Zoek.exe v5.0.0.0 Updated 27-01-2015 Tool run by Jef on do 29/01/2015 at 8:32:18,03. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Jef\Downloads\zoek (3).exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2015-01-28-120214.log 59090 bytes ==== Empty Folders Check ====================== C:\Users\Administrator\AppData\Local\Comodo deleted successfully C:\Users\Administrator\AppData\Local\Google deleted successfully C:\Users\Gast\AppData\Local\Comodo deleted successfully C:\Users\Gast\AppData\Local\Google deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Comodo deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google deleted successfully C:\Users\Jef\AppData\Local\Comodo deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 4.21 Adblock Plus voor IE (32-bit en 64-bit) Adobe Flash Player 16 ActiveX Agatha Christie - Peril at End House AMD APP SDK Runtime Apple Application Support Apple Mobile Device Support Apple Software Update ATI Catalyst Install Manager AuthenTec TrueAPI Bejeweled 3 Blackhawk Striker 2 Blasterball 3 Bonjour Bounce Symphony Cake Mania Catalyst Control Center - Branding Catalyst Control Center Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All Catalyst Control Center Profiles Desktop ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner Chronicles of Albian Chuzzle Deluxe Contr“le ActiveX Windows Live Mesh pour connexions … distance Cradle of Rome 2 D3DX10 Definition Update for Microsoft Office 2010 (KB2910899) 64-Bit Edition DHTML Editing Component Farm Frenzy FATE Final Drive: Nitro Galerie de photos Windows Live Google Chrome Google Toolbar for Internet Explorer Governor of Poker 2 Premium Edition Hewlett-Packard ACLM.NET v1.2.2.3 HL-2250DN HP Auto HP Client Services HP Customer Experience Enhancements HP Games HP LinkUp HP Odometer HP Setup HP Setup Manager HP SimplePass PE 2011 HP Support Assistant HP Support Information HP Update HP Vision Hardware Diagnostics HydraVision iCloud Intel(R) Identity Protection Technology 1.1.2.0 Intel(R) Management Engine Components iTunes Java 8 Update 31 Java Auto Updater Jewel Quest: The Sleepless Star - Collector's Edition Junk Mail filter update LabelPrint Mah Jong Medley Mesh Runtime Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft .NET Framework 4.5.2 Microsoft Application Error Reporting Microsoft Mathematics Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office Office 32-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared 32-bit MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Security Client Microsoft Security Essentials Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 More Games from HP Games MSVCRT MSVCRT_amd64 Musicnotes Software Suite 1.7.2 Mystery of Mortlake Mansion Namco All-Stars: PAC-MAN PDF Complete Special Edition Penguins Plants vs. Zombies - Game of the Year PlayReady PC Runtime amd64 Poker Superstars III Polar Bowler Polar Golfer QuickTime 7 Ralink 802.11n Wireless LAN Card Realtek High Definition Audio Driver Recovery Manager Remote Graphics Receiver Security Update for Microsoft Excel 2010 (KB2910902) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2553154) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2760781) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 64-Bit Edition Security Update for Microsoft Word 2010 (KB2899519) 64-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition Slingo Supreme Spotify Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition Update for Microsoft Excel 2010 (KB2589348) 64-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition Update for Microsoft Office 2010 (KB2553092) Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition Update for Microsoft Office 2010 (KB2597089) 64-Bit Edition Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition Update for Microsoft Office 2010 (KB2837581) 64-Bit Edition Update for Microsoft Office 2010 (KB2837602) 64-Bit Edition Update for Microsoft Office 2010 (KB2837606) 64-Bit Edition Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition Update for Microsoft Office 2010 (KB2889818) 64-Bit Edition Update for Microsoft Office 2010 (KB2889828) 64-Bit Edition Update for Microsoft Office 2010 (KB2910896) 64-Bit Edition Update for Microsoft OneNote 2010 (KB2597088) 64-Bit Edition Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition Update for Microsoft PowerPoint 2010 (KB2880517) 64-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition Update Installer for WildTangent Games App Vacation Quest - The Hawaiian Islands Video Download Converter version 1.0.0.0 VIP Access SDK (1.0.1.4) Virtual Tour Expo 58 NL Virtual Villagers 5 - New Believers Windows Live Communications Platform Windows Live Essentials Windows Live Fotogalerie Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Windows Live Mesh Windows Live Mesh ActiveX control for remote connections Windows Live Mesh ActiveX Control for Remote Connections Windows Live Messenger Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Zuma Deluxe ==== Running Processes ====================== C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Windows\SysWOW64\ezSharedSvcHost.exe C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe C:\Program Files (x86)\PDF Complete\pdfsvc.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Users\Jef\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Browny02\BrYNSvc.exe C:\Program Files (x86)\vulpeculox\AX\AX.exe C:\ProgramData\{7cb2a96c-21b2-5b13-7cb2-2a96c21ba5b0}\The Lost Future 2010 DVDRip XviD-IGUANA.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Users\Jef\Downloads\zoek (3).exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 4077 MB CPU Info: Intel(R) Core(TM) i5-2320 CPU @ 3.00GHz CPU Speed: 2991.1 MHz Sound Card: Luidsprekers (Realtek High Defi | Display Adapters: AMD RADEON HD 6450 | AMD RADEON HD 6450 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: 802.11n Wireless LAN Card | Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (E: | ) E: hp DVD-RAM GH80N Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 8 Button Wheel Mouse Present Hard Disks: C: 916.7GB | D: 14.8GB Hard Disks - Free: C: 844.8GB | D: 1.2GB Manufacturer *: AMI BIOS Info: AT/AT COMPATIBLE | 10/21/11 | HPQOEM - 1072009 Time Zone: Romance (standaardtijd) Motherboard *: Foxconn 2ABF Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated) Anti-Spyware: Microsoft Security Essentials disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Google Chrome 36.0.1985.125 Internet Explorer Version: 11.0.9600.17501 Google Chrome version: 36.0.1985.125 Sun Java version: 1.8.0_31 (32-bit) Sun Java version: 1.8.0_31 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Jef\AppData\Local\Temp ==== 2015-01-23 14:50:48 5AB7B941CFBDA9E2163A3906DE0B5EAB 13352664 ----a-w- C:\Users\Jef\AppData\Local\Temp\ReimagePackage.exe 2015-01-23 12:13:35 53B0087A80266EEBD8485B56882BEDDE 412544 ----a-w- C:\Users\Jef\AppData\Local\Temp\473337.exe.exe 2015-01-23 12:11:07 43DDA5C5EC76D96006B6C925196B4DEF 197120 ----a-w- C:\Users\Jef\AppData\Local\Temp\res.dll 2015-01-23 11:47:47 FEFEF2F226FD6BE184BC4A3378B02AAF 155648 ----a-w- C:\Users\Jef\AppData\Local\Temp\comh.468705\psmachine.dll 2015-01-23 11:47:47 8D90BB3A36521B50D0E512A781E36871 155648 ----a-w- C:\Users\Jef\AppData\Local\Temp\comh.468705\psuser.dll 2015-01-23 11:47:47 08D038B0CA24A93D5CDCBC8AD2438C0D 220672 ----a-w- C:\Users\Jef\AppData\Local\Temp\comh.468705\npGoogleUpdate4.dll 2015-01-23 11:47:46 FC7A2F466F7A0F3E873077505719C1A1 143360 ----a-w- C:\Users\Jef\AppData\Local\Temp\comh.468705\GoogleUpdateHelper.msi 2015-01-23 11:47:46 F98DE4108614E4BB81E95E58E36C7000 46080 ----a-w- C:\Users\Jef\AppData\Local\Temp\comh.468705\GoogleUpdateBroker.exe 2015-01-23 11:47:46 D858BA2EE718B1DB1CED20646E641D08 68608 ----a-w- C:\Users\Jef\AppData\Local\Temp\comh.468705\GoogleUpdate.exe 2015-01-23 11:47:46 B7D63DC74E2647058E6BA1FA70EAFAEF 761856 ----a-w- C:\Users\Jef\AppData\Local\Temp\comh.468705\goopdate.dll 2015-01-23 11:47:46 7E767B342E55EB1DFD74A65D24EA4B70 46080 ----a-w- C:\Users\Jef\AppData\Local\Temp\comh.468705\GoogleUpdateOnDemand.exe 2015-01-23 11:47:46 03114DADBD9977FC823F95B21FB987E7 72872 ----a-w- C:\Users\Jef\AppData\Local\Temp\comh.468705\GoogleCrashHandler.exe 2015-01-23 11:47:23 6C022CDEE76201C0BFF5B0CAEF005904 265728 ----a-w- C:\Users\Jef\AppData\Local\Temp\C391CEAA-62D2-D186-3F04-F3B00A2E6B2C.exe 2015-01-23 11:47:22 501578A6B37EA3351C75D11B2D0B6E0B 89088 ----a-w- C:\Users\Jef\AppData\Local\Temp\C391CEAA-62D2-D186-3F04-F3B00A2E6B2C.dll 2015-01-23 11:47:22 01EA0E3434E2432C748A035D262578B3 642048 ----a-w- C:\Users\Jef\AppData\Local\Temp\4B629640-3B41-9E71-D1C6-7DCED476B714.exe 2015-01-23 11:47:21 F7FDEC801575A833FC9D705EBF6BBABA 5646216 ----a-w- C:\Users\Jef\AppData\Local\Temp\optprosetup.exe 2015-01-23 11:46:57 BCBA8747AB53932F8613C006444078E9 297672 ----a-w- C:\Users\Jef\AppData\Local\Temp\BackupSetup.exe 2015-01-23 11:46:57 BA19C8A2351B0833ED8F80188CB5F970 324548 ----a-w- C:\Users\Jef\AppData\Local\Temp\00939cb5-2e2b-4c15-b919-584bbf4cfacb\vopackage.exe 2015-01-23 11:46:57 AF37247590F4E4B8A8A214A091EA6067 73816 ----a-w- C:\Users\Jef\AppData\Local\Temp\020c3dba-b503-463d-acd7-b0cf32f10feb\cloud_backup_setup.exe 2015-01-23 11:46:57 9F019A078641202DB370527D2BB023C1 10387196 ----a-w- C:\Users\Jef\AppData\Local\Temp\0e2b4595-1c0e-41e9-a551-1d58e4a44e28\fastplayersetup.exe 2015-01-23 11:46:57 9D2711F9A471C77CC1F2AF6B26C96E7D 953224 ----a-w- C:\Users\Jef\AppData\Local\Temp\0e472181-963d-404e-b844-8b27e6a2cac3\pricehorse_1.exe 2015-01-23 11:46:57 827613B75199C3829D5E036FF6D30450 5827576 ----a-w- C:\Users\Jef\AppData\Local\Temp\8cafde6d-ab3c-4677-877f-8b77f1cda4da\optimizerpro.exe 2015-01-23 11:46:57 3071F5A9724E335719B6A20A37F6A087 101229 ----a-w- C:\Users\Jef\AppData\Local\Temp\7eb646bf-1e16-4ec2-bf32-69bcc415417c\bandofferu.exe 2015-01-23 11:46:56 D67D3058EC11297CC4C078911FF3D05A 2371834 ----a-w- C:\Users\Jef\AppData\Local\Temp\b8d3eae8-8b82-49f8-a221-2440280d0c13\setup.exe 2015-01-23 11:46:56 D09F7146814C46EE9D2E92570C4FC089 4974933 ----a-w- C:\Users\Jef\AppData\Local\Temp\335f484e-eb23-4fd7-88b0-81b957d21bae\3333-2081_speedcheck.exe 2015-01-23 11:46:56 A5FCE7849F44CCFFC3AADBA1D3FE539E 3289288 ----a-w- C:\Users\Jef\AppData\Local\Temp\c1d173f4-b6d5-4650-be57-c0f91f9fe4f9\games desktop.exe 2015-01-23 11:46:56 67A9DDC983F9D5C96BD81DF5998611AB 157160 ----a-w- C:\Users\Jef\AppData\Local\Temp\1ef6b8ed-71b0-41fe-9799-bb19f62d9b82\setup.exe 2015-01-22 17:46:50 AD03ECCD097A90FD06B1847365726389 368368 ----a-w- C:\Users\Jef\AppData\Local\Temp\flv.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-01-25 18:26:50 3DC8D22933573FF9F2B9D1EE76753D1E 19786 ----a-w- C:\Windows\Sysnative\ScanResults.xml 2015-01-25 18:24:23 406E76BE63C65E0BF4B263156320254E 464 ----a-w- C:\Windows\Sysnative\ScannerSettings ====== C:\Windows\Sysnative\drivers ===== 2015-01-16 19:51:51 AE3334958D8F631FF14A0AEB3D7EFB3A 141312 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys ====== C:\Windows\Tasks ====== 2015-01-17 02:24:06 AF9549A1FD30C9B506E98E5B74306D16 324 ----a-w- C:\Windows\Tasks\HPCeeScheduleForJef.job 2015-01-17 02:24:06 08A1A863216B42F4AD4F1EBAB857FC32 3174 ----a-w- C:\Windows\Sysnative\Tasks\HPCeeScheduleForJef ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-01-23 03:33:11 -------- d-----w- C:\Program Files\Adblock Plus for IE 2015-01-01 11:52:44 -------- d-----w- C:\Program Files\iPod 2015-01-01 11:52:43 -------- d-----w- C:\Program Files\iTunes ======= C:\PROGRA~2 ===== 2015-01-22 00:12:44 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2015-01-21 22:54:21 -------- d-----w- C:\PROGRA~2\MPPlayvideoEd2.0 2015-01-11 19:23:11 -------- d-----w- C:\PROGRA~2\LimeWire Music 2015-01-01 11:52:43 -------- d-----w- C:\PROGRA~2\iTunes ======= C: ===== ====== C:\Users\Jef\AppData\Roaming ====== 2015-01-29 07:31:36 A45886374FA3DBCCC8DCCD48628984E6 680 ----a-w- C:\Users\Jef\AppData\Locallow\wbk5D8C.tmp 2015-01-23 03:33:12 -------- d-----w- C:\Users\Jef\AppData\Locallow\Adblock Plus for IE 2015-01-11 19:23:12 -------- d-----w- C:\Users\Jef\AppData\Roaming\LimeWire Music ====== C:\Users\Jef ====== 2015-01-27 14:44:36 FC77986C2F2B9752EE344FACA1880BA2 2194432 ----a-w- C:\Users\Jef\Downloads\adwcleaner_4.109.exe 2015-01-23 11:46:29 018C54EA2F29CC93D74DDDA83B2C2492 890480 ----a-w- C:\Users\Jef\Downloads\Setup.exe 2015-01-23 03:32:18 FEC49AEA6DE19B0E491A951D0ED7D20F 5915456 ----a-w- C:\Users\Jef\Downloads\adblockplusie-1.3.exe 2015-01-14 19:04:19 -------- d-----w- C:\ProgramData\{7cb2a96c-21b2-5b13-7cb2-2a96c21ba5b0} 2015-01-11 19:24:49 -------- d-----w- C:\Users\Jef\Incomplete 2015-01-11 19:23:12 -------- d-----w- C:\ProgramData\LimeWire Music 2015-01-01 12:10:34 -------- d-----w- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 2015-01-01 11:53:20 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes ====== C: exe-files == 2015-01-27 14:44:36 FC77986C2F2B9752EE344FACA1880BA2 2194432 ----a-w- C:\Documents and Settings\Jef\Downloads\adwcleaner_4.109.exe 2015-01-23 14:51:25 841B3D59BE20C6B6FEEFEC5CADD5B271 16508288 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DGNH68L3\ProtectorPackage2007x64b[1].exe 2015-01-23 14:50:48 5AB7B941CFBDA9E2163A3906DE0B5EAB 13352664 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\ReimagePackage.exe 2015-01-23 14:50:48 5AB7B941CFBDA9E2163A3906DE0B5EAB 13352664 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DGNH68L3\ReimagePackage1804x64[1].exe 2015-01-23 12:13:35 53B0087A80266EEBD8485B56882BEDDE 412544 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\473337.exe.exe 2015-01-23 11:47:46 F98DE4108614E4BB81E95E58E36C7000 46080 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\comh.468705\GoogleUpdateBroker.exe 2015-01-23 11:47:46 D858BA2EE718B1DB1CED20646E641D08 68608 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\comh.468705\GoogleUpdate.exe 2015-01-23 11:47:46 7E767B342E55EB1DFD74A65D24EA4B70 46080 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\comh.468705\GoogleUpdateOnDemand.exe 2015-01-23 11:47:46 03114DADBD9977FC823F95B21FB987E7 72872 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\comh.468705\GoogleCrashHandler.exe 2015-01-23 11:47:23 6C022CDEE76201C0BFF5B0CAEF005904 265728 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\C391CEAA-62D2-D186-3F04-F3B00A2E6B2C.exe 2015-01-23 11:47:22 01EA0E3434E2432C748A035D262578B3 642048 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\4B629640-3B41-9E71-D1C6-7DCED476B714.exe 2015-01-23 11:47:21 F7FDEC801575A833FC9D705EBF6BBABA 5646216 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\optprosetup.exe 2015-01-23 11:46:57 BCBA8747AB53932F8613C006444078E9 297672 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\BackupSetup.exe 2015-01-23 11:46:57 BA19C8A2351B0833ED8F80188CB5F970 324548 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\00939cb5-2e2b-4c15-b919-584bbf4cfacb\vopackage.exe 2015-01-23 11:46:57 AF37247590F4E4B8A8A214A091EA6067 73816 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\020c3dba-b503-463d-acd7-b0cf32f10feb\cloud_backup_setup.exe 2015-01-23 11:46:57 9F019A078641202DB370527D2BB023C1 10387196 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\0e2b4595-1c0e-41e9-a551-1d58e4a44e28\fastplayersetup.exe 2015-01-23 11:46:57 9D2711F9A471C77CC1F2AF6B26C96E7D 953224 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\0e472181-963d-404e-b844-8b27e6a2cac3\pricehorse_1.exe 2015-01-23 11:46:57 827613B75199C3829D5E036FF6D30450 5827576 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\8cafde6d-ab3c-4677-877f-8b77f1cda4da\optimizerpro.exe 2015-01-23 11:46:57 3071F5A9724E335719B6A20A37F6A087 101229 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\7eb646bf-1e16-4ec2-bf32-69bcc415417c\bandofferu.exe 2015-01-23 11:46:56 D67D3058EC11297CC4C078911FF3D05A 2371834 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\b8d3eae8-8b82-49f8-a221-2440280d0c13\setup.exe 2015-01-23 11:46:56 D09F7146814C46EE9D2E92570C4FC089 4974933 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\335f484e-eb23-4fd7-88b0-81b957d21bae\3333-2081_speedcheck.exe 2015-01-23 11:46:56 A5FCE7849F44CCFFC3AADBA1D3FE539E 3289288 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\c1d173f4-b6d5-4650-be57-c0f91f9fe4f9\games desktop.exe 2015-01-23 11:46:56 67A9DDC983F9D5C96BD81DF5998611AB 157160 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\1ef6b8ed-71b0-41fe-9799-bb19f62d9b82\setup.exe 2015-01-23 11:46:29 018C54EA2F29CC93D74DDDA83B2C2492 890480 ----a-w- C:\Documents and Settings\Jef\Downloads\Setup.exe 2015-01-23 03:32:18 FEC49AEA6DE19B0E491A951D0ED7D20F 5915456 ----a-w- C:\Documents and Settings\Jef\Downloads\adblockplusie-1.3.exe 2015-01-22 17:46:50 AD03ECCD097A90FD06B1847365726389 368368 ----a-w- C:\Documents and Settings\Jef\AppData\Local\Temp\flv.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3538665699-716225954-3718293510-1001\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Spotify Web Helper"="C:\Users\Jef\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "HP Software Update"="c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "PDF Complete"="C:\Program Files (x86)\PDF Complete\pdfsty.exe" "BrStsMon00"="C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Spotify Web Helper"="C:\Users\Jef\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update" ==== Startup Folders ====================== 2013-10-06 11:10:14 1106 ----a-w- C:\Users\Jef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AX.lnk 2015-01-14 19:04:20 2143 ----a-w- C:\Users\Jef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\The Lost Future 2010 DVDRip XviD-IGUANA.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [25/01/2015 10:06] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [23/07/2014 09:21] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [23/07/2014 09:21] C:\Windows\tasks\HPCeeScheduleForJEF-HP$.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [14/09/2010 06:15] C:\Windows\tasks\HPCeeScheduleForJef.job --a------ [Undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForJef" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForJEF-HP$" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\ServicePlan" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{3490FE78-24AF-4068-8AD7-9636467DEAD0}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\{3A08F9D0-0CB6-4720-BAF7-023A3504BEE6}" ["C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.3.0.111.396/nl/abandoninstall?page=tsOptions&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled] "C:\Windows\SysNative\tasks\{C7FE3587-C69B-4696-993E-3C81B09F14D8}" ["c:\program files (x86)\google\chrome\application\chrome.exe"] "C:\Windows\SysNative\tasks\{F875F7A2-2141-4FDF-BCED-E365856FD89A}" ["C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.3.0.111.396/nl/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Chromium Look ====================== Google Chrome Version: 36.0.1985.125 (Possible outdated, latest Stable version: 40.0.2214.93) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jpgfhihjicjofdejkbjgnjlaglaciobe - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx[03/06/2011 12:55] Google Docs - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf lomkpheldlbkkfiifcbfifipaofnmnkn - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\lomkpheldlbkkfiifcbfifipaofnmnkn Google Wallet - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Jef\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf MPPlayvideoEd2.0 - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hniiadklfgdhjcmmkpggffjngihaaoip Website Logon - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jpgfhihjicjofdejkbjgnjlaglaciobe lomkpheldlbkkfiifcbfifipaofnmnkn - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lomkpheldlbkkfiifcbfifipaofnmnkn Google Wallet - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "https://www.google.be/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8", "startup_urls": [ "http://isearch.omiga-plus.com/?type=hp&ts=1421881799&from=face&uid=HitachiXHDS721010CLA632_JP2940N015NETD15NETDX" ], ==== Chromium Fix ====================== C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage deleted successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage-journal deleted successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage deleted successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage-journal deleted successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage deleted successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.selectgo00.selectgo.net_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/webhp?sourceid=chrome-instant&ie=UTF-8&rct=j&gws_rd=cr&ei=H_m7VPr2FceLOZr6gOAN" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/webhp?sourceid=chrome-instant&ie=UTF-8&rct=j&gws_rd=cr&ei=H_m7VPr2FceLOZr6gOAN" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Jef\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: AX.lnk = C:\Program Files (x86)\vulpeculox\AX\AX.exe O4 - Startup: The Lost Future 2010 DVDRip XviD-IGUANA.lnk = C:\ProgramData\{7cb2a96c-21b2-5b13-7cb2-2a96c21ba5b0}\The Lost Future 2010 DVDRip XviD-IGUANA.exe O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.cbc.be O15 - Trusted Zone: *.isabel.be O15 - Trusted Zone: *.isabel.eu O15 - Trusted Zone: *.myisabel.be O15 - Trusted Zone: *.myisabel.eu O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Remote Procedure Call (RPC) Locator (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Jef\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=9417 folders=299 882197127 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Jef\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Jef\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on do 29/01/2015 at 8:50:35,25 ======================