Zoek.exe v5.0.0.1 Updated 27-09-2015 Tool run by Gebruiker on zo 12-02-2017 at 19:51:59,32. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86 Running in: Normal Mode No Internet Access Detected Launched: C:\Users\Gebruiker\Downloads\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 12-2-2017 19:58:56 Zoek.exe System Restore Point Created Successfully. ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Adobe Flash Player 24 ActiveX Adobe Reader XI (11.0.19) - Nederlands Adobe Refresh Manager Atheros Client Installation Program AVG AVG 2016 AVG Protection AVG Web TuneUp AVG Zen Bluetooth Feature Pack 5.0 Dropbox FJ Camera FMW 1 Fujitsu Hotkey Utility Google Chrome Google Update Helper Intel(R) Graphics Media Accelerator Driver Intel(R) Management Engine Components Intel(R) Network Connections Drivers LSI HDA Modem LSI V92 MOH Application Microsoft .NET Framework 4.6.1 Microsoft Office 365 ProPlus - nl-nl Microsoft OneDrive Microsoft Silverlight Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - NLD Office 16 Click-to-Run Extensibility Component Office 16 Click-to-Run Licensing Component Office 16 Click-to-Run Localization Component Qualcomm Gobi 2000 Package for Sierra Realtek High Definition Audio Driver Security Update for Microsoft .NET Framework 4.6.1 (KB3122661) Security Update for Microsoft .NET Framework 4.6.1 (KB3127233) Security Update for Microsoft .NET Framework 4.6.1 (KB3136000v2) Security Update for Microsoft .NET Framework 4.6.1 (KB3142037) Security Update for Microsoft .NET Framework 4.6.1 (KB3143693) Security Update for Microsoft .NET Framework 4.6.1 (KB3164025) Spotify Synaptics Pointing Device Driver Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - NLD TI ConnectT Update for Microsoft .NET Framework 4.6.1 (KB3210136) Visual Studio 2012 x86 Redistributables ==== Running Processes ====================== C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe C:\Windows\System32\spoolsv.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\LSI SoftModem\agrsmsvc.exe C:\Program Files\AVG\Av\avgidsagent.exe C:\Program Files\AVG\Framework\Common\avgsvcx.exe C:\Program Files\AVG\Av\avgcsrvx.exe C:\Program Files\AVG\Av\avgwdsvcx.exe C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files\QUALCOMM\QDLService2k\QDLService2kSierra.exe C:\Program Files\Popcorn Time\Updater.exe C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe C:\Program Files\AVG\Av\avgnsx.exe C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe C:\Program Files\AVG\Av\avgemcx.exe C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe C:\Windows\vsnp2uvc.exe C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\AVG Web TuneUp\vprot.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\AVG\Av\avgui.exe C:\Users\Gebruiker\AppData\Roaming\Spotify\SpotifyWebHelper.exe C:\Users\Gebruiker\AppData\Local\Microsoft\BingSvc\BingSvc.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\AVG\Av\avgrsx.exe C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe C:\Program Files\AVG\Framework\Common\avguix.exe C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe C:\Windows\system32\ctfmon.exe C:\Windows\system32\wuauclt.exe C:\Users\Gebruiker\Downloads\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\system32\conhost.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k bthsvcs C:\Windows\System32\svchost.exe -k utcsvc C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k LocalServicePeerNet ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WtuSystemSupport deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WtuSystemSupport deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater40.3.7 deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater40.3.7 deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "gmsd_nl_146"=- "vProt"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="c:\\program files\\internet explorer\\iexplore.exe" ==== Deleting Files \ Folders ====================== C:\Windows\system32\Tasks\Superclean deleted C:\PROGRA~2\{2192b5c3-9d8d-b549-2192-2b5c39d8d70e} deleted C:\PROGRA~2\4147633956517972972 deleted C:\Program Files\GUT2FE9.tmp deleted C:\Program Files\GUM2FE8.tmp deleted C:\Users\Gebruiker\AppData\Roaming\appdataFr2.bin deleted C:\Users\Gebruiker\AppData\Roaming\appdataFr3.bin deleted C:\PROGRA~2\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat deleted C:\PROGRA~2\AVG Web TuneUp deleted C:\PROGRA~2\AVG Secure Search deleted C:\PROGRA~2\{e491c03e-49d0-d05a-e491-1c03e49d00f9} deleted C:\Windows\Reimage.ini deleted C:\Windows\system32\Tasks\LaunchSignup deleted C:\Windows\system32\GroupPolicy\Machine deleted C:\Windows\system32\GroupPolicy\gpt.ini deleted C:\Users\Gebruiker\Documents\Optimizer Pro deleted "C:\Users\Gebruiker\AppData\Local\{85F55A71-D131-4379-B601-91F70D27C1D6}" deleted "C:\Users\Gebruiker\AppData\Local\{8BA9DD68-DA78-4134-A5E7-708BAB90A03B}" deleted "C:\Users\Gebruiker\AppData\Roaming\SECRV\backup6.bin" deleted "C:\Program Files\AVG Web TuneUp\vprot.exe" deleted "C:\Program Files\AVG Web TuneUp\vprot.exe" deleted "C:\Program Files\AVG Web TuneUp\vprot.exe" deleted "C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\40.3.7\avgdttbx.dll" deleted "C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\40.3.7\avgdttbx.dll" deleted "C:\Users\Gebruiker\AppData\Roaming\SECRV" deleted "C:\Program Files\AVG Web TuneUp" deleted "C:\Program Files\Common Files\AVG Secure Search" deleted "C:\Users\Gebruiker\AppData\Local\AVG Web TuneUp" deleted "C:\Program Files\AVG Web TuneUp" deleted "C:\Program Files\AVG Web TuneUp" deleted "C:\Program Files\Common Files\AVG Secure Search" deleted "C:\Program Files\Common Files\AVG Secure Search\DNTInstaller" deleted "C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\40.3.7" deleted "C:\Users\Gebruiker\AppData\Local\AVG Web TuneUp\Chrome" deleted "C:\Program Files\Common Files\AVG Secure Search\DNTInstaller" deleted "C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\40.3.7" deleted ==== System Specs ====================== Windows: Windows 7 Professional Edition Service Pack 1 (Build 7601) Memory (RAM): 2996 MB CPU Info: Intel(R) Core(TM) i5 CPU M 560 @ 2.67GHz CPU Speed: 2716,5 MHz Sound Card: Luidsprekers (Realtek High Defi | Realtek Digital Output (Realtek | Display Adapters: Intel(R) Graphics Media Accelerator HD | Intel(R) Graphics Media Accelerator HD | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Atheros AR9287 Wireless Network Adapter | Sierra Wireless Gobi 2000 HS-USB Mobile Broadband Device 9001 | Intel(R) 82577LM Gigabit Network Connection CD / DVD Drives: 1x (D: | ) D: Optiarc DVD RW AD-7710H Ports: COM4 | COM1 | COM3 | COM7 | COM8 | COM6 LPT1 Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 149,0GB Hard Disks - Free: C: 83,2GB Manufacturer *: FUJITSU // Phoenix Technologies Ltd. BIOS Info: AT/AT COMPATIBLE | 01/24/11 | FSC - 1200000 Time Zone: West-Europa (standaardtijd) Motherboard *: FUJITSU FJNB210 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: AVG AntiVirus Free Edition On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG AntiVirus Free Edition disabled (Outdated) Firewall: AVG Internet Security disabled Default Browser: Google Chrome 56.0.2924.87 Internet Explorer Version: 11.0.9600.18537 Google Chrome version: 56.0.2924.87 Adobe Reader version: 11.0.19.15 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== 2017-02-05 20:38:22 766562B91B5312A3220142383BFD67CE 20302848 ----a-w- C:\Windows\System32\mshtml.dll 2017-02-05 20:38:20 4739A0A6A9CDFA27594FF7CFB76FCCA5 13653504 ----a-w- C:\Windows\System32\ieframe.dll 2017-02-05 20:38:18 1D72AE3A2525BF5D18D130BFD9CE9BF6 4608000 ----a-w- C:\Windows\System32\jscript9.dll 2017-02-05 20:38:17 F7120D11844E987D63A5E986D9DFE265 2399744 ----a-w- C:\Windows\System32\win32k.sys 2017-02-05 20:38:17 F4F5123B45BFCFD2F035280FDCB5BBBE 2444800 ----a-w- C:\Windows\System32\wininet.dll 2017-02-05 20:38:16 9C11D851979D4E8BF71091580AA073C2 2365440 ----a-w- C:\Windows\System32\msi.dll 2017-02-05 20:38:16 7FFD2F8E8C9AB7ADFB2286B78CDCB031 1176064 ----a-w- C:\Windows\System32\crypt32.dll 2017-02-05 20:38:16 7B125B0729DA7539CC12C3AC9CC1FA1C 534600 ----a-w- C:\Windows\System32\winload.exe 2017-02-05 20:38:15 D3E1C9DF5EB2FCCA4C2E7E47934CB410 1312256 ----a-w- C:\Windows\System32\urlmon.dll 2017-02-05 20:38:15 ABD373E82F6240031C1E631AA20711C7 295936 ----a-w- C:\Windows\System32\bcdedit.exe 2017-02-05 20:38:15 79FED832C161DFA33201352891478D7F 419648 ----a-w- C:\Windows\System32\locale.nls 2017-02-05 20:38:15 654E339AED4903E7FADCB414B187A5CF 346320 ----a-w- C:\Windows\System32\iedkcs32.dll 2017-02-05 20:38:15 1136E4A71849BCFCB057140AD03AAEE6 250600 ----a-w- C:\Windows\System32\clfs.sys 2017-02-05 20:38:14 FA03B5AB1835C5A481EECD9435FD7905 105192 ----a-w- C:\Windows\System32\consent.exe 2017-02-05 20:38:14 D7206CB1BCAD3FFA2C8233517AB70F19 4000488 ----a-w- C:\Windows\System32\ntkrnlpa.exe 2017-02-05 20:38:14 CA53F14726F15B1B50A5197DBEED2FEC 3944680 ----a-w- C:\Windows\System32\ntoskrnl.exe 2017-02-05 20:38:14 40709BC2D46A22EFE393ADB9E3C9BE1B 82432 ----a-w- C:\Windows\System32\bcrypt.dll 2017-02-05 20:38:13 ECB37619C729F6BCD19216CDEDDB1E38 1310528 ----a-w- C:\Windows\System32\ntdll.dll 2017-02-05 20:38:13 954974105C84D78C52595E2D4C02419B 179200 ----a-w- C:\Windows\System32\wintrust.dll 2017-02-05 20:38:13 91D4629DA1EBD286D8A7C24FBC5DC641 811520 ----a-w- C:\Windows\System32\user32.dll 2017-02-05 20:38:13 3C48DAA0A29DCC3150CE6ABA291DB511 69120 ----a-w- C:\Windows\System32\nlsbres.dll 2017-02-05 20:38:13 25EAA581087B7D95EB497678E2D4B0B9 627712 ----a-w- C:\Windows\System32\usp10.dll 2017-02-05 20:38:13 0E6A08BBAA27D52F77D5E502B13FDBFD 84992 ----a-w- C:\Windows\System32\hlink.dll 2017-02-05 20:38:12 A6EA4FEF58E880BAAF35BEE12DEEAA78 498688 ----a-w- C:\Windows\System32\vbscript.dll 2017-02-05 20:38:12 90CDD9EF6B0CD5BF52FE4DD0B3154002 1155072 ----a-w- C:\Windows\System32\mshtmlmedia.dll 2017-02-05 20:38:12 8409C0825AFC0ECE051720D8DD318E86 306688 ----a-w- C:\Windows\System32\gdi32.dll 2017-02-05 20:38:12 0EBBF3AA0BE120BF981CB8FB53679D5F 663552 ----a-w- C:\Windows\System32\jscript.dll 2017-02-05 20:38:11 4FF053435E24CC845D5A4182A013574C 2287616 ----a-w- C:\Windows\System32\iertutil.dll 2017-02-05 20:38:11 16C100872F41862877C115828B0D1569 2055680 ----a-w- C:\Windows\System32\inetcpl.cpl 2017-02-05 20:38:10 A5A915A7AADFB13BE900A2B25AD80FE7 476160 ----a-w- C:\Windows\System32\ieui.dll 2017-02-05 20:38:10 84CCDA182B5C8E8A05757DF1DD40A844 710144 ----a-w- C:\Windows\System32\ieapfltr.dll 2017-02-05 20:38:10 74DD581657824B8F5907C114A0BC07A2 693248 ----a-w- C:\Windows\System32\msfeeds.dll 2017-02-05 20:38:10 4315D6ECAE85024A0567DF2CB253B7B0 73216 ----a-w- C:\Windows\System32\msiexec.exe 2017-02-05 20:38:09 E5272D4E58EBABA7F269C38255CDF8B2 341504 ----a-w- C:\Windows\System32\html.iec 2017-02-05 20:38:09 217E1BBAB85862194CA05333949CCA85 1806848 ----a-w- C:\Windows\System32\authui.dll 2017-02-05 20:38:07 848F6B9F171037579C9186A52AA095DB 230400 ----a-w- C:\Windows\System32\webcheck.dll 2017-02-05 20:38:07 0632439227EE10B807054F234C85FE8D 337408 ----a-w- C:\Windows\System32\msihnd.dll 2017-02-05 20:38:06 E20E379A69AE9C9F37F6A996B4BE0282 620032 ----a-w- C:\Windows\System32\jscript9diag.dll 2017-02-05 20:38:06 65AD1C12F1AD29EF56976E2E1D9CF5A0 279040 ----a-w- C:\Windows\System32\dxtrans.dll 2017-02-05 20:38:06 53DDDFB553F4FA2D7E463F7FAF7E2F4A 69632 ----a-w- C:\Windows\System32\smss.exe 2017-02-05 20:38:06 0135906B2D02978D8234A6289B756324 76288 ----a-w- C:\Windows\System32\mshtmled.dll 2017-02-05 20:38:05 FF0D7F6E62B3508EDA1AFF16DEFEC3A6 130048 ----a-w- C:\Windows\System32\occache.dll 2017-02-05 20:38:05 A473B16C3C1D028EFC021F0937EC1CD0 168960 ----a-w- C:\Windows\System32\msrating.dll 2017-02-05 20:38:05 904BD1B818613AF64B1197694CFC4FBA 655360 ----a-w- C:\Windows\System32\rpcrt4.dll 2017-02-05 20:38:05 855F1BDDCD7541F2CDBB49608D2C55D8 644096 ----a-w- C:\Windows\System32\advapi32.dll 2017-02-05 20:38:05 85577FA0AFC3B602509266DFB7250F41 416256 ----a-w- C:\Windows\System32\dxtmsft.dll 2017-02-05 20:38:05 3404387E4BEDE52FCA29D9051BB9FDAD 553472 ----a-w- C:\Windows\System32\kerberos.dll 2017-02-05 20:38:05 23ADEE784D374D1C7EAD1A9862FD81B7 47104 ----a-w- C:\Windows\System32\jsproxy.dll 2017-02-05 20:38:05 1062685B8AA38A1BE8B380375F9D2E5D 667648 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2017-02-05 20:38:04 DEA1197ABD95F2283D40DEFD7EAAB1A5 99840 ----a-w- C:\Windows\System32\sspicli.dll 2017-02-05 20:38:04 D86BC6B9D147739E563232BCF55BACD8 689664 ----a-w- C:\Windows\System32\ie4uinit.exe 2017-02-05 20:38:04 C711480E905CE4FC424ACB606CE93DD5 172032 ----a-w- C:\Windows\System32\wdigest.dll 2017-02-05 20:38:04 BD297D4B2877E52A919C0DDDB68AE114 62464 ----a-w- C:\Windows\System32\iesetup.dll 2017-02-05 20:38:04 B60005DA58BF35F6F80699DB387469EA 30720 ----a-w- C:\Windows\System32\iernonce.dll 2017-02-05 20:38:04 B2A5AE6CBC95555995241DB8C6EF902D 91136 ----a-w- C:\Windows\System32\inseng.dll 2017-02-05 20:38:04 B0C548CFB00938275C28F0CECA0AFD29 400896 ----a-w- C:\Windows\System32\srcore.dll 2017-02-05 20:38:04 A683DF04FC8FC60EC2DBB0CC3D1B66B3 60416 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll 2017-02-05 20:38:04 93EE0D8A4CC7D32F70C6F1E216ED3771 1062912 ----a-w- C:\Windows\System32\lsasrv.dll 2017-02-05 20:38:04 86CFCBE4754A0258E676005006CBE80D 223232 ----a-w- C:\Windows\System32\ncrypt.dll 2017-02-05 20:38:04 730E48FA7A06F226335391855A197EE5 141312 ----a-w- C:\Windows\System32\rpchttp.dll 2017-02-05 20:38:04 6FB95020712772F0BA8BF4A8C5A791DC 64000 ----a-w- C:\Windows\System32\MshtmlDac.dll 2017-02-05 20:38:04 5EDA6BA186D1B05D5EF4E96F81F3F3EF 47104 ----a-w- C:\Windows\System32\appinfo.dll 2017-02-05 20:38:04 5D44C4AACDE24A1537FDF7896B5FC9E8 115712 ----a-w- C:\Windows\System32\ieUnatt.exe 2017-02-05 20:38:04 540184C88B69473A5478DB126EBBB99D 47616 ----a-w- C:\Windows\System32\ieetwproxystub.dll 2017-02-05 20:38:04 45AB35D5DFDC51DD9F107B455A11E054 261120 ----a-w- C:\Windows\System32\msv1_0.dll 2017-02-05 20:38:04 348B3A4DD922F590EB39DB231F7AEE4D 145920 ----a-w- C:\Windows\System32\cryptsvc.dll 2017-02-05 20:38:04 30057D5C8C681E8240EC4E2936944310 254464 ----a-w- C:\Windows\System32\schannel.dll 2017-02-05 20:38:04 25820DDAF94FE89A211AA5BB74AF1F7E 106496 ----a-w- C:\Windows\System32\cryptnet.dll 2017-02-05 20:38:03 FE8297C0E2AF69BF44E0C3E568B6C558 65536 ----a-w- C:\Windows\System32\TSpkg.dll 2017-02-05 20:38:03 ED9CA4A4F08C2EF08495E7236754DEA8 22016 ----a-w- C:\Windows\System32\secur32.dll 2017-02-05 20:38:03 E10F22695EAC1689DED6A9A45D6C352A 29696 ----a-w- C:\Windows\System32\appidsvc.dll 2017-02-05 20:38:03 C653E9BFB214E43C537D6AD1D4F567DD 17408 ----a-w- C:\Windows\System32\credssp.dll 2017-02-05 20:38:03 BF674CBFEBA24EE534F99710C71A8C0C 50176 ----a-w- C:\Windows\System32\setbcdlocale.dll 2017-02-05 20:38:03 B0FFC9181E27904FD5257D2FC7BDC2E8 50688 ----a-w- C:\Windows\System32\appidapi.dll 2017-02-05 20:38:03 9A0AEEBDCF4FE345BEE92E97995076C5 97792 ----a-w- C:\Windows\System32\appidpolicyconverter.exe 2017-02-05 20:38:03 8FE5B4E4EE5B43C0F0EF6B40F28C407E 16896 ----a-w- C:\Windows\System32\appidcertstorecheck.exe 2017-02-05 20:38:03 8176694E51A1FFBF244F7A753B289698 38912 ----a-w- C:\Windows\System32\csrsrv.dll 2017-02-05 20:38:03 658011BB05284DD95B51F1A4565A9B5A 43008 ----a-w- C:\Windows\System32\srclient.dll 2017-02-05 20:38:03 59987969BB4554C41AAC65CBBF18E30B 15872 ----a-w- C:\Windows\System32\sspisrv.dll 2017-02-05 20:38:03 58F8F4FDE2F39B5B246F4C2C51A017A1 50176 ----a-w- C:\Windows\System32\auditpol.exe 2017-02-05 20:38:03 527EC0F68D6C6E96BEC6B40ABDA0BE45 102912 ----a-w- C:\Windows\System32\ieetwcollector.exe 2017-02-05 20:38:03 462F7F23454E10BB6A7B61CB6BA9ADF8 262656 ----a-w- C:\Windows\System32\rstrui.exe 2017-02-05 20:38:03 345C404EB5BC39CBFED3E76F1198FA94 36352 ----a-w- C:\Windows\System32\cryptbase.dll 2017-02-05 20:38:03 1AE28C50370CA5B42F5563C9927CFC56 22016 ----a-w- C:\Windows\System32\lsass.exe 2017-02-05 20:38:03 0FEB30B2DC922BF3080FFD92DA4D2F7B 6656 ----a-w- C:\Windows\System32\apisetschema.dll 2017-02-05 20:38:02 F944208F70D6F30FEFC5FA115D1B643E 2724864 ----a-w- C:\Windows\System32\mshtml.tlb 2017-02-05 20:38:02 A3D5E866C7CD38AF97DD54304674FDDB 2048 ----a-w- C:\Windows\System32\tzres.dll 2017-02-05 20:38:02 8947FD854A9AE8B05AD6CD54D078C077 690688 ----a-w- C:\Windows\System32\adtschema.dll 2017-02-05 20:38:02 5635F4EC6BC7172510A4DD46B05A7677 146432 ----a-w- C:\Windows\System32\msaudite.dll 2017-02-05 20:38:02 49AA29F3997392CF627767B0AD9D9CE9 25088 ----a-w- C:\Windows\System32\msimsg.dll 2017-02-05 20:38:01 82C5C85D51803C5720FAEAA36B7C1B9A 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll 2017-02-05 20:38:01 499941B763EA89164C47CBB5A1901D09 60416 ----a-w- C:\Windows\System32\msobjs.dll ====== C:\Windows\system32\drivers ===== 2017-02-05 20:38:16 7F7D4B16389CEF932950F6B2604D2601 373896 ----a-w- C:\Windows\System32\drivers\cng.sys 2017-02-05 20:38:13 FC4BC992427786D60B83C9BF50D9BA7D 67304 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2017-02-05 20:38:13 A769EEAA14D99A28E3B665F55E5A4647 137960 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2017-02-05 20:38:06 CB1ED04050DC37287794AFF60000D321 124416 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2017-02-05 20:38:04 BF082EC2C3793199A6D695CA9066E79C 226304 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2017-02-05 20:38:03 BC1481234430D3BE6C64CE022CECDC06 98304 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2017-02-05 20:38:03 873F0162D10893E3DF34FA2AC604E6EA 50688 ----a-w- C:\Windows\System32\drivers\appid.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2017-02-06 13:48:19 -------- d-----w- C:\Program Files\trend micro 2017-02-05 20:59:47 -------- d-----w- C:\Program Files\Common Files\DESIGNER ======= C: ===== ====== C:\Users\Gebruiker\AppData\Roaming ====== 2017-02-10 19:09:16 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox ====== C:\Users\Gebruiker ====== 2017-02-06 13:46:55 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Gebruiker\Desktop\RSIT.exe ====== C: exe-files == 2017-02-12 18:51:37 3FDCB59A1F23F137E88833B306F03195 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1058695312-2763810296-1595327000-1000\$IFVFGAH.exe 2017-02-12 18:47:32 C5E063623FD3F511E659E84408D0BE37 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1058695312-2763810296-1595327000-1000\$IG2JHEG.exe 2017-02-12 18:47:21 6D6D795AD4293B44F2F6B124334F2386 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1058695312-2763810296-1595327000-1000\$IN7XUWP.exe 2017-02-12 18:47:18 3D5C49BBD1DC3D08B891B1C11B5AFB0E 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1058695312-2763810296-1595327000-1000\$ISPC8VN.exe 2017-02-12 18:47:02 FC6D7AEB3062530C0CB6525C2F87EB78 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1058695312-2763810296-1595327000-1000\$I86MLS5.exe 2017-02-12 18:46:18 BBBF86549ED7D96E75D620D58A286F52 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1058695312-2763810296-1595327000-1000\$ISLEY5G.exe 2017-02-11 11:01:26 BD2A03164AD3557D3DFC8B7697B2F0F3 44364392 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\56.0.2924.87\56.0.2924.87_chrome_installer.exe 2017-02-10 19:23:34 ED37FBD7AE8AF979AAFE481786B0788B 6345824 ----a-w- C:\ProgramData\Avg\Setup\av\avgmfapx.exe 2017-02-10 19:21:52 F0A23BCCC086FA630BB26EA62090832E 18904 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\QtWebEngineProcess.exe 2017-02-10 19:18:31 4EF9C73D95B62F0AC5E73FB95FB195DC 174072 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe 2017-02-10 19:18:29 B6086890DCC120E239D0D69612EA1789 40256 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\driver_x86\dbxsvc.exe 2017-02-10 19:18:29 7E6E75253B906D864CB74F7AE04F28E2 26220296 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\Dropbox.exe 2017-02-10 19:18:28 2C5A991F0320D95BAC80D0C31F43A79E 46400 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\driver_amd64\dbxsvc.exe 2017-02-10 19:03:39 CC7AA7B42CF418FC3D926913490048F8 24064 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1058695312-2763810296-1595327000-1000\$RFVFGAH.exe 2017-02-10 19:03:06 E40D9E3520BDE58AE0DDC95BAC5FE4FB 2326520 ----a-w- C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\SwReporter\16.91.1\software_reporter_tool.exe 2017-02-10 18:58:58 013237D28593A09BA95E94A23517F38B 12788328 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\56.0.2924.87\56.0.2924.87_55.0.2883.87_chrome_updater.exe 2017-02-10 18:56:37 7145DF53F5C46ABCEA75C165A7CFAB83 75650952 ----a-w- C:\Users\Gebruiker\AppData\Local\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\19.4.13\DropboxClient_19.4.13.exe 2017-02-10 18:56:00 6FD08DF5100B585B4034817F130049D8 22822984 ----a-w- C:\Windows\Temp\{E7C18CA2-B5F6-4F8A-8E15-FD01AC1D67A7}.exe 2017-02-07 04:50:56 4EF9C73D95B62F0AC5E73FB95FB195DC 174072 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\DropboxUninstaller.exe 2017-02-07 04:50:20 7E6E75253B906D864CB74F7AE04F28E2 26220296 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\Dropbox.exe 2017-02-07 04:38:06 B6086890DCC120E239D0D69612EA1789 40256 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\driver_x86\dbxsvc.exe 2017-02-07 04:38:06 2C5A991F0320D95BAC80D0C31F43A79E 46400 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\driver_amd64\dbxsvc.exe 2017-02-06 13:48:20 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Gebruiker.exe 2017-02-06 13:46:55 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Gebruiker\Desktop\RSIT.exe 2017-02-05 20:38:16 7B125B0729DA7539CC12C3AC9CC1FA1C 534600 ----a-w- C:\Windows\System32\winload.exe 2017-02-05 20:38:16 7B125B0729DA7539CC12C3AC9CC1FA1C 534600 ----a-w- C:\Windows\System32\Boot\winload.exe 2017-02-05 20:38:15 EE79D654A04333F566DF07EBDE217928 815312 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2017-02-05 20:38:15 ABD373E82F6240031C1E631AA20711C7 295936 ----a-w- C:\Windows\System32\bcdedit.exe 2017-02-05 20:38:14 FA03B5AB1835C5A481EECD9435FD7905 105192 ----a-w- C:\Windows\System32\consent.exe 2017-02-05 20:38:14 D7206CB1BCAD3FFA2C8233517AB70F19 4000488 ----a-w- C:\Windows\System32\ntkrnlpa.exe 2017-02-05 20:38:14 CA53F14726F15B1B50A5197DBEED2FEC 3944680 ----a-w- C:\Windows\System32\ntoskrnl.exe 2017-02-05 20:38:10 4315D6ECAE85024A0567DF2CB253B7B0 73216 ----a-w- C:\Windows\System32\msiexec.exe 2017-02-05 20:38:06 53DDDFB553F4FA2D7E463F7FAF7E2F4A 69632 ----a-w- C:\Windows\System32\smss.exe 2017-02-05 20:38:05 1062685B8AA38A1BE8B380375F9D2E5D 667648 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2017-02-05 20:38:04 D86BC6B9D147739E563232BCF55BACD8 689664 ----a-w- C:\Windows\System32\ie4uinit.exe 2017-02-05 20:38:04 5D44C4AACDE24A1537FDF7896B5FC9E8 115712 ----a-w- C:\Windows\System32\ieUnatt.exe 2017-02-05 20:38:04 558AF23CDA512F5928796086EEEFD622 475648 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2017-02-05 20:38:03 AE0230B917CD23973AE087CBDB7AD40A 40448 ----a-w- C:\Windows\servicing\GC32\tzupd.exe 2017-02-05 20:38:03 9A0AEEBDCF4FE345BEE92E97995076C5 97792 ----a-w- C:\Windows\System32\appidpolicyconverter.exe 2017-02-05 20:38:03 8FE5B4E4EE5B43C0F0EF6B40F28C407E 16896 ----a-w- C:\Windows\System32\appidcertstorecheck.exe 2017-02-05 20:38:03 58F8F4FDE2F39B5B246F4C2C51A017A1 50176 ----a-w- C:\Windows\System32\auditpol.exe 2017-02-05 20:38:03 527EC0F68D6C6E96BEC6B40ABDA0BE45 102912 ----a-w- C:\Windows\System32\ieetwcollector.exe 2017-02-05 20:38:03 462F7F23454E10BB6A7B61CB6BA9ADF8 262656 ----a-w- C:\Windows\System32\rstrui.exe 2017-02-05 20:38:03 44B4892B3208AA735E68F414CADA3EDF 221184 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2017-02-05 20:38:03 1AE28C50370CA5B42F5563C9927CFC56 22016 ----a-w- C:\Windows\System32\lsass.exe 2017-02-05 20:31:15 62014E15B08D9F260B95307B1BB89A92 13983608 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\55.0.2883.87\55.0.2883.87_54.0.2840.99_chrome_updater.exe 2017-02-05 20:19:55 5E7ADCF81096860FED5AB569A8ADE3AB 96920 ----atw- C:\Program Files\Google\Update\1.3.32.7\GoogleUpdateOnDemand.exe 2017-02-05 20:19:55 57769E78CCB9F3DE92B507B72D49AF99 96920 ----atw- C:\Program Files\Google\Update\1.3.32.7\GoogleUpdateBroker.exe 2017-02-05 20:19:55 33DF23DDDE222C6270C99885D7A70DE2 96920 ----atw- C:\Program Files\Google\Update\1.3.32.7\GoogleUpdateWebPlugin.exe 2017-02-05 20:19:49 FCAEDFFAA41EA74BA53FDADABBB8B21A 1129376 ----a-w- C:\Program Files\Google\Update\1.3.32.7\GoogleUpdateSetup.exe 2017-02-05 20:15:30 FACC7DC5EEF8AF0D969BC2481AAA3EFC 174232 ----atw- C:\Program Files\Google\Update\1.3.32.7\GoogleUpdateComRegisterShell64.exe 2017-02-05 20:15:19 B5C7D56B6DB76C66E24B4B735BB66509 366232 ----atw- C:\Program Files\Google\Update\1.3.32.7\GoogleCrashHandler64.exe 2017-02-05 20:14:58 FE40EC349D80C0ED24A5808DCFE9A0D2 288920 ----atw- C:\Program Files\Google\Update\1.3.32.7\GoogleCrashHandler.exe 2017-02-05 20:14:26 FE9E6388A039441098EB09C070EA5049 601752 ----atw- C:\Program Files\Google\Update\1.3.32.7\GoogleUpdateCore.exe 2017-02-05 20:09:55 2D8BBF6C7241AAD9EDE7708EBB7B43A4 153752 ----atw- C:\Program Files\Google\Update\1.3.32.7\GoogleUpdate.exe 2017-02-05 20:06:48 FCAEDFFAA41EA74BA53FDADABBB8B21A 1129376 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.32.7\GoogleUpdateSetup.exe 2017-02-05 20:03:58 A96C9FCD81BA21171324E9F6EB724D31 500704 ----a-w- C:\Program Files\AVG\Av\Notification\emupdate.exe === C: other files == 2017-02-10 19:18:29 DD2DBF8E5F858A7622BAA7F9B3A1C18B 35440 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\driver_x86\dbx-stable.sys 2017-02-10 19:18:29 DD2DBF8E5F858A7622BAA7F9B3A1C18B 35440 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\driver_x86\dbx-dev.sys 2017-02-10 19:18:28 DD2DBF8E5F858A7622BAA7F9B3A1C18B 35440 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\driver_x86\dbx-canary.sys 2017-02-10 19:18:28 BAB0A5FC7D43463155ADFE6555D893CB 46192 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\driver_amd64\dbx-stable.sys 2017-02-10 19:18:28 BAB0A5FC7D43463155ADFE6555D893CB 46192 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\driver_amd64\dbx-dev.sys 2017-02-10 19:18:28 BAB0A5FC7D43463155ADFE6555D893CB 46192 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\bin\driver_amd64\dbx-canary.sys 2017-02-07 04:38:06 DD2DBF8E5F858A7622BAA7F9B3A1C18B 35440 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\driver_x86\dbx-stable.sys 2017-02-07 04:38:06 DD2DBF8E5F858A7622BAA7F9B3A1C18B 35440 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\driver_x86\dbx-dev.sys 2017-02-07 04:38:06 DD2DBF8E5F858A7622BAA7F9B3A1C18B 35440 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\driver_x86\dbx-canary.sys 2017-02-07 04:38:06 BAB0A5FC7D43463155ADFE6555D893CB 46192 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\driver_amd64\dbx-stable.sys 2017-02-07 04:38:06 BAB0A5FC7D43463155ADFE6555D893CB 46192 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\driver_amd64\dbx-dev.sys 2017-02-07 04:38:06 BAB0A5FC7D43463155ADFE6555D893CB 46192 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Dropbox\Client_19.4.13\driver_amd64\dbx-canary.sys 2017-02-05 20:38:17 F7120D11844E987D63A5E986D9DFE265 2399744 ----a-w- C:\Windows\System32\win32k.sys 2017-02-05 20:38:16 7F7D4B16389CEF932950F6B2604D2601 373896 ----a-w- C:\Windows\System32\drivers\cng.sys 2017-02-05 20:38:15 1136E4A71849BCFCB057140AD03AAEE6 250600 ----a-w- C:\Windows\System32\clfs.sys 2017-02-05 20:38:13 FC4BC992427786D60B83C9BF50D9BA7D 67304 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2017-02-05 20:38:13 A769EEAA14D99A28E3B665F55E5A4647 137960 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2017-02-05 20:38:06 CB1ED04050DC37287794AFF60000D321 124416 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2017-02-05 20:38:04 BF082EC2C3793199A6D695CA9066E79C 226304 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys 2017-02-05 20:38:03 BC1481234430D3BE6C64CE022CECDC06 98304 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys 2017-02-05 20:38:03 873F0162D10893E3DF34FA2AC604E6EA 50688 ----a-w- C:\Windows\System32\drivers\appid.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1058695312-2763810296-1595327000-1000\Software\Microsoft\Windows\CurrentVersion\Run] "LtMoh"="C:\Program Files\ltmoh\Ltmoh.exe" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "GoogleChromeAutoLaunch_5FEA36A39174F28C3634662B2D565CAA"="C:\Program Files\Google\Chrome\Application\chrome.exe --no-startup-window" "Spotify Web Helper"="C:\Users\Gebruiker\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "BingSvc"="C:\Users\Gebruiker\AppData\Local\Microsoft\BingSvc\BingSvc.exe" "Dropbox Update"="C:\Users\Gebruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c" "Spotify"="C:\Users\Gebruiker\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-21-1058695312-2763810296-1595327000-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Application Restart #2"="C:\Program Files\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session http://www.yoursites123.com/?type=sc&ts=1449846857&z=dcfb5c470542315bd276172g8z1zat3b9z7qbb6w4b&from=ient07021&uid=ST9160314AS_6VCP53C5XXXX6VCP53C5" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CSRSkype"="C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe" "ConMgr"="C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe" "snp2uvc"="C:\Windows\vsnp2uvc.exe" "IndicatorUtility"="C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "IMSS"="C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s" "AvgUi"="C:\Program Files\AVG\Framework\Common\avguirnx.exe /lps=fmw" "AVG_UI"="C:\Program Files\AVG\Framework\Common\avguirnx.exe /lps=av" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " "FUJ02B1_Apps"=""%PROGRAMFILES%\Fujitsu\FUJ02B1\CheckBatteryPack.exe" -ViewTarget -langid 0x411" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "LtMoh"="C:\Program Files\ltmoh\Ltmoh.exe" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "GoogleChromeAutoLaunch_5FEA36A39174F28C3634662B2D565CAA"="C:\Program Files\Google\Chrome\Application\chrome.exe --no-startup-window" "Spotify Web Helper"="C:\Users\Gebruiker\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "BingSvc"="C:\Users\Gebruiker\AppData\Local\Microsoft\BingSvc\BingSvc.exe" "Dropbox Update"="C:\Users\Gebruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c" "Spotify"="C:\Users\Gebruiker\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Application Restart #2"="C:\Program Files\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session http://www.yoursites123.com/?type=sc&ts=1449846857&z=dcfb5c470542315bd276172g8z1zat3b9z7qbb6w4b&from=ient07021&uid=ST9160314AS_6VCP53C5XXXX6VCP53C5" ==== Startup Folders ====================== 2017-02-10 19:10:51 1151 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2016-12-02 10:57:14 1251 ----a-w- C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verzenden naar OneNote.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [05-02-2017 20:58] C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1058695312-2763810296-1595327000-1000Core.job --a------ C:\Users\Gebruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe [01-12-2016 10:01] C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1058695312-2763810296-1595327000-1000UA.job --a------ C:\Users\Gebruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe [01-12-2016 10:01] C:\Windows\tasks\Superclean.job --a------ C:\programdata\2192b5c3-9d8d-b549-2192-2b5c39d8d70e\hqghumeaylnlf.exe [] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Acrobat Update Task" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\AVG EUpdate Task" [avgsetupx.exe] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\DropboxUpdateTaskUserS-1-5-21-1058695312-2763810296-1595327000-1000Core" [C:\Users\Gebruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe] "C:\Windows\system32\tasks\DropboxUpdateTaskUserS-1-5-21-1058695312-2763810296-1595327000-1000UA" [C:\Users\Gebruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{08FC5350-C3DB-4A9D-9B10-D55C51CF0C99}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions chfdnecihphmhljaaejmgoiahnihplgn - No path found[] fkkcgfbgohboipdhliafmacjnhjbhmim - No path found[] Google Slides - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo AVG Web TuneUp - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chfdnecihphmhljaaejmgoiahnihplgn Google Search - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Duplicate Tab - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jecgbfoconhopjngaaijjgffhokohlac Google Wallet - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Chrome Media Router - Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm ==== Chromium Fix ====================== C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_static.coupontime00.coupontime.co_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_static.coupontime00.coupontime.co_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_static.donation-tools.org_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_static.donation-tools.org_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_c.betrad.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_c.betrad.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_pstatic.davebestdeals.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\https_pstatic.davebestdeals.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_pstatic.davebestdeals.com_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\http_pstatic.davebestdeals.com_0.localstorage-journal deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chfdnecihphmhljaaejmgoiahnihplgn deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage deleted successfully C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131253393154037084&GUID=037FCCAA-281B-4B40-90AA-2A5498D60259" "Search Page"="http://search.delta-homes.com/web/?type=ds&ts=1432838129&z=a15425d0d154395bcc37122gezfcao0b5c2b0e4q6b&from=wpm05283&uid=ST9160314AS_6VCP53C5XXXX6VCP53C5&q={searchTerms}" "Default_Page_URL"="http://www.istartsurf.com/?type=hppp&ts=1437747504&from=xtab&uid=ST9160314AS_6VCP53C5XXXX6VCP53C5" "Default_Search_URL"="http://search.delta-homes.com/web/?type=ds&ts=1432838129&z=a15425d0d154395bcc37122gezfcao0b5c2b0e4q6b&from=wpm05283&uid=ST9160314AS_6VCP53C5XXXX6VCP53C5&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.yoursites123.com/web/?type=ds&ts=1449846857&z=dcfb5c470542315bd276172g8z1zat3b9z7qbb6w4b&from=ient07021&uid=ST9160314AS_6VCP53C5XXXX6VCP53C5&q={searchTerms}" "Default_Page_URL"="http://www.istartsurf.com/?type=hppp&ts=1437747504&from=xtab&uid=ST9160314AS_6VCP53C5XXXX6VCP53C5" "Search Page"="http://www.yoursites123.com/web/?type=ds&ts=1449846857&z=dcfb5c470542315bd276172g8z1zat3b9z7qbb6w4b&from=ient07021&uid=ST9160314AS_6VCP53C5XXXX6VCP53C5&q={searchTerms}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131253393154037084&GUID=037FCCAA-281B-4B40-90AA-2A5498D60259" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully HKEY_CURRENT_USER\Software\Policies\Google deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully ==== HijackThis Entries ====================== O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL O4 - HKLM\..\Run: [CSRSkype] C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe O4 - HKLM\..\Run: [ConMgr] "C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe" O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe O4 - HKLM\..\Run: [IndicatorUtility] C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [IMSS] "C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [AvgUi] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=fmw O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=av O4 - HKLM\..\Run: [FUJ02B1_Apps] "%PROGRAMFILES%\Fujitsu\FUJ02B1\CheckBatteryPack.exe" -ViewTarget -langid 0x411 O4 - HKCU\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_5FEA36A39174F28C3634662B2D565CAA] "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Gebruiker\AppData\Roaming\Spotify\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [BingSvc] C:\Users\Gebruiker\AppData\Local\Microsoft\BingSvc\BingSvc.exe O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Gebruiker\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c O4 - HKCU\..\Run: [Spotify] "C:\Users\Gebruiker\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized O4 - HKCU\..\RunOnce: [Application Restart #2] C:\Program Files\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session http://www.yoursites123.com/?type=sc&ts=1449846857&z=dcfb5c470542315bd276172g8z1zat3b9z7qbb6w4b&from=ient07021&uid=ST9160314AS_6VCP53C5XXXX6VCP53C5 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = Gebruiker\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Startup: Verzenden naar OneNote.lnk = C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O17 - HKLM\System\CCS\Services\Tcpip\..\{4D30DDB0-171B-401B-B411-4946482FF1C9}: NameServer = 199.203.131.151 82.163.143.181 O17 - HKLM\System\CCS\Services\Tcpip\..\{7A4CF259-3D72-440A-96DC-665D14B261A4}: NameServer = 199.203.131.151 82.163.143.181 O17 - HKLM\System\CCS\Services\Tcpip\..\{F72C5D43-9D52-4BCC-B5FE-65EBFE057690}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 199.203.131.151 82.163.143.181 O17 - HKLM\System\CS1\Services\Tcpip\..\{4D30DDB0-171B-401B-B411-4946482FF1C9}: NameServer = 199.203.131.151 82.163.143.181 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 199.203.131.151 82.163.143.181 O17 - HKLM\System\CS2\Services\Tcpip\..\{4D30DDB0-171B-401B-B411-4946482FF1C9}: NameServer = 199.203.131.151 82.163.143.181 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 199.203.131.151 82.163.143.181 O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgamps.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgidsagent.exe O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Framework\Common\avgsvcx.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgwdsvcx.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Qualcomm Gobi 2000 Download Service (Sierra) (QDLService2kSierra) - QUALCOMM, Inc. - C:\Program Files\QUALCOMM\QDLService2k\QDLService2kSierra.exe O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: Update service - Popcorn Time - C:\Program Files\Popcorn Time\Updater.exe O23 - Service: Ondersteuning Bluetooth-functies (VFPRadioSupportService) - CSR, plc - C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe ==== Empty IE Cache ====================== C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=621 folders=157 184647642 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Gebruiker\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on zo 12-02-2017 at 20:21:44,00 ======================