Zoek.exe v5.0.0.1 Updated 18-November-2015 Tool run by Admin on wo 18/11/2015 at 19:35:12,53. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Admin\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 18/11/2015 19:37:40 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\MyFree Codec deleted successfully C:\PROGRA~2\Runtime Software deleted successfully C:\Program Files\log deleted successfully C:\Program Files\SSA 2015 deleted successfully C:\Program Files\Common Files\AV deleted successfully C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} deleted successfully C:\Users\Admin\AppData\Roaming\Vso deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-12310210-1910722806-2919839751-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-12310210-1910722806-2919839751-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-12310210-1910722806-2919839751-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6} deleted successfully HKEY_USERS\S-1-5-21-12310210-1910722806-2919839751-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\UrlSearchHooks\{A3BC75A2-1F87-4686-AA43-5347D756017C} deleted successfully HKEY_USERS\S-1-5-21-12310210-1910722806-2919839751-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{A3BC75A2-1F87-4686-AA43-5347D756017C} deleted successfully ==== Installed Programs ====================== 64 Bit HP CIO Components Installer 7-Zip 9.20 (x64 edition) Adobe AIR Adobe Community Help Adobe Digital Editions 2.0 Adobe Dreamweaver CS5 Adobe Flash Player 19 ActiveX Adobe Flash Player 19 NPAPI Adobe Reader X - Nederlands Adobe Shockwave Player 12.0 Akamai NetSession Interface AutoCAD 2015 - English AutoCAD 2015 Language Pack - English Autodesk App Manager Autodesk Application Manager Autodesk AutoCAD 2015 - English Autodesk AutoCAD Civil 3D 2015 64 Bit Object Enabler on Autodesk 360 - Language Neutral Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit Autodesk CAD Manager Tools Autodesk Content Service Autodesk Content Service Language Pack Autodesk Design Review 2012 Autodesk Download Manager Autodesk Featured Apps Autodesk Material Library 2014 Autodesk Material Library 2015 Autodesk Material Library Base Resolution Image Library 2014 Autodesk Material Library Base Resolution Image Library 2015 Autodesk Material Library Low Resolution Image Library 2014 Autodesk Material Library Medium Resolution Image Library 2014 Autodesk ReCap Autodesk Revit 2014 Autodesk Storm and Sanitary Analysis 2015 x64 Plug-in Autodesk Subassembly Composer on Autodesk AutoCAD Civil 3D 2015 - English - English (United States) Autodesk Subassembly Composer on Autodesk AutoCAD Civil 3D 2015 - English - Language Neutral Autodesk Workflows 2014 Belgium e-ID middleware 4.0.5 (build 7363) BitTorrent BufferChm Bullzip PDF Printer 8.2.0.1406 C309g-m CCleaner Cisco AnyConnect Secure Mobility Client Cisco AnyConnect Secure Mobility Client Cisco EAP-FAST Module Cisco LEAP Module Cisco PEAP Module Cisco Systems VPN Client 5.0.07.0440 DAEMON Tools Lite Definition Update for Microsoft Office 2010 (KB3101540) 32-Bit Edition Destinations DeviceDiscovery Facebook Messenger 2.1.4814.0 Google Chrome Google Earth Google Update Helper GPBaseService2 High-Definition Video Playback Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040) Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308) Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344) Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540) Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) Hotfix for Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (KB944899) Hotkey 3.3017 HP Customer Participation Program 13.0 HP Deskjet 2540 series Basissoftware van het apparaat HP Imaging Device Functions 13.0 HP Photosmart Premium C309g-m All-In-One Driver Software 13.0 Rel .6 HP Print Projects 1.0 HP Smart Web Printing 4.5 HP Solution Center 13.0 HP Update HPPhotoGadget hpPrintProjects HPProductAssistant HPSSupply hpWLPGInstaller IDrop Intel(R) Management Engine Components Intel(R) Rapid Storage Technology JMicron Ethernet Adapter NDIS Driver JMicron Flash Media Controller Driver MarketResearch Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft ASP.NET MVC 4 Runtime Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) Microsoft Image Composite Editor Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook Connector Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared 64-bit MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit Microsoft SQL Server Compact 3.5 SP2 ENU Microsoft SQL Server Compact 3.5 SP2 x64 ENU Microsoft SQL Server Compact 4.0 SP1 x64 ENU Microsoft Visual Basic PowerPacks 10.0 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2008 x64 ATL Runtime 9.0.30729 Microsoft Visual C++ 2008 x64 CRT Runtime 9.0.30729 Microsoft Visual C++ 2008 x64 MFC Runtime 9.0.30729 Microsoft Visual C++ 2008 x64 OpenMP Runtime 9.0.30729 Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729 Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729 Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729 Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Service Pack 1 (KB945140) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Microsoft Visual Studio Tools for Applications 2.0 - ENU Microsoft Visual Studio Tools for Applications 2.0 Runtime Microsoft Xbox 360 Accessories 1.2 Microsoft_VC80_ATL_x86 Microsoft_VC80_CRT_x86 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFCLOC_x86 Microsoft_VC90_ATL_x86 Microsoft_VC90_CRT_x86 Microsoft_VC90_MFC_x86 Motorola Bluetooth MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 10 Movie ThemePack 1 Nero 10 Movie ThemePack Basic Nero BurnRights 10 Nero BurnRights 10 Help (CHM) Nero Control Center 10 Nero ControlCenter 10 Help (CHM) Nero Core Components 10 Nero CoverDesigner 10 Nero CoverDesigner 10 Help (CHM) Nero DiscSpeed 10 Nero DiscSpeed 10 Help (CHM) Nero Express 10 Nero Express 10 Help (CHM) Nero InfoTool 10 Nero InfoTool 10 Help (CHM) Nero MediaHub 10 Nero MediaHub 10 Help (CHM) Nero Multimedia Suite 10 Essentials Nero RescueAgent 10 Nero RescueAgent 10 Help (CHM) Nero StartSmart 10 Nero StartSmart 10 Help (CHM) Nero Update Network64 Nitro Pro 8 NVIDIA-configuratiescherm 358.91 NVIDIA 3D Vision Controller Driver NVIDIA 3D Vision controllerstuurprogramma 352.65 NVIDIA GeForce Experience 2.5.15.54 NVIDIA GeForce Experience Service NVIDIA Grafisch stuurprogramma 358.91 NVIDIA Install Application NVIDIA LED Visualizer 1.0 NVIDIA Network Service NVIDIA Optimus Update 2.5.15.54 NVIDIA PhysX Systeem Software 9.15.0428 NVIDIA ShadowPlay 2.5.15.54 NVIDIA Update 2.5.15.54 NVIDIA Update Core NVIDIA Virtual Audio 1.2.31 Patient HealthViewer 2.1.0.373 PDF Report Writer (novaPDF 6.4 printer) Picasa 3 Protector Suite 2009 PS_AIO_06_C309g-m_SW_Min Realtek High Definition Audio Driver REALTEK Wireless LAN Driver Renesas Electronics USB 3.0 Host Controller Driver ResearchSoft Direct Export Helper Revit 2014 Language Pack - English Scan Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft .NET Framework 4.5.1 (KB2972107) Security Update for Microsoft .NET Framework 4.5.1 (KB2972216) Security Update for Microsoft .NET Framework 4.5.1 (KB2978128) Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2) Security Update for Microsoft .NET Framework 4.5.1 (KB3023224) Security Update for Microsoft .NET Framework 4.5.1 (KB3035490) Security Update for Microsoft .NET Framework 4.5.1 (KB3037581) Security Update for Microsoft .NET Framework 4.5.1 (KB3074230) Security Update for Microsoft .NET Framework 4.5.1 (KB3074550) Security Update for Microsoft .NET Framework 4.5.1 (KB3097996) Security Update for Microsoft .NET Framework 4.5.1 (KB3098781) Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition Security Update for Microsoft Excel 2010 (KB3101543) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2878230) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2598244) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2920748) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2965310) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3054848) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3101521) 32-Bit Edition Security Update for Microsoft OneNote 2010 (KB3054978) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB3085594) 32-Bit Edition Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition Security Update for Microsoft Visio 2010 (KB3101526) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition Sentinel Runtime Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition SHIELD Streaming SHIELD Wireless Controller Driver Shop for HP Supplies Skype Click to Call SkypeT 7.0 SmartWebPrinting SolutionCenter Speccy Status Stuurprogrammapakket voor Windows - Fedict SmartCard (10/04/2011 4.0.0.5) SuperPurge Lite version 2.0.99.10 swMSM Synaptics Pointing Device Driver Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD TomTom HOME TomTom HOME Visual Studio Merge Modules Toolbox TrayApp Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2881026) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft Office 2010 (KB2494150) Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition Update for Microsoft Office 2010 (KB2837592) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition Update for Microsoft Office 2010 (KB3085512) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3085604) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3101535) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2881021) 32-Bit Edition Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 Visual Studio 2008 x64 Redistributables Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables VLC media player 1.1.11 WebReg Windows Media Player Firefox Plugin Windows Mobile Apparaatcentrum WinRAR 4.10 (32-bit) ==== Running Processes ====================== C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe C:\Windows\system32\hasplms.exe C:\Windows\SysWOW64\svchost.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\Hotkey\Hotkey.exe C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe C:\Program Files (x86)\Hotkey\PowerBiosServer.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Nero\Update\NASvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe C:\Windows\SysWOW64\cmd.exe C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Admin\Downloads\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\aonswp79.default user.js not found ---- Lines CT2849859 removed from prefs.js ---- user_pref("CT2849859.FF19Solved", "true"); user_pref("CT2849859.UserID", "UN38247091227693214"); user_pref("CT2849859.addressUrlXPETakeover", "true"); user_pref("CT2849859.autoDisableScopes", -1); user_pref("CT2849859.browser.search.defaultthis.engineName", "true"); user_pref("CT2849859.defaultSearchXPETakeover", "true"); user_pref("CT2849859.installDate", "18/5/2013 12:10:55"); user_pref("CT2849859.installerVersion", "1.3.7.3"); user_pref("CT2849859.keyword", "true"); user_pref("CT2849859.startPageXPETakeover", "true"); ---- Lines extensions.P0XW0D2ScmmArREs removed from prefs.js ---- user_pref("extensions.P0XW0D2ScmmArREs.epoch", "1432577171"); user_pref("extensions.P0XW0D2ScmmArREs.url", "http://proxy5-jpi.info/sync2/?q=hfZ9ofV9CShEAen0rTn9qHaMg708BNmGWj8cmihGheDUojw8rdkFqTw8qjr8rihIC7n0rjkE ---- Lines extensions.SKO1OQlRh4pXYDvS removed from prefs.js ---- user_pref("extensions.SKO1OQlRh4pXYDvS.epoch", "1432577171"); user_pref("extensions.SKO1OQlRh4pXYDvS.url", "http://setssun.com/sync2/?q=hfZ9ofbJBNrMCyVUojs9qdCEtMqLDe49CNU0nUkMCMlNhd9Fqja8rjgFqjkHrjCMBzqUojw8rdkG ---- FireFox user.js and prefs.js backups ---- prefs_20151811_1952_.backup ProfilePath: C:\Users\Admin\AppData\Roaming\TomTom\HOME\Profiles\ccpjxuww.default user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20151811_1952_.backup ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- ==== Deleting Files \ Folders ====================== C:\PROGRA~2\MyFree Codec not found C:\PROGRA~2\Runtime Software not found C:\PROGRA~3\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} not found C:\PROGRA~2\BITACCELERATOR deleted C:\windows\SysNative\Tasks\Bidaily Synchronize Task[pr] deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\{062904FA-5E23-B694-F806-2F3516F4957B} deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\{177E38BC-C1CD-87A8-CCB6-4D1A8FCE4C94} deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\{79C559DF-042B-A089-6C18-E94349DB4EF6} deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\{A0D1F57D-108A-E6C4-170C-2C32B5398905} deleted C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{062904FA-5E23-B694-F806-2F3516F4957B} deleted C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{79C559DF-042B-A089-6C18-E94349DB4EF6} deleted C:\Windows\SysNative\config\systemprofile\AppData\Local\Packages\windows_ie_ac_001\AC\{A0D1F57D-108A-E6C4-170C-2C32B5398905} deleted C:\extensions deleted C:\found.000 deleted C:\found.001 deleted C:\Users\Admin\AppData\Roaming\WB.CFG deleted C:\Users\Admin\AppData\Roaming\ARCompanion.log deleted C:\Users\Admin\AppData\Roaming\pcouffin.log deleted C:\PROGRA~3\AVG Security Toolbar deleted C:\PROGRA~3\InstallMate deleted C:\PROGRA~3\Package Cache deleted C:\Users\Admin\AppData\Local\CRE deleted C:\Users\Admin\AppData\Local\cache deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\windows\SysNative\GroupPolicy\Adm deleted C:\windows\SysNative\GroupPolicy\Machine deleted C:\windows\SysNative\GroupPolicy\User deleted C:\windows\SysNative\GroupPolicy\gpt.ini deleted "C:\Windows\Installer\18398bd.msi" deleted ==== System Specs ====================== Windows: Windows 7 Professional Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 6059 MB CPU Info: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz CPU Speed: 2332,0 MHz Sound Card: Luidsprekers (Realtek High Defi | Realtek Digital Output (Realtek | Display Adapters: Intel(R) HD Graphics Family | Intel(R) HD Graphics Family | NVIDIA GeForce GT 540M | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: JMicron PCI Express Gigabit Ethernet Adapter | Realtek RTL8188CE Wireless LAN 802.11n COMBO PCI-E NIC CD / DVD Drives: 2x (E: | F: | ) E: SlimtypeDVD A DS8A5S | F: DTSOFT BDROM Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 97,7GB | D: 367,9GB Hard Disks - Free: C: 30,0GB | D: 252,7GB Manufacturer *: Phoenix Technologies Ltd. BIOS Info: AT/AT COMPATIBLE | 04/01/11 | MSTEST - 2 Time Zone: West-Europa (standaardtijd) Motherboard *: CLEVO CO. W150HNM/W170HN Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} Default Browser: Google Chrome 46.0.2490.86 Internet Explorer Version: 10.0.9200.17556 Google Chrome version: 46.0.2490.86 Adobe Reader version: 10.0.0.396 Flash Player version: 19.0.0.245 Shockwave Player version: 12.0.3r133 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Admin\AppData\Local\Temp ==== 2015-11-14 21:19:31 E1BF8AEDF40F0C691ED793F2B1649B87 2954128 ----a-w- C:\Users\Admin\AppData\Local\Temp\UNINSTALL.EXE 2015-11-14 21:19:03 ECA3AE15FC14FF9736F637143F4C5A96 71168 ----a-w- C:\Users\Admin\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvsknbv.dll ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2015-11-11 21:56:22 584BCA5251FF64243A9C6ABE3CD44D93 14292992 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2015-11-11 21:56:16 FEA1E4AC1EC33B8A66C5DA74EF264E1D 13775360 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2015-11-11 21:56:13 BBD7F16EB1B65686F4D5AC1E30EB1693 2056704 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2015-11-11 21:56:13 07DA66E9ED003665C4A159CE8944BB6C 715776 ----a-w- C:\Windows\SysWOW64\jscript.dll 2015-11-11 21:56:12 DA530E27250A2869E9F5D418B5229B91 1763328 ----a-w- C:\Windows\SysWOW64\wininet.dll 2015-11-11 21:56:12 922DEF87E3FFAABE1855239957E9938A 1181696 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2015-11-11 21:56:12 19BA22C651ECBFBF4A3A0E2D9CE266E4 1441280 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2015-11-11 21:56:11 8F49006A7D13278FEC10A98D4653D88B 2866176 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2015-11-11 21:56:11 6F778EDCAB561C2EC2883DEA2988B923 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2015-11-11 21:56:10 8601D9B60C0BDB5A8F5F379FB4CB2B23 226816 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2015-11-11 21:56:10 40DC374171E541EB14E2FDE2E9F0FDCD 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2015-11-11 21:56:09 997D173CA54975C812E69394E06FFEA3 391168 ----a-w- C:\Windows\SysWOW64\ieui.dll 2015-11-11 21:56:08 A5C12BC7A10E1A30859049B48DF6AF80 525824 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2015-11-11 21:56:08 8512631B0AA7B0589F581A440B450C7A 226816 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2015-11-11 21:56:08 60268F059F60294284ED03FD7A2B1F26 163840 ----a-w- C:\Windows\SysWOW64\msrating.dll 2015-11-11 21:56:08 0D04B05F379A99121C47ED6A2A4C2668 80384 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2015-11-11 21:56:08 01991317D67024E377455C1E3939599A 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2015-11-11 21:56:07 B43634A7F0529195928F1322B7E8F8E0 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2015-11-11 21:56:07 7E625C0757103927AFB3442977318845 357888 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2015-11-11 21:56:07 715564DDAD998E0B6BB146CD3CF0EAB9 39424 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2015-11-11 21:56:07 404177375BD407DB4149504BDB54A551 361984 ----a-w- C:\Windows\SysWOW64\html.iec 2015-11-11 21:56:07 340552757C9D3CB651653D4BBA45884C 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2015-11-11 21:56:05 AB7AAF53FA179FCDF2BFC052F1E77F5C 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2015-11-11 21:55:59 F1BAAC5C7B35968EFAB7C21C32ECBB28 93696 ----a-w- C:\Windows\SysWOW64\wudriver.dll 2015-11-11 21:55:59 D714B7F77DB7E1D81CBFCE8DDCDCC5FE 566784 ----a-w- C:\Windows\SysWOW64\wuapi.dll 2015-11-11 21:55:59 B35154CD5A10368ED3DB277BB38012B3 35328 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2015-11-11 21:55:59 5670A441F06AE04D2B587D1BD2DC1DC0 30208 ----a-w- C:\Windows\SysWOW64\wups.dll 2015-11-11 21:55:59 1E643C501E621F91776F9F9AC226FADF 174080 ----a-w- C:\Windows\SysWOW64\wuwebv.dll 2015-11-11 21:55:35 05D37C4742B32B37ED953631B7B0A7A9 552960 ----a-w- C:\Windows\SysWOW64\kerberos.dll 2015-11-11 21:55:34 0DD296312E531C6E0BF1AB7F2C092801 251392 ----a-w- C:\Windows\SysWOW64\schannel.dll 2015-11-11 21:55:31 A860CAA340D18B2CB7B93A9C67FDDB49 3935680 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2015-11-11 21:55:31 8DE94E8213ABE0F7C5154507305779A0 223232 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2015-11-11 21:55:31 64AD529B85D7E856F9A4FFF9C809E693 3991488 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2015-11-11 21:55:30 63F52FF6FCA2C492F4FB7EE545319FA8 251000 ----a-w- C:\Windows\SysWOW64\bcryptprimitives.dll 2015-11-11 21:55:28 50D21D408B0FD40019A6EACF94A62ACF 1311768 ----a-w- C:\Windows\SysWOW64\ntdll.dll 2015-11-11 21:55:26 CFF504AD277328CE10BE56D76297FDAC 665088 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll 2015-11-11 21:55:26 C661D1599DA67BD411479A2C53058DE4 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2015-11-11 21:55:26 BA00A2FCB86D084F3E8F7D88EC85E216 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe 2015-11-11 21:55:26 A748DEC93B4E8C9DDE11B79FB6E97088 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll 2015-11-11 21:55:26 9FDCF3A01849F24625DE831C7749F080 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll 2015-11-11 21:55:26 7B23D23E2F9D51F700BFDD5B5FCAE30A 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll 2015-11-11 21:55:26 73F97CF58D1EF42F49B696951BDE6081 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll 2015-11-11 21:55:26 5D369C45F0D2A993CCDC6BD160793822 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2015-11-11 21:55:26 58ABF51E9107661559B801B07011202D 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll 2015-11-11 21:55:26 553F7D05AE3E2EC2EDE06416901F5803 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll 2015-11-11 21:55:26 1D0826DF3F439FECBA99772D0A939A28 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2015-11-11 21:55:26 1C9E00CA0D823DC672017D8AB92DBC2A 36864 ----a-w- C:\Windows\SysWOW64\cryptbase.dll 2015-11-11 21:55:26 000D8B84E09CC73472945560D411BDAC 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2015-11-11 21:55:25 4166C05FA57548E6518D7EE20896C0A5 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll 2015-11-11 21:55:25 3B6668958DD782D37731EBF4ADA050CF 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll 2015-11-11 21:55:23 F357AE37073472DD0288B579B0B3E005 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll 2015-11-11 21:55:23 8A6DE61B5797F03F4E0BB62F467F4854 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2015-11-11 21:55:23 1690F4F1807AEC79CF4B6DEF34C366C0 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2015-11-11 21:55:22 CC668F6D0C6F76398AF840C3C0048D93 686080 ----a-w- C:\Windows\SysWOW64\adtschema.dll 2015-11-11 21:55:22 A2911E5C4BA462F2BD4129418A00449A 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll 2015-11-11 21:55:22 7A8070653B42E81F8EFD19054B67C764 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll 2015-11-11 21:55:11 D5AFC3A476925CE740B7079D9BD2D269 295936 ----a-w- C:\Windows\SysWOW64\apphelp.dll 2015-11-11 21:55:11 2996B3E7BBA42BEA62D386D9386EDE97 20992 ----a-w- C:\Windows\SysWOW64\sdbinst.exe 2015-11-11 21:55:11 15DDF8D059752C6CBE3DCDCAA1264F45 5120 ----a-w- C:\Windows\SysWOW64\shimeng.dll 2015-11-11 21:55:06 6EAA9E88F7985BFA94F10A53725D3AA3 216064 ----a-w- C:\Windows\SysWOW64\InkEd.dll 2015-11-09 21:15:41 A89D5B088D2A33D24E46F2CD30F581AC 1423304 ----a-w- C:\Windows\SysWOW64\nvspcap.dll 2015-11-09 21:15:41 761A3D47CBE35313FC102D555B303584 1316000 ----a-w- C:\Windows\SysWOW64\nvspbridge.dll 2015-11-09 21:11:36 FBADADF4557389254049190216B4BA5C 2490488 ----a-w- C:\Windows\SysWOW64\nvcuvid.dll 2015-11-09 21:11:36 F564D685B304421911B3AEAC9B8638F2 12770752 ----a-w- C:\Windows\SysWOW64\nvd3dum.dll 2015-11-09 21:11:36 EF04D5941F1BC1E2325CF5EF7BB51C20 18362160 ----a-w- C:\Windows\SysWOW64\nvoglv32.dll 2015-11-09 21:11:36 CBFB28231AFE2AAADBB0896C9551299B 689272 ----a-w- C:\Windows\SysWOW64\NvFBC.dll 2015-11-09 21:11:36 BDDED8AD82C36B317AD175758769E6C2 12034248 ----a-w- C:\Windows\SysWOW64\nvcuda.dll 2015-11-09 21:11:36 B6A61CF668D02AC69B65CAA774D915F6 388208 ----a-w- C:\Windows\SysWOW64\nvumdshim.dll 2015-11-09 21:11:36 A396CE9FC7A4815C1B537B5BD25621F1 69416 ----a-w- C:\Windows\SysWOW64\nvaudcap32v.dll 2015-11-09 21:11:36 8B71739BAF4E66A65BA62660BFD4E365 128696 ----a-w- C:\Windows\SysWOW64\nvoglshim32.dll 2015-11-09 21:11:36 6C85994C4B4094FADCA08016E95A4CA2 673912 ----a-w- C:\Windows\SysWOW64\NvIFR.dll 2015-11-09 21:11:36 5D67741EB7DD6A37FCAF2C607FF498E7 15121784 ----a-w- C:\Windows\SysWOW64\nvwgf2um.dll 2015-11-09 21:11:36 3F8B1328AE09F77463C85AB89944D204 13527248 ----a-w- C:\Windows\SysWOW64\nvopencl.dll 2015-11-09 21:11:34 FBCD7C3EC942B469EE233AB09681C05C 3158736 ----a-w- C:\Windows\SysWOW64\nvapi.dll 2015-11-09 21:11:34 115B54ADAD34C67E7D1A573F9CD6C027 37882488 ----a-w- C:\Windows\SysWOW64\nvcompiler.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-11-12 19:24:55 92C729B1A03F8B55A68597A50394FB76 3211264 ----a-w- C:\Windows\Sysnative\win32k.sys 2015-11-11 21:56:23 7C32EE44C0BC762CC41D52FAC43068FE 19283456 ----a-w- C:\Windows\Sysnative\mshtml.dll 2015-11-11 21:56:17 CA7DA8C4BB204B631D59017EF602659C 15416320 ----a-w- C:\Windows\Sysnative\ieframe.dll 2015-11-11 21:56:13 E55C14A4D9F0D3A1C130651E3F2FDEA8 2657280 ----a-w- C:\Windows\Sysnative\iertutil.dll 2015-11-11 21:56:13 2592D67A73B34B51E9E5751BB6DABEC8 857600 ----a-w- C:\Windows\Sysnative\jscript.dll 2015-11-11 21:56:12 F4306C4FD841ADA8E21BDB50F8BF34D8 1409024 ----a-w- C:\Windows\Sysnative\urlmon.dll 2015-11-11 21:56:12 DFAA3C85674B3992CE4FDE563D5FD3D8 2239488 ----a-w- C:\Windows\Sysnative\wininet.dll 2015-11-11 21:56:12 DC4B223331EDCB73C11B3ADF37686A0A 1509376 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2015-11-11 21:56:11 0342B623F9252E4CCFB62C0F422976E7 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2015-11-11 21:56:10 765B894509F6F0336A6CA99E8D5BD2DF 3960832 ----a-w- C:\Windows\Sysnative\jscript9.dll 2015-11-11 21:56:09 749013A4E3E2184E0628D6B3E02CF79D 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2015-11-11 21:56:09 63DAC4E5B2C1601B060C5C6BA8027229 526336 ----a-w- C:\Windows\Sysnative\ieui.dll 2015-11-11 21:56:09 3987C1BAD7EB8486E83E43D7C72AB1F2 255488 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2015-11-11 21:56:08 B07A27E71DB923C017613987BAEC4CCE 97280 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2015-11-11 21:56:08 60FDF44A11A8CDFB3AE44EB4FF08917E 197120 ----a-w- C:\Windows\Sysnative\msrating.dll 2015-11-11 21:56:08 5DD49DFF46A8022EB547D53ACD986589 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2015-11-11 21:56:08 566EBAD2902F52EA5B48D779DFF04483 281600 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2015-11-11 21:56:08 557FA8391CCFCE275BABFFC661D535F9 603648 ----a-w- C:\Windows\Sysnative\vbscript.dll 2015-11-11 21:56:08 223A942D15217756594E28541AD82E8C 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll 2015-11-11 21:56:07 F456335C8FA29CFF8EDDB480D7E1C84E 451584 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2015-11-11 21:56:07 E46E9D3B5E1FE7368C5F8A1F0B95FC69 53248 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2015-11-11 21:56:07 88513C8CC9C1879D236B6BE602F2BBB1 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe 2015-11-11 21:56:07 675B93ACEE0BCDDF35787E46CD312350 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll 2015-11-11 21:56:07 58C606E4C62A4A62E4268783D00609C3 441856 ----a-w- C:\Windows\Sysnative\html.iec 2015-11-11 21:56:04 5F5B1F87CE878EBB4BDB05B131AADD8F 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2015-11-11 21:56:00 4AA4838D59A51B3B5A6C2BFC2092FDEC 3168768 ----a-w- C:\Windows\Sysnative\wucltux.dll 2015-11-11 21:56:00 361845875ED8ED13086E7F37265C45DA 2608128 ----a-w- C:\Windows\Sysnative\wuaueng.dll 2015-11-11 21:55:59 F62A6979E13872D744BA69F4F78109B8 12288 ----a-w- C:\Windows\Sysnative\wu.upgrade.ps.dll 2015-11-11 21:55:59 CDBE532602413E7FB0C395024749C7AA 140288 ----a-w- C:\Windows\Sysnative\wuauclt.exe 2015-11-11 21:55:59 C64959F2D2EE6EDB96916902962D48B9 696320 ----a-w- C:\Windows\Sysnative\wuapi.dll 2015-11-11 21:55:59 B2AA75E472BAB24818915342E44FF2AD 98816 ----a-w- C:\Windows\Sysnative\wudriver.dll 2015-11-11 21:55:59 9D3A6E1660B3D6BF63E83A901D1109BB 37888 ----a-w- C:\Windows\Sysnative\wuapp.exe 2015-11-11 21:55:59 500B7A762291EC4EE4B445337956BDBC 36864 ----a-w- C:\Windows\Sysnative\wups.dll 2015-11-11 21:55:59 3E89AD28893A8E9C1F01D2A162C7D457 91136 ----a-w- C:\Windows\Sysnative\WinSetupUI.dll 2015-11-11 21:55:59 24E1CD4E823628943540A63187AC282E 192512 ----a-w- C:\Windows\Sysnative\wuwebv.dll 2015-11-11 21:55:59 246FD89B6B5521AD2CE1C560D666BAD7 37888 ----a-w- C:\Windows\Sysnative\wups2.dll 2015-11-11 21:55:36 6D1CF2634A2EB33D3FCED43D96621FCC 5570496 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2015-11-11 21:55:35 48078433D1EF32AAA41FCB8109C5F3DC 729600 ----a-w- C:\Windows\Sysnative\kerberos.dll 2015-11-11 21:55:35 08A922374554BA576F96FD3FDFE66964 344064 ----a-w- C:\Windows\Sysnative\schannel.dll 2015-11-11 21:55:34 2068233A1C249B9FADF0690AC4C951D9 312320 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2015-11-11 21:55:29 BA6F0BC094ABBB9EFA3BB636D032C403 299632 ----a-w- C:\Windows\Sysnative\bcryptprimitives.dll 2015-11-11 21:55:28 DF3FD4579118D6F13FE725CDB4F1F93E 1461760 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2015-11-11 21:55:28 6818F2C2E6656E48D38951D753097797 1730496 ----a-w- C:\Windows\Sysnative\ntdll.dll 2015-11-11 21:55:28 386BF677B78B66AABBA92C0FCA0579A6 1164800 ----a-w- C:\Windows\Sysnative\kernel32.dll 2015-11-11 21:55:27 FF41063E45C6238CAF48CBE6D0D6FC4B 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll 2015-11-11 21:55:27 F5AA5787F8B4E7200D1BF9171BED3AF0 424960 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2015-11-11 21:55:27 4494B06139E8EE6D19FC2BFD0955BCD6 503808 ----a-w- C:\Windows\Sysnative\srcore.dll 2015-11-11 21:55:27 3716E2771C713387C8E8E2CAD170B2B6 243712 ----a-w- C:\Windows\Sysnative\wow64.dll 2015-11-11 21:55:27 27339655781D5F4C9995FC5202F1F239 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe 2015-11-11 21:55:27 1AE4881BAA7C3DE4D9EC8EA38A3F6BCC 1216512 ----a-w- C:\Windows\Sysnative\rpcrt4.dll 2015-11-11 21:55:27 0EA14EE0C4B1DA2447E36FD3E183C015 338432 ----a-w- C:\Windows\Sysnative\conhost.exe 2015-11-11 21:55:26 FA15610B77877F2BB2AC5D32277CE82B 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe 2015-11-11 21:55:26 EED57582155969AA51789268FE41E254 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll 2015-11-11 21:55:26 CC4E8485336604846E50D28897AAE67F 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll 2015-11-11 21:55:26 998C50530F44CE2900779CE7FF6B205E 315392 ----a-w- C:\Windows\Sysnative\msv1_0.dll 2015-11-11 21:55:26 95F7494638D489665CB1C172D62FC872 28160 ----a-w- C:\Windows\Sysnative\secur32.dll 2015-11-11 21:55:26 926F7A2F153F004D492C0B8CC105AC2E 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll 2015-11-11 21:55:26 9102E19E45AEDE6077023CF2945261F3 44032 ----a-w- C:\Windows\Sysnative\cryptbase.dll 2015-11-11 21:55:26 9066AE964D95B1ABC999CED271556A7C 112640 ----a-w- C:\Windows\Sysnative\smss.exe 2015-11-11 21:55:26 60F8ECF4FCE0DDEC8D6E3E2E987867A4 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll 2015-11-11 21:55:26 2BC45F4CF55B45BDD650828192F132B8 31232 ----a-w- C:\Windows\Sysnative\lsass.exe 2015-11-11 21:55:26 286A1E8B06EE3E8E06176010C41988B2 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll 2015-11-11 21:55:26 20592BDF5A368B43BEF086DC61C6863D 50176 ----a-w- C:\Windows\Sysnative\srclient.dll 2015-11-11 21:55:26 1CE982CF943680F776F46D6F9F53642F 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll 2015-11-11 21:55:26 1A05FB05E701A9D65EB42656CF46D173 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll 2015-11-11 21:55:26 105B82E40B82A5B5A140969099FE3FAF 22016 ----a-w- C:\Windows\Sysnative\credssp.dll 2015-11-11 21:55:26 079317396D1E4F9EE8E745DF5C2372DD 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll 2015-11-11 21:55:23 A10B9876772F1AB83DEC50EE9B0696B7 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll 2015-11-11 21:55:22 EB618353B1F34E790952982A226AFFB2 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll 2015-11-11 21:55:22 700E5B0452B1B2CE1AD23F1557995FF9 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll 2015-11-11 21:55:22 6F4AAA80DBB19CE945389FFEA43C1BA1 686080 ----a-w- C:\Windows\Sysnative\adtschema.dll 2015-11-11 21:55:11 E9DE8D0A3A7306AF26B25F52F13A9234 23552 ----a-w- C:\Windows\Sysnative\sdbinst.exe 2015-11-11 21:55:11 BBD257696E3FB0B8B1D3C115072116C6 6656 ----a-w- C:\Windows\Sysnative\shimeng.dll 2015-11-11 21:55:11 262D7C87D0AC20B96EF9877D3CA478A0 72192 ----a-w- C:\Windows\Sysnative\aelupsvc.dll 2015-11-11 21:55:11 07EAEA9D3E09340E64918EED526A5FFE 342016 ----a-w- C:\Windows\Sysnative\apphelp.dll 2015-11-11 21:55:06 806E52CF244371661A7079A8A769B00B 275456 ----a-w- C:\Windows\Sysnative\InkEd.dll 2015-11-11 21:55:06 663D10339325743941089DF3AE47B2C4 24576 ----a-w- C:\Windows\Sysnative\jnwmon.dll 2015-11-09 21:15:42 8DBD6E38380BFBA61E9025E4DEB0248E 1710752 ----a-w- C:\Windows\Sysnative\nvspcap64.dll 2015-11-09 21:15:42 1B7840422FD1889EA23CE7675422F165 1756424 ----a-w- C:\Windows\Sysnative\nvspbridge64.dll 2015-11-09 21:11:36 C3FB32FCB983E4ADBD50E7D5F7191797 1564792 ----a-w- C:\Windows\Sysnative\nvdispgenco6435891.dll 2015-11-09 21:11:36 B0A89D46A41F77B88DCD74E62F6CF16E 22308656 ----a-w- C:\Windows\Sysnative\nvoglv64.dll 2015-11-09 21:11:36 9EB2D77449703AA31975D6F21FF03EB3 877360 ----a-w- C:\Windows\Sysnative\NvFBC64.dll 2015-11-09 21:11:36 90C433059604C0DB27BE123DAC2EC142 15717864 ----a-w- C:\Windows\Sysnative\nvd3dumx.dll 2015-11-09 21:11:36 8C2EA8D121595B18BD26D8A2E2E0A276 72504 ----a-w- C:\Windows\Sysnative\nvaudcap64v.dll 2015-11-09 21:11:36 866511985CEDFAC8531EA3AAD038F8DA 1905272 ----a-w- C:\Windows\Sysnative\nvdispco6435891.dll 2015-11-09 21:11:36 8210ED047E55F8401928FD974BEF2B4C 16553568 ----a-w- C:\Windows\Sysnative\nvopencl.dll 2015-11-09 21:11:36 6E21AC37938DAEF88D455399948952CC 14835872 ----a-w- C:\Windows\Sysnative\nvcuda.dll 2015-11-09 21:11:36 68630A91680DB848BD8663689E049CBB 2870392 ----a-w- C:\Windows\Sysnative\nvcuvid.dll 2015-11-09 21:11:36 49C514EB6144C5C29671DF8D41A4628A 17515208 ----a-w- C:\Windows\Sysnative\nvwgf2umx.dll 2015-11-09 21:11:36 34158A1F3384444BACD0C155999466DB 861816 ----a-w- C:\Windows\Sysnative\NvIFR64.dll 2015-11-09 21:11:36 1BDE5819A2664A96DD45EC76866A0A69 467912 ----a-w- C:\Windows\Sysnative\nvumdshimx.dll 2015-11-09 21:11:36 1BD8E47175B5CDC788F047E80954587D 151368 ----a-w- C:\Windows\Sysnative\nvoglshim64.dll 2015-11-09 21:11:34 0F148B4B7EDBA70B362F0DA26492253D 42914096 ----a-w- C:\Windows\Sysnative\nvcompiler.dll ====== C:\Windows\Sysnative\drivers ===== 2015-11-11 21:55:33 33D52A96BEEE8AFCE9E07EEC9FE0C9DB 154560 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2015-11-11 21:55:32 EC0511BB85BAA42A9734011685A6732C 460776 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2015-11-11 21:55:28 BCC83F22805F560C8A487F2F296A78FE 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2015-11-11 21:55:26 ACB763673BCCE6C7B3B8F858C9FE4F1F 129024 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys 2015-11-11 21:55:26 7C81098FBAF2EAF5B54B939F832B0F61 290816 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys 2015-11-11 21:55:26 73ADDCC406B86E7DA4416691E8E74BDA 159232 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys 2015-11-11 21:55:13 AA77EB517D2F07A947294F260E3ACA83 118272 ----a-w- C:\Windows\Sysnative\drivers\tdx.sys 2015-11-11 21:55:13 9A4A1EEE802BF2F878EE8EAB407B21B7 497664 ----a-w- C:\Windows\Sysnative\drivers\afd.sys 2015-11-11 21:55:08 F7309F42555F8AAB7144A51A1F2585B0 950720 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys 2015-11-09 21:11:36 EE8EED1E2625FC3C96633D1141D4F70F 11130488 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys 2015-11-09 21:11:36 99B7DE2D7850AE4D1CAC3E10A094ECBF 31352 ----a-w- C:\Windows\Sysnative\drivers\nvpciflt.sys 2015-11-09 21:11:36 35DFC12FD7E44B7CB8CCD7E5A2B3975A 50472 ----a-w- C:\Windows\Sysnative\drivers\nvvad64v.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-11-17 20:40:50 -------- d-----w- C:\Program Files\trend micro 2015-11-14 22:58:52 -------- d-----w- C:\Program Files\Speccy ======= C:\PROGRA~2 ===== 2015-11-12 19:00:23 -------- d-----w- C:\PROGRA~2\Microsoft ASP.NET 2015-10-24 13:10:36 -------- d-----w- C:\PROGRA~2\TomTom HOME 2 2015-10-24 13:09:37 -------- d-----w- C:\PROGRA~2\TomTom International B.V ======= C: ===== ====== C:\Users\Admin\AppData\Roaming ====== 2015-11-09 21:16:05 -------- d-----w- C:\Users\Admin\AppData\Local\NVIDIA Corporation 2015-11-09 21:15:50 -------- d-----w- C:\Users\Admin\AppData\Local\NVIDIA 2015-10-24 13:11:17 -------- d-----w- C:\Users\Admin\AppData\Roaming\TomTom 2015-10-24 13:11:17 -------- d-----w- C:\Users\Admin\AppData\Local\TomTom 2015-10-24 13:09:17 -------- d-----w- C:\Users\Admin\AppData\Local\Downloaded Installations ====== C:\Users\Admin ====== 2015-11-17 20:40:02 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Admin\Downloads\RSITx64.exe 2015-11-09 21:15:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-10-24 13:12:26 -------- d-----w- C:\ProgramData\TomTom 2015-10-24 13:10:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom ====== C: exe-files == 2015-11-17 20:40:50 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Admin.exe 2015-11-12 18:55:45 F4146736CFD035154A089BC0DD81E1D0 970832 ----a-w- C:\Program Files (x86)\Google\Update\Install\{85158F22-255E-423C-8C51-6B42AB170872}\46.0.2490.86_46.0.2490.80_chrome_updater.exe 2015-11-12 18:55:45 F4146736CFD035154A089BC0DD81E1D0 970832 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\46.0.2490.86\46.0.2490.86_46.0.2490.80_chrome_updater.exe 2015-11-11 21:56:12 D42C672CBDEEDB6F15188357ADFF8A9A 775344 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2015-11-11 21:56:12 76CEC708FFBA161AA503EB984493203D 770736 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2015-11-11 21:56:09 7C96AD08B995715A6825AFD505AA6FD3 477184 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2015-11-11 21:56:08 AD7AC5C6FD0753A0D6D439C5A0920B4F 492544 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2015-11-11 21:56:07 F8BF73F3ED0466141A6172E5A1FA0732 223744 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2015-11-11 21:56:07 17638DC26F3D6447890A2BA9610E0197 222208 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2015-11-11 21:55:08 89E445DEB3F62B45BBA266613611CC09 2164224 ----a-w- C:\Program Files\Windows Journal\Journal.exe 2015-11-11 21:55:06 F860FAF622971F8ACDD4CC94278C3E0D 51200 ----a-w- C:\Program Files\Windows Journal\PDIALOG.exe === C: other files == 2015-11-12 19:24:55 92C729B1A03F8B55A68597A50394FB76 3211264 ----a-w- C:\Windows\System32\win32k.sys 2015-11-11 21:55:33 33D52A96BEEE8AFCE9E07EEC9FE0C9DB 154560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2015-11-11 21:55:32 EC0511BB85BAA42A9734011685A6732C 460776 ----a-w- C:\Windows\System32\drivers\cng.sys 2015-11-11 21:55:28 BCC83F22805F560C8A487F2F296A78FE 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2015-11-11 21:55:26 ACB763673BCCE6C7B3B8F858C9FE4F1F 129024 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2015-11-11 21:55:26 7C81098FBAF2EAF5B54B939F832B0F61 290816 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2015-11-11 21:55:26 73ADDCC406B86E7DA4416691E8E74BDA 159232 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2015-11-11 21:55:13 AA77EB517D2F07A947294F260E3ACA83 118272 ----a-w- C:\Windows\System32\drivers\tdx.sys 2015-11-11 21:55:13 9A4A1EEE802BF2F878EE8EAB407B21B7 497664 ----a-w- C:\Windows\System32\drivers\afd.sys 2015-11-11 21:55:08 F7309F42555F8AAB7144A51A1F2585B0 950720 ----a-w- C:\Windows\System32\drivers\ndis.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-12310210-1910722806-2919839751-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Akamai NetSession Interface"="C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NUSB3MON"="C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" "IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" "BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices" "AdobeCS5ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe -launchedbylogin" "Cisco AnyConnect Secure Mobility Agent for Windows"="C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe -minimized" "ADSK DLMSession"="C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe" "ADSKAppManager"="C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe -showminimized -checkautorun" "HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Akamai NetSession Interface"="C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\windows\\syswow64\\nvinit.dll,c:\\windows\\syswow64\\nvinit.dll,c:\\progra~2\\citrix\\icacli~1\\rshook.dll,C:\\Windows\\SysWOW64\\nvinit.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BTMTrayAgent"="rundll32.exe C:\Program Files\Motorola\Bluetooth\btmshell.dll,TrayApp" "THXCfg64"="C:\windows\system32\RunDLL32.exe C:\windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64" "PSQLLauncher"="C:\Program Files\Protector Suite\launcher.exe /startup" "IgfxTray"="C:\windows\system32\igfxtray.exe" "HotKeysCmds"="C:\windows\system32\hkcmd.exe" "Persistence"="C:\windows\system32\igfxpers.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "XboxStat"="C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe silentrun" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " "Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe " [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\windows\\system32\\nvinitx.dll,C:\\Windows\\system32\\nvinitx.dll " ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "UpdReg"="C:\\windows\\UpdReg.EXE" "Adobe Reader Speed Launcher"="\"C:\\Program Files (x86)\\Adobe\\Reader 10.0\\Reader\\Reader_sl.exe\"" "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "HP Software Update"="C:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe" "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2011-05-02 19:23:15 865 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hotkey.lnk 2011-09-01 10:57:54 2099 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk 2014-02-21 15:22:06 2653 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11/11/2015 23:28] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/08/2015 13:14] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/08/2015 13:14] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Pc_van_Jens-Admin" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HP-Online updateprogramma" [C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe] "C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" [] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [01/09/2011 12:00] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Admin\AppData\Roaming\TomTom\HOME\Profiles\ccpjxuww.default - Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be ==== Firefox Plugins ====================== Profilepath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\aonswp79.default AE7B288233C212C62CD544BF768C45E6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll - Shockwave for Director / Shockwave for Director ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[12/10/2015 08:31] selector is not a valid CSS selector - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Cloud SWF Flash Player with Drive - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffhhaadihgfcgmlefioblaahpnglnkbk SWF Player - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\iklnlakohemjiifmmbnamhaihfafkljn Google Wallet - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Google Docs - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf AVG Safe Search - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla BittorrentBar_NL - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn AVG Security Toolbar - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof Google Wallet - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.google.com/", "urls_to_restore_on_startup": [ "http://www.google.com/" ] ==== Chromium Fix ====================== C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://mysearch.avg.com/?cid={464EB8D7-D199-4576-AD1E-1E002E219389}&mid=b2d46786ff0247d1bb7fd1d9b3587c3a-d4d65a6a3f50458ffc42141bbdbd3a4371139c60&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0615pi&pr=fr&d=2015-07-24 16:20:59&v=4.1.6.294&pid=wtu&sg=&sap=hp" "Search Page"="http://www.google.com" "Default_Search_URL"="http://www.google.com/ie" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "FindProvidersURL"="http://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox" @="http://www.google.com/search?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{95B7759C-8C7F-4BF1-B163-73684A933233}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC HKCU\SearchScopes\{06AE550D-5CA3-4FD6-8B9C-45290E298F47} - http://127.0.0.1:4664/search&s=vDv0clrixOedbDUOntSDwIiCo1o?q={searchTerms} HKCU\SearchScopes\{35683CE2-BB54-4669-9C9D-10F6A60BB18A} - http://www.google.co.uk/search?hl=en&q={searchTerms}&meta= HKCU\SearchScopes\{4B90BFC8-8547-4C9A-832C-1B410CE47AB8} - http://www.bing.com/search?FORM=U218DF&PC=U218&q={searchTerms}&src=IE-SearchBox ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482A0EF6573A8914BA40022910585BDA deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{61D390FE-18EE-654A-828B-3B522143670E} deleted successfully HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6FE0A284-A375-4198-AB04-20920185B5AD} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\482A0EF6573A8914BA40022910585BDA deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized O4 - HKLM\..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe O4 - HKLM\..\Run: [ADSKAppManager] "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: Hotkey.lnk = C:\Program Files (x86)\Hotkey\Hotkey.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: vpngui.exe.lnk = ? O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000 O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm O9 - Extra 'Tools' menuitem: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{ADF4B2F9-C6C8-4F8E-BF98-CFF4605897CB}: NameServer = 195.238.2.21,195.238.2.22 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll,c:\windows\syswow64\nvinit.dll,c:\progra~2\citrix\icacli~1\rshook.dll,C:\Windows\SysWOW64\nvinit.dll O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe O23 - Service: Bluetooth Device Manager - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe O23 - Service: Bluetooth Media Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\audiosrv.exe O23 - Service: Bluetooth OBEX Service - Motorola, Inc. - C:\Program Files\Motorola\Bluetooth\obexsrv.exe O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FLEXnet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Sentinel Local License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing) O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: PowerBiosServer - Unknown owner - C:\Program Files (x86)\Hotkey\PowerBiosServer.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: Cisco AnyConnect Secure Mobility Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2255 folders=444 124320277 bytes) ==== Empty Temp Folders ====================== C:\Users\Admin\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Admin\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on wo 18/11/2015 at 20:10:00,88 ======================