Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by jan on ma 30/05/2016 at 11:03:41,34. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\jan\Downloads\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 30/05/2016 11:06:05 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\Origin Games deleted successfully C:\PROGRA~3\Guitar Pro 6 deleted successfully C:\Users\jan\AppData\Roaming\Mozilla deleted successfully C:\Users\jan\AppData\Roaming\New Version Available deleted successfully C:\Users\jan\AppData\Local\EmieBrowserModeList deleted successfully C:\Users\jan\AppData\Local\EmieSiteList deleted successfully C:\Users\jan\AppData\Local\EmieUserList deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3392191472-1403583685-805868289-1001\Software\Microsoft\Internet Explorer\SearchScopes\{52545E8C-5E01-44F0-BC40-89043F79F092} deleted successfully HKEY_CLASSES_ROOT\CLSID\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== ActivePerl 5.20.2 Build 2002 Adobe AIR Adobe Community Help Adobe Flash Player 21 NPAPI Adobe Photoshop Elements 10 Adobe Premiere Elements 10 Adobe Shockwave Player 12.0 AMD APP SDK Runtime AMD AVIVO64 Codecs AMD Catalyst Control Center AMD Catalyst Install Manager Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update Audacity 2.1.1 AutoCAD 2013 - English AutoCAD 2013 Language Pack - English Autodesk Content Service Autodesk Content Service Language Pack Autodesk Material Library 2013 Autodesk Material Library Base Resolution Image Library 2013 Autodesk Sync Bandizip Battle.net Belfius Smart Card Reader Chrome-App Bonjour Catalyst Control Center - Branding Catalyst Control Center InstallProxy Catalyst Control Center Localization All Catalyst Control Center Profiles Mobile ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner Conexant SmartAudio HD Counter-Strike: Source Creo Direct Creo Direct Version 2.0 Datecode [M040] Creo Help Creo Help Version 2.0 Datecode [M040] Creo Layout Creo Layout Version 2.0 Datecode [M040] Creo Parametric Creo Parametric Version 2.0 Datecode [M040] Creo Platform 2.15 Creo Simulate Creo Simulate Version 2.0 Datecode [M040] Creo Thumbnail Viewer 2.0 CyberLink LabelPrint 2.5 CyberLink Media Suite 10 CyberLink Media Suite Essentials CyberLink Power2Go 8 CyberLink PowerDirector 10 CyberLink PowerDVD 10 D3DX10 Definition Update for Microsoft Office 2010 (KB3115129) 32-Bit Edition Definition Update for Microsoft Office 2013 (KB3115032) 32-Bit Edition Dell Backup and Recovery Dell Customer Connect Dell Data Vault Dell Digital Delivery Dell SupportAssist Dell SupportAssistAgent Dell Touchpad Dell Update Elements 10 Organizer Facebook Video Calling 3.1.0.521 Far Cry 2 FARO LS 1.1.406.58 FlacSquisher 1.3.5 Free Auto Clicker 5.3.2 GameRanger Google Chrome Google Update Helper GS Auto Clicker Guitar Pro 6 Hearthstone hohosearch - Uninstall HP Deskjet 3520 series Basissoftware van het apparaat HP Deskjet 3520 series Help HP Deskjet 3520 series Productverbeteringsonderzoek HP Deskjet 3520 series Setup Guide HP FWUpdateEDO2 HP Update HPDiagnosticAlert Intel PROSet Wireless Intel(R) Control Center Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology Intel(R) Rapid Start Technology Intel(R) Rapid Storage Technology Intel© PROSet/Wireless WiFi Software Intel© Trusted Connect Service Client Intel© Turbo Boost Technologie monitor 2.6 iTunes Java 8 Update 91 Java Auto Updater McAfee SecurityCenter McAfee WebAdvisor Microsoft Age of Empires Microsoft Age of Empires Expansion Microsoft Application Error Reporting Microsoft Office 365 ProPlus - nl-nl Microsoft Office 64-bit Components 2013 Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Home and Student 2010 Microsoft Office Korrekturhilfen 2013 - Deutsch Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office OSM MUI (Dutch) 2013 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Proofing (Dutch) 2013 Microsoft Office Proofing Tools 2013 - English Microsoft Office Proofing Tools 2013 - Nederlands Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared 64-bit MUI (Dutch) 2010 Microsoft Office Shared 64-bit MUI (Dutch) 2013 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2013 Microsoft Office Single Image 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Project MUI (Dutch) 2013 Microsoft Project Professional 2013 Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Microsoft WSE 3.0 Runtime Microsoft Xbox 360 Accessories 1.2 Movie Maker MSVCRT MSVCRT110 MSVCRT110_amd64 Office 15 Click-to-Run Extensibility Component Office 15 Click-to-Run Licensing Component Office 15 Click-to-Run Localization Component OldSchool RuneScape Launcher 1.2.5 Origin Outils de v‚rification linguistique 2013 de Microsoft Office˙- Fran‡ais Papers, Please Photo Common Photo Gallery PKR Popcorn-Time PowerXpressHybrid PRE10STI64Installer PSE10 STI Installer PTC Quality Agent PX Profile Update QGIS Wien 2.8.1 Wien Quickset64 QuickTime 7 Realtek USB 2.0 Card Reader Recuva Rome - Total War Rome: Total War Secure Download Manager Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition Security Update for Microsoft Excel 2010 (KB3114888) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB3114414) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881029) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956063) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3054984) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085528) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3101520) 32-Bit Edition Security Update for Microsoft Office 2013 (KB2760272) 32-Bit Edition Security Update for Microsoft Office 2013 (KB3039794) 32-Bit Edition Security Update for Microsoft Office 2013 (KB3039798) 32-Bit Edition Security Update for Microsoft Office 2013 (KB3054816) 32-Bit Edition Security Update for Microsoft Office 2013 (KB3085572) 32-Bit Edition Security Update for Microsoft Office 2013 (KB3115016) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition Security Update for Microsoft Visio 2010 (KB3114402) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition Security Update for Microsoft Word 2010 (KB3115123) 32-Bit Edition Security Update for Skype for Business 2015 (KB3114944) 32-Bit Edition Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition Shared C Run-time for x64 SimCity 3000 Simple Shutdown Timer SmartSound Common Data SmartSound Premiere Elements 10 x64 Plugin Spore Star Wars - Battlefront II Steam Stronghold Crusader 2 Stronghold Crusader Extreme HD Stronghold Crusader HD swMSM Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD The Sims\" 3 The Sims\" 3 70s, 80s, & 90s Stuff The Sims\" 3 Ambitions The Sims\" 3 Diesel Stuff The Sims\" 3 Fast Lane Stuff The Sims\" 3 Generations The Sims\" 3 High-End Loft Stuff The Sims\" 3 Into the Future The Sims\" 3 Island Paradise The Sims\" 3 Katy Perry's Sweet Treats The Sims\" 3 Late Night The Sims\" 3 Master Suite Stuff The Sims\" 3 Movie Stuff The Sims\" 3 Outdoor Living Stuff The Sims\" 3 Pets The Sims\" 3 Seasons The Sims\" 3 Showtime The Sims\" 3 Supernatural The Sims\" 3 Town Life Stuff The Sims\" 3 University Life The Sims\" 3 World Adventures The SimsT 3 + Expansions Uninstaller Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition Update for Microsoft Excel 2013 (KB3115035) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2999508) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft InfoPath 2013 (KB3114946) 32-Bit Edition Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition Update for Microsoft Office 2010 (KB3114555) 32-Bit Edition Update for Microsoft Office 2010 (KB3114750) 32-Bit Edition Update for Microsoft Office 2010 (KB3114989) 32-Bit Edition Update for Microsoft Office 2013 (KB2760344) 32-Bit Edition Update for Microsoft Office 2013 (KB2899522) 32-Bit Edition Update for Microsoft Office 2013 (KB2975869) 32-Bit Edition Update for Microsoft Office 2013 (KB3023052) 32-Bit Edition Update for Microsoft Office 2013 (KB3039701) 32-Bit Edition Update for Microsoft Office 2013 (KB3039720) 32-Bit Edition Update for Microsoft Office 2013 (KB3039756) 32-Bit Edition Update for Microsoft Office 2013 (KB3039766) 32-Bit Edition Update for Microsoft Office 2013 (KB3039778) 32-Bit Edition Update for Microsoft Office 2013 (KB3054783) 32-Bit Edition Update for Microsoft Office 2013 (KB3054785) 32-Bit Edition Update for Microsoft Office 2013 (KB3054805) 32-Bit Edition Update for Microsoft Office 2013 (KB3054941) 32-Bit Edition Update for Microsoft Office 2013 (KB3055007) 32-Bit Edition Update for Microsoft Office 2013 (KB3085479) 32-Bit Edition Update for Microsoft Office 2013 (KB3085486) 32-Bit Edition Update for Microsoft Office 2013 (KB3085577) 32-Bit Edition Update for Microsoft Office 2013 (KB3085587) 32-Bit Edition Update for Microsoft Office 2013 (KB3114488) 32-Bit Edition Update for Microsoft Office 2013 (KB3114499) 32-Bit Edition Update for Microsoft Office 2013 (KB3114813) 32-Bit Edition Update for Microsoft Office 2013 (KB3114825) 32-Bit Edition Update for Microsoft Office 2013 (KB3114835) 32-Bit Edition Update for Microsoft Office 2013 (KB3114939) 32-Bit Edition Update for Microsoft OneDrive for Business (KB3115039) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition Update for Microsoft OneNote 2010 (KB3114410) 32-Bit Edition Update for Microsoft OneNote 2013 (KB3114344) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2760779) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3114756) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3115127) 32-Bit Edition Update for Microsoft Outlook 2013 (KB3115031) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition Update for Microsoft PowerPoint 2010 (KB3114867) 32-Bit Edition Update for Microsoft Project 2013 (KB3115040) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2881021) 32-Bit Edition Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition VLC media player Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Media Player Firefox Plugin ==== Running Processes ====================== C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe C:\Program Files\Conexant\SA3\CxUtilSvc.exe C:\Windows\SysWOW64\irstrtsv.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\windows\SysWOW64\PnkBstrA.exe C:\windows\SysWOW64\PnkBstrB.exe C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe C:\Program Files (x86)\Dell Update\DellUpService.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\CyberLink\Shared files\brs.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Dell Update\DellUpTray.exe C:\Users\jan\Downloads\zoek.exe C:\windows\SysWOW64\cmd.exe C:\windows\SysWOW64\cmd.exe C:\windows\SysWOW64\cmd.exe C:\windows\syswow64\wwahost.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Thevshhostsrv deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\QQPCRTP deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}] ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Origin Games not found C:\Users\jan\AppData\Roaming\.technic deleted C:\bootmenu.xml deleted C:\Users\jan\AppData\Roaming\Jam2Wav.ini deleted C:\windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Browse and Search the Internet.lnk deleted C:\PROGRA~3\{05EE3202-A879-4F9D-895C-AC535855E0A9} deleted C:\PROGRA~3\Package Cache deleted C:\Users\jan\AppData\Local\cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\windows\SysNative\config\systemprofile\Searches deleted C:\PROGRA~3\RiliDlr.exe deleted C:\PROGRA~3\setup_qg00.exe deleted ==== System Specs ====================== Operating System: Microsoft Windows 8.1 6.3.9600 64 bits Manufacturer: Dell Inc. - Model: Inspiron 7520 Install Date: 13/11/2013 0:03:37 Last Boot: 29/05/2016 0:42:46 Processor: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz Number of Processors: 8 Work Station Bootmode: Normal boot Total RAM: 8061 MB (free 5272 MB - 65) Computername: PC_VAN_JAN Domain: WORKGROUP User: jan (Administrator account) Local Disk: C:\ - NTFS - 917 GB (free 594 GB) CD \ DVD Drive: D:\ CD \ DVD Drive: E:\ Bootdevice: \Device\HarddiskVolume1 Windows update: Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Virus: McAfee Antivirus en antispyware On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: McAfee Antivirus en antispyware disabled (Outdated) Firewall: McAfee Firewall disabled Default Browser: Google Chrome 50.0.2661.102 Internet Explorer Version: 11.0.9600.18321 Google Chrome version: 50.0.2661.102 Sun Java version: 1.8.0_91 (32-bit) Sun Java version: 1.8.0_91 (64-bit) Flash Player version: 21.0.0.242 Shockwave Player version: 12.0.3r133 ==== Files Recently Created / Modified ====================== ====== C:\windows ==== ====== C:\Users\jan\AppData\Local\Temp ==== 2016-05-25 10:32:26 E3A25C80E2375B2D42C3D4729769BDF3 10240 ----a-w- C:\Users\jan\AppData\Local\Temp\SDIAG_74702746-1d47-4e54-abb9-fd31d2bdeecb\NetworkDiagnosticSnapIn.dll 2016-05-25 08:56:52 01A151FA3BEC9FE7CEBC47B9B8962D0F 2127360 ----a-w- C:\Users\jan\AppData\Local\Temp\9UDVAW45EU\testversion.exe 2016-05-25 08:56:51 CA882D33A6EB8E4E0DF6B73D3D49EEBF 19968 ----a-w- C:\Users\jan\AppData\Local\Temp\9UDVAW45EU\win.exe 2016-05-25 08:56:40 2E6F6E52FCCC44C17A844051C430D3EF 928539 ----a-w- C:\Users\jan\AppData\Local\Temp\DF4B.tmp.exe 2016-05-25 08:56:35 EFC45FD1C72CB64DC3FD16079D820495 1735535 ----a-w- C:\Users\jan\AppData\Local\Temp\A5V31I20SA.exe 2016-05-25 08:56:32 C0B6352CE6E0665D016B52E948CF52A2 2127360 ----a-w- C:\Users\jan\AppData\Local\Temp\2AWEMPWZ5W\testversion.exe 2016-05-25 08:56:27 8DFAFEF08753AB4C0DE33B07C4B822FC 1516829 ----a-w- C:\Users\jan\AppData\Local\Temp\2AT2EKCSVS.exe 2016-05-25 08:56:26 2E6F6E52FCCC44C17A844051C430D3EF 928539 ----a-w- C:\Users\jan\AppData\Local\Temp\A629.tmp.exe 2016-05-25 08:56:15 D78AB09F46610B7E87EA093AA91F6AEB 51987648 ----a-w- C:\Users\jan\AppData\Local\Temp\qqpcmgr_v11.5.17490.219_45543_Silence.exe 2016-05-25 08:56:00 43237652BFB768B63435DF9918939F25 1755136 ----a-w- C:\Users\jan\AppData\Local\Temp\09213\service.exe 2016-05-25 08:55:49 6437BDA4CA22B680D8EB879B5A8FACEF 570177 ----a-w- C:\Users\jan\AppData\Local\Temp\23333.exe 2016-05-25 08:48:17 9306F67FBF0816DFEC24C8BABFA5EF8F 1074096 ----a-w- C:\Users\jan\AppData\Local\Temp\nsx2F67.tmp.exe 2016-05-25 08:48:15 BD5FC094283D66FAB86BC8C2A2E4089F 73692 ----a-w- C:\Users\jan\AppData\Local\Temp\yDHmrv7AM8.exe 2016-05-25 08:48:10 79FDC3543EDFB28045CE5DD60D95E13B 12448608 ----a-w- C:\Users\jan\AppData\Local\Temp\sCZOyE5PRt.exe ====== Java Cache ===== 2016-05-30 09:01:48 CEBAF4D52745C7785F26177FEA967C51 54 ----a-w- C:\Users\jan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\38e2cea9-1983395b 2016-05-28 14:28:42 CEBAF4D52745C7785F26177FEA967C51 54 ----a-w- C:\Users\jan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\38e2cea9-199a2b32 2016-05-30 09:01:44 CEBAF4D52745C7785F26177FEA967C51 54 ----a-w- C:\Users\jan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\38e2cea9-38f58d1f ====== C:\windows\SysWOW64 ===== 2016-05-25 08:56:35 AD7DF7474E4D7D1C0EC78713852D9F9D 94 ----a-w- C:\windows\SysWOW64\cookies ====== C:\windows\SysWOW64\drivers ===== ====== C:\windows\Sysnative ===== ====== C:\windows\Sysnative\drivers ===== 2016-05-11 06:59:25 17F7B0F2298D97F4B6C7A69511033D3D 316760 -c--a-w- C:\windows\Sysnative\drivers\volsnap.sys 2016-05-11 06:59:21 1C8560E3A37A9D4F25B7769C3E3D4163 2466136 ----a-w- C:\windows\Sysnative\drivers\tcpip.sys 2016-05-11 06:50:12 FE219A7107C4BC3BBC35D6CDC281612C 201728 ----a-w- C:\windows\Sysnative\drivers\mrxsmb20.sys 2016-05-11 06:50:12 5DCD41F62F71519D2A46D41F60C69B0C 401920 ----a-w- C:\windows\Sysnative\drivers\mrxsmb.sys 2016-05-11 06:50:11 D7C9BC4D37BF08C7DD436A0A5F321668 284672 ----a-w- C:\windows\Sysnative\drivers\mrxsmb10.sys 2016-05-11 06:50:11 6A48941C527C8C51051A1514C5B23A31 561960 ----a-w- C:\windows\Sysnative\drivers\cng.sys 2016-05-11 06:48:12 F74B839FA0F4E6060CA1DA6B8DA17941 1549144 ----a-w- C:\windows\Sysnative\drivers\dxgkrnl.sys 2016-05-11 06:48:12 436E1A724E7E683F6B612D3D58F04241 74584 -c--a-w- C:\windows\Sysnative\drivers\volmgr.sys ====== C:\windows\Tasks ====== ====== C:\windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2016-05-30 09:01:53 -------- d-----w- C:\PROGRA~2\COMMON~1\Java ======= C: ===== ====== C:\Users\jan\AppData\Roaming ====== 2016-05-25 08:56:31 9A2B8ADD9A2FB79988F6FD21625BBA7A 1443152 ----a-w- C:\Users\jan\AppData\Roaming\AutoTime_51490.jpg 2016-05-13 15:27:42 -------- d-----w- C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time 2016-05-13 15:25:08 -------- d-----w- C:\Users\jan\AppData\Local\Popcorn-Time ====== C:\Users\jan ====== 2016-05-30 09:00:07 33684EB020CDD22CB6DD62E338F77589 737856 ----a-w- C:\Users\jan\Downloads\chromeinstall-8u91.exe 2016-05-29 21:08:06 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\jan\Downloads\RSITx64.exe 2016-05-28 22:38:09 A55203B3BEA501A9E8FBF2B66B838E62 3678272 ----a-w- C:\Users\jan\Downloads\adwcleaner_5.118.exe 2016-05-26 06:42:26 A75988E32C623DD43071861E5677CFE2 117248 ----a-w- C:\Users\jan\Downloads\Prezi.exe 2016-05-25 08:56:14 -------- d-----w- C:\Users\Public\Thunder Network ====== C: exe-files == 2016-05-30 09:01:19 FFBA6C166756FC6848D120853F24B006 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\servertool.exe 2016-05-30 09:01:19 F494EFDE893BAF1D7BE96A465314411D 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\orbd.exe 2016-05-30 09:01:19 F1A24A5E64B7BB31923AD0E652B1EDC1 77888 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2launcher.exe 2016-05-30 09:01:19 E4BB9A7DC3B43601F7814FF1EFDDD81A 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\rmiregistry.exe 2016-05-30 09:01:19 BD480622A15083BA913D06D58D24229C 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\ktab.exe 2016-05-30 09:01:19 B0F2A54F8CCF5EEAF4B553E61A4E9A5C 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\rmid.exe 2016-05-30 09:01:19 A8E1DA96A65E92428B4F8DAFE87C527C 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\jjs.exe 2016-05-30 09:01:19 637B4FCEFE627EB7DB5A5229E0752994 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\pack200.exe 2016-05-30 09:01:19 5C92A312A355523F71EB53D1EB7D8237 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\keytool.exe 2016-05-30 09:01:19 588723F51A6CB6A0C55B8B24681D5ACE 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\kinit.exe 2016-05-30 09:01:19 420A60F3DBEBF8EF31E690EA4C3A1D23 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\tnameserv.exe 2016-05-30 09:01:19 3E4BC759FB41BCF96364F0814D9DF734 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\klist.exe 2016-05-30 09:01:19 353937DAB534CF0A63FD1E7D62AC26A5 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\policytool.exe 2016-05-30 09:01:19 2197531F129731AE889905CA24D05BE7 51776 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssvagent.exe 2016-05-30 09:01:19 12D2BE7B54C3DF2ACDFF56B0E0205735 159296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\unpack200.exe 2016-05-30 09:01:18 C9A9B2BE8B8EB89289477E628BF941ED 30784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\jabswitch.exe 2016-05-30 09:01:18 C7826B71C16605FE17A2A9ED2CA91D6A 190528 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\java.exe 2016-05-30 09:01:18 7DC28B1BB189A502F784495377579606 191552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\javaw.exe 2016-05-30 09:01:18 52896BC3BC250F30010938FC57A27822 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\java-rmi.exe 2016-05-30 09:01:18 4E30039F6228AC1ECE9FA069837F07A0 68672 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\javacpl.exe 2016-05-30 09:01:18 19CFD7A66D4E5DEE7A4026F0ADD2E8EF 267840 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\bin\javaws.exe 2016-05-28 14:41:03 093042185BEBAAB0E57F25416452207A 21953728 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe 2016-05-28 14:41:02 DF6607C328AA1EF55A4A48D57A72AD31 24084168 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\lync.exe 2016-05-28 14:41:02 181AC172823B0983A87FFCC5DB3272EE 6747840 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\lynchtmlconv.exe 2016-05-28 14:40:59 F7D64E565C7D582A1D072058EDC040A4 48840 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\appsharinghookcontroller64.exe 2016-05-28 14:40:59 3AEC284F42C21FEB3FEEEC45652CFA74 883416 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe 2016-05-28 14:40:59 100A60B2782B6CFFB48C7BAF2A9A3F24 1163552 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\olicenseheartbeat.exe 2016-05-28 14:40:56 A059084E2A5CC04A5AB0C4A349A072F0 559856 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\msosqm.exe 2016-05-28 14:40:56 88663E7EF4CD6DED49FF6D3FF6A7A529 7988520 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\cmigrate.exe 2016-05-28 14:40:55 0091934DC3750E95F5E421DD37107E32 5841192 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\cmigrate.exe 2016-05-28 14:40:54 DB57494BAA98FDFE7F840A2276D89AB7 483656 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dwtrig20.exe 2016-05-28 14:40:54 5A035C05FC003E651F8F49084561C4BC 94048 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe 2016-05-28 14:40:54 548E5ABEBCD3097E2023A34107A8503C 851736 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dw20.exe 2016-05-28 14:40:52 0A15BED6D572F00AD85ACAF4EF600F61 1932480 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\winword.exe 2016-05-28 14:40:49 455FD410067B0D73E9F6D6B9724AE3D3 537864 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\vpreview.exe 2016-05-28 14:40:48 8A99313786B617D640BA94B3477F25E6 920264 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\ucmapi.exe 2016-05-28 14:40:48 4F29505A7AFD908CC3C7380890427BB7 490272 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\selfcert.exe 2016-05-28 14:40:48 18A91AA48F1C525A6EFA58CF3524AFB8 19131080 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\outlook.exe 2016-05-28 14:40:46 2A53BCBF1C38067601E08EACA8603DBD 10768592 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\mspub.exe 2016-05-28 14:40:45 122908F5C566F54F0185F3F53ACA1D1B 8841472 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\groove.exe 2016-05-28 14:40:40 76727E6C52090E99B3A321A677AEE017 1553704 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\ocpubmgr.exe 2016-05-28 14:40:39 8587BB7C562D1786C3398AC09B45FA2C 15529160 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\msaccess.exe 2016-05-28 14:40:38 11F3DF00F1ABFE3D6731C92E2601EBA7 526680 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\iecontentservice.exe 2016-05-28 14:40:37 8328A6719B12F120ABF4BC3146F76D83 25737408 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\excel.exe 2016-05-28 14:40:31 3A742E67CE3FFB5BE763AD32FB078C42 42704 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\appsharinghookcontroller.exe 2016-05-28 14:40:31 06DB79BACA734414B2E1A1C5FF7EA822 238328 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\clview.exe 2016-05-28 14:40:30 102E48C032B94A36BC56F8C8B85D9C9E 642336 ----a-w- C:\Program Files\Microsoft Office 15\root\Integration\integrator.exe 2016-05-28 14:40:00 436EF417DCE9F22958AA833EA966D381 578912 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\ORGCHART.EXE === C: other files == 2016-05-30 09:01:19 2810E5E26A83AA69C775E8444EFE5ED8 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_91\lib\deploy\ffjcext.zip 2016-05-25 09:43:31 495BADBC367D009EF9744279D2F22CED 275 ----a-w- C:\Users\jan\AppData\Local\Temp\DeleteOnReboot.bat 2016-05-24 18:51:34 A8AB4D0A0D0B26085EE3AAE78CF8126E 22727 ----a-w- C:\Users\jan\Downloads\game.of.thrones.s01.e05.the.wolf.and.the.lion.(2011).dut.1cd.(4193655).zip 2016-05-24 18:48:43 5B9DBF238A7BA8A941EF04FD3F96E115 24180 ----a-w- C:\Users\jan\Downloads\Game-Of-Thrones-S01E05-The-Wolf-and-the-Lion-HDTV.zip 2016-05-24 15:18:33 759E79B580691AF62C3A7FAB7937522B 16374 ----a-w- C:\Users\jan\Downloads\Ondertitel.com-Game.of.Thrones.S06E05.HDTV.x264-KILLERS_522763.zip 2016-05-24 15:14:59 57533D435EFE509D7DAA53C8646B7B52 21252 ----a-w- C:\Users\jan\Downloads\Ondertitel.com-Game.of.Thrones.S06E04.720p.HDTV.x264-TOPKEK_373946.zip ==== Orphaned Tasks deleted from Registry ====================== Dell Digital Delivery Service One-Time Delayed Start deleted Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse deleted SystemToolsDailyTest_once deleted tmp3D06 deleted tmp8886 deleted tmpB1B8 deleted tmpBAF4 deleted ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-3392191472-1403583685-805868289-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\jan\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "CAHeadless"="C:\Program Files (x86)\Adobe\Elements 10 Organizer\CAHeadless\ElementsAutoAnalyzer.exe" "DelayShred"="c:\PROGRA~1\mcafee\mqs\ShrCL.EXE /P1 /q E:\DCIM\100GOPRO\GOPR0095.MP4 E:\DCIM\100GOPRO\GOPR0095.THM E:\DCIM\100GOPRO\G0010096.JPG E:\DCIM\100GOPRO\G0020097.LRV E:\DCIM\100GOPRO\G0020097.MP4 E:\DCIM\100GOPRO\G0020097.THM E:\DCIM\100GOPRO\GOPR0092.LRV E:\DCIM\100GOPRO\GOPR0092.MP4 E:\DCIM\100GOPRO\GOPR0092.THM E:\DCIM\100GOPRO\GOPR0093.LRV E:\DCIM\100GOPRO\GOPR0093.MP4 E:\DCIM\100GOPRO\GOPR0093.THM E:\DCIM\100GOPRO\GOPR0094.LRV E:\DCIM\100GOPRO\GOPR0094.MP4 E:\DCIM\100GOPRO\GOPR0094.THM E:\DCIM\100GOPRO\GOPR0095.LRV" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60" "CLMLServer_For_P2G8"="C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" "CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R" "RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "BDRegion"="C:\Program Files (x86)\Cyberlink\Shared files\brs.exe" "mcui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey" "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "tasklist.exe -start"="C:\ProgramData\tasklist.exe -start" " QQPCTray"="C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\QQPCTray.exe /regrun" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\jan\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "CAHeadless"="C:\Program Files (x86)\Adobe\Elements 10 Organizer\CAHeadless\ElementsAutoAnalyzer.exe" "DelayShred"="c:\PROGRA~1\mcafee\mqs\ShrCL.EXE /P1 /q E:\DCIM\100GOPRO\GOPR0095.MP4 E:\DCIM\100GOPRO\GOPR0095.THM E:\DCIM\100GOPRO\G0010096.JPG E:\DCIM\100GOPRO\G0020097.LRV E:\DCIM\100GOPRO\G0020097.MP4 E:\DCIM\100GOPRO\G0020097.THM E:\DCIM\100GOPRO\GOPR0092.LRV E:\DCIM\100GOPRO\GOPR0092.MP4 E:\DCIM\100GOPRO\GOPR0092.THM E:\DCIM\100GOPRO\GOPR0093.LRV E:\DCIM\100GOPRO\GOPR0093.MP4 E:\DCIM\100GOPRO\GOPR0093.THM E:\DCIM\100GOPRO\GOPR0094.LRV E:\DCIM\100GOPRO\GOPR0094.MP4 E:\DCIM\100GOPRO\GOPR0094.THM E:\DCIM\100GOPRO\GOPR0095.LRV" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "QuickSet"="c:\Program Files\Dell\QuickSet\QuickSet.exe" "SmartAudio"="C:\Program Files\CONEXANT\SA3\SACpl.exe /sa3 /nv:3.0+ /dne /s" "IntelTBRunOnce"="wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" "BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll,TrayApp" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "XboxStat"="C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe silentrun" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "ETDCtrl"="C:\Program Files\Elantech\ETDCtrl.exe" ==== Startup Folders ====================== 2013-12-13 16:36:35 1314 ----a-w- C:\Users\jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk ==== Task Scheduler Jobs ====================== C:\windows\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [13/05/2016 13:35] C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3392191472-1403583685-805868289-1001Core.job --a-------- C:\Users\jan\AppData\Local\Facebook\Update\FacebookUpdate.exe [28/01/2013 21:41] C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3392191472-1403583685-805868289-1001UA.job --a-------- C:\Users\jan\AppData\Local\Facebook\Update\FacebookUpdate.exe [28/01/2013 21:41] C:\windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- :C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] C:\windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28/08/2015 17:18] ==== Other Scheduled Tasks ====================== "C:\windows\SysNative\tasks\Adobe Flash Player Updater" [C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\windows\SysNative\tasks\AdobeAAMUpdater-1.0-pc_van_Jan-jan" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\windows\SysNative\tasks\Dell SupportAssistAgent AutoUpdate" [C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe] "C:\windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3392191472-1403583685-805868289-1001Core" [C:\Users\jan\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3392191472-1403583685-805868289-1001UA" [C:\Users\jan\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\windows\SysNative\tasks\HPCustParticipation HP Deskjet 3520 series" ["C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe"] "C:\windows\SysNative\tasks\Intel(R) Rapid Start Technology Manager" [C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe] "C:\windows\SysNative\tasks\PCDDataUploadTask" ["uaclauncher.exe"] "C:\windows\SysNative\tasks\PCDEventLauncherTask" ["C:\Program Files\Dell\SupportAssist\sessionchecker.exe"] "C:\windows\SysNative\tasks\PCDoctorBackgroundMonitorTask" ["C:\Program Files\Dell\SupportAssist\uaclauncher.exe"] "C:\windows\SysNative\tasks\SystemToolsDailyTest" ["uaclauncher.exe"] "C:\windows\SysNative\tasks\User_Feed_Synchronization-{5FD3450F-BBFB-4B42-A00A-0E0001D78658}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi" [29/05/2016 00:43] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi" [29/05/2016 00:43] ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[20/04/2016 12:41] Docs - jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Gmail - jan\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Docs - jan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - jan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - jan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Gmail - jan\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - jan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - jan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - jan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Docs Offline - jan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi AdBlock - jan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\gighmmpiobklfepjocnamgkkbiglidom Chrome Web Store Payments - jan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - jan\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{52545E8C-5E01-44F0-BC40-89043F79F092}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52545E8C-5E01-44F0-BC40-89043F79F092}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{05A4656E-4646-49CC-B609-D3C79A07C952}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} ==== Reset Google Chrome ====================== C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 2\Preferences was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 2\Secure Preferences was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 3\Preferences was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 3\Secure Preferences was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 4\Preferences was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 4\Preferences.bad was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 4\Secure Preferences was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 2\Web Data was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 3\Web Data was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 4\Web Data was reset successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 4\Web Data-journal was reset successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [tasklist.exe -start] C:\ProgramData\tasklist.exe -start O4 - HKLM\..\Run: [ QQPCTray] "C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\QQPCTray.exe" /regrun O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Facebook Update] "C:\Users\jan\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [CAHeadless] C:\Program Files (x86)\Adobe\Elements 10 Organizer\CAHeadless\ElementsAutoAnalyzer.exe O4 - HKCU\..\Run: [DelayShred] "c:\PROGRA~1\mcafee\mqs\ShrCL.EXE" /P1 /q "E:\DCIM\100GOPRO\GOPR0095.MP4" "E:\DCIM\100GOPRO\GOPR0095.THM" "E:\DCIM\100GOPRO\G0010096.JPG" "E:\DCIM\100GOPRO\G0020097.LRV" "E:\DCIM\100GOPRO\G0020097.MP4" "E:\DCIM\100GOPRO\G0020097.THM" "E:\DCIM\100GOPRO\GOPR0092.LRV" "E:\DCIM\100GOPRO\GOPR0092.MP4" "E:\DCIM\100GOPRO\GOPR0092.THM" "E:\DCIM\100GOPRO\GOPR0093.LRV" "E:\DCIM\100GOPRO\GOPR0093.MP4" "E:\DCIM\100GOPRO\GOPR0093.THM" "E:\DCIM\100GOPRO\GOPR0094.LRV" "E:\DCIM\100GOPRO\GOPR0094.MP4" "E:\DCIM\100GOPRO\GOPR0094.THM" "E:\DCIM\100GOPRO\GOPR0095.LRV" O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: Verzenden naar Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra button: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU) O9 - Extra 'Tools' menuitem: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.dell.com O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://qtinstall.apple.com/qtactivex/qtplugin.cab O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL O23 - Service: Adobe Active File Monitor V10 (AdobeActiveFileMonitor10.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing) O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe O23 - Service: CyberLink Product - 2013/01/17 07:59:46 (CLKMSVC10_38F51D56) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: CxUtilSvc - Conexant Systems, Inc. - C:\Program Files\Conexant\SA3\CxUtilSvc.exe O23 - Service: Dell Data Vault (DellDataVault) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVault.exe O23 - Service: Dell Data Vault Wizard (DellDataVaultWiz) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe O23 - Service: Dell Update Service (DellUpdate) - Dell Inc. - C:\Program Files (x86)\Dell Update\DellUpService.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: Intel(R) Rapid Storage Technologie (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - C:\Program Files\mcafee\msc\McAWFwk.exe O23 - Service: McAfee Boot Delay Start Service (McBootDelayStartSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.8.203.0\McCSPServiceHost.exe O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing) O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: Intel Security PEF Service (PEFService) - Intel Security, Inc. - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) - Dell Inc. - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.6 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ==== Empty IE Cache ====================== C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\jan\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\jan\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\jan\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\jan\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 2\Cache emptied successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 3\Cache emptied successfully C:\Users\jan\AppData\Local\Google\Chrome\User Data\Profile 4\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=5549 folders=888 1182062435 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\jan\AppData\Local\Temp will be emptied at reboot C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\windows\Temp successfully emptied C:\Users\jan\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 30/05/2016 at 11:54:48,82 ======================