
Zoek.exe v5.0.0.0 Updated 19-February-2014
Microsoft Windows 7 Home Premium  6.1.7600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Johan & Petra\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-02-20-153901.log	58249 bytes
C:\zoek-results2014-02-22-204856.log	345 bytes

==== Empty Folders Check ======================

C:\Program Files\Windows Live deleted successfully

==== Running Processes ======================

C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\SysWOW64\ezSharedSvcHost.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\Polar\Daemon\polard.exe
c:\postgreSQL\bin\pg_ctl.exe
c:\postgreSQL\bin\postgres.exe
c:\postgreSQL\bin\postgres.exe
c:\postgreSQL\bin\postgres.exe
c:\postgreSQL\bin\postgres.exe
c:\postgreSQL\bin\postgres.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\Polar\WebSync\WebSync.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Users\Johan & Petra\Downloads\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== Deleting Files \ Folders ======================

C:\Windows\tasks\APSnotifierCA.job not found
C:\Program Files (x86)\AnyProtectEx not found
C:\Program Files (x86)\IlemiTVApp.com not found
C:\Program Files\IB Updater not found
C:\Windows\Sysnative\Tasks\SaveSense deleted
C:\Windows\SysNative\tasks\APSnotifierCA deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) (Build 7600)
Memory (RAM): 5942 MB
CPU Info: Intel(R) Core(TM) i5 CPU       M 460  @ 2.53GHz
CPU Speed: 2585,9 MHz
Sound Card: Luidsprekers en koptelefoons (I | 
Onafhankelijke koptelefoons (ID | 
Display Adapters: Intel(R) HD Graphics | Intel(R) HD Graphics | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm | 
Screen Resolution: 1600 X 900 - 32 bit
Network: Network Present
Network Adapters: Broadcom 4313 (802.11b/g/n)
CD / DVD Drives: 1x (E: | ) E: hp      CDDVDW TS-L633N
Ports: COM6 | COM7 | COM10 | COM11 | COM12 | COM13 | COM14 | COM20 | COM21 | COM22 | COM40 LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  443,1GB | D:  22,4GB | Q:  0,0MB
Hard Disks - Free: C:  369,3GB | D:  3,3GB | Q:  0,0MB
Manufacturer *: Hewlett-Packard
BIOS Info: AT/AT COMPATIBLE | 08/05/10 | HPQOEM - 1
Time Zone: Romance (standaardtijd)
Motherboard *: Hewlett-Packard 149C
Country: België 
Language: NLB 

==== System Specs (Software) ======================

Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: avast! Antivirus disabled (Outdated)
Default Browser: Google Chrome	33.0.1750.117
Internet Explorer version: 8.0.7600.16385 
Google Chrome version: 33.0.1750.117
Adobe Reader version: 9.5.0.270
Sun Java version: 1.7.0_51 (64-bit) 
Flash Player version: 12.0.0.70
Shockwave Player version: 11.5.7r609

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-02-16 22:14:18	0245D0889C3443F5DC9194558583FE59	43152	----a-w-	C:\Windows\avastSS.scr
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-02-20 18:57:43	9F2AEF6DC4E11307B065FD38D1DF00B8	312744	----a-w-	C:\Windows\Sysnative\javaws.exe
2014-02-20 18:57:35	1D1761BC856B17BFC5569D228F4FCD1D	108968	----a-w-	C:\Windows\Sysnative\WindowsAccessBridge-64.dll
2014-02-20 18:57:34	AA2F3D9F789F071F90B398CC7D40330E	189352	----a-w-	C:\Windows\Sysnative\java.exe
2014-02-20 18:57:34	83EEFE83438AEF9FBB7613A106C5E5BB	189352	----a-w-	C:\Windows\Sysnative\javaw.exe
2014-02-16 22:14:22	28192A2A37F52EB97EBE14DEE0F2513B	334136	----a-w-	C:\Windows\Sysnative\aswBoot.exe
====== C:\Windows\Sysnative\drivers =====
2014-02-16 22:14:26	FD3EA14ADF6216BDF4030DB2EFD43D96	80184	----a-w-	C:\Windows\Sysnative\drivers\aswStm.sys
2014-02-16 22:14:26	90399625F341AB76BA4B85A5E860EB1F	207904	----a-w-	C:\Windows\Sysnative\drivers\aswVmm.sys
2014-02-16 22:14:25	F22DE5F5BA8ADA0A861441B624B51EB5	421704	----a-w-	C:\Windows\Sysnative\drivers\aswSP.sys
2014-02-16 22:14:25	C04F7B373881009D7994D9BF55D24AB4	65776	----a-w-	C:\Windows\Sysnative\drivers\aswRvrt.sys
2014-02-16 22:14:25	43599E630DFC30AD4E6A2B4B269EB1C0	1038072	----a-w-	C:\Windows\Sysnative\drivers\aswSnx.sys
2014-02-16 22:14:25	0ACC3F49015E628590CA4372322EB46B	78648	----a-w-	C:\Windows\Sysnative\drivers\aswMonFlt.sys
2014-02-16 22:14:24	679712B7A353EE665B9301592164A172	92544	----a-w-	C:\Windows\Sysnative\drivers\aswRdr2.sys
2014-02-16 22:14:23	57483E691D635510533E081EC4CB81EC	28184	----a-w-	C:\Windows\Sysnative\drivers\aswKbd.sys
====== C:\Windows\Tasks ======
2014-02-16 22:15:07	302DF230986E9C2E98B80A4ACB9C43AA	3924	----a-w-	C:\Windows\Sysnative\Tasks\avast! Emergency Update
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-02-20 18:57:26	--------	d-----w-	C:\Program Files\Java
2014-02-17 15:58:22	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2014-01-26 21:43:52	--------	d-----w-	C:\PROGRA~2\K-Lite Codec Pack
======= C: =====
2014-02-20 18:38:52	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Locallow\Sun
2014-02-16 22:03:56	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Avg2013
2014-02-20 18:57:43	9F2AEF6DC4E11307B065FD38D1DF00B8	312744	----a-w-	C:\\Windows\System32\javaws.exe
2014-02-20 18:57:35	1D1761BC856B17BFC5569D228F4FCD1D	108968	----a-w-	C:\\Windows\System32\WindowsAccessBridge-64.dll
2014-02-20 18:57:35	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-02-20 18:57:34	AA2F3D9F789F071F90B398CC7D40330E	189352	----a-w-	C:\\Windows\System32\java.exe
2014-02-20 18:57:34	83EEFE83438AEF9FBB7613A106C5E5BB	189352	----a-w-	C:\\Windows\System32\javaw.exe
2014-02-20 18:57:26	--------	d-----w-	C:\\Program Files\Java
2014-02-17 15:58:30	20A79D18E9BA41EBEA3EDFCB55F4CB6A	43890	----a-w-	C:\\rsit\info.txt
2014-02-17 15:58:23	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\\Program Files\trend micro\Johan & Petra.exe
2014-02-17 15:58:22	--------	d-----w-	C:\\Program Files\trend micro
2014-02-16 22:15:34	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-02-16 22:15:07	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-02-16 22:14:22	28192A2A37F52EB97EBE14DEE0F2513B	334136	----a-w-	C:\\Windows\System32\aswBoot.exe
2014-02-16 22:14:18	0245D0889C3443F5DC9194558583FE59	43152	----a-w-	C:\\Windows\avastSS.scr
2014-02-11 06:25:13	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\\Windows\temp\GURDAC4.exe
2014-01-26 21:44:03	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2014-01-26 21:43:52	--------	d-----w-	C:\\Program Files (x86)\K-Lite Codec Pack
2014-01-26 21:36:19	908A50691E698A2D4F4DE4E26C7BD534	15900	----a-w-	C:\\Users\JOHAN

====== C: exe-files ==
2014-02-24 07:41:03	261EEC91B8A0FAA76499559265B1A627	36847320	----a-w-	C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\33.0.1750.117\33.0.1750.117_chrome_installer.exe
2014-02-24 07:38:32	A4F0C36642681927FA53CD6A90CA2975	7620312	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\33.0.1750.117\33.0.1750.117_32.0.1700.107_chrome_updater.exe
2014-02-20 18:57:31	F97DE6C02D36B5D4214B03A378B0E672	64424	----a-w-	C:\Program Files\Java\jre7\bin\ssvagent.exe
2014-02-20 18:57:31	E547498375450A673F4088B856FC8FA6	181160	----a-w-	C:\Program Files\Java\jre7\bin\unpack200.exe
2014-02-20 18:57:31	A6ABF29D688B18937D801EB6CB548211	16296	----a-w-	C:\Program Files\Java\jre7\bin\tnameserv.exe
2014-02-20 18:57:30	FD0422E87C2518DBC982DC50BD59FEE3	15784	----a-w-	C:\Program Files\Java\jre7\bin\kinit.exe
2014-02-20 18:57:30	F19E27BD27B889F040F5CC4F2BCC088C	15784	----a-w-	C:\Program Files\Java\jre7\bin\klist.exe
2014-02-20 18:57:30	DB5A7A026BC1D6E2D01EFF0D1CF7D051	15784	----a-w-	C:\Program Files\Java\jre7\bin\rmid.exe
2014-02-20 18:57:30	C15B7308D61425506A18A5F4AE6C0FF4	15784	----a-w-	C:\Program Files\Java\jre7\bin\servertool.exe
2014-02-20 18:57:30	A440CD80509536024F8E85A6772D26F4	15784	----a-w-	C:\Program Files\Java\jre7\bin\pack200.exe
2014-02-20 18:57:30	9F2AEF6DC4E11307B065FD38D1DF00B8	312744	----a-w-	C:\Program Files\Java\jre7\bin\javaws.exe
2014-02-20 18:57:30	9D0D77ECBDFBFE2A6D2F9BE5736B601B	16296	----a-w-	C:\Program Files\Java\jre7\bin\orbd.exe
2014-02-20 18:57:30	83EEFE83438AEF9FBB7613A106C5E5BB	189352	----a-w-	C:\Program Files\Java\jre7\bin\javaw.exe
2014-02-20 18:57:30	6A5D48854BC46C5592AEC34267DDDDC8	15784	----a-w-	C:\Program Files\Java\jre7\bin\rmiregistry.exe
2014-02-20 18:57:30	4F80BA2D7E9223DBD1F9D3315960DDCA	15784	----a-w-	C:\Program Files\Java\jre7\bin\policytool.exe
2014-02-20 18:57:30	4C41E6F48B69D79D81348D2662DC6526	67496	----a-w-	C:\Program Files\Java\jre7\bin\jp2launcher.exe
2014-02-20 18:57:30	412D6298F230B8CF7861FDC10B7B02F8	15784	----a-w-	C:\Program Files\Java\jre7\bin\ktab.exe
2014-02-20 18:57:30	1540B5E0794899396B743F04054D71C2	15784	----a-w-	C:\Program Files\Java\jre7\bin\keytool.exe
2014-02-20 18:57:29	B341018F582D8D4AA207E89ED57C8858	15784	----a-w-	C:\Program Files\Java\jre7\bin\java-rmi.exe
2014-02-20 18:57:29	AA2F3D9F789F071F90B398CC7D40330E	189352	----a-w-	C:\Program Files\Java\jre7\bin\java.exe
2014-02-20 18:57:29	6929BF33B30DDA053B0481D6A2D72050	55720	----a-w-	C:\Program Files\Java\jre7\bin\jabswitch.exe
2014-02-20 18:57:29	39ACE51DDA5477FE240CA90F7C6A0DCC	76200	----a-w-	C:\Program Files\Java\jre7\bin\javacpl.exe
2014-02-19 15:47:51	FF3FD6B78A82624C7B319EEA7F7EB8F6	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleUpdateOnDemand.exe
2014-02-19 15:47:51	BA5C08130D2EFBD4E546912646DC4461	847640	----a-w-	C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleUpdateSetup.exe
2014-02-19 15:47:51	6D24CD9918A11CD8AB9AE678CB2CC3C7	51080	----atw-	C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleUpdateBroker.exe
2014-02-19 15:47:45	EA8B5B41163A06FFA8930F5316473035	273800	----atw-	C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
2014-02-19 15:47:45	C98ACDE22458C8F46FD0503CB9E2D01F	223112	----atw-	C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
2014-02-19 15:47:45	506708142BC63DABA64F2D3AD1DCD5BF	116648	----atw-	C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleUpdate.exe
2014-02-19 15:47:44	BA5C08130D2EFBD4E546912646DC4461	847640	----a-w-	C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.5\GoogleUpdateSetup.exe
2014-02-17 15:58:23	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Johan & Petra.exe
=== C: other files ==
2014-02-22 19:58:35	57108DB1005D0F69450D5C458C9D72B0	724952	----a-w-	C:\Users\Johan & Petra\Downloads\avenger.zip
2014-02-20 18:57:31	084D41FEE3E2493D1C2D98951775C17F	18633	----a-w-	C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-631928210-3985880463-3106305923-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"
"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"
"Facebook Update"="C:\Users\Johan & Petra\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Corel Photo Downloader"="C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe -startup"

[HKEY_USERS\S-1-5-21-631928210-3985880463-3106305923-1004\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-631928210-3985880463-3106305923-1004\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"Norton Online Backup"="C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe"
"ROC_ROC_NT"="C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe / /PROMPT /CMPID=ROC_NT"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"ITSecMng"="%ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"
"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"
"Facebook Update"="C:\Users\Johan & Petra\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Corel Photo Downloader"="C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe -startup"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background"
"HPWirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update"

==== Startup Folders ======================

2012-02-11 16:41:26	956	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk
2013-05-08 23:01:10	2069	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Polar WebSync.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [24/02/2014 09:27]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-631928210-3985880463-3106305923-1001Core.job --a------ C:\Users\Johan  Petra\AppData\Local\Facebook\Update\FacebookUpdate.exe []
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-631928210-3985880463-3106305923-1001UA.job --a------ C:\Users\Johan  Petra\AppData\Local\Facebook\Update\FacebookUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28/05/2012 13:53]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28/05/2012 13:53]
C:\Windows\tasks\HPCeeScheduleForJohan & Petra.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [05/01/2010 02:53]
C:\Windows\tasks\HPCeeScheduleForTHUIS-PC$.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [05/01/2010 02:53]
C:\Windows\tasks\Sing Along Update.job --a------ C:\Program Files (x86)\SingAlong\SingalngUpdater.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-631928210-3985880463-3106305923-1001Core" [C:\Users\Johan &amp; Petra\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-631928210-3985880463-3106305923-1001UA" [C:\Users\Johan &amp; Petra\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForJohan & Petra" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForTHUIS-PC$" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe]
"C:\Windows\SysNative\tasks\RecoveryCDWin7" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]
"C:\Windows\SysNative\tasks\ServicePlan" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\Sing Along Update" [C:\Program Files (x86)\SingAlong\SingalngUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask" [C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [24/02/2014 08:09]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"singalong@xenophesoft.com"="C:\Program Files (x86)\SingAlong\FF" [31/03/2013 17:11]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
abepbblpkilpjohncjbccmdjhdhbnhdj - C:\Program Files (x86)\SingAlong\Chrome.crx[10/05/2013 01:52]
bgnnidmnbdkmhfkjgdnngciimpdgohok - C:\Program Files (x86)\IlemiTVApp.com\stv11.crx[]
dlnembnfbcpjnepmfjmngjenhhajpdfd - C:\Program Files\IB Updater\source.crx[]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[16/02/2014 23:14]
niapdbllcanepiiimjjndipklodoedlc - No path found[]

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.delta-search.com/?affID=120642&tt=190313_wctrl&babsrc=HP_ss&mntrId=2029002682AA1A53"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} Conduit Search Url="http://search.conduit.com/Results.aspx?ctid=CT3315513&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SPB545FC39-D26C-418B-A446-D05372A8F984&q={searchTerms}&SSPV="
{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} Delta Search Url="http://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=2029002682AA1A53&affID=119657&tt=02102013_mx15rbra&tsp=5034"
{487AC9AF-C2E4-4258-8524-114111E681A9} Yahoo  Url="http://nl.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF"
{55CC6BE9-FE98-4C84-89D4-A954FAD2A00D} Ask Search Url="http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYBE&apn_uid=F43B2FD4-F5D9-4E40-85B5-2173A20FFB38&apn_sauid=388C3E97-0DDF-403B-ACE5-8DEA0AC622C4"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{afdbddaa-5d3f-42ee-b79c-185a7020515b} WinZipBar Customized Web Search Url="http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3106777"
{DBE543CA-DBAE-499C-BE57-E2FC20C3892A} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox"
{DC31B8D4-CF1D-45CA-87FD-8C7E7663DFDF} Wikipedia  Url="http://nl.wikipedia.org/wiki/Special:Search?search={searchTerms}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-631928210-3985880463-3106305923-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-631928210-3985880463-3106305923-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully

==== Deleting CLSID Registry Values ======================


==== HijackThis Entries ======================

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [ROC_ROC_NT] "C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Johan & Petra\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Corel Photo Downloader] "C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
O4 - HKUS\S-1-5-21-631928210-3985880463-3106305923-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-631928210-3985880463-3106305923-1004\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe (User 'postgres')
O4 - HKUS\S-1-5-21-631928210-3985880463-3106305923-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Polar WebSync.lnk = C:\Program Files (x86)\Polar\WebSync\WebSync.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Unibet - {40DFE9FE-DCA6-4C07-94CE-DE2948432CD1} - C:\Microgaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: Polar Daemon - Unknown owner - C:\Program Files (x86)\Polar\Daemon\polard.exe
O23 - Service: postgresql-8.4 - PostgreSQL Server 8.4 (postgresql-8.4) - PostgreSQL Global Development Group - c:/postgreSQL/bin/pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== C:\zoek_backup content ======================

C:\zoek_backup (files=90 folders=20 9179932 bytes)

==== EOF on ma 24/02/2014 at  9:53:48,28 ======================