Zoek.exe v5.0.0.0 Updated 27-10-2014 Tool run by Deckx on di 28/10/2014 at 12:00:53,40. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Safe\Downloads\zoek (1).exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== \zoek-results2014-07-17-112046.log 56567 bytes \zoek-results2014-07-17-112321.log 1072 bytes ==== Empty Folders Check ====================== C:\Users\Safe\AppData\Roaming\.minecraft deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== æTorrent Adobe Flash Player 15 Plugin Aeria Ignite Akamai NetSession Interface Alliance of Valiant Arms AMD Accelerated Video Transcoding AMD Catalyst Control Center AMD Catalyst Install Manager AMD Drag and Drop Transcoding AMD Fuel AMD Media Foundation Decoders AMD System Monitor AMD Wireless Display v3.0 Apple Application Support Apple Mobile Device Support Apple Software Update avast Free Antivirus Barbarian Invasion Battlefield Play4Free Bonjour CADdy++ - SEE Electrical schoolversie Capitalism II Catalyst Control Center - Branding Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish D3DX10 DAEMON Tools Lite De Sims 2 De SimsT 3 Dota 2 Facebook Video Calling 3.1.0.521 GeoGebra 4.4 GOM Player Google Chrome Google Update Helper GPU Temp version 1.0 Grand Theft Auto IV GTA San Andreas iTunes Java 7 Update 55 Malwarebytes Anti-Malware version 2.0.2.1012 Microsoft .NET Framework 4.5 Microsoft Application Error Reporting Microsoft Games for Windows - LIVE Redistributable Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 Microsoft WSE 3.0 Runtime Microsoft Zoo Tycoon Movie Maker Mozilla Firefox 32.0.3 (x86 en-US) Mozilla Maintenance Service MSVCRT MSVCRT110 MSVCRT110_amd64 Mumble 1.2.4 Need for Speed Most Wanted Need for SpeedT The Run Need for SpeedT Undercover OpenTTD 1.4.2 Photo Common Photo Gallery PlanetSide 2 PlanetSide 2 (2) PlanetSide 2 Live Test Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Renesas Electronics USB 3.0 Host Controller Driver Rockstar Games Social Club Rome - Total War Shaiya Shaiya Phoenix Skype Click to Call SkypeT 6.20 Speccy Steam Super-Charger System Requirements Lab Detection Teach2000 versie 8.53 TeamSpeak 3 Client The Walking Dead tools-freebsd tools-linux tools-netware tools-solaris tools-windows tools-winPre2k Total War ROME II Unity Web Player VASCO Card Reader Plug-In (64-Bit) VMware Workstation Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Winki WinRAR 5.01 (64-bit) WinRAR Password Cracker ==== Running Processes ====================== C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\SysWOW64\vmnat.exe C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe C:\Windows\SysWOW64\vmnetdhcp.exe C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\VMware\VMware Player\vmware-tray.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Users\Safe\Downloads\zoek (1).exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~3\Application fields Software deleted C:\windows\SysNative\GroupPolicy\Machine deleted C:\windows\SysNative\GroupPolicy\User deleted C:\windows\SysNative\GroupPolicy\gpt.ini deleted C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted "C:\PROGRA~2\Windows Portable Devices" deleted ==== System Specs ====================== Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 8141 MB CPU Info: AMD FX(tm)-6300 Six-Core Processor CPU Speed: 3526,1 MHz Sound Card: Not detected Display Adapters: AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1440 X 900 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller CD / DVD Drives: 2x (D: | E: | ) D: HL-DT-STDVDRAM GH24NSB0 | E: DTSOFT BDROM Ports: COM1 LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 931,4GB Hard Disks - Free: C: 651,8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 03/28/13 | _ASUS_ - 1072009 Time Zone: Romance Standard Time Motherboard *: MSI 970A-G43 (MS-7693) Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: avast! Antivirus disabled (Outdated) Default Browser: Google Chrome 38.0.2125.104 Internet Explorer version: 8.0.7601.17514 Mozilla Firefox version: 32.0.3 (x86 en-US) Google Chrome version: 38.0.2125.104 Sun Java version: 1.7.0_55 (32-bit) Flash Player version: 15.0.0.152 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-10-27 16:15:54 F1978090724B5BD9D90E6524D00692ED 363835718 ----a-w- C:\Windows\MEMORY.DMP ====== C:\Users\Deckx\AppData\Local\Temp ==== 2014-10-24 15:49:14 6082D256DCDCD068F76B677DB8ED1181 36039776 ----a-w- C:\Users\Safe\AppData\Local\Temp\SkypeSetup.exe 2014-10-19 18:17:55 FE28607D6BD9F28EFBAF21DFDF093BA4 7989568 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx86\Japan\dotnetfx3langpackjp.exe 2014-10-19 18:17:55 FB76F910D70D0A96F6A5F767BBC3D039 161088 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\Autorun.exe 2014-10-19 18:17:55 9D6486490669F1000525EDC7AF74A649 6636856 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx86\Italian\dotnetfx3langpackit.exe 2014-10-19 18:17:55 996F557D48EE916B0F81A143C1A29049 324928 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\_Setup.dll 2014-10-19 18:17:55 57ED2B0A9977F16C243809D12995F742 398656 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\setup.exe 2014-10-19 18:17:55 2A85436E092982BEA1BF865301F0708E 6826296 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx86\Russian\dotnetfx3langpackru.exe 2014-10-19 18:17:55 14330A25B4D15A64CD30563E575D3F2E 11554112 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx86\Spanish\dotnetfx3langpackes.exe 2014-10-19 18:17:54 FFDBBB8E67B4A830B26CF8FF522B69BA 3118272 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx64\German\dotnetfx3langpackdex64.exe 2014-10-19 18:17:54 DA6845E735A5874B4091167AC28942EC 3015872 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx64\Italian\dotnetfx3langpackitx64.exe 2014-10-19 18:17:54 9A29FEDA21E3B69C329B4F36AD30BDD6 3108032 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx64\Japan\dotnetfx3langpackjpx64.exe 2014-10-19 18:17:54 5897CBFE11489B01A88D6D9AE4941B49 9519424 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx86\French\dotnetfx3langpackfr.exe 2014-10-19 18:17:54 45B9602990C9A775664A50C4C7661ABB 11853632 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx86\German\dotnetfx3langpackde.exe 2014-10-19 18:17:54 2CF22801FFD1E2504F8702C525FCDAA2 3039936 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx64\Spanish\dotnetfx3langpackesx64.exe 2014-10-19 18:17:54 0309A3B9840A336205AAFFA22FECA3EB 3283208 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx64\Russian\dotnetfx3langpackrux64.exe 2014-10-19 18:17:53 575A1A3A5D03EE597C09AB00B5B77702 3093696 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\Language_Packs_DotNetx64\French\dotnetfx3langpackfrx64.exe 2014-10-19 18:17:52 7B26435437E8D779FF0084D4EA96D15A 52770576 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\dotnetfx3.exe 2014-10-19 18:17:52 683AD678A5DE2328B6BBF1EBA7B25F62 94482712 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\redistributable\dotnetfx3_x64.exe 2014-10-19 18:17:51 9429C08B0A59072C2C0C0408A7F1EDC6 560960 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\ISSetup.dll 2014-10-19 18:17:51 7A34F6D2D2C9657D736CF6BC49BF3875 897848 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\Redistributable\wmpappcompat.exe 2014-10-19 18:17:51 74D1DCA6E2F0156197D8D5F07DBDB7E5 398656 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\setup.exe 2014-10-19 18:17:51 164FDE3BDD39C6DCADB495508C2EFE20 23115776 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\Redistributable\xliveredist.msi 2014-10-19 18:17:51 10779F01CD8EC88A8DE385653CC9861D 324928 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\_Setup.dll 2014-10-19 18:17:51 06C9702B0181D391A3D214C800029629 54592 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\RGSC\ACLInstallHelper.dll 2014-10-19 18:17:50 5C82BE7AD1775B67916EE19C15B99331 2723264 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\Redistributable\vcredist_x86.exe 2014-10-19 18:17:50 2165A80949566D02E6F8F1A100813014 9824584 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\Redistributable\wmfdist11.exe 2014-10-19 18:17:49 D004B8731BDAAE66CD80912105281020 753960 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\Redistributable\umdf.exe 2014-10-19 18:17:46 E75121808E60B7806E38620AD3ABF345 528392 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\Redistributable\DirectX_jun2008\DXSETUP.exe 2014-10-19 18:17:42 F9E354ED964D1650A8A969C4F827E024 1694728 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\Redistributable\DirectX_jun2008\dsetup32.dll 2014-10-19 18:17:42 6CA21FACE074FD63E3E60868F666A67E 97288 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\Redistributable\DirectX_jun2008\DSETUP.dll 2014-10-19 18:17:35 71460630092E231C0790BB740A722B5A 560960 ------w- C:\Users\Safe\AppData\Local\Temp\Rar$EXa0.005\GTAIV\ISSetup.dll 2014-10-19 18:06:27 996F557D48EE916B0F81A143C1A29049 324928 ----a-w- C:\Users\Deckx\AppData\Local\Temp\{640B6E0D-76D8-4621-BC48-1E3BFC8E2DE9}\_Setup.dll ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-10-19 18:38:27 38718C4E864DC8F8E1DB0EF3B5566FA7 178800 ----a-w- C:\Windows\SysWOW64\CmdLineExt_x64.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== ====== C:\Windows\Tasks ====== 2014-10-25 18:29:21 6641B4D38C23ABC6EF52A70C272AB1F9 3010 ----a-w- C:\Windows\Sysnative\Tasks\{3AB23E2F-7808-4F69-B9D8-1C9250AA3486} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-10-25 18:39:35 -------- d-----w- C:\Program Files\Speccy ======= C:\PROGRA~2 ===== 2014-10-25 18:21:40 -------- d-----w- C:\PROGRA~2\SystemRequirementsLab 2014-10-03 17:52:53 -------- d-----w- C:\PROGRA~2\AMD 2014-10-02 20:59:35 -------- d-----w- C:\PROGRA~2\Total War ROME II 2014-09-28 19:07:52 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype ======= ===== ====== C:\Users\Deckx\AppData\Roaming ====== 2014-10-25 18:30:01 -------- d-----w- C:\Users\Deckx\AppData\Local\Rockstar Games 2014-10-21 14:13:26 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google 2014-10-19 18:41:15 -------- d-----w- C:\Users\Safe\AppData\Local\Rockstar Games 2014-10-03 17:54:58 -------- d-----w- C:\Users\Safe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD 2014-10-03 17:52:54 -------- d-----w- C:\Users\Deckx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD ====== C:\Users\Deckx ====== 2014-10-25 18:39:04 6DC6EBDF9391271098C40F6BA7779430 4890736 ----a-w- C:\Users\Safe\Downloads\spsetup126.exe 2014-10-17 17:17:54 9DDE66D296408C4F3EA25BF80D2B7383 1230824 ----a-w- C:\Users\Safe\Downloads\Player Setup (1).exe 2014-10-17 17:17:52 50B2C036B1E20F7734DB350380B74927 1230824 ----a-w- C:\Users\Safe\Downloads\Player Setup.exe 2014-10-02 21:20:56 -------- d-----w- C:\ProgramData\Steam 2014-09-28 19:07:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype ====== C: exe-files == 2014-10-25 18:39:04 6DC6EBDF9391271098C40F6BA7779430 4890736 ----a-w- C:\Users\Safe\Downloads\spsetup126.exe 2014-10-24 15:49:14 6082D256DCDCD068F76B677DB8ED1181 36039776 ----a-w- C:\Users\Safe\AppData\Local\Temp\SkypeSetup.exe 2014-10-21 14:13:32 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleUpdateBroker.exe 2014-10-21 14:13:32 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleUpdateOnDemand.exe 2014-10-21 14:13:32 27DC334376EE08A0962E6367E23D3CBA 880272 ----a-w- C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleUpdateSetup.exe 2014-10-21 14:13:27 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe 2014-10-21 14:13:27 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleUpdate.exe 2014-10-21 14:13:27 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleUpdateComRegisterShell64.exe 2014-10-21 14:13:27 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe 2014-10-21 14:13:25 27DC334376EE08A0962E6367E23D3CBA 880272 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.25.5\GoogleUpdateSetup.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1818497608-2437012134-3316047982-1000\Software\Microsoft\Windows\CurrentVersion\Run] "RGSC"="C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent" "Akamai NetSession Interface"="C:\Users\Deckx\AppData\Local\Akamai\netsession_win.exe" "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" "Facebook Update"="C:\Users\Deckx\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" [HKEY_USERS\S-1-5-21-1818497608-2437012134-3316047982-1009\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Safe\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe" "Super-Charger"="C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe" "Aeria Ignite"="C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe silent" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "vmware-tray.exe"="C:\Program Files (x86)\VMware\VMware Player\vmware-tray.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "RGSC"="C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent" "Akamai NetSession Interface"="C:\Users\Deckx\AppData\Local\Akamai\netsession_win.exe" "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" "Facebook Update"="C:\Users\Deckx\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "*WerKernelReporting"="%SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Skype" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Skype\\Phone\\Skype.exe\" /minimized /regrun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AMD External Events Utility] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AMD FUEL Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MSI_SuperCharger] ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [09/09/2014 19:16] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1818497608-2437012134-3316047982-1000Core.job --a------ C:\Users\Deckx\AppData\Local\Facebook\Update\FacebookUpdate.exe [22/03/2014 14:52] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1818497608-2437012134-3316047982-1000UA.job --a------ C:\Users\Deckx\AppData\Local\Facebook\Update\FacebookUpdate.exe [22/03/2014 14:52] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1818497608-2437012134-3316047982-1009Core.job --a------ C:\Users\Safe\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/07/2014 00:38] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1818497608-2437012134-3316047982-1009UA.job --a------ C:\Users\Safe\AppData\Local\Facebook\Update\FacebookUpdate.exe [19/07/2014 00:38] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10/07/2014 12:07] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [10/07/2014 12:07] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1818497608-2437012134-3316047982-1000Core" [C:\Users\Deckx\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1818497608-2437012134-3316047982-1000UA" [C:\Users\Deckx\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1818497608-2437012134-3316047982-1009Core" [C:\Users\Safe\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1818497608-2437012134-3316047982-1009UA" [C:\Users\Safe\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{2745A277-F01E-43C0-84FC-916E13C1CEE8}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\{3AB23E2F-7808-4F69-B9D8-1C9250AA3486}" [C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [07/08/2014 17:45] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Deckx\AppData\Roaming\Mozilla\Firefox\Profiles\r91awc6l.default 5B0F6A8F086D3220272919A3023EF180 - C:\Users\Deckx\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player 3CD19649B2C3023D65E67C056457A2BC - C:\Users\Deckx\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[07/08/2014 17:45] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14/07/2014 17:22] Google Docs - Deckx\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Deckx\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Google Voice Search Hotword (Beta) - Deckx\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn YouTube - Deckx\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Deckx\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf avast Online Security - Deckx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Shortcut Manager - Deckx\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgjjeipcdnnjhgodgjpfkffcejoljijf Google Wallet - Deckx\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Deckx\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Last updated at time on date - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Tribal Wars Time Extension - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckolnemglnnaaaeopconbampbdejaika Google Search - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Avast Online Security - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Google Wallet - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Battlefield Play4Free - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh Gmail - Safe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Fix ====================== C:\Users\Safe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage deleted successfully C:\Users\Safe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage-journal deleted successfully C:\Users\Safe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.lyricsfreak.com_0.localstorage deleted successfully C:\Users\Safe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.lyricsfreak.com_0.localstorage-journal deleted successfully C:\Users\Safe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.lyricsmode.com_0.localstorage deleted successfully C:\Users\Safe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.lyricsmode.com_0.localstorage-journal deleted successfully C:\Users\Safe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage deleted successfully C:\Users\Safe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office12\GR469A~1.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe" O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe O4 - HKLM\..\Run: [Aeria Ignite] "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [vmware-tray.exe] "C:\Program Files (x86)\VMware\VMware Player\vmware-tray.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Deckx\AppData\Local\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Deckx\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-1818497608-2437012134-3316047982-1009\..\Run: [Facebook Update] "C:\Users\Safe\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver (User 'Safe') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O15 - Trusted Zone: http://*.aeriagames.com O15 - Trusted Zone: *.clonewarsadventures.com O15 - Trusted Zone: *.freerealms.com O15 - Trusted Zone: *.soe.com O15 - Trusted Zone: *.sony.com O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~3\Office12\GRA32A~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe O23 - Service: VMware Workstation Server (VMwareHostd) - Unknown owner - C:\Program Files (x86)\VMware\VMware Player\vmware-hostd.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Users\Deckx\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Safe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Deckx\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Users\Safe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\Deckx\AppData\Local\Mozilla\Firefox\Profiles\r91awc6l.default\Cache emptied successfully C:\Users\Safe\AppData\Local\Mozilla\Firefox\Profiles\b4svan2g.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Deckx\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Safe\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=936 folders=270 58509014 bytes) ==== Empty Temp Folders ====================== C:\Users\Deckx\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Safe\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot