Zoek.exe v5.0.0.0 Updated 19-10-2014 Tool run by Brecht on di 21/10/2014 at 16:55:32,37. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Brecht\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 21/10/2014 16:59:40 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2448969141-386237961-2142609326-1001\Software\Microsoft\Internet Explorer\SearchScopes\{82FA3FAA-0767-4779-9520-BC3B77A94D7B} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2448969141-386237961-2142609326-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4F524A2D-5350-4500-76A7-7A786E7484D7} deleted successfully ==== Installed Programs ====================== "Windows Live Essentials" ?????? ??????? ?????? Windows Live ???????? ?????????? Windows Live ?????????? ?????????? (????????????? ??????) ??????????? ???????????? Adobe Reader XI (11.0.07) - Nederlands Apple Application Support Apple Mobile Device Support Apple Software Update Battery Calibration Bonjour Boot Configure BurnRecovery Call of Duty: Ghosts - Multiplayer Cisco EAP-FAST Module Cisco LEAP Module Cisco PEAP Module CyberLink PowerDVD 10 D3DX10 ETDWare PS/2-X64 11.13.4.4_WHQL Foto-galerija Fotoattelu galerija Fotogal‚ria Fotogalerie Fotogalerii Fotogalerija Fotogalleri Fotogalleriet Fotograf Galerisi Fot˘t r Galeria de Fotografias Galeria de Fotos Galerˇa de fotos Galeria fotografii Galerie de photos Galerie foto Galerija fotografija Google Chrome Google Update Helper High-Definition Video Playback Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) Rapid Storage Technology Intel© Trusted Connect Service Client iTunes Java 7 Update 67 Java 7 Update 67 (64-bit) KB9X Radio Switch Driver League of Legends LogMeIn Hamachi MAGIX MX Suite Microsoft Application Error Reporting Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 Movie Maker MSI Social Media Collection MSVCRT MSVCRT110 MSVCRT110_amd64 Nero 10 Movie ThemePack 1 Nero 10 Movie ThemePack Basic Nero BurnRights 10 Nero Control Center 10 Nero Core Components 10 Nero CoverDesigner 10 Nero DiscSpeed 10 Nero Express 10 Nero InfoTool 10 Nero Multimedia Suite 10 Essentials Nero StartSmart 10 Norton AntiVirus Origin Pando Media Booster Photo Common Photo Gallery Picasa 3 Podstawowe programy Windows Live Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Raccolta foto REALTEK Bluetooth Driver Realtek Card Reader Realtek High Definition Audio Driver REALTEK Wireless LAN Driver RegClean-Pro Remote Desktop Access (VuuPC) S?????? f?t???af??? SCM Security Update for CAPICOM (KB931906) Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2883031) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2883032) 32-Bit Edition Settings Manager SkypeT 6.20 Steam Super-Charger Team Fortress 2 TeamViewer 9 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2899475) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) Valokuvavalikoima VLC media player Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live Temel Par‡alar Windows Live UX Platform Windows Live UX Platform Language Pack Windows Liven peruspaketti Xirrus Wi-Fi Inspector ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe c:\Program Files (x86)\SCM\MSIService.exe C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\NAV.exe C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\NAV.exe C:\Program Files (x86)\Settings Manager\smdmf\smdmfu.exe C:\Program Files (x86)\Origin\Origin.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Users\Brecht\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\Origin\OriginClientService.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SmdmFService deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== C:\Users\Brecht\AppData\Local\Linkey deleted C:\PROGRA~2\RCP deleted C:\Users\Brecht\AppData\Roaming\VOPackage deleted C:\PROGRA~3\APN deleted C:\PROGRA~3\boost_interprocess deleted C:\PROGRA~3\smdmf deleted C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Users\Brecht\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage deleted C:\Windows\SysNative\roboot64.exe deleted C:\windows\SysNative\drivers\{7348ef6c-a3d0-46f4-a841-c0a1d6a64e63}Gw64.sys deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\Windows\SysWow64\AI_RecycleBin deleted "C:\Program Files (x86)\Settings Manager\smdmf\favicon.ico" not deleted "C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe" not deleted "C:\Program Files (x86)\Settings Manager\smdmf\smdmfu.exe" not deleted "C:\Program Files (x86)\Settings Manager\smdmf\tbicon.exe" not deleted "C:\Program Files (x86)\Settings Manager\smdmf\Uninstall.exe" not deleted "C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfbho.dll" not deleted "C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfldr.dll" not deleted "C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfmgrc2.cfg" not deleted "C:\Program Files (x86)\Settings Manager\smdmf\x64\sysapcrt.dll" not deleted "C:\PROGRA~2\Settings Manager\smdmf\favicon.ico" not deleted "C:\PROGRA~2\Settings Manager\smdmf\SmdmFService.exe" not deleted "C:\PROGRA~2\Settings Manager\smdmf\smdmfu.exe" not deleted "C:\PROGRA~2\Settings Manager\smdmf\tbicon.exe" not deleted "C:\PROGRA~2\Settings Manager\smdmf\Uninstall.exe" not deleted "C:\PROGRA~2\Settings Manager\smdmf\x64\smdmfbho.dll" not deleted "C:\PROGRA~2\Settings Manager\smdmf\x64\smdmfldr.dll" not deleted "C:\PROGRA~2\Settings Manager\smdmf\x64\smdmfmgrc2.cfg" not deleted "C:\PROGRA~2\Settings Manager\smdmf\x64\sysapcrt.dll" not deleted "C:\Program Files (x86)\Settings Manager" not deleted "C:\PROGRA~2\Settings Manager" not deleted "C:\Program Files (x86)\Settings Manager\smdmf" not deleted "C:\Program Files (x86)\Settings Manager\smdmf\x64" not deleted "C:\PROGRA~2\Settings Manager\smdmf" not deleted "C:\PROGRA~2\Settings Manager\smdmf\x64" not deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 4016 MB CPU Info: Intel(R) Pentium(R) CPU 3550M @ 2.30GHz CPU Speed: 2295,6 MHz Sound Card: Speakers (2- Realtek High Defin | Display Adapters: Intel(R) HD Graphics | Intel(R) HD Graphics | Intel(R) HD Graphics Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30) #2 | Microsoft Wi-Fi Direct Virtual Adapter #2 | Realtek RTL8723AE Wireless LAN 802.11n PCI-E NIC | Bluetooth Device (Personal Area Network) | LogMeIn Hamachi Virtual Ethernet Adapter CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SN-208FB Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 285,8GB | D: 162,3GB Hard Disks - Free: C: 202,1GB | D: 121,1GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | MSI_NB - 1072009 Time Zone: Romance (standaardtijd) Motherboard *: Micro-Star International Co., Ltd. MS-1758 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Virus: Norton AntiVirus On-access scanning disabled (Outdated) Anti-Spyware: Norton AntiVirus disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Google Chrome 38.0.2125.104 Internet Explorer Version: 11.0.9600.17351 Google Chrome version: 38.0.2125.104 Adobe Reader version: 11.0.07.79 Sun Java version: 1.7.0_67 (32-bit) Sun Java version: 1.7.0_67 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Brecht\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-10-16 18:53:23 CDB3123A2ABB34B830224B986568F4D4 626688 ----a-w- C:\Windows\SysWOW64\MrmCoreR.dll 2014-10-16 18:53:06 10F428429F7FF957B226E068A08B158A 3117568 ----a-w- C:\Windows\SysWOW64\msi.dll 2014-10-16 18:53:04 C49344C2F399A22704C682C5E18B8DF2 2321920 ----a-w- C:\Windows\SysWOW64\authui.dll 2014-10-16 18:12:28 09ABB665890DDCB614974AE563F0D877 672256 ----a-w- C:\Windows\SysWOW64\wuapi.dll 2014-10-16 18:12:21 C2F6C71F5316DA478632B3B463B06E6D 80896 ----a-w- C:\Windows\SysWOW64\wudriver.dll 2014-10-16 18:12:21 B6D3D955FBB174081CDFB977B726D069 123904 ----a-w- C:\Windows\SysWOW64\wuwebv.dll 2014-10-16 18:12:20 FBC21212942F17DBA0A66C93ADC23F59 31232 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2014-10-16 18:11:29 F91E55DA404B834648A3B0A2477C10DB 17484800 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-10-16 18:11:12 D03EB7605435FE24ADE670661A932651 4201472 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-10-16 18:11:10 EF94FA1F3D90520CCA4AE65D639A9E62 11807232 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-10-16 18:11:06 7AE80F921027CF88CB9D0433088A3E55 1810944 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-10-16 18:11:06 55A400FDB21D157E947A0EE65AEDB1B3 2187264 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-10-16 18:11:05 3065FF6794A7FDC882F0DA8B6230AB6E 1190400 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-10-16 18:11:04 B89F5D2B3D3BC730FAB93CFCD931742F 607744 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-10-16 18:11:04 980D01CB48811552E09D9CFF397886C9 315904 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2014-10-16 18:11:04 835807E2AC0A8FA15B9A2EA80E2D5169 2017280 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-10-16 18:10:52 FBE852643EDEB9D6D6502AFE6017CD64 678400 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-10-16 18:10:52 DF4BA130BD41F29A894E026E456B8481 454656 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2014-10-16 18:10:52 6D4DD5706C297234F457B9D9018C493F 61952 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2014-10-16 18:10:52 410BECCA3354D471E45344F0754CC0E4 243200 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-10-16 18:10:52 201EAFA3F17BE4990999C28657212D8E 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-10-16 18:10:27 CE9FDB173E3FDA974B9CC2596558EA47 68608 ----a-w- C:\Windows\SysWOW64\packager.dll 2014-10-16 18:10:12 F51B727AFF404ED8D730DFA069D88D7B 18722600 ----a-w- C:\Windows\SysWOW64\shell32.dll 2014-10-16 18:10:11 074BF061D97E49AAF04F2FAF46409A14 5902848 ----a-w- C:\Windows\SysWOW64\Windows.UI.Search.dll 2014-10-16 18:10:09 7BEE9E040222E7033A820780E1A61204 5777408 ----a-w- C:\Windows\SysWOW64\mstscax.dll 2014-10-16 18:10:04 A4E624F7658D08C1717542FA10E0A973 1467384 ----a-w- C:\Windows\SysWOW64\ntdll.dll 2014-10-16 18:10:02 E86549FED3008360730A6B722079D537 756224 ----a-w- C:\Windows\SysWOW64\WSShared.dll 2014-10-16 18:10:02 76831C139BD9E227712B283A6A5ABBA8 840192 ----a-w- C:\Windows\SysWOW64\SearchFolder.dll 2014-10-16 18:10:02 24B30DB8D1F8CF0F8C1AAAE319BC508E 838144 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2014-10-16 18:10:01 DBA00F3FC75495058A25B24906C24599 1205976 ----a-w- C:\Windows\SysWOW64\propsys.dll 2014-10-16 18:10:01 BFC6F7889A9CFF451A418862444B9F63 321024 ----a-w- C:\Windows\SysWOW64\Wldap32.dll 2014-10-16 18:09:59 DA65F1320538BC417B8FAE0BCAC330A0 265216 ----a-w- C:\Windows\SysWOW64\SkyDriveShell.dll 2014-10-16 16:03:07 5D2C15BDAD48646C8CBC83903252D87C 514048 ----a-w- C:\Windows\SysWOW64\rastls.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-10-16 18:53:24 34B5290B8770A2FC578E3FEAD3FD7462 921600 ----a-w- C:\Windows\Sysnative\MrmCoreR.dll 2014-10-16 18:53:21 8CBF1E2761816CFD9D32F8B32531D0FB 118272 ----a-w- C:\Windows\Sysnative\winbici.dll 2014-10-16 18:53:09 6F338144D6C1115C9901024F5CFFDC87 275968 ----a-w- C:\Windows\Sysnative\generaltel.dll 2014-10-16 18:53:09 668D58194CF9C9550C5433B5C210E996 678400 ----a-w- C:\Windows\Sysnative\aepdu.dll 2014-10-16 18:53:08 D46FD43F65070EAA744F2AEC0B7F2405 527360 ----a-w- C:\Windows\Sysnative\aeinv.dll 2014-10-16 18:53:05 A00B916CD6A67984257DC53052350219 2646016 ----a-w- C:\Windows\Sysnative\authui.dll 2014-10-16 18:53:05 4C3A631A721A49324715717535633002 2779648 ----a-w- C:\Windows\Sysnative\msi.dll 2014-10-16 18:53:04 7667B9D81EA8FD6540E6CF72F92161A6 109568 ----a-w- C:\Windows\Sysnative\appinfo.dll 2014-10-16 18:52:03 C2BBFC3872442092AD2260F564AB9AD9 4183040 ----a-w- C:\Windows\Sysnative\win32k.sys 2014-10-16 18:12:35 9FDD8CD31F3FBA88F050318F32D640E2 3448320 ----a-w- C:\Windows\Sysnative\wuaueng.dll 2014-10-16 18:12:29 6D3FB811007A5330C6D85E182BCDFC85 839680 ----a-w- C:\Windows\Sysnative\wuapi.dll 2014-10-16 18:12:26 23C814333BDA6B07248E6E865D91B728 1702400 ----a-w- C:\Windows\Sysnative\wucltux.dll 2014-10-16 18:12:24 EEC80B8BF5B050D04DDCD88D03C9A771 59904 ----a-w- C:\Windows\Sysnative\wups.dll 2014-10-16 18:12:24 5E89EC6165E545B77122227E1DFFA23A 54752 ----a-w- C:\Windows\Sysnative\wuauclt.exe 2014-10-16 18:12:24 1D66D0788D7A398B4BF9030C45B5F71C 50688 ----a-w- C:\Windows\Sysnative\wups2.dll 2014-10-16 18:12:24 1A941A83126E35782401E43C84FC90C7 388608 ----a-w- C:\Windows\Sysnative\WUSettingsProvider.dll 2014-10-16 18:12:23 094D5D55C02FA2547A0B46A0ABC629D5 137728 ----a-w- C:\Windows\Sysnative\wuwebv.dll 2014-10-16 18:12:21 65297383420B2C09A7D2838C76106CEE 93696 ----a-w- C:\Windows\Sysnative\wudriver.dll 2014-10-16 18:12:20 35D45C2646794C66EAAD8FE11944A714 35328 ----a-w- C:\Windows\Sysnative\wuapp.exe 2014-10-16 18:11:31 7415B29AFE2E4494A57358B8C7E78600 23631360 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-10-16 18:11:17 D3B07C2FABEAE749E4E51F1E93CABA23 5829632 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-10-16 18:11:14 7E60EE8A68F7270D1E1662CBA275D4FA 13619200 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-10-16 18:11:08 050FD78BA4EFA62417F61F4C098B5B25 2796032 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-10-16 18:11:07 9D98D4F390F0B14A782F3B931E613A1A 2309632 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-10-16 18:11:06 0F5A279522FA6A30C9C5A297A1064933 1447936 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-10-16 18:11:05 646C004F58AA4762F92BF7C595216C37 2108416 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-10-16 18:11:05 45B736E3184B68515FDB71D4083A9BCF 731136 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-10-16 18:11:04 2A1C9DB3F9C09795D77E9F24C30BE423 363008 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2014-10-16 18:11:04 29C0530E0F120AC3E583889DCD6A63DD 710656 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-10-16 18:11:03 30FB9ABB6C45C3299CFA5F556904DD5F 83968 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2014-10-16 18:10:52 DB101A62F9BF8E7765685950169EF52B 758272 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2014-10-16 18:10:52 A2105E46DC9CE38A1D57FB124436E1BC 85504 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-10-16 18:10:52 98241BE7EB26C41562D33393DD12608F 289280 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-10-16 18:10:52 328143D6BC5951E1797BD524C4E98CDC 547328 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-10-16 18:10:52 2E5AF1507CBE735B4D7EBFF1908EA0E1 775168 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-10-16 18:10:27 F782575495709CD79F1A15EFD11D51E3 76288 ----a-w- C:\Windows\Sysnative\packager.dll 2014-10-16 18:10:14 34A16F6F9546595952C65003D9A4B474 21195616 ----a-w- C:\Windows\Sysnative\shell32.dll 2014-10-16 18:10:13 1676B06421492B439A9E60C55692A921 8757760 ----a-w- C:\Windows\Sysnative\Windows.UI.Search.dll 2014-10-16 18:10:10 8A522BBE4E06586C57E5D9DC50FB88B0 6649344 ----a-w- C:\Windows\Sysnative\mstscax.dll 2014-10-16 18:10:08 57CA779C19C2F224BE0C5EFC40F54B60 4758528 ----a-w- C:\Windows\Sysnative\SyncEngine.dll 2014-10-16 18:10:07 5053FE9043FB84D71B04EFC7D5DA13CF 1710184 ----a-w- C:\Windows\Sysnative\ntdll.dll 2014-10-16 18:10:07 10CE7F7704E293F6CC6E0AF51DBFD95A 1106432 ----a-w- C:\Windows\Sysnative\SearchFolder.dll 2014-10-16 18:10:06 37C1CBCB3F420C754E86E3EC313D436D 1112512 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2014-10-16 18:10:03 2ECA23663D13100032E09062C743C70D 1507648 ----a-w- C:\Windows\Sysnative\propsys.dll 2014-10-16 18:10:02 ACFEE9487693C2BD573DFCA71D98E17C 914432 ----a-w- C:\Windows\Sysnative\iphlpsvc.dll 2014-10-16 18:10:02 ABB028BAB78E7B4AFE374F8246F6CCB6 359424 ----a-w- C:\Windows\Sysnative\Wldap32.dll 2014-10-16 18:10:02 30293301B14D0D11D086B09831F5FE0D 920064 ----a-w- C:\Windows\Sysnative\WSShared.dll 2014-10-16 18:10:01 FD4EA8E9232ADD51DC31C295DDEF2768 287744 ----a-w- C:\Windows\Sysnative\SystemEventsBrokerServer.dll 2014-10-16 18:10:00 F58FBEA392B663B936E62939A877CA80 1120768 ----a-w- C:\Windows\Sysnative\SkyDrive.exe 2014-10-16 18:10:00 E325BCD68EC0CF2E2EDD0AB7CC17C698 267776 ----a-w- C:\Windows\Sysnative\bisrv.dll 2014-10-16 18:10:00 73F269436228D5625E83A1EAF3549F58 118272 ----a-w- C:\Windows\Sysnative\httpprxm.dll 2014-10-16 18:10:00 66CBCDDEF429E5BA83C3288EEB0771A6 717824 ----a-w- C:\Windows\Sysnative\SkyDriveTelemetry.dll 2014-10-16 18:09:59 B6F423906D3E10BE38C16726C0905033 388729 ----a-w- C:\Windows\Sysnative\ApnDatabase.xml 2014-10-16 18:09:59 5D4A403DAE434FBA11779496EAFBDDE8 75776 ----a-w- C:\Windows\Sysnative\adhsvc.dll 2014-10-16 18:09:59 36F977EDAE6CEE96CE6409B2B16765B4 290816 ----a-w- C:\Windows\Sysnative\ProximityService.dll 2014-10-16 18:09:59 3014CE5846A486C624E3E2CEB8C3290C 286208 ----a-w- C:\Windows\Sysnative\SkyDriveShell.dll 2014-10-16 18:09:59 0DD29E5328436D51517316CD6D3BACCA 286208 ----a-w- C:\Windows\Sysnative\pcsvDevice.dll 2014-10-16 16:03:07 25EE65F2FA154EDED0E87354311FB1E2 590336 ----a-w- C:\Windows\Sysnative\rastls.dll ====== C:\Windows\Sysnative\drivers ===== 2014-10-16 18:10:08 87F3713E620F62D243A82B3CB66CBDDE 2498880 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2014-10-16 18:10:00 329FEB41BBE82FBBD9BD69547BA1CB82 428864 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2014-10-01 16:47:57 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-10-19 08:58:07 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2014-10-21 16:06:58 -------- d-----w- C:\PROGRA~2\Origin Games 2014-10-17 17:42:17 -------- d-----w- C:\PROGRA~2\Origin 2014-09-22 19:10:45 -------- d-----w- C:\PROGRA~2\Settings Manager 2014-09-22 19:03:43 -------- d-----w- C:\PROGRA~2\TeamViewer ======= C: ===== ====== C:\Users\Brecht\AppData\Roaming ====== 2014-10-17 17:45:49 -------- d-----w- C:\Users\Brecht\AppData\Roaming\Origin 2014-10-17 17:45:41 -------- d-----w- C:\Users\Brecht\AppData\Local\Origin 2014-09-30 15:55:36 -------- d-----w- C:\Users\Brecht\AppData\Local\Diagnostics 2014-09-27 16:05:34 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\CrashDumps 2014-09-23 18:49:27 -------- d-----w- C:\Users\Brecht\AppData\Local\Programs 2014-09-22 19:03:48 -------- d-----w- C:\Users\Brecht\AppData\Roaming\TeamViewer ====== C:\Users\Brecht ====== 2014-10-19 07:03:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2014-10-18 19:20:32 -------- d-----w- C:\Users\Public\Documents\SimCity 2014-10-17 17:42:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2014-10-17 17:42:39 -------- d-----w- C:\ProgramData\Origin 2014-10-17 17:42:38 -------- d-----w- C:\ProgramData\Electronic Arts ====== C: exe-files == 2014-10-19 08:58:08 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Brecht.exe 2014-10-18 15:02:06 EC87C870FC286178E461C1D917567DCE 41081424 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\38.0.2125.104\38.0.2125.104_chrome_installer.exe 2014-10-18 09:00:53 68270679465EC5A66B65489C6E44AD64 11100752 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\38.0.2125.104\38.0.2125.104_37.0.2062.124_chrome_updater.exe 2014-10-17 17:45:18 D7D616E78A289665B09E918E2EB3CA59 9507672 ----a-w- C:\Program Files (x86)\Origin\OriginER.exe 2014-10-17 17:45:18 82AD28459B9D00BAEF025F53C855A057 1637232 ----a-w- C:\Program Files (x86)\Origin\OriginCrashReporter.exe 2014-10-17 17:45:16 2F82C684AE8D045FF751FA3369CA69D0 14176 ----a-w- C:\Program Files (x86)\Origin\igoproxy64.exe 2014-10-17 17:42:49 3F02AD103B764A9FD4803B158C168E4F 1821552 ----a-w- C:\Program Files (x86)\Origin\OriginClientService.exe 2014-10-17 17:42:48 28892D8386877F535D3F875084596E69 1632104 ----a-w- C:\Program Files (x86)\Origin\EAProxyInstaller.exe 2014-10-17 17:42:47 F920621A848115ADE15E7F0922130401 96632 ----a-w- C:\Program Files (x86)\Origin\legacyPM\EACoreServer.exe 2014-10-17 17:42:47 F2C037BE90E479A72FBDBC34BF7A1647 1628032 ----a-w- C:\Program Files (x86)\Origin\legacyPM\EAProxyInstaller.exe 2014-10-17 17:42:47 7F94D00603AC062768B31EDB41C3DB6A 830832 ----a-w- C:\Program Files (x86)\Origin\legacyPM\OriginLegacyCLI.exe 2014-10-17 17:42:47 736DFBE85CE56FF569E9B2B626FE4B76 471416 ----a-w- C:\Program Files (x86)\Origin\legacyPM\PatchProgress.exe 2014-10-17 17:42:47 56AD75E5527EA5F36203CE79C54664E4 1332648 ----a-w- C:\Program Files (x86)\Origin\legacyPM\OriginUninstall.exe 2014-10-17 17:42:47 459825F17783BFC987ACCFB7AABAABA3 402800 ----a-w- C:\Program Files (x86)\Origin\legacyPM\MessageDlg.exe 2014-10-16 18:11:05 0B219DF6F397F076BC4DF0249156D010 812688 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-10-16 18:11:04 C876F8303AA30481A36FE2AACDE77671 483840 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-10-16 18:11:04 8A120D686685E02B5D8760C723E890B4 810640 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-10-16 18:11:04 53E24F2DB97EFAF85FE093AA254790EC 470528 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2448969141-386237961-2142609326-1001\Software\Microsoft\Windows\CurrentVersion\Run] "EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "Super-Charger"="C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "LogMeIn Hamachi Ui"="C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "BtServer"="C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe" "IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch" "ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe " "Radio Manager"="C:\Program Files (x86)\SCM\Radio Manager.exe" "SCM"="C:\Program Files (x86)\SCM\SCM.exe" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [14/08/2014 20:53] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- :C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\MSI_Reminder" [C:\Program Files (x86)\MSI\MSI Remind Manager\MSI Reminder.exe] "C:\Windows\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\WSCStub.exe"] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{42E5B5D3-52A5-4A29-87F4-A0B31230CCC3}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\{4573F710-5937-4F6E-BA7B-393D1FA48E01}" ["c:\program files\internet explorer\iexplore.exe" http://ui.skype.com/ui/0/6.18.64.106/nl/go/help.faq.installer?LastError=1618] "C:\Windows\SysNative\tasks\Norton Anti-Theft\Norton Error Analyzer" [C:\Program Files (x86)\Norton Anti-Theft\Engine\1.9.0.14\SymErr.exe] "C:\Windows\SysNative\tasks\Norton Anti-Theft\Norton Error Processor" [C:\Program Files (x86)\Norton Anti-Theft\Engine\1.9.0.14\SymErr.exe] "C:\Windows\SysNative\tasks\Norton AntiVirus\Norton Error Analyzer" [C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\SymErr.exe] "C:\Windows\SysNative\tasks\Norton AntiVirus\Norton Error Processor" [C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\SymErr.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{BBDA0591-3099-440a-AA10-41764D9DB4DB}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_21.1.0.18\IPSFF" [13/08/2014 11:31] ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fpmeembnagmagppkgghhfjfdfajdfcah - C:\Users\Brecht\AppData\Local\Linkey\ChromeExtension\ChromeExtension.crx[] Google Docs - Brecht\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Brecht\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Brecht\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Brecht\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - Brecht\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Brecht\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Fix ====================== C:\Users\Brecht\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully C:\Users\Brecht\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Brecht\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully C:\Users\Brecht\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Brecht\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mapsgalaxy.dl.tb.ask.com_0.localstorage deleted successfully C:\Users\Brecht\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mapsgalaxy.dl.tb.ask.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.hbvl.be/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{82FA3FAA-0767-4779-9520-BC3B77A94D7B}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{82FA3FAA-0767-4779-9520-BC3B77A94D7B}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.hbvl.be/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} Unknown Url="Not_Found" {D1DB121F-1EDF-4C5F-A2B6-4F4AB590207C} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2448969141-386237961-2142609326-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} deleted successfully HKEY_USERS\S-1-5-21-2448969141-386237961-2142609326-1001\Software\Microsoft\Internet Explorer\SearchScopes\{D1DB121F-1EDF-4C5F-A2B6-4F4AB590207C} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RegClean-Pro_is1 deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\IPS\IPSBHO.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - c:\Program Files (x86)\SCM\MSIService.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files (x86)\Norton AntiVirus\Engine\21.6.0.32\NAV.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Brecht\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Brecht\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Brecht\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=103 folders=37 38780715 bytes) ==== Empty Temp Folders ====================== C:\Users\Brecht\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot