Ik heb even een vraag bij mensen daar wilde ik het schoonmaak plan uitvoeren maar adw cleaner die starte goed op maar als ik klik op verwijderen dan slaat het vast na 5%..
Verschilldne keren geprobeerd maar het lukte niet om adw cleaner te draaien. ?
Ik heb nu de computer niet bij me, vrijdag op zijn vroegst.
gr Jordan
Hallo,
Lukt adw-cleaner nu niet doe het volgende:
Download de
Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met JRT
(hier of hier) kan je lezen hoe je de gebruikte beveiligingssoftware kunt uitschakelen.
Dubbelklik op JRT.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
De tool zal vervolgens het systeem scannen.
De scan kan afhankelijk van je systeemspecificaties soms vrij lang duren, wacht geduldig af.
Als de scan gereed is zal er een logje (JRT.txt) op het bureaublad opgeslagen worden en automatisch worden geopend.
Post de inhoud van deze log in je volgende bericht.
Gr.Ben
Hallo,
Ik heb gisteren op mijn laptop spybot gedraaid maar met het verwijderen van de gevonden resultaten is er teveel verwijdert dus mijn laptop starte niet goed op, ik ben er wel ingeslaagd om een herstel bewerking uit te voeren.
Zullen jullie willen kijken of dat de logje er goed uitzien?ben er niet helemaal zeker van.(ps mijn laatste bericht daar heb ik nog geen tijd voor gahad om dat verder af te maken , van vorige week)
# AdwCleaner v3.001 - Report created 29/08/2013 at 07:50:28
# Updated 24/08/2013 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Jordan - JORDAN
# Running from : C:\Users\Jordan\Downloads\adwcleaner(3).exe
# Option : Clean
***** *****
***** *****
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\Jordan\AppData\Roaming\Mozilla\Firefox\Profiles\aaflq5lh.default\\invalidprefs.js
***** *****
***** *****
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\systweak
***** *****
-\\ Internet Explorer v10.0.9200.16660
-\\ Mozilla Firefox v23.0.1 (nl)
*************************
AdwCleaner.txt - -
AdwCleaner.txt - -
AdwCleaner.txt - -
########## EOF - C:\AdwCleaner\AdwCleaner.txt - ##########
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Databaseversie: v2013.08.28.05
Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16660
Jordan :: JORDAN
28-8-2013 20:15:57
mbam-log-2013-08-28 (20-15-57).txt
Scan type: Volledige scan (C:\|D:\|)
Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scan opties: P2P
Objecten gescand: 199283
Verstreken tijd: 52 minuut/minuten, 5 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
(einde)
Logfile of random's system information tool 1.09 (written by random/random)
Run by Jordan Kersten at 2013-08-29 10:03:28
Microsoft Windows 8
System drive C: has 586 GB (84%) free of 698 GB
Total RAM: 5578 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:03:48, on 29-8-2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16660)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
C:\Program Files\trend micro\Jordan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: “C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe” MSRun
O4 - HKLM\..\Run: C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\AVG\AVG2013\avgui.exe” /TRAYONLY
O4 - HKLM\..\Run: “C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe”
O4 - HKCU\..\Run: “C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe” /autoclean
O4 - HKCU\..\Run: “C:\Users\Jordan Kersten\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
O4 - HKLM\..\Policies\Explorer\Run: “C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe”
O4 - HKUS\S-1-5-19\..\RunOnce: msiexec.exe /qn /x{voidguid} (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\RunOnce: msiexec.exe /qn /x{voidguid} (User ‘NETWORK SERVICE’)
O4 - HKUS\S-1-5-18\..\RunOnce: msiexec.exe /qn /x{voidguid} (User ‘SYSTEM’)
O4 - HKUS\.DEFAULT\..\RunOnce: msiexec.exe /qn /x{voidguid} (User ‘Default user’)
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra ‘Tools’ menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra ‘Tools’ menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O9 - Extra ‘Tools’ menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O11 - Options group: Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Online Games Manager (ogmservice) - RealNetworks, Inc. - C:\Program Files (x86)\Online Games Manager\ogmservice.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
–
End of file - 11614 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2013\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=44e5d90f-b9e6-411a-8c38-c500eaeebb11 /coreSdkOptions=4382 /logConfFile=“C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\61442659-7e13-4758-aa52-435fb2c92102-1b8-oopp.tmp” /loggerName=AVG.RS.Core /binaryPath=“C:\Program Files (x86)\AVG\AVG2013\” /registryPath=“SYSTEM\CurrentControlSet\Services\Avg\Avg2013” /tempPath=“C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\”
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
“dwm.exe”
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
“C:\Program Files\Classic Shell\ClassicShellService.exe”
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
“C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe”
“C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe”
“C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe”
“C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe”
“C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe”
C:\Windows\system32\CxAudMsg64.exe
“C:\Program Files (x86)\Launch Manager\dsiwmis.exe”
dashost.exe {d271a837-9aa4-4938-b54f7f7cf55f87b1}
“C:\Program Files\Elantech\ETDService.exe”
“C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe”
“C:\Program Files (x86)\Online Games Manager\ogmservice.exe” –service-run
C:\Windows\RfBtnSvc64.exe
“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe”
“C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe”
“C:\Program Files (x86)\AVG\AVG2013\avgemca.exe”
C:\Windows\system32\svchost.exe -k imgsvc
“C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe”
taskhostex.exe
“C:\Program Files\Classic Shell\ClassicStartMenu.exe” -startup
“C:\Program Files (x86)\Launch Manager\LMutilps32.exe” –system-level –system-level-mutex=“Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}” –enable-wmi-window –enable-setforeground-window –enable-kbhook-window
“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe”
“C:\Program Files\Elantech\ETDCtrl.exe”
C:\Windows\Explorer.EXE
“C:\Program Files (x86)\Launch Manager\LManager.exe”
“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe”
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
“C:\Program Files\Elantech\ETDTouch.exe”
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
“C:\Program Files\Elantech\ETDCtrlHelper.exe”
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
“C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe”
“C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe”
“C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe”
“C:\Program Files\Acer\Acer Power Management\ePowerTray.exe”
“C:\Program Files (x86)\Mozilla Firefox\firefox.exe”
“C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe”
“C:\Program Files (x86)\AVG\AVG2013\avgui.exe” /TRAYONLY
“C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe”
C:\Windows\system32\wbem\unsecapp.exe -Embedding
“C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe”
“C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe”
“C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM” PriorityLow
“C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe” 0
“C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe”
“C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe”
“C:\Program Files\Windows Media Player\wmpnetwk.exe”
“C:\Windows\system32\SearchProtocolHost.exe” Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 “Software\Microsoft\Windows Search” “Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)” “C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc” “DownLevelDaemon”
“C:\Windows\system32\SearchFilterHost.exe” 0 568 572 580 65536 576
C:\Windows\system32\msiexec.exe /V
“C:\Users\Jordan Kersten\Downloads\RSITx64.exe”
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2642031841-2776368873-2395268217-1001Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2642031841-2776368873-2395268217-1001UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Jordan \AppData\Roaming\Mozilla\Firefox\Profiles\aaflq5lh.default
“Description”=Adobe® Flash® Player 11.8.800.94 Plugin
“Path”=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
“Description”=Java™ Deployment Toolkit
“Path”=C:\Windows\SysWOW64\npDeployJava1.dll
“Description”=Ag Player Plugin
“Path”=c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll
“Description”=WLPG Install MIME type
“Path”=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
“Description”=WLPG Install MIME type
“Path”=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
“Description”=Google Update
“Path”=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
“Description”=Google Update
“Path”=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
“Description”=Handles PDFs in-place in Firefox
“Path”=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
“Description”=Adobe® Flash® Player 11.8.800.94 Plugin
“Path”=C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll
“Description”=Ag Player Plugin
“Path”=c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
C:\Users\Jordan\AppData\Roaming\Mozilla\Firefox\Profiles\aaflq5lh.default\searchplugins\
bingp.xml
======Registry dump======
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll
CIESpeechBHO Class - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll
Spybot-S&D IE Protection - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll
“ETDCtrl”=C:\Program Files\Elantech\ETDCtrl.exe
“BtPreLoad”=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe
“BtvStack”=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
“Spybot-S&D Cleaning”=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
“Spotify Web Helper”=C:\Users\Jordan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
“LManager”=
“StartCCC”=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
“AmIcoSinglun64”=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
“AVG_UI”=C:\Program Files (x86)\AVG\AVG2013\avgui.exe
“GrooveMonitor”=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
“Adobe ARM”=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
“SDTray”=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
“BtvStack”=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
“{B5A7F190-DDA6-4420-B3BA-52453494E6CD}”=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
“SecurityProviders”=credssp.dll
“ConsentPromptBehaviorAdmin”=5
“EnableUIADesktopToggle”=0
“EnableCursorSuppression”=1
“ConsentPromptBehaviorUser”=3
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“DisableCAD”=1
(vervolg in tweede gedeelte)
“ForceActiveDesktopOn”=0
“NoActiveDesktopChanges”=1
“NoActiveDesktop”=1
“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe”=“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon”
“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe”=“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service”
“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe”=“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater”
“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe”=“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service”
“msacm.l3acm”=C:\Windows\System32\l3codeca.acm
“VIDC.YUY2”=msyuv.dll
“vidc.i420”=iyuv_32.dll
“msacm.msgsm610”=msgsm32.acm
“msacm.msg711”=msg711.acm
“VIDC.YVYU”=msyuv.dll
“VIDC.YVU9”=tsbyuv.dll
“wavemapper”=msacm32.drv
“midimapper”=midimap.dll
“VIDC.UYVY”=msyuv.dll
“VIDC.IYUV”=iyuv_32.dll
“vidc.mrle”=msrle32.dll
“msacm.imaadpcm”=imaadp32.acm
“msacm.msadpcm”=msadp32.acm
“vidc.msvc”=msvidc32.dll
“MSVideo8”=VfWWDM32.dll
“wave”=wdmaud.drv
“midi”=wdmaud.drv
“mixer”=wdmaud.drv
“aux”=wdmaud.drv
“wave1”=wdmaud.drv
“midi1”=wdmaud.drv
“mixer1”=wdmaud.drv
“aux1”=wdmaud.drv
“wave2”=wdmaud.drv
“mixer2”=wdmaud.drv
“midi2”=wdmaud.drv
“wave3”=wdmaud.drv
“mixer3”=wdmaud.drv
“midi3”=wdmaud.drv
“wave4”=wdmaud.drv
“mixer4”=wdmaud.drv
“midi4”=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe “%1” %*
======List of files/folders created in the last 1 month======
2013-08-29 10:03:28 —-D—- C:\rsit
2013-08-29 10:03:28 —-D—- C:\Program Files\trend micro
2013-08-29 07:47:26 —-D—- C:\AdwCleaner
2013-08-29 06:55:01 —-A—- C:\Windows\system32\FNTCACHE.DAT
2013-08-27 20:36:42 —-D—- C:\Users\Jordan \AppData\Roaming\TeamViewer
2013-08-27 19:59:19 —-D—- C:\Program Files (x86)\TeamViewer
2013-08-27 19:51:33 —-D—- C:\Users\Jordan\AppData\Roaming\Media Player Classic
2013-08-26 17:59:39 —-A—- C:\Windows\SYSWOW64\unrar.dll
2013-08-26 17:59:39 —-A—- C:\Windows\system32\unrar64.dll
2013-08-26 17:59:35 —-D—- C:\Program Files (x86)\K-Lite Codec Pack
2013-08-19 14:58:03 —-A—- C:\AdwCleaner.txt
2013-08-18 12:16:19 —-A—- C:\Windows\SYSWOW64\msftedit.dll
2013-08-18 12:16:19 —-A—- C:\Windows\system32\win32k.sys
2013-08-18 12:16:18 —-A—- C:\Windows\system32\IKEEXT.DLL
2013-08-18 12:16:17 —-A—- C:\Windows\system32\msftedit.dll
2013-08-18 12:16:16 —-A—- C:\Windows\SYSWOW64\oleaut32.dll
2013-08-18 12:16:16 —-A—- C:\Windows\system32\oleaut32.dll
2013-08-18 12:16:16 —-A—- C:\Windows\system32\localspl.dll
2013-08-18 12:16:16 —-A—- C:\Windows\system32\gdi32.dll
2013-08-18 12:16:15 —-A—- C:\Windows\system32\FWPUCLNT.DLL
2013-08-18 12:16:15 —-A—- C:\Windows\system32\BFE.DLL
2013-08-18 12:16:14 —-A—- C:\Windows\SYSWOW64\winmm.dll
2013-08-18 12:16:14 —-A—- C:\Windows\system32\wwanconn.dll
2013-08-18 12:16:14 —-A—- C:\Windows\system32\WerFault.exe
2013-08-18 12:16:14 —-A—- C:\Windows\system32\drivers\Classpnp.sys
2013-08-18 12:16:13 —-A—- C:\Windows\SYSWOW64\winmmbase.dll
2013-08-18 12:16:13 —-A—- C:\Windows\SYSWOW64\WerFault.exe
2013-08-18 12:16:13 —-A—- C:\Windows\system32\wwansvc.dll
2013-08-18 12:16:13 —-A—- C:\Windows\system32\WinSCard.dll
2013-08-18 12:16:13 —-A—- C:\Windows\system32\winmmbase.dll
2013-08-18 12:16:13 —-A—- C:\Windows\system32\winmm.dll
2013-08-18 12:16:13 —-A—- C:\Windows\system32\wcmsvc.dll
2013-08-18 12:16:12 —-A—- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2013-08-18 12:16:12 —-A—- C:\Windows\system32\drivers\sdbus.sys
2013-08-18 12:16:12 —-A—- C:\Windows\system32\drivers\msgpioclx.sys
2013-08-18 12:16:12 —-A—- C:\Windows\system32\drivers\HdAudio.sys
2013-08-18 12:16:12 —-A—- C:\Windows\system32\drivers\dumpsd.sys
2013-08-18 12:16:11 —-A—- C:\Windows\SYSWOW64\gdi32.dll
2013-08-18 12:16:11 —-A—- C:\Windows\system32\Wwanadvui.dll
2013-08-18 12:16:11 —-A—- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2013-08-18 12:16:11 —-A—- C:\Windows\system32\wcmcsp.dll
2013-08-18 12:16:11 —-A—- C:\Windows\system32\openfiles.exe
2013-08-18 12:16:11 —-A—- C:\Windows\system32\drivers\wfplwfs.sys
2013-08-18 12:16:11 —-A—- C:\Windows\system32\drivers\USBSTOR.SYS
2013-08-18 12:16:10 —-A—- C:\Windows\SYSWOW64\WinSCard.dll
2013-08-18 12:16:10 —-A—- C:\Windows\SYSWOW64\openfiles.exe
2013-08-18 12:16:10 —-A—- C:\Windows\SYSWOW64\nshwfp.dll
2013-08-18 12:16:10 —-A—- C:\Windows\SYSWOW64\LocationApi.dll
2013-08-18 12:16:10 —-A—- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-08-18 12:16:10 —-A—- C:\Windows\system32\wwanmm.dll
2013-08-18 12:16:10 —-A—- C:\Windows\system32\nshwfp.dll
2013-08-18 12:16:10 —-A—- C:\Windows\system32\LocationApi.dll
2013-08-18 12:16:10 —-A—- C:\Windows\system32\drivers\udfs.sys
2013-08-17 10:57:11 —-D—- C:\Program Files (x86)\Mozilla Firefox
2013-08-16 11:19:48 —-A—- C:\Windows\system32\drivers\WdFilter.sys
2013-08-16 11:19:48 —-A—- C:\Windows\system32\drivers\WdBoot.sys
2013-08-15 13:43:04 —-D—- C:\Program Files\Classic Shell
2013-08-15 13:42:52 —-A—- C:\Windows\SYSWOW64\rpcrt4.dll
2013-08-15 13:42:52 —-A—- C:\Windows\system32\rpcrt4.dll
2013-08-15 13:42:50 —-A—- C:\Windows\system32\drivers\tcpip.sys
2013-08-15 13:42:07 —-A—- C:\Windows\SYSWOW64\iernonce.dll
2013-08-15 13:42:07 —-A—- C:\Windows\system32\uxtheme.dll
2013-08-15 13:42:07 —-A—- C:\Windows\system32\UXInit.dll
2013-08-15 13:42:06 —-A—- C:\Windows\SYSWOW64\uxtheme.dll
2013-08-15 13:42:06 —-A—- C:\Windows\SYSWOW64\UXInit.dll
2013-08-15 13:42:06 —-A—- C:\Windows\SYSWOW64\urlmon.dll
2013-08-15 13:42:06 —-A—- C:\Windows\SYSWOW64\jsproxy.dll
2013-08-15 13:42:06 —-A—- C:\Windows\SYSWOW64\iesetup.dll
2013-08-15 13:42:05 —-A—- C:\Windows\SYSWOW64\msfeeds.dll
2013-08-15 13:42:05 —-A—- C:\Windows\SYSWOW64\ieframe.dll
2013-08-15 13:42:03 —-A—- C:\Windows\SYSWOW64\wininet.dll
2013-08-15 13:42:03 —-A—- C:\Windows\SYSWOW64\iesysprep.dll
2013-08-15 13:42:03 —-A—- C:\Windows\system32\jsproxy.dll
2013-08-15 13:42:03 —-A—- C:\Windows\system32\iernonce.dll
2013-08-15 13:42:03 —-A—- C:\Windows\system32\ie4uinit.exe
2013-08-15 13:42:02 —-A—- C:\Windows\system32\urlmon.dll
2013-08-15 13:42:02 —-A—- C:\Windows\system32\msfeeds.dll
2013-08-15 13:42:00 —-A—- C:\Windows\system32\wininet.dll
2013-08-15 13:42:00 —-A—- C:\Windows\system32\iesysprep.dll
2013-08-15 13:42:00 —-A—- C:\Windows\system32\iesetup.dll
2013-08-15 13:41:58 —-A—- C:\Windows\system32\ieframe.dll
2013-08-15 13:41:52 —-A—- C:\Windows\system32\jscript.dll
2013-08-15 13:41:50 —-A—- C:\Windows\system32\mshtml.dll
2013-08-15 13:41:26 —-A—- C:\Windows\SYSWOW64\jscript.dll
2013-08-15 13:41:26 —-A—- C:\Windows\system32\iertutil.dll
2013-08-15 13:41:25 —-A—- C:\Windows\system32\jscript9.dll
2013-08-15 13:41:24 —-A—- C:\Windows\SYSWOW64\iertutil.dll
2013-08-15 13:41:14 —-A—- C:\Windows\SYSWOW64\jscript9.dll
2013-08-15 13:41:13 —-A—- C:\Windows\SYSWOW64\mshtml.dll
2013-08-15 07:36:24 —-A—- C:\Windows\SYSWOW64\crypt32.dll
2013-08-15 07:36:24 —-A—- C:\Windows\system32\crypt32.dll
2013-08-15 07:36:23 —-A—- C:\Windows\SYSWOW64\wintrust.dll
2013-08-15 07:36:23 —-A—- C:\Windows\system32\wintrust.dll
2013-08-15 07:36:23 —-A—- C:\Windows\system32\apprepapi.dll
2013-08-15 07:36:22 —-A—- C:\Windows\SYSWOW64\apprepsync.dll
2013-08-15 07:36:22 —-A—- C:\Windows\SYSWOW64\apprepapi.dll
2013-08-15 07:36:22 —-A—- C:\Windows\system32\cryptsvc.dll
2013-08-15 07:36:22 —-A—- C:\Windows\system32\apprepsync.dll
2013-08-13 18:05:36 —-D—- C:\Program Files (x86)\Mozilla Thunderbird
2013-08-06 17:13:20 —-D—- C:\Program Files (x86)\Google
2013-08-06 15:42:14 —-D—- C:\Users\Jordan Kersten\AppData\Roaming\Winamp
2013-08-06 15:42:14 —-D—- C:\Program Files (x86)\Winamp
2013-08-02 12:19:54 —-D—- C:\ProgramData\Spotnet
2013-08-02 12:19:54 —-D—- C:\Program Files (x86)\Spotnet
======List of files/folders modified in the last 1 month======
2013-08-29 10:03:28 —-RD—- C:\Program Files
2013-08-29 10:02:03 —-D—- C:\Windows\system32\sru
2013-08-29 10:01:25 —-D—- C:\Windows\Temp
2013-08-29 09:55:00 —-D—- C:\Windows\Prefetch
2013-08-29 08:12:59 —-D—- C:\ProgramData\MFAData
2013-08-29 07:50:29 —-RD—- C:\Windows\System32
2013-08-29 07:21:31 —-D—- C:\Windows
2013-08-29 07:21:30 —-D—- C:\Windows\system32\wbem
2013-08-29 07:17:51 —-D—- C:\Program Files (x86)\Internet Explorer
2013-08-29 07:17:39 —-D—- C:\Program Files\CCleaner
2013-08-29 07:14:30 —-RSD—- C:\Windows\Fonts
2013-08-29 07:14:29 —-D—- C:\Windows\system32\drivers\etc
2013-08-29 07:14:29 —-D—- C:\Windows\system32\catroot2
2013-08-29 07:14:27 —-D—- C:\Windows\SysWOW64
2013-08-29 07:14:27 —-D—- C:\Windows\system32\Sysprep
2013-08-29 07:14:22 —-D—- C:\Windows\WinSxS
2013-08-29 07:14:22 —-D—- C:\Windows\Tasks
2013-08-29 07:13:02 —-D—- C:\Windows\registration
2013-08-29 06:58:44 —-D—- C:\Windows\Inf
2013-08-29 06:58:37 —-SHD—- C:\System Volume Information
2013-08-28 21:07:49 —-RD—- C:\Program Files (x86)
2013-08-28 21:07:49 —-A—- C:\Windows\wininit.ini
2013-08-28 19:45:37 —-D—- C:\Users\Jordan\AppData\Roaming\Skype
2013-08-28 17:33:30 —-D—- C:\Windows\Microsoft.NET
2013-08-28 17:08:15 —-D—- C:\Windows\SoftwareDistribution
2013-08-28 17:03:04 —-D—- C:\Windows\Minidump
2013-08-27 19:59:37 —-D—- C:\Windows\system32\Tasks
2013-08-27 07:46:19 —-D—- C:\Windows\AUInstallAgent
2013-08-27 07:44:24 —-HD—- C:\Program Files\WindowsApps
2013-08-26 19:39:19 —-D—- C:\Windows\system32\NDF
2013-08-25 16:16:58 —-HD—- C:\ProgramData
2013-08-24 19:53:20 —-D—- C:\Windows\debug
2013-08-23 17:50:32 —-D—- C:\Windows\system32\config
2013-08-23 16:43:52 —-A—- C:\Windows\system32\PerfStringBackup.INI
2013-08-19 15:00:20 —-D—- C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-19 14:58:53 —-D—- C:\Windows\WinStore
2013-08-19 14:58:52 —-D—- C:\Windows\system32\oobe
2013-08-19 14:58:51 —-D—- C:\Windows\system32\Drivers
2013-08-19 14:58:46 —-D—- C:\Windows\SYSWOW64\drivers
2013-08-19 14:58:46 —-D—- C:\Windows\system32\DriverStore
2013-08-18 12:16:54 —-D—- C:\Windows\CbsTemp
2013-08-17 18:04:19 —-RD—- C:\Windows\assembly
2013-08-16 19:10:58 —-D—- C:\Windows\rescache
2013-08-16 18:22:53 —-D—- C:\Program Files\Windows Defender
2013-08-16 18:22:52 —-D—- C:\Program Files (x86)\Windows Defender
2013-08-16 18:22:51 —-D—- C:\Windows\SYSWOW64\nl-NL
2013-08-16 18:22:51 —-D—- C:\Windows\system32\nl-NL
2013-08-16 18:22:41 —-D—- C:\Program Files\Internet Explorer
2013-08-16 11:42:38 —-SHD—- C:\Windows\Installer
2013-08-16 11:42:36 —-SHD—- C:\Config.Msi
2013-08-16 11:39:16 —-D—- C:\ProgramData\Microsoft Help
2013-08-16 11:36:38 —-D—- C:\Windows\system32\MRT
2013-08-16 11:32:25 —-A—- C:\Windows\system32\MRT.exe
2013-08-15 13:54:24 —-RD—- C:\Users
2013-08-11 20:40:37 —-D—- C:\Users\Jordan\AppData\Roaming\Spotify
2013-08-06 18:27:23 —-SD—- C:\Users\Jordan\AppData\Roaming\Microsoft
2013-08-06 17:08:32 —-D—- C:\Users\Jordan \AppData\Roaming\Atheros
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\Windows\System32\drivers\ACPI.sys
R0 acpiex;Microsoft ACPIEx Driver; C:\Windows\System32\Drivers\acpiex.sys
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\Windows\System32\drivers\CLFS.sys
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\Windows\System32\drivers\disk.sys
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\System32\drivers\fileinfo.sys
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\Windows\system32\drivers\fltmgr.sys
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys
R0 KSecDD;KSecDD; C:\Windows\System32\Drivers\ksecdd.sys
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\Windows\System32\drivers\mountmgr.sys
R0 msisadrv;msisadrv; C:\Windows\System32\drivers\msisadrv.sys
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\Windows\System32\Drivers\mup.sys
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\Windows\system32\drivers\ndis.sys
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\Windows\System32\drivers\partmgr.sys
R0 pci;@machine.inf,%pci_svcdesc%;PCI Bus Driver; C:\Windows\System32\drivers\pci.sys
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\Windows\system32\drivers\pdc.sys
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\Windows\System32\drivers\spaceport.sys
R0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\Windows\System32\drivers\storahci.sys
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\Windows\System32\drivers\tcpip.sys
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\Windows\System32\drivers\vdrvroot.sys
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\Windows\System32\drivers\volmgr.sys
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\Windows\System32\drivers\volsnap.sys
R0 Wd;@wd.inf,%WdServiceDisplayName%;Microsoft Watchdog Timer Driver; C:\Windows\System32\drivers\wd.sys
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\Windows\system32\drivers\Wdf01000.sys
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\Windows\system32\drivers\afd.sys
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys
R1 Avgwfpa;AVG Firewall Driver; C:\Windows\system32\DRIVERS\avgwfpa.sys
R1 BasicDisplay;BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys
R1 BasicRender;BasicRender; C:\Windows\System32\drivers\BasicRender.sys
R1 Beep;Beep; C:\Windows\system32\drivers\Beep.sys
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\Windows\System32\drivers\cdrom.sys
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\Windows\System32\Drivers\dfsc.sys
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys
R1 Msfs;Msfs; C:\Windows\system32\drivers\Msfs.sys
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\Windows\System32\drivers\mssmbios.sys
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\Windows\system32\DRIVERS\netbios.sys
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\Windows\System32\DRIVERS\netbt.sys
R1 Npfs;Npfs; C:\Windows\system32\drivers\Npfs.sys
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\Windows\System32\drivers\npsvctrig.sys
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys
R1 Null;Null; C:\Windows\system32\drivers\Null.sys
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\Windows\system32\DRIVERS\pacer.sys
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\Windows\system32\DRIVERS\rdbss.sys
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys
R2 APXACC;@oem4.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\Windows\system32\DRIVERS\appexDrv.sys
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\Windows\system32\DRIVERS\lltdio.sys
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys
R2 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\Windows\system32\DRIVERS\nwifi.sys
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\Windows\system32\drivers\Ndu.sys
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\Windows\system32\DRIVERS\rspndr.sys
R2 secdrv;Security Driver; C:\Windows\system32\drivers\secdrv.sys
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys
R3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\Windows\System32\drivers\amdppm.sys
R3 AmUStor;@oem8.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS
R3 AthBTPort;@oem14.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys
R3 athr;@oem18.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athw8x.sys
R3 AtiHDAudioService;@oem3.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW86.sys
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys
R3 BTATH_A2DP;@oem13.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys
R3 btath_avdt;@oem13.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys
R3 BTATH_BUS;@oem10.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys
R3 BTATH_HCRP;@oem17.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys
R3 BTATH_LWFLT;@oem20.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys
R3 BTATH_RCP;@oem22.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys
R3 BthEnum;@tdibth.inf,%BthEnum.DisplayName%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy-stuurprogramma; C:\Windows\system32\DRIVERS\BthLEEnum.sys
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth-apparaat (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys
R3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\Windows\System32\drivers\CmBatt.sys
R3 CnxtHdAudService;@oem7.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\Windows\System32\drivers\CompositeBus.sys
R3 condrv;Console Driver; C:\Windows\System32\drivers\condrv.sys
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys
R3 ETD;@oem6.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys
R3 fastfat;FAT12/16/32 File System Driver; C:\Windows\system32\drivers\fastfat.sys
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\Windows\System32\drivers\HDAudBus.sys
R3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\Windows\System32\drivers\hidusb.sys
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\Windows\system32\drivers\HTTP.sys
R3 i8042prt;@msmouse.inf,%i8042prt.SvcDesc%;PS/2 Keyboard and Mouse Port Driver; C:\Windows\System32\drivers\i8042prt.sys
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\Windows\System32\drivers\kbdclass.sys
R3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\Windows\System32\drivers\kbdhid.sys
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Microsoft Kernel Debug Network Miniport (NDIS 6.20); C:\Windows\system32\DRIVERS\kdnic.sys
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys
R3 L1C;@oem1.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C63x64.sys
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver-service; C:\Windows\System32\drivers\monitor.sys
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\Windows\System32\drivers\mouclass.sys
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\Windows\System32\drivers\mouhid.sys
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\Windows\system32\DRIVERS\mrxsmb.sys
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys
R3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\Windows\system32\DRIVERS\ndistapi.sys
R3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\Windows\system32\DRIVERS\ndisuio.sys
R3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\Windows\system32\DRIVERS\ndiswan.sys
R3 NDProxy;NDIS Proxy; C:\Windows\system32\drivers\NDProxy.sys
R3 Ntfs;Ntfs; C:\Windows\system32\drivers\Ntfs.sys
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys
R3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\Windows\system32\DRIVERS\raspptp.sys
R3 Ps2Kb2Hid;@oem5.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\Windows\System32\drivers\aPs2Kb2Hid.sys
R3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys
R3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\Windows\system32\DRIVERS\rasl2tp.sys
R3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\Windows\system32\DRIVERS\raspppoe.sys
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\Windows\System32\drivers\rdpbus.sys
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth-apparaat (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys
R3 sdbus;sdbus; C:\Windows\System32\drivers\sdbus.sys
R3 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\Windows\System32\DRIVERS\srv.sys
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\Windows\System32\drivers\swenum.sys
R3 TPM;@tpm.inf,%TPM%;TPM; C:\Windows\system32\drivers\tpm.sys
R3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Stuurprogramma voor Microsoft IPv6 Tunnel-minipoortadapter; C:\Windows\system32\DRIVERS\tunnel.sys
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys
R3 UCX01000;USB Controller Extension; C:\Windows\System32\drivers\ucx01000.sys
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\Windows\System32\drivers\umbus.sys
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\Windows\System32\drivers\usbccgp.sys
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\System32\drivers\usbehci.sys
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Microsoft USB Standard Hub Driver; C:\Windows\System32\drivers\usbhub.sys
R3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\Windows\System32\drivers\UsbHub3.sys
R3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\System32\drivers\usbohci.sys
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys
R3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\Windows\System32\drivers\USBXHCI.SYS
R3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys
S0 3ware;3ware; C:\Windows\System32\drivers\3ware.sys
S0 adp94xx;adp94xx; C:\Windows\System32\drivers\adp94xx.sys
S0 adpahci;adpahci; C:\Windows\System32\drivers\adpahci.sys
S0 adpu320;adpu320; C:\Windows\System32\drivers\adpu320.sys
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\Windows\System32\drivers\agp440.sys
S0 amdsata;amdsata; C:\Windows\System32\drivers\amdsata.sys
S0 amdsbs;amdsbs; C:\Windows\System32\drivers\amdsbs.sys
S0 amdxata;amdxata; C:\Windows\System32\drivers\amdxata.sys
S0 arc;arc; C:\Windows\System32\drivers\arc.sys
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Windows Inbox Miniport Driver; C:\Windows\System32\drivers\arcsas.sys
S0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\Windows\System32\drivers\atapi.sys
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\Windows\system32\DRIVERS\avgboota.sys
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II VBD; C:\Windows\System32\drivers\bxvbda.sys
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\System32\drivers\evbda.sys
S0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\Windows\System32\drivers\EhStorClass.sys
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\Windows\System32\drivers\EhStorTcgDrv.sys
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\System32\drivers\gagp30kx.sys
S0 HpSAMD;HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\Windows\System32\drivers\iaStorV.sys
S0 iirsp;iirsp; C:\Windows\System32\drivers\iirsp.sys
S0 intelide;intelide; C:\Windows\System32\drivers\intelide.sys
S0 isapnp;isapnp; C:\Windows\System32\drivers\isapnp.sys
S0 LSI_SAS;LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys
S0 LSI_SAS2;LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys
S0 LSI_SCSI;LSI_SCSI; C:\Windows\System32\drivers\lsi_scsi.sys
S0 LSI_SSS;LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys
S0 megasas;megasas; C:\Windows\System32\drivers\megasas.sys
S0 MegaSR;MegaSR; C:\Windows\System32\drivers\MegaSR.sys
S0 mvumis;mvumis; C:\Windows\System32\drivers\mvumis.sys
S0 nfrd960;nfrd960; C:\Windows\System32\drivers\nfrd960.sys
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\Windows\System32\drivers\nv_agp.sys
S0 nvraid;nvraid; C:\Windows\System32\drivers\nvraid.sys
S0 nvstor;nvstor; C:\Windows\System32\drivers\nvstor.sys
S0 pciide;pciide; C:\Windows\System32\drivers\pciide.sys
S0 pcmcia;pcmcia; C:\Windows\System32\drivers\pcmcia.sys
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\Windows\System32\drivers\sbp2port.sys
S0 SiSRaid2;SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys
S0 SiSRaid4;SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys
S0 stexstor;stexstor; C:\Windows\System32\drivers\stexstor.sys
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys
S0 storvsc;storvsc; C:\Windows\System32\drivers\storvsc.sys
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Microsoft AGPv3.5 Filter; C:\Windows\System32\drivers\uagp35.sys
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\Windows\System32\drivers\uliagpkx.sys
S0 viaide;viaide; C:\Windows\System32\drivers\viaide.sys
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\System32\drivers\vmbus.sys
S0 vsmraid;vsmraid; C:\Windows\System32\drivers\vsmraid.sys
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage Controller Windows Driver; C:\Windows\System32\drivers\vstxraid.sys
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\Windows\system32\drivers\dam.sys
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\Windows\System32\drivers\1394ohci.sys
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\Windows\System32\drivers\acpipagr.sys
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\Windows\System32\drivers\acpipmi.sys
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\Windows\System32\drivers\acpitime.sys
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\Windows\System32\drivers\amdk8.sys
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys
S3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\Windows\system32\DRIVERS\asyncmac.sys
S3 BCM43XX;@netbc63a.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl63a.sys
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\Windows\System32\drivers\bthmodem.sys
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\Windows\System32\drivers\circlass.sys
S3 dg_ssudbus;@oem19.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys
S3 dmvsc;dmvsc; C:\Windows\System32\drivers\dmvsc.sys
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\Windows\system32\drivers\drmkaud.sys
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\Windows\System32\drivers\errdev.sys
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\Windows\System32\drivers\fdc.sys
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\Windows\System32\drivers\flpydisk.sys
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\Windows\System32\drivers\fxppm.sys
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\Windows\System32\drivers\vmgencounter.sys
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\Windows\System32\Drivers\msgpioclx.sys
S3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\Windows\System32\drivers\HidBatt.sys
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\Windows\System32\drivers\hidbth.sys
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\Windows\System32\drivers\hidi2c.sys
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\Windows\System32\drivers\hidir.sys
S3 hyperkbd;hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys
S3 HyperVideo;HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys
S3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\Windows\System32\drivers\intelppm.sys
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\Windows\system32\DRIVERS\ipfltdrv.sys
S3 IPMIDRV;IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys
S3 IPNAT;IP Network Address Translator; C:\Windows\System32\drivers\ipnat.sys
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\Windows\system32\drivers\irenum.sys
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\Windows\System32\drivers\msiscsi.sys
S3 mbamchameleon;mbamchameleon; \??\C:\Windows\system32\drivers\mbamchameleon.sys
S3 Modem;Modem; C:\Windows\system32\drivers\modem.sys
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\Windows\system32\drivers\mrxdav.sys
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;GPIO Buttons Driver; C:\Windows\System32\drivers\msgpiowin32.sys
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\Windows\System32\drivers\mshidumdf.sys
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys
S3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\Windows\system32\DRIVERS\mslldp.sys
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\Windows\System32\drivers\MTConfig.sys
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\Windows\system32\DRIVERS\ndiscap.sys
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\Windows\system32\DRIVERS\NdisImPlatform.sys
S3 NDISWANLEGACY;@%systemroot%\system32\rascfg.dll,-32014; C:\Windows\system32\DRIVERS\ndiswan.sys
S3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\Windows\System32\drivers\parport.sys
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\Windows\System32\drivers\processr.sys
S3 QRDCIO;@oem15.inf,%SERVICE_DISPLAY_NAME%;Quanta Generic IO Access; C:\Windows\System32\drivers\QRDCIO.sys
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys
S3 RasAcd;Remote Access Auto Connection Driver; C:\Windows\System32\DRIVERS\rasacd.sys
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\Windows\System32\drivers\rdpdr.sys
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys
S3 RDPWD;RDP Winstation Driver; C:\Windows\system32\drivers\RDPWD.sys
S3 s3cap;s3cap; C:\Windows\System32\drivers\vms3cap.sys
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\Windows\System32\drivers\sdstor.sys
S3 SerCx;Serial UART Support Library; C:\Windows\system32\drivers\SerCx.sys
S3 Serenum;@msports.inf,%Serenum.SVCDESC%;Serenum Filter Driver; C:\Windows\System32\drivers\serenum.sys
S3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\Windows\System32\drivers\serial.sys
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\Windows\System32\drivers\sermouse.sys
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\Windows\System32\drivers\sfloppy.sys
S3 SpbCx;Simple Peripheral Bus Support Library; C:\Windows\system32\drivers\SpbCx.sys
S3 ssudmdm;@oem21.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys
S3 ssudserd;@oem23.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudserd.sys
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\Windows\System32\drivers\terminpt.sys
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\Windows\System32\drivers\TsUsbGD.sys
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\Windows\System32\drivers\uaspstor.sys
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass Driver; C:\Windows\System32\drivers\umpass.sys
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\Windows\System32\drivers\usbcir.sys
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\Windows\System32\drivers\usbprint.sys
S3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\Windows\System32\drivers\USBSTOR.SYS
S3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\System32\drivers\usbuhci.sys
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\Windows\system32\drivers\VerifierExt.sys
S3 vhdmp;vhdmp; C:\Windows\System32\drivers\vhdmp.sys
S3 VMBusHID;VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys
S3 vpci;@wvpci.inf,%vpci.SVCDESC%;Microsoft Hyper-V Virtual PCI Bus; C:\Windows\System32\drivers\vpci.sys
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\Windows\System32\drivers\wacompen.sys
S3 Wanarp;@%systemroot%\system32\rascfg.dll,-32011; C:\Windows\system32\DRIVERS\wanarp.sys
S3 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\Windows\system32\drivers\WdBoot.sys
S3 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\Windows\system32\drivers\WdFilter.sys
S4 cdfs;CD/DVD File System Reader; C:\Windows\system32\DRIVERS\cdfs.sys
S4 udfs;udfs; C:\Windows\system32\DRIVERS\udfs.sys
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\Windows\System32\svchost.exe
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\Windows\system32\svchost.exe
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
R2 ClassicShellService;Classic Shell Service; C:\Program Files\Classic Shell\ClassicShellService.exe
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe
R2 DcomLaunch;@combase.dll,-5012; C:\Windows\system32\svchost.exe
R2 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\Windows\system32\svchost.exe
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe
R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\Windows\system32\svchost.exe
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
R2 ogmservice;Online Games Manager; C:\Program Files (x86)\Online Games Manager\ogmservice.exe
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe
R2 RpcSs;@combase.dll,-5010; C:\Windows\system32\svchost.exe
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe
R2 stisvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\Windows\system32\svchost.exe
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\Windows\System32\svchost.exe
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\Windows\System32\svchost.exe
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\Windows\system32\svchost.exe
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe
R3 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe
R3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe
R3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe
R3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe
R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe
R3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe
R3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\Windows\System32\svchost.exe
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\Windows\System32\svchost.exe
R3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe
R3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\Windows\system32\svchost.exe
R3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe
R3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe
R3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\Windows\system32\svchost.exe
R3 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe
R3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\Windows\system32\svchost.exe
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe
S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe
S3 AllUserInstallAgent;@%SystemRoot%\System32\AUInstallAgent.dll,-101; C:\Windows\System32\svchost.exe
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe
S3 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe
S3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\Windows\system32\svchost.exe
S3 Eaphost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\Windows\system32\svchost.exe
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
S3 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\Windows\System32\svchost.exe
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe
S3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe
S3 PrintNotify;@C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1; C:\Windows\system32\svchost.exe
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe
S3 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\Windows\System32\svchost.exe
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\Windows\system32\svchost.exe
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\Windows\System32\svchost.exe
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe
S3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\Windows\System32\svchost.exe
S3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\Windows\System32\svchost.exe
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\Windows\system32\svchost.exe
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\Windows\system32\svchost.exe
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\Windows\system32\svchost.exe
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\Windows\system32\svchost.exe
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\Windows\system32\svchost.exe
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\Windows\system32\svchost.exe
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\Windows\system32\vssvc.exe
S3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\Windows\system32\svchost.exe
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\Windows\system32\svchost.exe
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe
S4 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe
—————–EOF—————–
Hoi Jordan,
Ik heb jou eerdere topic heropend en alle berichten even samengevoegd.
Dit is makkelijke voor ons.
Jou logjes:
Geen bijzonderheden te zien, maar wil voor de zekerheid toch nog even verder kijken.
Spybot SD is op zich een goed programma, maar het vergt wel veel van jou computer.
Als je er vrede mee hebt, dan zo laten.
i.p.v. Spybot SD zou je ook Spywareblaster kunnen nemen, zie hier.
Klik rechts boven in op “Download Latest Version” .
Nu jou logjes:
Download zoek.zip naar het bureaublad.
Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze in conflict komen met zoek.zip
Klik met de rechtermuisknop op Zoek.zip en klik op de optie “Alles uitpakken”.
Dubbelklik vervolgens op Zoek.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.
firefoxlook;
standardsearch;
filesrcm;
autoclean;
startupall;
Klik nu op de knop “Run script”.
Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als het nodig is).
Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
Post nu de inhoud van het geopende logje in het volgende bericht.
Ben zal je dan verder helpen, want ik ben een paar dagen niet beschikbaar:)-D:)-D:)o
Succes,
Huib;)
fazantje Schreef:
——————————————————-
> Hoi Jordan,
>
> Ik heb jou eerdere topic heropend en alle
> berichten even samengevoegd.
> Dit is makkelijke voor ons.
>
> Jou logjes:
>
> Geen bijzonderheden te zien, maar wil voor de
> zekerheid toch nog even verder kijken.
> Spybot SD is op zich een goed programma, maar het
> vergt wel veel van jou computer.
> Als je er vrede mee hebt, dan zo laten.
>
> i.p.v. Spybot SD zou je ook Spywareblaster kunnen
> nemen, zie hier.
>
> Klik rechts boven in op “Download Latest Version”
> .
>
> Nu jou logjes:
>
> Download zoek.zip naar het bureaublad.
>
> Schakel je antivirus- en antispywareprogramma's
> uit, mogelijk kunnen ze in conflict komen met
> zoek.zip
> Klik met de rechtermuisknop op Zoek.zip en klik op
> de optie “Alles uitpakken”.
>
> Dubbelklik vervolgens op Zoek.exe om de tool te
> starten.
> Windows Vista, 7 en 8 gebruikers dienen de tool
> als “administrator” uit te voeren door middel van
> de rechtermuisknop en kiezen voor Als
> Administrator uitvoeren.
> Kopieer nu onderstaande code en plak die in het
> grote invulvenster:
>
> Note: Dit script is speciaal bedoeld voor deze PC,
> gebruik dit dan ook niet op andere PC's met een
> gelijkwaardig probleem.
>
> firefoxlook;
> standardsearch;
> filesrcm;
> autoclean;
> startupall;
>
>
> Klik nu op de knop “Run script”.
>
> Wacht nu geduldig af tot er een logje opent (dit
> kan na een herstart zijn als het nodig is).
> Mocht na de herstart geen logje verschijnen, start
> zoek.exe dan opnieuw, de log verschijnt dan
> alsnog.
>
> Post nu de inhoud van het geopende logje in het
> volgende bericht.
>
> Ben zal je dan verder helpen, want ik ben een paar
> dagen niet beschikbaar:)-D:)-D:)o
>
> Succes,
> Huib;)
>
Zoek.exe Version 4.0.0.4 Updated 26-08-2013
Tool run by Jordan on do 29-08-2013 at 15:17:55,51.
Microsoft Windows 8 6.2.9200 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jordan\Downloads\zoek(1)\zoek.com
==== System Restore Info ======================
29-8-2013 15:18:23 Zoek.exe System Restore Point Created Succesfully.
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Running Processes ======================
C:\Program Files\Classic Shell\ClassicShellService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
C:\Program Files (x86)\Online Games Manager\ogmservice.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Program Files (x86)\Launch Manager\LMutilps32.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe
C:\Users\Jordan Kersten\Downloads\zoek(1)\zoek.com
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
“C:\Windows\wininit.ini” deleted
“C:\Users\Jordan\AppData\Roaming\Mozilla\Firefox\Profiles\aaflq5lh.default\Invalidprefs.js” deleted
“C:\Users\Public\Desktop\Free YouTube Downloader.lnk” deleted
“C:\Users\Public\Desktop\HD Youtube Downloader Free.lnk” deleted
==== System Specs ======================
Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 5579 MB
CPU Info: AMD A6-4455M APU with Radeon™ HD Graphics
CPU Speed: 2150,1 MHz
Sound Card: Speakers (Conexant High Definit |
Display Adapters: AMD Radeon HD 7500G | AMD Radeon HD 7500G | AMD Radeon HD 7500G | AMD Radeon HD 7500G
Monitors: 1x; Generic PnP Monitor |
Screen Resolution: 1366 X 768 - 32 bit
Network: Network Present
Network Adapters: Bluetooth-apparaat (Personal Area Network) | Microsoft Wi-Fi Direct Virtual Adapter | Qualcomm Atheros AR5BWB222 Wireless Network Adapter | Qualcomm Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
CD / DVD Drives: 1x (D: | ) D: MATSHITADVD-RAM UJ8C2Q
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C: 681,3GB
Hard Disks - Free: C: 571,9GB
Manufacturer *: Insyde Corp.
BIOS Info: AT/AT COMPATIBLE | | ACRSYS - 1
Time Zone: West-Europa (standaardtijd)
Motherboard *: Acer Havok
Internet Explorer Version: 10.0.9200.16660
Sun Java version: No Java Installed?
Country: Nederland
Language: NLD
==== Files Recently Created / Modified ======================
====== C:\Windows ====
====== C:\Users\JORDAN~1\AppData\Local\Temp ====
2013-08-28 14:45:12 5AE4295EDF8C67D96574A141279FCD3F 615608 —-a-w- C:\Users\JORDAN~1\AppData\Local\Temp\ICReinstall_freecell_setup.exe
====== C:\Windows\SysWOW64 =====
2013-08-26 15:59:39 4885B8A0C48E81D950995893643F8777 217176 —-a-w- C:\Windows\SysWOW64\unrar.dll
2013-08-18 10:16:19 0AC4D04D2D127CAE2BE09FBA48D19639 2273792 —-a-w- C:\Windows\SysWOW64\msftedit.dll
2013-08-18 10:16:16 4F2214EB1269A6B906E2402883E0A658 551424 —-a-w- C:\Windows\SysWOW64\oleaut32.dll
2013-08-18 10:16:14 0E38A984BE8C1F4A095B4A4E8BA1EB23 125440 —-a-w- C:\Windows\SysWOW64\winmm.dll
2013-08-18 10:16:13 DF790AE26A476DAA05210BA571B45AAC 160256 —-a-w- C:\Windows\SysWOW64\winmmbase.dll
2013-08-18 10:16:13 3631AE3089DE4FAA50D3BD62E370299E 385768 —-a-w- C:\Windows\SysWOW64\WerFault.exe
2013-08-18 10:16:12 34076BB22B3975BDA4D98E1A0F03F199 268800 —-a-w- C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-08-18 10:16:11 DB51E3BB92AAE9608CB4AC08A9E263B1 1022464 —-a-w- C:\Windows\SysWOW64\gdi32.dll
2013-08-18 10:16:10 A179B0FB8241BC7FEF62E0AA5F315F9B 702464 —-a-w- C:\Windows\SysWOW64\nshwfp.dll
2013-08-18 10:16:10 68451FE440B77BD6447E8AF1D21FD62B 245760 —-a-w- C:\Windows\SysWOW64\LocationApi.dll
2013-08-18 10:16:10 499403FAB514EF7C468F1E9157F8F7BA 67072 —-a-w- C:\Windows\SysWOW64\openfiles.exe
2013-08-18 10:16:10 1C51CD68DB8C774E4C69CD628CFC4C80 245248 —-a-w- C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-08-18 10:16:10 1342E8DE249F4049536F38F8D473CE26 154112 —-a-w- C:\Windows\SysWOW64\WinSCard.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2013-08-29 04:55:01 2BC5A54D3CD347B06531A79FE3C6CFB4 424872 —-a-w- C:\Windows\Sysnative\FNTCACHE.DAT
2013-08-26 15:59:39 8A2C6F0E343400A2507B999B2726646B 256088 —-a-w- C:\Windows\Sysnative\unrar64.dll
2013-08-18 10:16:19 3CA8372E7D9C2EF8314C0C965F6B8427 4039680 —-a-w- C:\Windows\Sysnative\win32k.sys
2013-08-18 10:16:18 3884117CE4FEC35E4A1A7A62918B1F34 1156096 —-a-w- C:\Windows\Sysnative\IKEEXT.DLL
2013-08-18 10:16:17 560A9357766AB0CDF38143EA3A66DA64 2839552 —-a-w- C:\Windows\Sysnative\msftedit.dll
2013-08-18 10:16:16 814F4A0774F08F580D71FA7E880CD454 1025024 —-a-w- C:\Windows\Sysnative\localspl.dll
2013-08-18 10:16:16 7A102E79DD8F1032BCB76064E2E50C4A 778752 —-a-w- C:\Windows\Sysnative\oleaut32.dll
2013-08-18 10:16:16 45A2DE308D27355F0F0D13499C8207DA 1300480 —-a-w- C:\Windows\Sysnative\gdi32.dll
2013-08-18 10:16:15 73133A0C0CA63817BFF2CB9DE65B64E7 723968 —-a-w- C:\Windows\Sysnative\BFE.DLL
2013-08-18 10:16:15 58B7BEACEB8B19A9698FE85B76C88ED9 381952 —-a-w- C:\Windows\Sysnative\FWPUCLNT.DLL
2013-08-18 10:16:14 C89FAB42CD5FD672506031D941529A74 439488 —-a-w- C:\Windows\Sysnative\WerFault.exe
2013-08-18 10:16:14 12DE753B04FE08427BC4BA3133BFB1DB 414208 —-a-w- C:\Windows\Sysnative\wwanconn.dll
2013-08-18 10:16:13 AF1349386D4C6786EF4E34FACEF15042 263680 —-a-w- C:\Windows\Sysnative\wcmsvc.dll
2013-08-18 10:16:13 8E5271A1AC463276023B39BC846F299C 230912 —-a-w- C:\Windows\Sysnative\WinSCard.dll
2013-08-18 10:16:13 827AE73CD7CB3A8292A50EF39169071F 115712 —-a-w- C:\Windows\Sysnative\winmm.dll
2013-08-18 10:16:13 6D9E07436B6646EC8F7EFFD39B6BA288 447488 —-a-w- C:\Windows\Sysnative\wwansvc.dll
2013-08-18 10:16:13 0ABF97013CA7400213DCBDC7B499AF85 183808 —-a-w- C:\Windows\Sysnative\winmmbase.dll
2013-08-18 10:16:11 FF2E7B5DEF4C46870E8D00B80BBDB1DC 370688 —-a-w- C:\Windows\Sysnative\Wwanadvui.dll
2013-08-18 10:16:11 9A218BB2D3EC7CAAC84351D59204013A 77312 —-a-w- C:\Windows\Sysnative\openfiles.exe
2013-08-18 10:16:11 97D3B79F36CBD8B70F0D9BA6939D2462 391168 —-a-w- C:\Windows\Sysnative\Windows.Networking.BackgroundTransfer.dll
2013-08-18 10:16:11 8C7D71CE2F03E8CD6F1045D9275E6E1D 74240 —-a-w- C:\Windows\Sysnative\wcmcsp.dll
2013-08-18 10:16:10 DB5C9AD31E50EDC86C6072EDE1E89692 312832 —-a-w- C:\Windows\Sysnative\LocationApi.dll
2013-08-18 10:16:10 B8BF7450DC17F940DD3B1A853F62724F 888832 —-a-w- C:\Windows\Sysnative\nshwfp.dll
2013-08-18 10:16:10 93BBEFF2825AFD81651EA2D938AAFCCA 543744 —-a-w- C:\Windows\Sysnative\wwanmm.dll
2013-08-18 10:16:09 2CE63B3A60C54BF7421B090429C286B0 387583 —-a-w- C:\Windows\Sysnative\ApnDatabase.xml
====== C:\Windows\Sysnative\drivers =====
2013-08-18 10:16:14 09039F3D5A23483010AA6F5FE388F3C4 327512 —-a-w- C:\Windows\Sysnative\drivers\Classpnp.sys
2013-08-18 10:16:12 FC2B8B06BDBD3B6457F5A3DA9AD2410E 120144 —-a-w- C:\Windows\Sysnative\drivers\msgpioclx.sys
2013-08-18 10:16:12 F58B030A0664385C707B8C1C63682041 195416 —-a-w- C:\Windows\Sysnative\drivers\sdbus.sys
2013-08-18 10:16:12 DD7B107B2BB3EE845F57315EF4ECAC9A 125784 —-a-w- C:\Windows\Sysnative\drivers\dumpsd.sys
2013-08-18 10:16:12 630555943E5A3FE21010CE91EC7FC84F 341504 —-a-w- C:\Windows\Sysnative\drivers\HdAudio.sys
2013-08-18 10:16:11 BFC7FE4AAEB61317A921871B4085EF4B 119040 —-a-w- C:\Windows\Sysnative\drivers\USBSTOR.SYS
2013-08-18 10:16:11 3F1F31883EAC9DDDF836ACC6D1DAC36C 96512 —-a-w- C:\Windows\Sysnative\drivers\wfplwfs.sys
2013-08-18 10:16:10 25C50F4EDF70D0A831E0566BD181CCF2 321536 —-a-w- C:\Windows\Sysnative\drivers\udfs.sys
2013-08-16 09:19:48 FD47DF026B32969B8A68721A0243E8EE 36288 —-a-w- C:\Windows\Sysnative\drivers\WdBoot.sys
2013-08-16 09:19:48 5F425D842DD6ADE9F95A51A0616AFAD7 247216 —-a-w- C:\Windows\Sysnative\drivers\WdFilter.sys
2013-08-15 11:42:50 1794C43A000A47D92B3304FC1E3E512A 2233168 —-a-w- C:\Windows\Sysnative\drivers\tcpip.sys
====== C:\Windows\Tasks ======
2013-08-06 15:13:30 C9D0BF091072BE1B4CDDEB168846AA5E 1086 —-a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-06 15:13:30 42672930CCAC22F7FA28BE092BCE7903 4058 —-a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2013-08-06 15:13:29 C074D6C94BFB35BBAB8E5DCF7CAD545D 3822 —-a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2013-08-06 15:13:29 64E5206928AAF11DAA6F2C2AFDCBB9E5 1082 —-a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-08-29 08:03:28 ——– d—–w- C:\Program Files\trend micro
2013-08-15 11:43:04 ——– d—–w- C:\Program Files\Classic Shell
======= C:\Program Files (x86) =====
2013-08-27 17:59:19 ——– d—–w- C:\Program Files (x86)\TeamViewer
2013-08-26 15:59:35 ——– d—–w- C:\Program Files (x86)\K-Lite Codec Pack
2013-08-13 16:05:36 ——– d—–w- C:\Program Files (x86)\Mozilla Thunderbird
2013-08-06 15:13:20 ——– d—–w- C:\Program Files (x86)\Google
2013-08-06 13:42:14 ——– d—–w- C:\Program Files (x86)\Winamp
2013-08-02 10:19:54 ——– d—–w- C:\Program Files (x86)\Spotnet
======= C: =====
2013-08-19 12:58:03 DFA270AF4057928450EE2C51250CA51B 1151 —-a-w- C:\AdwCleaner.txt
====== C:\Users\Jordan\AppData\Roaming ======
2013-08-29 05:26:31 ——– d—–w- C:\users\Jordan \AppData\Local\Facebook
2013-08-27 18:36:42 ——– d—–w- C:\users\Jordan \AppData\Roaming\TeamViewer
2013-08-27 17:51:33 ——– d—–w- C:\users\Jordan \AppData\Roaming\Media Player Classic
2013-08-06 15:13:16 ——– d—–w- C:\users\Jordan \AppData\Local\Google
2013-08-06 13:42:14 ——– d—–w- C:\users\Jordan \AppData\Roaming\Winamp
2013-08-02 10:21:28 ——– d—–w- C:\users\Jordan \AppData\Local\Spotnet
====== C:\Users\Jordan Kersten ======
2013-08-29 13:13:00 78130949095E6721B40B50E77C1F1BBC 4095448 —-a-w- C:\Users\Jordan \Downloads\spywareblastersetup50.exe
2013-08-29 09:02:04 662C39FC1E27131551D557862CEC47F0 935175 —-a-w- C:\Users\Jordan \Downloads\RSITx64(1).exe
2013-08-29 08:03:11 662C39FC1E27131551D557862CEC47F0 935175 —-a-w- C:\Users\Jordan\ Downloads\RSITx64.exe
2013-08-29 05:47:14 F7AF924D0D951FF8F7B05AD2E4FF50D3 994642 —-a-w- C:\Users\Jordan \Downloads\adwcleaner(3).exe
2013-08-28 14:46:03 3EF151E57022EF6EEACE1C98B67CEBB0 2923268 —-a-w- C:\Users\Jordan \Downloads\freecell.exe
2013-08-28 14:44:49 5AE4295EDF8C67D96574A141279FCD3F 615608 —-a-w- C:\Users\Jordan \Downloads\freecell_setup.exe
2013-08-27 17:57:17 48DBA85360756A2F2FC48B16D2A50E92 5536104 —-a-w- C:\Users\Jordan \Downloads\TeamViewer_Setup_nl(1).exe
2013-08-26 17:39:10 ——– d—–r- C:\Users\Public\Pictures
2013-08-26 17:39:09 ——– d—–r- C:\Users\Public\Videos
2013-08-26 17:39:09 ——– d—–r- C:\Users\Public\Music
2013-08-26 17:28:52 ——– d—–r- C:\Users\Jordan \Videos
2013-08-26 15:59:46 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2013-08-26 15:24:26 ACD7883B75AAEC7E868020395F1E0442 26348089 —-a-w- C:\Users\Jordan \Downloads\K-Lite_Codec_Pack-1000_Full.exe
2013-08-26 15:11:58 B22198403FFEAF57BE49FF5A08DA1EF4 23003252 —-a-w- C:\Users\Jordan \Downloads\vlc-2.0.8-win32.exe
2013-08-15 11:43:04 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2013-08-06 15:18:09 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2013-08-06 13:42:22 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2013-08-02 10:19:59 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotnet
2013-08-02 10:19:54 ——– d—–w- C:\ProgramData\Spotnet
2013-07-31 07:34:21 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
====== C: exe-files ==
2013-08-29 13:13:00 78130949095E6721B40B50E77C1F1BBC 4095448 —-a-w- C:\Users\Jordan \Downloads\spywareblastersetup50.exe
2013-08-29 10:38:30 6DF65147D868ED42F400B4A2C02BDF96 272880 —-a-w- C:\Windows\Temp\ogmtmp\ogmservice-setup.exe
2013-08-29 09:02:04 662C39FC1E27131551D557862CEC47F0 935175 —-a-w- C:\Users\Jordan Downloads\RSITx64(1).exe
2013-08-29 08:05:53 E2F25A90A61DD6676F4A856979FFFFF7 544 —-a-w- C:\$Recycle.Bin\S-1-5-21-2642031841-2776368873-2395268217-1001\$ITRLGNB.exe
2013-08-29 08:05:48 CB95BDDCFDBB0AF44E45D2E22FE44B2C 544 —-a-w- C:\$Recycle.Bin\S-1-5-21-2642031841-2776368873-2395268217-1001\$IGXNEHS.exe
2013-08-29 08:05:46 4B5717AD254BFF48AE1DE14EE3557F5B 544 —-a-w- C:\$Recycle.Bin\S-1-5-21-2642031841-2776368873-2395268217-1001\$IWKKF0L.exe
2013-08-29 08:03:29 9A2347903D6EDB84C10F288BC0578C1C 388608 —-a-w- C:\Program Files\trend micro\Jordan Kersten.exe
2013-08-29 08:03:11 662C39FC1E27131551D557862CEC47F0 935175 —-a-w- C:\Users\Jordan \Downloads\RSITx64.exe
2013-08-29 05:47:14 F7AF924D0D951FF8F7B05AD2E4FF50D3 994642 —-a-w- C:\Users\Jordan \Downloads\adwcleaner(3).exe
2013-08-29 05:27:29 7CDC2CC95CF83B07CA26E46D971115B9 3933584 —-a-w- C:\Users\Jordan \AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
2013-08-29 05:26:39 2A3FB4C98F139038E23330D2439DB8A4 138096 —-a-w- C:\Users\Jordan \AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdate.exe
2013-08-29 05:26:39 2A3FB4C98F139038E23330D2439DB8A4 138096 —-a-w- C:\Users\Jordan \AppData\Local\Facebook\Update\1.2.205.0\FacebookCrashHandler.exe
2013-08-29 05:26:31 2A3FB4C98F139038E23330D2439DB8A4 138096 —-a-w- C:\Users\Jordan \AppData\Local\Facebook\Update\FacebookUpdate.exe
2013-08-28 14:46:03 3EF151E57022EF6EEACE1C98B67CEBB0 2923268 —-a-w- C:\Users\Jordan \Downloads\freecell.exe
2013-08-28 14:45:13 3EF151E57022EF6EEACE1C98B67CEBB0 2923268 —-a-w- C:\Users\Jordan \AppData\Local\Temp\is520188154\95621428_Setup.EXE
2013-08-28 14:45:12 5AE4295EDF8C67D96574A141279FCD3F 615608 —-a-w- C:\Users\Jordan \AppData\Local\Temp\ICReinstall_freecell_setup.exe
2013-08-28 14:44:49 5AE4295EDF8C67D96574A141279FCD3F 615608 —-a-w- C:\Users\Jordan \Downloads\freecell_setup.exe
2013-08-27 17:59:20 D53118C165AE5D188632B6CDEEE82A1B 4308320 —-a-w- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
2013-08-27 17:59:20 A884768FE0DC110027EDEDB42FFFADC9 232800 —-a-w- C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
2013-08-27 17:59:20 A24DD753EF773A76EAC68C4B74622F2C 506528 —-a-w- C:\Program Files (x86)\TeamViewer\Version8\uninstall.exe
2013-08-27 17:59:20 938A2A7BC1FE145C88D2730AF3521822 4466016 —-a-w- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Desktop.exe
2013-08-27 17:59:20 5B1E6BD8C8F4377F12F634B31C17D463 195936 —-a-w- C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
2013-08-27 17:59:19 ABD683E1D80805B7B4C5997ED47DFDB8 11737952 —-a-w- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
2013-08-27 17:57:17 48DBA85360756A2F2FC48B16D2A50E92 5536104 —-a-w- C:\Users\Jordan Kersten\Downloads\TeamViewer_Setup_nl(1).exe
2013-08-26 15:59:41 906DE000663DE560CC4DA1A02F70F3AF 5083648 —-a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\GraphStudioNext64.exe
2013-08-26 15:59:41 84551CD8625713FEEDFEBC769562A67D 443392 —-a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\SetACL_x64.exe
2013-08-26 15:59:41 567BEFCC4CAF8EE4C1F68DED96562727 301056 —-a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\SetACL_x86.exe
2013-08-26 15:59:40 AD937F57725167E2D5D7BE534FEED706 1048576 —-a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\mediainfo.exe
2013-08-26 15:59:40 91B71F9EE2C31BF790983ADE4FCF7959 3856896 —-a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\GraphStudioNext.exe
2013-08-26 15:59:39 18EB6EA1863F9F55E423DA4CAAD390AE 2668920 —-a-w- C:\Program Files (x86)\K-Lite Codec Pack\Filters\madVR\madHcCtrl.exe
2013-08-26 15:59:36 12782AF8AF1B72007033F9AEAD33510D 4333568 —-a-w- C:\Program Files (x86)\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe
2013-08-26 15:59:35 8EB5CB60390C1FEAD4EE674D466BBDAD 1324115 —-a-w- C:\Program Files (x86)\K-Lite Codec Pack\unins000.exe
2013-08-26 15:59:35 29CD1D8A7ABBC8EEB424758E357450C0 1163776 —-a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe
2013-08-26 15:24:26 ACD7883B75AAEC7E868020395F1E0442 26348089 —-a-w- C:\Users\Jordan\Downloads\K-Lite_Codec_Pack-1000_Full.exe
2013-08-26 15:11:58 B22198403FFEAF57BE49FF5A08DA1EF4 23003252 —-a-w- C:\Users\Jordan \Downloads\vlc-2.0.8-win32.exe
=== C: other files ==
2013-08-28 19:07:29 505871E873C9B09F7642C2863144ADCC 2883 —-a-w- C:\ProgramData\Spybot - Search & Destroy\Quarantine\Windows-0003.zip
2013-08-28 15:07:12 D0C2CAA17C7B6D2200E1B5AA9D07135E 24368 —-a-w- C:\Users\Jordan \AppData\Local\Temp\cpuz135\cpuz135_x64.sys
==== Startup Registry Enabled ======================
“Spybot-S&D Cleaning”=“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe /autoclean”
“Spotify Web Helper”=“C:\Users\Jordan \AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
“IsMyWinLockerReboot”=“msiexec.exe /qn /x{voidguid}”
“IsMyWinLockerReboot”=“msiexec.exe /qn /x{voidguid}”
“IsMyWinLockerReboot”=“msiexec.exe /qn /x{voidguid}”
“IsMyWinLockerReboot”=“msiexec.exe /qn /x{voidguid}”
“StartCCC”=“C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun”
“AmIcoSinglun64”=“C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe”
“AVG_UI”=“C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY”
“GrooveMonitor”=“C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe”
“Adobe ARM”=“C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
“SDTray”=“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe”
“Spybot-S&D Cleaning”=“C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe /autoclean”
“Spotify Web Helper”=“C:\Users\Jordan \AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
“BtvStack”=“C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe”
==== Startup Registry Enabled x64 ======================
“BtPreLoad”=“C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe”
“ETDCtrl”=“%ProgramFiles%\Elantech\ETDCtrl.exe ”
“BtvStack”=“C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe”
==== Startup Folders ======================
2012-12-03 12:24:39 2171 —-a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk
==== Task Scheduler Jobs ======================
C:\Windows\tasks\Adobe Flash Player Updater.job –a——– C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2642031841-2776368873-2395268217-1001Core.job –a——– C:\Users\Jordan \AppData\Local\Facebook\Update\FacebookUpdate.exe
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2642031841-2776368873-2395268217-1001UA.job –a——– C:\Users\Jordan \AppData\Local\Facebook\Update\FacebookUpdate.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job –a——– C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job –a——– C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==== Firefox Extensions ======================
ProfilePath: C:\Users\Jordan AppData\Roaming\Mozilla\Firefox\Profiles\aaflq5lh.default
- YouTube Video Audio and Subtitle Downloader - %ProfilePath%\extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi
- Youtube Downloader - Media Downloader - %ProfilePath%\extensions\paulsaintuzb@gmail.com.xpi
- QuickPasswords - %ProfilePath%\extensions\QuickPasswords@axelg.com.xpi
- ImTranslator - %ProfilePath%\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
==== Firefox Plugins ======================
Profilepath: C:\Users\Jordan \AppData\Roaming\Mozilla\Firefox\Profiles\aaflq5lh.default
0C8597DBC74AAF5179471BA013E3C6B4 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll - Shockwave Flash
ADC539F67D3198679F480974EE203678 - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.210.11
0B31B0F8FA99CFD009C8FBEA9E20C9DE - C:\Users\Jordan \AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin
3A57A288F098188E92C6B0309CBC50B2 - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System
==== Set IE to Default ======================
Old Values:
“Start Page”=“http://www.google.com”
“DefaultScope”=“{D3ADD86F-973D-407E-BC7A-FA50CFA02625}”
New Values:
“Start Page”=“http://www.google.com”
“DefaultScope”=“{6A1806CD-94D4-4689-BA73-E35EA1EA9990}”
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url=“http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC”
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url=“http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}”
{D3ADD86F-973D-407E-BC7A-FA50CFA02625} Unknown Url=“Not_Found”
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2642031841-2776368873-2395268217-1001\Software\Microsoft\Internet Explorer\SearchScopes\{D3ADD86F-973D-407E-BC7A-FA50CFA02625} deleted successfully
==== Deleting CLSID Registry Values ======================
==== HijackThis Entries ======================
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: “C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe” MSRun
O4 - HKLM\..\Run: C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\AVG\AVG2013\avgui.exe” /TRAYONLY
O4 - HKLM\..\Run: “C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe”
O4 - HKCU\..\Run: “C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe” /autoclean
O4 - HKCU\..\Run: “C:\Users\Jordan Kersten\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
O4 - HKLM\..\Policies\Explorer\Run: “C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe”
O4 - HKUS\S-1-5-19\..\RunOnce: msiexec.exe /qn /x{voidguid} (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\RunOnce: msiexec.exe /qn /x{voidguid} (User ‘NETWORK SERVICE’)
O4 - HKUS\S-1-5-18\..\RunOnce: msiexec.exe /qn /x{voidguid} (User ‘SYSTEM’)
O4 - HKUS\.DEFAULT\..\RunOnce: msiexec.exe /qn /x{voidguid} (User ‘Default user’)
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra ‘Tools’ menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra ‘Tools’ menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O9 - Extra ‘Tools’ menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O11 - Options group: Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Online Games Manager (ogmservice) - RealNetworks, Inc. - C:\Program Files (x86)\Online Games Manager\ogmservice.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jordan \AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jordan n\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\users\Jordan \AppData\Local\Mozilla\Firefox\Profiles\aaflq5lh.default\Cache emptied successfully
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\JORDAN~1\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on do 29-08-2013 at 15:31:05,21 ======================
Ben Schreef:
——————————————————-
> Hallo,
>
> Het logje ziet er netjes uit, maar ik zie dat je
> Spybot - Search & Destroy 2\ toch behoud.
>
> Hoe draait de pc nu?
>
>
> Gr.Ben
Goed Ben, nnog wel, het draaide al wel goed maar het was meer voor de zekerheid, .spybot and destroy die deinstaleer ik maar want ik vind dat een sterk programma.
Maar bedankt hiervoor !
Jordan
Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.
Doorzoek het forum
Zoeken met Startpagina
Startpagina Thema's