Process explorer 16 02

Amber{bkspc}{bkspc}{bkspc}{bkspc}{bkspc}[14:28:02 - Current Window: Windows Internet Explorer][14:28:05 - Current Window: - Windows Internet Explorer][14:28:09 - Current Window: - Windows Internet Explorer][14:28:11 - Current Window: Windows Live Hotmail - Windows Internet Explorer][14:29:27 - Current Window: Bestand downloaden][14:29:29 - Current Window: Windows Live Hotmail - Windows Internet Explorer][14:29:29 - Current Window: Bestand downloaden][14:29:30 - Current Window: double_cross.doc van 65.55.130.121 controleren][14:29:40 - Current Window: Microsoft Word][14:29:44 - Current Window: double_cross[1].doc - Microsoft Word][14:30:00 - Current Window: Microsoft Word][14:30:02 - Current Window: ][14:30:03 - Current Window: Windows Live Hotmail - Windows Internet Explorer][14:30:06 - Current Window: ][14:30:13 - Current Window: Windows Live Messenger][14:30:33 - Current Window: ][14:30:33 - Current Window: Program Manager][14:30:43 - Current Window: Windows Internet Explorer][14:30:45 - Current Window: - Windows Internet Explorer]www.pp2[14:30:48 - Current Window: Google - Windows Internet Explorer]g.com[14:30:52 - Current Window: PP2G.Com - Home - Windows Internet Explorer]xrobinchat_man[14:31:10 - Current Window: Control Panel - Windows Internet Explorer][14:31:16 - Current Window: Members | xROBIN - Windows Internet Explorer][14:31:27 - Current Window: Members | Lxx - Windows Internet Explorer][14:32:22 - Current Window: Members | -hoidoei - Windows Internet Explorer][14:33:10 - Current Window: Members | xROBIN - Windows Internet Explorer][14:33:16 - Current Window: Members | DENISE! - Windows Internet Explorer][14:33:23 - Current Window: Members | xROBIN - Windows Internet Explorer][14:33:33 - Current Window: Members | xNaomieeee_ - Windows Internet Explorer][14:33:49 - Current Window: Members | JumpenKAN - Windows Internet Explorer][14:34:39 - Current Window: Members | SiLla_ - Windows Internet Explorer][14:36:31 - Current Window: Members | xROBIN - Windows Internet Explorer][14:36:46 - Current Window: Members | xCRLN - Windows Internet Explorer][14:37:42 - Current Window: Members | xROBIN - Windows Internet Explorer][14:37:46 - Current Window: ][15:07:50 - Current Window: LSSaver][15:16:22 - Current Window: ]

----a-w- c:\windows\system32\qdvd.dll..((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1]@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 199488 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.33.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2]@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 199488 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.33.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3]@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 199488 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.33.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4]@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 199488 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.33.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5]@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 199488 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.33.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6]@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 199488 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.33.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7]@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 199488 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.33.dll.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8]@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 199488 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.33.dll.[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2016-01-15 8619224].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-03-04 284696]"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2010-05-31 673136]"PMBVolumeWatcher"="c:\program files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2010-06-01 600928]"EEventManager"="c:\progra~2\EPSONS~1\EVENTM~1\EEventManager.exe" [2009-04-07 673616]"SHTtray.exe"="c:\program files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe" [2010-06-20 99696]"Dropbox"="c:\program files (x86)\Dropbox\Client\Dropbox.exe" [2016-02-16 25122080]"WD Quick View"="c:\program files (x86)\Western Digital\WD Quick View\WDDMStatus.exe" [2015-07-20 5564784]"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2016-01-29 595504]"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2016-02-26 7139768].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorUser"= 3 (0x3)"EnableUIADesktopToggle"= 0 (0x0)"SoftwareSASGeneration"= 1 (0x1).[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]"LoadAppInit_DLLs"=1 (0x1).[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]"mixer2"=wdmaud.drv.[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe\0lsdelete.[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]@="".R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R2 dbupdate;Dropbox Update Service (dbupdate);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]R3 dbupdatem;Dropbox Update Service (dbupdatem);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]R3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]R3 JLTECH0227;Dual Mode Camera;c:\windows\system32\Drivers\jl2005c.sys;c:\windows\SYSNATIVE\Drivers\jl2005c.sys [x]R3 keycrypt;keycrypt;c:\windows\system32\DRIVERS\KeyCrypt64.sys;c:\windows\SYSNATIVE\DRIVERS\KeyCrypt64.sys [x]R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]R3 McComponentHostServiceSony;McAfee Security Scan Component Host Service for Sony;c:\program files (x86)\Sony\MSS\3.8.130\McCHSvc.exe;c:\program files (x86)\Sony\MSS\3.8.130\McCHSvc.exe [x]R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys;c:\windows\SYSNATIVE\pwdrvio.sys [x]R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys;c:\windows\SYSNATIVE\pwdspio.sys [x]R3 RapportHades64;RapportHades64;c:\windows\system32\Drivers\RapportHades64.sys;c:\windows\SYSNATIVE\Drivers\RapportHades64.sys [x]R3 RapportKE64;RapportKE64;c:\windows\system32\Drivers\RapportKE64.sys;c:\windows\SYSNATIVE\Drivers\RapportKE64.sys [x]R3 RapportPG64;RapportPG64;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [x]R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]R3 semav6thermal64ro;semav6thermal64ro;c:\windows\system32\drivers\semav6thermal64ro.sys;c:\windows\SYSNATIVE\drivers\semav6thermal64ro.sys [x]R3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver;c:\windows\system32\DRIVERS\silabenm.sys;c:\windows\SYSNATIVE\DRIVERS\silabenm.sys [x]R3 silabser;Silicon Labs CP210x USB to UART Bridge Driver;c:\windows\system32\DRIVERS\silabser.sys;c:\windows\SYSNATIVE\DRIVERS\silabser.sys [x]R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]R3 USER_ESRV_SVC;User Energy Server Service;c:\program files\Sony\VAIO Care\ESRV\esrv_svc.exe;c:\program files\Sony\VAIO Care\ESRV\esrv_svc.exe [x]R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [x]R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [x]R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]R3 WSDScan;WSD Scan Support via UMB;c:\windows\system32\drivers\WSDScan.sys;c:\windows\SYSNATIVE\drivers\WSDScan.sys [x]S0 ambakdrv;ambakdrv;c:\windows\system32\ambakdrv.sys;c:\windows\SYSNATIVE\ambakdrv.sys [x]S0 aswRvrt;avast! Revert; [x]S0 aswVmm;avast! VM Monitor; [x]S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys;c:\windows\SYSNATIVE\DRIVERS\Lbd.sys [x]S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys

15:42 286904 ----a-w- c:\program files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll.Contents of the 'Scheduled Tasks' folder.2016-03-04 c:\windows\Tasks\Adobe Flash Player Updater.job- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-04 11:59].2016-03-04 c:\windows\Tasks\DropboxUpdateTaskMachineCore.job- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-18 13:27].2016-03-04 c:\windows\Tasks\DropboxUpdateTaskMachineUA.job- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-18 13:27].2014-12-09 c:\windows\Tasks\Epson Printer Software Downloader.job- c:\program files (x86)\EPSON\EPAPDL\E_SAPDL2.EXE [2009-01-23 15:03].2016-03-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-06 14:14].2016-03-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-06 14:14].2016-03-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1744455475-465955899-1649940808-1001Core.job- c:\users\dom\AppData\Local\Google\Update\GoogleUpdate.exe [2014-09-01 14:32].2016-03-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1744455475-465955899-1649940808-1001UA.job- c:\users\dom\AppData\Local\Google\Update\GoogleUpdate.exe [2014-09-01 14:32]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1]@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 236352 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.33.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2]@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 236352 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.33.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3]@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 236352 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.33.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4]@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 236352 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.33.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5]@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 236352 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.33.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6]@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 236352 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.33.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7]@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 236352 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.33.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8]@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]2016-02-16 18:37 236352 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.33.dll.[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]@="{472083B0-C522-11CF-8763-00608CC02F24}"[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]2016-02-26 10:05 905248 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll.[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-05-31 10775584]"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-05-31 2040352].------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmuStart Page = hxxp://www.google.commStart Page = about:blankuInternet Settings,ProxyOverride = ;*.localuSearchAssistant = hxxp://www.google.com/ieuSearchURL,(Default) = hxxp://www.google.com/search?q=%sTCP: DhcpNameServer = 8.8.8.8 8.8.4.4FF - ProfilePath - c:\users\dom\AppData\Roaming\Mozilla\Firefox\Profiles\fyimrp9s.default-1426790176510\.- - - - ORPHANS REMOVED - - - -.Toolbar-Locked - (no file)Notify-igfxcui - (no file)ShellIconOverlayIdentifiers-{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} - (no file)HKLM-Run-Apoint - c:\program files (x86)\Apoint\Apoint.exe...--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_20_0_0_306_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_20_0_0_306_ActiveX.exe".[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]@Denied: (A 2) (Everyone)@="IFlashBroker6".[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_20_0_0_306_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_20_0_0_306_ActiveX.exe".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Shockwave Flash Object".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_306.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]@="0".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]@="ShockwaveFlash.ShockwaveFlash.20".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_306.ocx, 1".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="ShockwaveFlash.ShockwaveFlash".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Macromedia Flash Factory Object".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_306.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]@="FlashFactory.FlashFactory.1".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_306.ocx, 1".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="FlashFactory.FlashFactory".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]@Denied: (A 2) (Everyone)@="IFlashBroker6".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\.[HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000.[HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000.[HKEY_LOCAL_MACHINE\system\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000.Completion time: 2016-03-04 15:28:28ComboFix-quarantined-files.txt 2016-03-04 15:28ComboFix2.txt 2014-06-30 14:12.Pre-Run: 117,496,963,072 bytes freePost-Run: 117,104,271,360 bytes free.- - End Of File - - 06E4591854E81CB29C2CB8EA39458340

Please skip to the English section below if you don't write Chinese.中文：提交 Issue 之前请先阅读 Issue 指引，然后回答下面的问题，谢谢。除非特殊情况，请完整填写所有问题。不按模板发的 issue 将直接被关闭。你正在使用哪个版本的 V2Ray？（如果服务器和客户端使用了不同版本，请注明）3.10你的使用场景是什么？比如使用 Chrome 通过 Socks/VMess 代理观看 YouTube 视频。websocket+tls+Nginx正常翻墙你看到的不正常的现象是什么？（请描述具体现象，比如访问超时，TLS 证书错误等）#[请教]关于路由部分的设置有点绕，望借鉴下大家的经验 :) #426#*#*中google play服务连接mtalk.google.com不停的断开重连。你期待看到的正确表现是怎样的？能够正常连接mtalk.google.com请附上你的配置（提交 Issue 前请隐藏服务器端IP地址）。服务器端配置:{"log": { "access": "/var/log/v2ray/access.log", "error": "/var/log/v2ray/error.log", "loglevel": "warning"}, "inbound": { "port": 10000, "listen":"127.0.0.1", "protocol": "vmess", "settings": { "clients": [ { "id": "92329e79-ee98-4b9a-9963-6f9365550dae", "alterId": 64 }, { "id": "92329e79-ee98-4b9a-9963-6f9365550daf", "alterId": 64 } ] }, "streamSettings":{ "network":"ws", "wsSettings": { "path": "/ray" } } }, "outbound": { "protocol": "freedom", "settings": {} }} { "log": { "access": "/tmp/log/Vaccess.log", "error": "/tmp/log/Verror.log", "loglevel": "warning" }, "inbound": { "protocol": "dokodemo-door", "port": 1080, "address": "", "settings": { "network": "tcp", "timeout": 0, "followRedirect": true } }, "outbound": { "protocol": "vmess", "settings": { "vnext": [ { "address": "###", "port": 443, "users": [ { "id": "92329e79-ee98-4b9a-9963-6f9365550dae", "alterId": 64 } ] } ] }, "streamSettings": { "network": "ws", "security": "tls", "tlsSettings": { "serverName": "########" }, "wsSettings":{ "path":"/ray" } } }, "mux": {"enabled": true}, "inbounddetour": [ { "port": 1081, "protocol": "socks", "settings": { "auth": "noauth", "udp": true } } ]}请附上出错时软件输出的错误日志。在 Linux 中，日志通常在 /var/log/v2ray/error.log 文件中。服务器端错误日志: Proxy|Freedom: connection ends > context canceled2018/02/27 09:56:16 [Info] [524408568] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > context canceled2018/02/27 09:56:16 [Info] [3540292887] App|Proxyman|Outbound: failed to process outbound traffic > Proxy|Freedom: connection ends > context canceled2018/02/27 09:56:16 [Info] [1057992106] App|Proxyman|Outbound: failed to process outbound traffic > Proxy|Freedom: connection ends > context canceled2018/02/27 09:56:16 [Info] [1853464014] App|Proxyman|Outbound: failed to process outbound traffic > Proxy|Freedom: connection ends > context canceled2018/02/27 09:56:16 [Info] [3540292887] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > context canceled2018/02/27 09:56:16 [Info] [1057992106] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > context canceled2018/02/27 09:56:16 [Info] [1853464014] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > context canceled2018/02/27 09:56:18 [Info] [2134650019] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > Proxy|VMess|Inbound: failed to transfer request > websocket: close 1006 (abnormal closure): unexpected EOF2018/02/27 09:56:18 [Info] [2134650019] App|Proxyman|Outbound: failed to process outbound traffic > Proxy|Freedom: connection ends > context canceled">2018/02/27 09:56:16 [Info] [524408568] App|Proxyman|Outbound: failed to process outbound traffic > Proxy|Freedom: connection ends > context canceled2018/02/27 09:56:16 [Info] [524408568] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > context canceled2018/02/27 09:56:16 [Info] [3540292887] App|Proxyman|Outbound: failed to process outbound traffic > Proxy|Freedom: connection ends > context canceled2018/02/27 09:56:16 [Info] [1057992106] App|Proxyman|Outbound: failed to process outbound traffic > Proxy|Freedom: connection ends > context canceled2018/02/27 09:56:16 [Info] [1853464014] App|Proxyman|Outbound: failed to process outbound traffic > Proxy|Freedom: connection ends > context canceled2018/02/27 09:56:16 [Info] [3540292887] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > context canceled2018/02/27 09:56:16 [Info] [1057992106] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > context canceled2018/02/27 09:56:16 [Info] [1853464014] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > context canceled2018/02/27 09:56:18 [Info] [2134650019] App|Proxyman|Inbound: connection ends > Proxy|VMess|Inbound: connection ends > Proxy|VMess|Inbound: failed to transfer request > websocket: close 1006 (abnormal closure): unexpected EOF2018/02/27 09:56:18 [Info] [2134650019] App|Proxyman|Outbound: failed to process outbound traffic > Proxy|Freedom: connection ends > context canceled Proxy|VMess|Outbound: connection ends > websocket: close 1006 (abnormal closure): unexpected EOF2018/02/27 09:47:37 [Info] [3214668459] App|Proxyman|Inbound: connection ends > Proxy|Socks: connection ends > Proxy|Socks: failed to transport all

Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA}Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE}Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngineClé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayerClé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMPValeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{91C18ED5-5E1C-4AE5-A148-A861DE8C8E16}]Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{B922D405-6D13-4A2B-AE89-08A030DA4402}]Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [EoEngine]Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [ClickPotatoLite@ClickPotatoLite.com]***** [Navigateurs] *****-\\ Internet Explorer v9.0.8112.16421[OK] Le registre ne contient aucune entrée illégitime.*************************AdwCleaner[R1].txt - [8012 octets] - [26/11/2011 15:32:36]AdwCleaner[S1].txt - [8036 octets] - [26/11/2011 15:52:02]*************************Dossier Temporaire : 6 dossier(s)et 34 fichier(s) supprimés########## EOF - C:\AdwCleaner[S1].txt - [8256 octets] ########## juju666 Messages postés 35446 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 21 avril 2024 4 796 26 nov. 2011 à 16:10 ok▶ Télécharge AD-Remover sur ton Bureau : (TeamXScript) ( Lien officiel ) OU ( Miroir ) /!\ Ferme toutes applications en cours /!\▶ Double-clique sur l'icône Ad-remover située sur ton Bureau. ▶ Sur la page, clique sur le bouton « Scanner » ▶ Confirme le lancement du scan ▶ Laisse travailler l'outil. ▶ Quand il a fini, un rapport s'ouvrira : ferme le.♦ Pour me transmettre le rapport utilise pjjoint.malekal.comTutoriel : Anakin113 Messages postés 41 Date d'inscription dimanche 11 janvier 2009 Statut Membre Dernière intervention 24 juillet 2013 26 nov. 2011 à 16:50 juju666 Messages postés 35446 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 21 avril 2024 4 796 26 nov. 2011 à 16:53 ▶ Relance AD-Remover, clique sur [ Nettoyer

Process Explorer 14.0DownloadProcess Explorer shows you information about DDL processes3.7 3 votes Your vote:Latest version:17.06See allDeveloper:Mark RussinovichReviewDownloadComments Questions & Answers 1 / 16Awards (10)Show all awardsUsed by 2 peopleAll versionsProcess Explorer 17.06 (latest)Process Explorer 16.4 Process Explorer 16.3 DownloadEdit program infoInfo updated on:Feb 16, 2025Software InformerDownload popular programs, drivers and latest updates easilyNo specific info about version 14.0. Please visit the main page of Process Explorer on Software Informer.Editorial review:Read a full reviewComments 3.73 votes20001Your vote:Notify me about replies Comment viaFacebookRelated software Software Informer FreeDownload popular programs, drivers and latest updates easily.System Explorer FreeLets you control all the details of your system internals.Free Extended Task Manager FreeFree Extended Task Manager 1.0 provides additional process management features.Process Killer FreeQuickly and easily kill and terminate any running process.Chameleon Task Manager This program offers a great alternative for the standard Windows Task Manager.Related storiesSee allQuake Champions will start a 10-day open beta this weekMicrosoft is testing ads in Windows 11 File ExplorerGoogle makes it easier to explore heritage sites worldwideTop 10 open-source tools in 2022Related suggestionsBest free dll repair softwareM.file explore.comDll makerProcess explorer 11.3Process explorer 15.1Process explorer 64 bitOpen dll files windows 7Process explorer 10.2Dll openerUsers are downloadingRivaTuner Statistics ServerHDTunePowerStripDesktop InfoPowerSettingsProcessTree