af3-ef2f-4f64-ac4b-11789189fcb6};c
 C:\Program Files (x86)\Microsoft\BingBar;fs
 {37513920-5F04-B6EC-523F-2ACF299DDE84};c
 C:\Program Files (x86)\SNT;fs
 {3CA27BD5-E176-0D54-2CA1-16D0E458FE2D};c
 C:\Program Files (x86)\GreatssaVer;fs
 {eec0f710-38b5-4aba-99bf-ec87564a4e13};c
 C:\Windows\tasks\AutoKMS.job;f
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37513920-5F04-B6EC-523F-2ACF299DDE84}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA27BD5-E176-0D54-2CA1-16D0E458FE2D}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37513920-5F04-B6EC-523F-2ACF299DDE84}];r64
 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA27BD5-E176-0D54-2CA1-16D0E458FE2D}];r64
 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
 "AppInit_DLLs"=-;r64
 C:\Windows\KMSEmulator.exe;f
 C:\ProgramData\SNT;fs
 C:\ProgramData\House Of Soft;fs
 C:\ProgramData\GreatssaVer;fs
 C:\Program Files (x86)\GreatssaVer;fs
 C:\ProgramData\5b76d4171c26f9e7;fs
 C:\ProgramData\InstallMate;fs
 C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69;fs
 C:\Windows\zoek-delete.exe;f
 C:\zoek_backup;fs
 emptyfolderscheck;delete 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.
  • Do a Quick Scan

  • Auto Clean
  • De optie "Scan All Users" staat standaard aangevinkt.
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Geplaatst:

Hiermede de logfile. Tijdens het downloaden van zoek.exe kwam er wel span mee. Ik gebruik AVG Antivirus free edition 2014.Is dat wel oke?

mvg Ebonny

Zoek.exe v5.0.0.0 Updated 31-January-2014

Tool run by Acer on zo 02-02-2014 at 15:49:34,98.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Acer\Downloads\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-02-02-144030.log 24556 bytes

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{37513920-5F04-B6EC-523F-2ACF299DDE84} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA27BD5-E176-0D54-2CA1-16D0E458FE2D} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37513920-5F04-B6EC-523F-2ACF299DDE84}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA27BD5-E176-0D54-2CA1-16D0E458FE2D}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37513920-5F04-B6EC-523F-2ACF299DDE84}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA27BD5-E176-0D54-2CA1-16D0E458FE2D}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Microsoft\BingBar not found

C:\Program Files (x86)\SNT not found

C:\Program Files (x86)\GreatssaVer not found

C:\ProgramData\SNT not found

C:\ProgramData\House Of Soft not found

C:\ProgramData\GreatssaVer not found

C:\Program Files (x86)\GreatssaVer not found

C:\ProgramData\5b76d4171c26f9e7 not found

C:\ProgramData\InstallMate not found

C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 not found

"C:\Windows\tasks\AutoKMS.job" not found

"C:\Windows\KMSEmulator.exe" not found

"C:\Windows\zoek-delete.exe" not found

C:\zoek_backup deleted

C:\Users\Acer\AppData\LocalLow\{37513920-5F04-B6EC-523F-2ACF299DDE84} deleted

C:\Users\Acer\AppData\LocalLow\{3CA27BD5-E176-0D54-2CA1-16D0E458FE2D} deleted

C:\Users\Acer\AppData\LocalLow\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted

C:\Users\Acer\AppData\Local\Packages\windows_ie_ac_001\AC\{37513920-5F04-B6EC-523F-2ACF299DDE84} deleted

C:\Users\Acer\AppData\Local\Packages\windows_ie_ac_001\AC\{3CA27BD5-E176-0D54-2CA1-16D0E458FE2D} deleted

C:\Users\Acer\AppData\Local\Packages\windows_ie_ac_001\AC\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted

C:\ProgramData\YoutubeAdblocker deleted

C:\PROGRA~2\YoutubeAdblocker deleted

C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Acer\AppData\Local\Temp ====

2014-02-01 17:10:12 BCB0728F4B117855765CE8FE883B5E9B 1536 ----a-w- C:\Users\Acer\AppData\Local\Temp\NOSEventMessages.dll

====== Java Cache =====

2014-01-28 12:33:09 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Acer\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-738b2536

====== C:\Windows\SysWOW64 =====

2014-01-23 16:44:27 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe

2014-01-23 16:44:21 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe

2014-01-23 16:44:21 A7871E39687EC6EE9712209DAE248B3A 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2014-01-23 16:44:21 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Windows\SysWOW64\java.exe

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2014-01-21 10:31:51 D41D8CD98F00B204E9800998ECF8427E 0 ----atw- C:\Windows\Sysnative\HP_192.168.1.12_MY5BPB3078045K

====== C:\Windows\Sysnative\drivers =====

2014-01-15 12:42:02 FFA06EF43987ED0DD42AD59B260C0C78 7808 ----a-w- C:\Windows\Sysnative\drivers\usbd.sys

2014-01-15 12:42:02 DD253AFC3BC6CBA412342DE60C3647F3 30720 ----a-w- C:\Windows\Sysnative\drivers\usbuhci.sys

2014-01-15 12:42:02 DCA68B0943D6FA415F0C56C92158A83A 99840 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys

2014-01-15 12:42:02 8D1196CFBB223621F2C67D45710F25BA 343040 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys

2014-01-15 12:42:02 765A92D428A8DB88B960DA5A8D6089DC 25600 ----a-w- C:\Windows\Sysnative\drivers\usbohci.sys

2014-01-15 12:42:02 18A85013A3E0F7E1755365D287443965 53248 ----a-w- C:\Windows\Sysnative\drivers\usbehci.sys

2014-01-15 12:42:02 12FEB33791920678F8433701C822BCFD 325120 ----a-w- C:\Windows\Sysnative\drivers\usbport.sys

2014-01-15 12:42:00 3555BA97171CD153118F73FDCCC8BFDE 376768 ----a-w- C:\Windows\Sysnative\drivers\netio.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-01-20 13:43:55 -------- d-----w- C:\Program Files\Common Files\DESIGNER

2014-01-20 13:43:01 -------- d-----w- C:\Program Files\Microsoft Synchronization Services

2014-01-20 13:42:22 -------- d-----w- C:\Program Files\Microsoft SQL Server Compact Edition

2014-01-20 13:40:07 -------- d-----w- C:\Program Files\Microsoft Analysis Services

2014-01-20 13:39:05 -------- d-----w- C:\Program Files\Microsoft Office

======= C:\PROGRA~2 =====

2014-01-27 18:46:40 -------- d-----w- C:\PROGRA~2\COMMON~1\DVDVideoSoft

2014-01-20 13:41:01 -------- d-----w- C:\PROGRA~2\Microsoft Visual Studio 8

2014-01-20 13:40:07 -------- d-----w- C:\PROGRA~2\Microsoft Analysis Services

2014-01-20 13:39:27 -------- d-----w- C:\PROGRA~2\Microsoft Office

======= C: =====

====== C:\Users\Acer\AppData\Roaming ======

2014-02-01 09:27:49 -------- d-----w- C:\Users\Acer\AppData\Locallow\AppData

2014-01-24 15:32:26 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp

2014-01-24 15:32:26 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp

2014-01-24 15:32:26 -------- d-----w- C:\Users\TEMP\AppData\Local\Temp

2014-01-24 15:32:26 -------- d-----w- C:\Users\TEMP.Acer-PC\AppData\Local\Temp

2014-01-24 15:32:26 -------- d-----w- C:\Users\Default\AppData\Local\Temp

2014-01-24 15:32:26 -------- d-----w- C:\Users\Default User\AppData\Local\Temp

2014-01-24 15:32:25 -------- d-----w- C:\Users\Acer\AppData\Local\Temp

2014-01-18 14:44:34 -------- d-----w- C:\Users\Acer\AppData\Local\Packages

2014-01-18 14:44:33 -------- d-----w- C:\Users\Acer\AppData\Locallow\{DA79A66D-54C4-3322-D3AC-366F1554CF67}

2014-01-18 14:44:27 -------- d-----w- C:\Users\Gast\AppData\Local\Torch

2014-01-18 14:44:27 -------- d-----w- C:\Users\Gast\AppData\Local\Google

2014-01-18 14:44:27 -------- d-----w- C:\Users\Gast\AppData\Local\Comodo

2014-01-18 14:44:27 -------- d-----w- C:\Users\Administrator\AppData\Local\Torch

2014-01-18 14:44:27 -------- d-----w- C:\Users\Administrator\AppData\Local\Google

2014-01-18 14:44:27 -------- d-----w- C:\Users\Administrator\AppData\Local\Comodo

2014-01-18 14:44:27 -------- d-----w- C:\Users\Acer\AppData\Local\Comodo

2014-01-09 17:54:22 -------- d-----w- C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup

====== C:\Users\Acer ======

2014-02-02 12:07:14 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Acer\Downloads\RSITx64.exe

2014-02-01 09:14:31 FBF37A32F1A41C250516D26670C16BA3 2002216 ----a-w- C:\Users\Acer\Downloads\DriverDetective.exe

2014-01-30 16:48:11 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\Users\Acer\Downloads\adwcleaner.exe

2014-01-28 10:15:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2014-01-23 16:44:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2014-01-23 12:18:25 -------- d-----r- C:\Users\Acer\Videos

2014-01-20 13:44:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint

2014-01-20 13:44:18 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

2014-01-18 14:44:27 -------- d-----w- C:\Users\Gast\AppData

2014-01-18 14:44:27 -------- d-----w- C:\Users\Administrator\AppData

====== C: exe-files ==

2014-02-02 12:07:14 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Acer\Downloads\RSITx64.exe

2014-02-01 09:14:31 FBF37A32F1A41C250516D26670C16BA3 2002216 ----a-w- C:\Users\Acer\Downloads\DriverDetective.exe

2014-01-30 16:48:11 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\Users\Acer\Downloads\adwcleaner.exe

2014-01-30 09:30:06 E242FFC794B9B012256FFDE6F1BD0FA5 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$IQ4OQ7H.exe

2014-01-30 09:29:34 C5BABB96D3544AA777D6DBF2CFA8493A 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$IKANHRO.exe

2014-01-30 09:29:21 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$RQ4OQ7H.exe

2014-01-30 09:29:21 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$RKANHRO.exe

2014-01-30 09:25:48 685916CCADCD782B71617F037406FDB2 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$I8KG915.exe

2014-01-30 09:25:18 20C59239160BA764F3DCF73B58654276 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$I2TX5H9.exe

2014-01-30 09:24:59 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$R8KG915.exe

2014-01-30 09:24:59 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$R2TX5H9.exe

2014-01-30 09:21:45 ECC069E36521ADA1ABDD8ABE99274CC0 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$IFRYBYC.exe

2014-01-30 09:20:56 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-2668737801-3381503766-2512015713-1000\$RFRYBYC.exe

2014-01-29 16:21:18 3CB03C134F7307866B3C52735CDFAE76 734208 ----a-w- C:\Windows\AutoKMS\AutoKMS.exe

2014-01-29 15:48:15 BD556495B9E1E00A2A55D4E6131C2EA0 981160 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\32.0.1700.102\32.0.1700.102_32.0.1700.76_chrome_updater.exe

2014-01-28 10:11:01 58372D53C6EFA49F9F2127AD786FE37A 77136 ----a-w- C:\ProgramData\Apple Computer\Installer Cache\iTunes 11.1.4.62\SetupAdmin.exe

2014-01-27 18:46:58 CCBCA63A46267D9C51D13DD45E39C950 6479328 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe

2014-01-27 18:46:57 FB80D60279748C61BBE6A5D442474480 297016 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\ffmpeg.exe

2014-01-27 18:46:54 51B87A6D097425319287EA6B7861D1E3 252472 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\dvsservice.exe

2014-01-27 18:46:44 A8EE3D926C79A59E194CEFE2AB877F1B 354816 ----a-w- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe

2014-01-27 18:46:40 6249023B121AEA5EECB0739DAF768C92 1176240 ----a-w- C:\Program Files (x86)\DVDVideoSoft\unins001.exe

=== C: other files ==

2014-01-28 15:35:27 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Acer\AppData\LocalLow\Microsoft\Silverlight\OutOfBrowser\index\js-repository.destinia.com

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"GoogleChromeAutoLaunch_7360584B616087257445E78FC1FAACF2"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"NokiaSuite.exe"="C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray"

"Google Update"="C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe /c"

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BackupManagerTray"="C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe -h -k"

"Norton Online Backup"="C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe"

"SuiteTray"="C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"

"EgisUpdate"="C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe -d"

"EgisTecPMMUpdate"="C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"

"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe"

"ArcadeDeluxeAgent"="C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"

"Reader Library Launcher"="C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"hpqSRMon"="C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe"

"AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"GoogleChromeAutoLaunch_7360584B616087257445E78FC1FAACF2"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window"

"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

"NokiaSuite.exe"="C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray"

"Google Update"="C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe /c"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="C:\\Users\\Acer\\AppData\\Local\\DProtect\\eBP.dll,C:\\Users\\Acer\\AppData\\Local\\DProtect\\eBPSD.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"mwlDaemon"="C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe"

"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

"PLFSetI"="C:\Windows\PLFSetI.exe"

"Acer ePower Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"

"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"

"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Registry Disabled ======================

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-]

"Google Update"="\"C:\\Users\\Acer\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]

"PlayMovie"="\"C:\\Program Files (x86)\\Acer Arcade Deluxe\\PlayMovie\\PMVService.exe\""

"HP Software Update"="C:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe"

"Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

"QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"

"SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

"iTunesHelper"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

==== Startup Folders ======================

2013-09-14 12:22:26 2103 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10-03-2012 16:10]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10-03-2012 16:10]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000Core.job --a------ C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe [12-02-2013 10:21]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000UA.job --a------ C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe [12-02-2013 10:21]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]

"C:\Windows\SysNative\tasks\Google Updater and Installer" [C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000Core" [C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000UA" [C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\HP-Online updateprogramma" [C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe]

"C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]

"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]

"C:\Windows\SysNative\tasks\{544C7FA0-F6C1-4F12-99DC-6C287F11A31D}" ["c:\users\acer\appdata\local\google\chrome\application\chrome.exe"]

"C:\Windows\SysNative\tasks\{7A8A6320-4F30-456B-9C69-02D1912D95E6}" ["c:\users\acer\appdata\local\google\chrome\application\chrome.exe"]

"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [14-09-2013 13:24]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [14-09-2013 13:24]

==== Chrome Look ======================

YouTube - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

AFAS Personal Bijwerk Assistent - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdcefkchgdibcdegcafkekacfdapplbo

Google Search - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

YoutubeAdblocker - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

Chrome In-App Payments service - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

YoutubeAdblocker - Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

YoutubeAdblocker - Acer\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Acer\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Acer\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

YoutubeAdblocker - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

YoutubeAdblocker - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

YoutubeAdblocker - Administrator\AppData\Local\Torch\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Administrator\AppData\Local\Torch\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Administrator\AppData\Local\Torch\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

YoutubeAdblocker - Administrator\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Administrator\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Administrator\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

YoutubeAdblocker - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

YoutubeAdblocker - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

YoutubeAdblocker - Gast\AppData\Local\Torch\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Gast\AppData\Local\Torch\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Gast\AppData\Local\Torch\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

YoutubeAdblocker - Gast\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna

websAvve - Gast\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif

SNT - Gast\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj

==== Chrome Fix ======================

C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Acer\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Administrator\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Gast\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\egmhfimpeemelioogffodmpjmobdalna deleted successfully

C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Acer\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Administrator\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Gast\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\klclopncpfdhenjjeccaahlfalbghfif deleted successfully

C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Acer\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Acer\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Administrator\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

C:\Users\Gast\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\mfedpephppdemiogllkpgoicgocfcckj deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted successfully

HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E51A1F78-F76F-D2D8-3352-11A18700CF9D} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\9c8f5d2c-a052-43cf-ab27-417a68a95644 deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CA41BB14-E67B-1653-C57B-5CA99418A866} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Acer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Acer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\TEMP\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\TEMP.Acer-PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=177 folders=66 378730 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\TEMP\AppData\Local\Temp emptied successfully

C:\Users\TEMP.Acer-PC\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\Acer\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Acer\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on zo 02-02-2014 at 16:13:18,66 ======================

Geplaatst:

Ga naar de site van ESET Online Scanner.

Klik op de knop “Run ESET Online Scanner”

In een apart scherm krijg je de vraag om EsetSmartInstaller te downloaden

Klik op de link van esetsmartinstaller_enu.exe en dan start de download automatisch op.

Kies voor “Download” van dit bestand.

Klik op “uitvoeren” van dit bestand esetsmartinstaller_enu.exe

Zet een vinkje bij “YES, I accept the Terms of Use”

Klik op “Start”

Klik op "Advanced settings"

Zet een vinkje bij de volgende opties:

  • Remove found threats
  • Scan archives
  • Scan for potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology

Klik op “Start”

De computer wordt nu gescand. Dit kan best lang duren, heb dus geduld.

Je mag het venster sluiten wanneer de scan klaar is.

Gebruik Kladblok om het logje te openen. Dit logje vind je op de locatie C:\\Program Files\\Eset\\EsetOnlineScanner\\log.txt

Kopieer en plak de inhoud van dit logje in je volgende bericht.

Geplaatst:

Hiermede de logfile. Scan duurde 3.41 uur.

Laat wat horen.

gr Ebonny

ESETSmartInstaller@High as downloader log:

all ok

# version=8

# OnlineScannerApp.exe=1.0.0.1

# OnlineScanner.ocx=1.0.0.6920

# api_version=3.0.2

# EOSSerial=8b1a7d6704390943b32337145518e3fc

# engine=16916

# end=finished

# remove_checked=true

# archives_checked=true

# unwanted_checked=true

# unsafe_checked=true

# antistealth_checked=true

# utc_time=2014-02-03 01:47:18

# local_time=2014-02-03 02:47:18 (+0100, West-Europa (standaardtijd))

# country="Netherlands"

# lang=1033

# osver=6.1.7601 NT Service Pack 1

# compatibility_mode=1023 16777215 0 0 0 0 0 0

# compatibility_mode=5893 16776573 100 94 263001 143065088 0 0

# scanned=247839

# found=47

# cleaned=47

# scan_time=13776

sh=C4420C6E94B8CAACCB3811384280D8A93CB0A37D ft=1 fh=25f111c507a31a21 vn="Win32/Toolbar.Conduit.R application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\Acer\AppData\Roaming\OpenCandy\82D032B25DE74596844E6993F12C4768\sp-downloader.exe.vir"

sh=08D4F25E992AEB0CE326F5323099D16DCF426092 ft=1 fh=cbc7640e64e04250 vn="a variant of Win32/AdInstaller application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\Allin1Convert (1).exe"

sh=08D4F25E992AEB0CE326F5323099D16DCF426092 ft=1 fh=cbc7640e64e04250 vn="a variant of Win32/AdInstaller application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\Allin1Convert.exe"

sh=2AAF2A54A81F31BBAB4F77F03C581C5D88B52005 ft=1 fh=3102d8575a5d9e7b vn="Win32/Malavida.A application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\alt-cda-to-mp3-converter-windows-downloader.exe"

sh=B84676762980EFB66FD0D0E4D4ADFC7CAF7D2B44 ft=1 fh=09067fec91dc7a87 vn="a variant of Win32/Toolbar.Babylon.C application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\Babylon9_setup.exe"

sh=03659459CF218748D115AB0EBD09E04AE43D9BC4 ft=1 fh=b7fea6e53bda36e3 vn="Win32/Bundled.Toolbar.Google.E application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\ccsetup323.exe"

sh=59C75B45AC46FAC8C4018205544938C46B1BA631 ft=1 fh=ab462a0af6e69b03 vn="Win32/Bundled.Toolbar.Google.D application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\ccsetup405 (1).exe"

sh=59C75B45AC46FAC8C4018205544938C46B1BA631 ft=1 fh=ab462a0af6e69b03 vn="Win32/Bundled.Toolbar.Google.D application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\ccsetup405.exe"

sh=DD6E088E22874B283348A15DB5159C7B20CC6D22 ft=1 fh=fe9dda6ca79832a6 vn="Win32/Bundled.Toolbar.Google.D application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\ccsetup407.exe"

sh=932E042070F1567ED5A116E98E3C04D7D07E0681 ft=1 fh=3bf8f6c29b1c29c3 vn="Win32/Bundled.Toolbar.Google.D application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\ccsetup409.exe"

sh=697FD04A0E4804D00EAEE329BD6F80232091088D ft=1 fh=f349249fbd4490fc vn="Win32/Bundled.Toolbar.Google.E application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\dfsetup208.exe"

sh=4DF5B2B98A9A5169C55C0A00F7B3AADB59FEBB20 ft=1 fh=d10a0c9e86e5849f vn="Win32/InstallMonetizer.AQ application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\disk-defrag-setup.exe"

sh=0BCF2FBAC2EE9B2AD1D5D93C54D3E18A193EB50F ft=1 fh=f9ec9fe6871e6576 vn="a variant of Win32/InstallCore.CH application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\DriverGuide_Driver_Download_1802568.exe"

sh=E1084DEBE1CEE63E0A94C2719A5D8A46044CCE98 ft=1 fh=10c3534d87b059ee vn="Win32/OpenCandy application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\FreemakeAudioConverterSetup.exe"

sh=6817BC60604A24E32363DC4D22827346F42EB2B4 ft=1 fh=ff35bb934b23bc10 vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\FreeYouTubeDownload.exe"

sh=86A282773F57B0ADD31BDB09B99A07D407243334 ft=1 fh=c0ec450a4000c596 vn="Win32/Toolbar.SearchSuite application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\iMeshSetup-r0-n-bi.exe"

sh=5C8F4A828B1D033B243EF401CFCD656B4E2009FA ft=1 fh=f74b67611deec50e vn="Win32/InstalleRex.M application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\Office 2010 Activator (KMS) !!.exe"

sh=BCBD47A2AFB0A7956BBF88F9F625E00D17319CAB ft=1 fh=220efb76e017b9c0 vn="Win32/RegistryBooster application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\registrybooster (1).exe"

sh=BCBD47A2AFB0A7956BBF88F9F625E00D17319CAB ft=1 fh=220efb76e017b9c0 vn="Win32/RegistryBooster application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\registrybooster.exe"

sh=38DFCA2D408BCB3B77E7BE944F3B307F220AA7A4 ft=1 fh=18328023d6824334 vn="Win32/Bundled.Toolbar.Google.D application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\spsetup123.exe"

sh=15053839452CA3C1DAABEA1D3452CC69BBF6F385 ft=1 fh=9c1de6154a8e49a9 vn="a variant of Win32/AdInstaller application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Downloads\VideoDownloadConvert.exe"

sh=B761D358A33A5090D81E88F803F8CA4E951C1DD9 ft=1 fh=aa7e1921759d6cf9 vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Shared\Download_Energy.exe"

sh=86E361A663E1D75EB718CD881A5AEE3A9B4C6A48 ft=1 fh=4ac98e2c8383198d vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Acer\Shared\limewire-music-free.exe"

sh=53D5C81EEE1D9397AD6657088A49D72343022203 ft=1 fh=042b7b16c5a7260b vn="MSIL/HackKMS.A application (cleaned by deleting - quarantined)" ac=C fn="C:\Windows\AutoKMS\AutoKMS.exe"

sh=1FF19655D5721DEDC7E964CD01539100151B7D39 ft=0 fh=0000000000000000 vn="a variant of Win32/Bundled.Toolbar.Ask.F application (deleted - quarantined)" ac=C fn="C:\Windows\Installer\6dbb4.msi"

sh=20BC737CECB01306E322EB9D25D6408258451396 ft=1 fh=a29116872435616e vn="a variant of Win32/Adware.Kazaa.A application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\kazaa_setup.exe"

sh=35859829223208C2846F5C3D089378BCB8A14DD3 ft=1 fh=3f5faf2193fe0594 vn="Win32/SoftonicDownloader.E application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\SoftonicDownloader_voor_acdsee-photo-manager.exe"

sh=410ECE7497EEA8E037CDB927C151DB2D406E70C1 ft=1 fh=01bef068c566cabf vn="a variant of Win32/InstallCore.E application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\acer manuel\PDFReaderSetup.exe"

sh=662ABDEF654C82CFB9E0187BBA3F40FBB6A2DC33 ft=1 fh=5fefdf50337d495e vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Converter 2012 sept\WiseConvert_1.4.exe"

sh=8B79B43E013C86D72FAA2B032EE24AD84DA3D73D ft=1 fh=bba4c270cf12c177 vn="Win32/Toolbar.SearchSuite application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Converter okt 2011\cleaner.exe"

sh=5F71467BF54C260FD6CFD44A6EBF49BAED54964F ft=1 fh=1988af5f4f490573 vn="Win32/Toolbar.SearchSuite application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Converter okt 2011\Setup_FreeVideoConverter 1.exe"

sh=5F71467BF54C260FD6CFD44A6EBF49BAED54964F ft=1 fh=1988af5f4f490573 vn="Win32/Toolbar.SearchSuite application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Converter okt 2011\Setup_FreeVideoConverter.exe"

sh=A98F053888DC0ED71532E247C25DE99E2D3C9F6F ft=1 fh=67590fa44f284255 vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Flash player\install_flashplayer.exe"

sh=8A99BC296BA9FE1CD6779C22BE2C56797F293ABC ft=1 fh=c794c911e5218ade vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Flash player 7-05-2010\install_flashplayer.exe"

sh=A98F053888DC0ED71532E247C25DE99E2D3C9F6F ft=1 fh=67590fa44f284255 vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Flashplayer\install_flashplayer.exe"

sh=263D39584EB1F46172CAE96086AC8C8B08350FF3 ft=1 fh=07760a3e47d7975f vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\imesh\iMeshV9.exe"

sh=5BDDD392F91655827B0F4B1C0B5F6A6375D7A273 ft=1 fh=1ac6294a74c238c1 vn="multiple threats (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Labels\audiolabel cd dvd labeler.exe"

sh=FBD4E869B5DD5043E316E1E86AC56A28C9D22CB2 ft=1 fh=3f5910f4468d2f06 vn="Win32/Toggle.C application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\lime\LimeWireWin.exe"

sh=42A1904D206E00763D18BF7152B5D72D85D7955E ft=1 fh=7551ea86d9893278 vn="Win32/RegistryBooster application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\NZB Repair tool\registrybooster.exe"

sh=791BE30294C8A1B7C96F4532BAC49209B0D92B3C ft=1 fh=dde0911f1670010d vn="Win32/RegistryReviver application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\NZB Repair tool\RegistryReviverInstall.exe"

sh=F90519CF17FD099A800E48F4ACACCD9DCA98123F ft=1 fh=e2e69d5332c34223 vn="Win32/Toolbar.SearchSuite application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Tune up\FixBeeV1.exe"

sh=8541FA1A7BE4A936EB6CD10B16A62A36151314ED ft=1 fh=f01c0767f31785d8 vn="Win32/AdInstaller application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\Video converter 2013\VideoDownloadConvert.exe"

sh=B30849457AF2ECE8D24307CF3A332F12F4545224 ft=1 fh=8b84f08746b7f899 vn="Win32/OpenCandy application (cleaned by deleting - quarantined)" ac=C fn="D:\Bewaar\Download internet\YOU TUB MUZIEK\FreeYouTubeToMP3Converter.exe"

sh=14065EF65D6AC78EDB8C94D5DE8A117BEC568B48 ft=0 fh=0000000000000000 vn="Android/Adware.BatteryDoctor.C application (deleted - quarantined)" ac=C fn="D:\Tel Alice\download\Battery_Upgrade--Tap_to_Start-1.apk"

sh=14065EF65D6AC78EDB8C94D5DE8A117BEC568B48 ft=0 fh=0000000000000000 vn="Android/Adware.BatteryDoctor.C application (deleted - quarantined)" ac=C fn="D:\Tel Alice\download\Battery_Upgrade--Tap_to_Start-2.apk"

sh=14065EF65D6AC78EDB8C94D5DE8A117BEC568B48 ft=0 fh=0000000000000000 vn="Android/Adware.BatteryDoctor.C application (deleted - quarantined)" ac=C fn="D:\Tel Alice\download\Battery_Upgrade--Tap_to_Start-3.apk"

sh=2E8F01AE31ED51D8436A13A228EA5B8326B9160C ft=0 fh=0000000000000000 vn="a variant of Android/Adware.Mobsqueeze.A application (deleted - quarantined)" ac=C fn="D:\Tel Alice\download\Battery_Upgrade--Tap_to_Start.apk"

Geplaatst:

Download 52147fb3b2536-AdwCleaner_99_3_16x16x32.pngAdwCleaner by Xplode naar het bureaublad.

AdwCleaner uitvoeren

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik vervolgens op de knop Scan.
  • Wanneer de scan gereed is Klikt u vervolgens op de knop Clean.
  • Als dit gereed is wordt er gevraagd om de computer opnieuw op te starten, klik hier op OK.
  • Nadat de computer opnieuw is opgestart wordt het logbestand automatisch geopend.
  • Plaats dit logbestand in het volgende bericht.

Geplaatst:

Hiermede het log bestandje. Ik weet niet wat het allemaal betekend.

gr Ebonny

AdwCleaner v3.018 - Report created 03/02/2014 at 17:52:57

# Updated 28/01/2014 by Xplode

# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

# Username : Acer - ACER-PC

# Running from : C:\Users\Acer\Downloads\adwcleaner.exe

# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

-\\ Google Chrome v32.0.1700.102

[ File : C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [1935 octets] - [01/02/2014 19:46:28]

AdwCleaner[R1].txt - [879 octets] - [03/02/2014 17:52:08]

AdwCleaner[s0].txt - [1701 octets] - [01/02/2014 19:47:08]

AdwCleaner[s1].txt - [801 octets] - [03/02/2014 17:52:57]

########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [860 octets] ##########

Geplaatst:

Nee nog niet gehad. Mogelijk opgelost. Wat is er nu gedaan?

Weet jij misschien een free converter PDF to word?

Ik had er een maar bij het downloaden kreeg ik verschillende ander programma's mee wat zeer irritant is en de converter werkte ook niet.

gr Ebonny

Geplaatst:

Download 51a5ce45263de-delfix.pngDelfix by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.

Zet nu vinkjes voor de volgende items:

  • Remove disinfection tools
  • Purge System Restore
  • Reset system settings

Klik nu op "Run" en wacht geduldig tot de tool gereed is.

Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

Kijk voor de conversie eens bij ZAMZAR.

Indien dit allemaal probleemloos verlopen is en je binnen dit topic verder geen vragen of problemen meer hebt, mag je dit onderwerp afsluiten door een klik op de knop "Markeer als opgelost", die je links onderaan kan terugvinden … zo blijft het voor iedereen overzichtelijk.

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.