Zoek.exe v5.0.0.0 Updated 07-March-2014 Tool run by Margret on ma 24-03-2014 at 17:12:22,42. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Margret\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\winlogon.exe C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\rundll32.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Program Files\AVG\AVG2014\avgwdsvc.exe C:\Windows\system32\svchost.exe -k bthsvcs C:\Windows\system32\crypserv.exe C:\Windows\Explorer.EXE C:\Windows\system32\svchost.exe -k hpdevmgmt C:\Windows\system32\taskeng.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe C:\Program Files\CyberLink\Shared Files\RichVideo.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe C:\Program Files\Alarm Clock\AlarmMonitor.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k bthaudiosvc C:\Windows\System32\WUDFHost.exe C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe C:\Program Files\Alarm Clock\Alarm Tray.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HomeCinema\PowerDVD8\PDVD8Serv.exe C:\Windows\WindowsMobile\wmdc.exe C:\Program Files\Samsung\Kies\KiesTrayAgent.exe C:\Program Files\AVG\AVG2014\avgui.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Samsung\Kies\Kies.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Windows\ehome\ehmsas.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\svchost.exe -k WindowsMobile C:\Windows\System32\mobsync.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\svchost.exe -k SDRSVC C:\Windows\system32\taskeng.exe C:\Windows\system32\sdclt.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Common Files\Java\Java Update\jucheck.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\servicing\TrustedInstaller.exe C:\Users\Margret\Downloads\zoek.exe C:\Program Files\AVG\AVG2014\avgidsagent.exe C:\Program Files\AVG\AVG2014\avgemcx.exe C:\Program Files\AVG\AVG2014\avgnsx.exe C:\Program Files\AVG\AVG2014\avgrsx.exe C:\Program Files\AVG\AVG2014\avgcsrvx.exe C:\Windows\system32\wbem\wmiprvse.exe ==== System Restore Info ====================== 24-3-2014 17:17:14 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\DAVILEX deleted successfully C:\Program Files\MyFree Codec deleted successfully C:\Program Files\Common Files\PX Storage Engine deleted successfully C:\Users\Margret\AppData\Roaming\AVG8 deleted successfully C:\Users\Margret\AppData\Roaming\PeerNetworking deleted successfully C:\Users\Margret\AppData\Roaming\U3 deleted successfully C:\Users\Margret\AppData\Local\cache deleted successfully C:\Users\Margret\AppData\Local\Downloaded Installations deleted successfully C:\Users\Margret\AppData\Local\genienext deleted successfully C:\Users\Margret\AppData\Local\PackageAware deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2373256882-1163985164-258457446-1000\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully HKEY_USERS\S-1-5-21-2373256882-1163985164-258457446-1000\Software\Classes\VirtualStore\MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully HKEY_USERS\S-1-5-21-2373256882-1163985164-258457446-1000\Software\Microsoft\Internet Explorer\SearchScopes\{07D2629D-BE03-48E5-850D-1B0F2506D48F} deleted successfully HKEY_USERS\S-1-5-21-2373256882-1163985164-258457446-1000\Software\Microsoft\Internet Explorer\SearchScopes\{273CFFA5-1363-4854-8346-0304D03C4B25} deleted successfully HKEY_USERS\S-1-5-21-2373256882-1163985164-258457446-1000\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8} deleted successfully HKEY_USERS\S-1-5-21-2373256882-1163985164-258457446-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2373256882-1163985164-258457446-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks\{87775fdb-6972-41f9-ae51-8326e38cb206} deleted successfully ==== Installed Programs ====================== Update for Microsoft Office 2007 (KB2508958) 2350 2350_Help 2350Trb 32 Bit HP CIO Components Installer Adobe Flash Player 12 ActiveX Adobe Photoshop Elements 7.0 Adobe Reader 9.5.5 - Nederlands Adobe Shockwave Player 11 AIO_CDB_ProductContext AIO_CDB_Software AIO_Scan AVG 2014 AVG PC Tuneup AVG PC TuneUp 2014 AVG PC TuneUp 2014 (nl-NL) Azurewave Wireless LAN Bluetooth Stack for Windows by Toshiba BufferChm CCleaner Cisco Connect Compatibiliteitspakket voor het 2007 Microsoft Office system Copy CorelDRAW Essential Edition 3 CustomerResearchQFolder CyberLink MakeDisc CyberLink PhotoNow CyberLink PowerDirector CyberLink PowerDVD 8 CyberLink PowerProducer CyberLink YouCam D3DX10 Destination Component DeviceDiscovery DeviceManagementQFolder DocProc DocProcQFolder eSupportQFolder Fax Foxlink Webcam FunnyGames - Angry Birds 1 Google Chrome Google Earth Plug-in Google Update Helper Google Updater Hotel Mahjong Deluxe Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) HP Customer Participation Program 8.0 HP Imaging Device Functions 8.0 HP OCR Software 8.0 HP Photosmart Essential HP Photosmart Essential 3.5 HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B HP Product Assistant HP Product Detection HP Solution Center 8.0 HP Update HPPhotoSmartDiscLabelContent1 HPPhotosmartEssential HPProductAssistant HPSSupply Huawei modem Java 7 Update 45 Java Auto Updater Java(TM) 6 Update 26 JavaFX 2.1.1 king.com (remove only) Malwarebytes Anti-Malware versie 1.75.0.1300 MarketResearch Medion GoPal Assistant 4.03.006 Microsoft .NET Framework 3.5 Language Pack SP1 - nld Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft Application Error Reporting Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Live Add-in 1.5 Microsoft Office Outlook Connector Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Professional Plus 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Works MioTransfer MSVC90_x86 MSVCRT MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB941833) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP3 Parser MSXML 4.0 SP3 Parser (KB2721691) MSXML 4.0 SP3 Parser (KB2758694) Nero 8 Essentials neroxml NL NVIDIA Drivers OGA Notifier 2.0.0048.0 PC Connectivity Solution Picasa 3 Realtek 8169 8168 8101E 8102E Ethernet Driver Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader Samsung Kies SAMSUNG USB Driver for Mobile Phones Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition Segoe UI SkypeT 6.11 Softwarenetz Adressen2 Softwarenetz Adressen3 SolutionCenter Spotnet Status Synaptics Pointing Device Driver Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL Talking Alarm Clock 2.0 Toolbox TrayApp UnloadSupport Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878234) 32-Bit Edition Update Manager Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) Visual Studio 2012 x86 Redistributables WebReg Windows-stuurprogrammapakket - Nokia pccsmcfd "LegacyDriver" (05/31/2012 7.1.2.0) Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Windows Live Messenger Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Mobile Apparaatcentrum WinRAR 4.20 (32-bit) Zylom Games Player Plugin ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Users\Margret\daemonprocess.txt deleted C:\Users\Margret\.android deleted C:\Program Files\GUT106D.tmp deleted C:\Program Files\GUM106C.tmp deleted C:\Program Files\Giant Savings deleted C:\Program Files\SupTab deleted C:\Program Files\Ask.com deleted C:\Users\Margret\AppData\Roaming\Systweak deleted C:\Users\Margret\AppData\Local\CRE deleted C:\Users\Margret\AppData\Local\Giant Savings deleted C:\Users\Margret\AppData\Local\Mobogenie deleted C:\Windows\System32\Tasks\LaunchApp deleted C:\Users\Margret\Downloads\avg_free_stb_all_2013_3349_cnet.exe deleted C:\Users\Margret\AppData\LocalLow\AVG Security Toolbar deleted C:\Users\Margret\AppData\LocalLow\BabylonToolbar deleted C:\Users\Margret\AppData\LocalLow\uTorrentBar_NL deleted C:\Users\Margret\AppData\LocalLow\PriceGong deleted C:\Users\Margret\AppData\LocalLow\Conduit deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Security Toolbar deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\Windows\System32\searchplugins deleted C:\Windows\System32\Extensions deleted C:\Users\Margret\Documents\Mobogenie deleted C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} deleted C:\Users\Margret\Desktop\avg_free_stb_all_2014_4259_softonic.exe deleted ==== System Specs ====================== Windows: Windows Vista Home Premium Edition Service Pack 2 (Build 6002) Memory (RAM): 3066 MB CPU Info: Pentium(R) Dual-Core CPU T4200 @ 2.00GHz CPU Speed: 2009,3 MHz Sound Card: Luidsprekers (Realtek High Defi | Realtek Digital Output (Realtek | Display Adapters: NVIDIA GeForce G 105M | NVIDIA GeForce G 105M | RDPDD Chained DD | RDP Encoder Mirror Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: 802.11n Wireless LAN Card | Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0) CD / DVD Drives: 1x (E: | ) E: HL-DT-STDVDRAM GSA-T50N Ports: COM11 | COM12 | COM13 | COM14 | COM15 | COM16 | COM17 | COM18 | COM20 | COM21 | COM22 | COM40 | COM81 LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 278,1GB | D: 20,0GB Hard Disks - Free: C: 129,9GB | D: 9,4GB Manufacturer *: Phoenix Technologies LTD BIOS Info: AT/AT COMPATIBLE | 12/19/08 | MEDION - 6040000 Time Zone: West-Europa (standaardtijd) Motherboard *: MEDION P6613 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: AVG AntiVirus Free Edition 2014 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG AntiVirus Free Edition 2014 disabled (Outdated) Default Browser: Google Chrome 33.0.1750.154 Internet Explorer Version: 9.0.8112.16421 Google Chrome version: 33.0.1750.154 Adobe Reader version: 9.5.5.316 Sun Java version: 1.7.0_45 (32-bit) Shockwave Player version: 11.0r465 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Margret\AppData\Local\Temp ==== 2014-03-22 21:43:07 5F9772F447ABF5A99769A6F8C48510C6 28430064 ----a-w- C:\Users\Margret\AppData\Local\temp\Softonic_NL_1-5-9_NL-Production_10_CleanRelease.exe ====== Java Cache ===== ====== C:\Windows\system32 ===== 2014-03-12 22:45:59 22535A5C5F13BBA4F8D8FCA4F2593188 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2014-03-12 22:45:58 9709ECC60A792387BBCD6AE1910B0413 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2014-03-12 22:45:58 487D42D589DA9BEB7B6B3C725AB35343 421376 ----a-w- C:\Windows\System32\vbscript.dll 2014-03-12 22:45:57 FEA5277475F3EFC35C4AA7E95F553D5E 176640 ----a-w- C:\Windows\System32\ieui.dll 2014-03-12 22:45:56 F9DDC41D5B745EBDC673706C0575A260 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-03-12 22:45:56 C6B18D484DE84DCB479F25A393054B1F 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2014-03-12 22:45:56 B9714A9ED8BAA0106DDE60537B4CE710 65536 ----a-w- C:\Windows\System32\jsproxy.dll 2014-03-12 22:45:55 1E5DF19A5F053345430D7AF87943C47A 1129472 ----a-w- C:\Windows\System32\wininet.dll 2014-03-12 22:45:54 E6BB9F479A08B2588D2704FA288777B7 717824 ----a-w- C:\Windows\System32\jscript.dll 2014-03-12 22:45:54 5A6F0A2EAB066E5E3C578076623FEBF8 231936 ----a-w- C:\Windows\System32\url.dll 2014-03-12 22:45:54 0763D2835B7EF92E1DB630AB1BBA0D0F 1806848 ----a-w- C:\Windows\System32\jscript9.dll 2014-03-12 22:45:53 6B6879BE739279EDD2E4E28ED9911DBF 1796096 ----a-w- C:\Windows\System32\iertutil.dll 2014-03-12 22:45:52 D198BE229744F2E87743BB82D4C29A18 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-03-12 22:45:52 8232228138E4859F3738DD1E4A8C692C 1105408 ----a-w- C:\Windows\System32\urlmon.dll 2014-03-12 22:45:51 AC7811B550AC49013C9D83D998C8C740 9739264 ----a-w- C:\Windows\System32\ieframe.dll 2014-03-12 22:45:48 4F23BB46E26DC87F01563B8A96526075 12347904 ----a-w- C:\Windows\System32\mshtml.dll 2014-03-12 21:35:44 7DEEA31FD41B77B433C17903B3416507 2050560 ----a-w- C:\Windows\System32\win32k.sys 2014-03-12 21:35:43 16508EACF164C1B9E032667EA4A601F3 505344 ----a-w- C:\Windows\System32\qedit.dll 2014-03-12 21:35:41 E66587751D859A88FA61149C9CC2C15C 876032 ----a-w- C:\Windows\System32\wer.dll 2014-03-12 21:35:36 0E0C8EC771F8336845579798557769A5 2048 ----a-w- C:\Windows\System32\tzres.dll ====== C:\Windows\system32\drivers ===== 2014-03-22 21:09:16 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\Windows\System32\drivers\mbam.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-03-24 11:06:17 -------- d-----w- C:\Program Files\trend micro ======= C: ===== ====== C:\Users\Margret\AppData\Roaming ====== 2014-03-22 22:18:52 -------- d-----w- C:\Users\Margret\AppData\Roaming\AVG2014 2014-03-22 22:18:21 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\AVG2014 2014-03-22 22:16:29 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Avg2014 2014-03-22 21:43:57 -------- d-----w- C:\Users\Margret\AppData\Local\Avg2014 2014-03-22 20:59:50 -------- d-----w- C:\Users\ReleaseEngineer.MACROVISION\AppData\Local\temp 2014-03-22 20:59:50 -------- d-----w- C:\Users\RELEAS~1.MAC\AppData\Local\temp 2014-03-22 20:59:50 -------- d-----w- C:\Users\Public\AppData\Local\temp 2014-03-22 20:59:50 -------- d-----w- C:\Users\Margret\AppData\Local\temp 2014-03-22 20:59:50 -------- d-----w- C:\Users\Default\AppData\Local\temp 2014-03-22 20:59:50 -------- d-----w- C:\Users\Default User\AppData\Local\temp 2014-03-22 12:07:38 -------- d-----w- C:\Users\Margret\AppData\Local\Deployment 2014-03-22 12:07:38 -------- d-----w- C:\Users\Margret\AppData\Local\Apps 2014-03-20 10:00:36 -------- d-----w- C:\Users\Margret\AppData\Local\CrashRpt 2014-03-20 09:59:13 -------- d-----w- C:\Users\Margret\AppData\Roaming\ HAMA BLUETOOTH-HEADSET X3 PRO BUSINESS PACK user guide ====== C:\Users\Margret ====== 2014-03-24 11:05:27 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Margret\Downloads\RSIT.exe 2014-03-23 03:04:17 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-03-22 22:17:59 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2014-03-20 10:00:22 -------- d-----w- C:\ProgramData\Allmyapps ====== C: exe-files == 2014-03-24 11:06:18 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Margret.exe 2014-03-24 11:05:27 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\Margret\Downloads\RSIT.exe 2014-03-23 03:03:59 B3E2F3C3E6A9373DA238922662B7B59C 36838104 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\33.0.1750.154\33.0.1750.154_chrome_installer.exe 2014-03-23 02:32:34 BA5C08130D2EFBD4E546912646DC4461 847640 ----a-w- C:\Users\Margret\AppData\Local\Apps\2.0\HXDDCKX4.HYP\B24BLRMW.5ZL\inst...app_4fe91ede9f9bdca3_0001.0003_fbdae4363bbbaadd\GoogleUpdateSetup.exe 2014-03-23 02:32:34 BA5C08130D2EFBD4E546912646DC4461 847640 ----a-w- C:\Users\Margret\AppData\Local\Apps\2.0\HXDDCKX4.HYP\B24BLRMW.5ZL\clic...exe_4fe91ede9f9bdca3_0001.0003_none_e0b66a91f1dbb389\GoogleUpdateSetup.exe 2014-03-23 02:32:34 53C969C20AE1935DD980F687D22D0453 10120 ------w- C:\Users\Margret\AppData\Local\Apps\2.0\HXDDCKX4.HYP\B24BLRMW.5ZL\inst...app_4fe91ede9f9bdca3_0001.0003_fbdae4363bbbaadd\clickonce_bootstrap.exe 2014-03-22 21:43:07 5F9772F447ABF5A99769A6F8C48510C6 28430064 ----a-w- C:\Users\Margret\AppData\Local\temp\Softonic_NL_1-5-9_NL-Production_10_CleanRelease.exe === C: other files == 2014-03-22 21:09:16 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-03-20 10:09:43 C768F85F5901CCC36DC3702716303664 152 ----a-w- C:\ProgramData\Allmyapps\ama_uninstall.bat ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2373256882-1163985164-258457446-1000\Software\Microsoft\Windows\CurrentVersion\Run] "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "KiesPreload"="C:\Program Files\Samsung\Kies\Kies.exe /preload" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "UpdatePDRShortCut"="C:\Program Files\HomeCinema\PowerDirector\MUITransfer\MUIStartMenu.exe C:\Program Files\HomeCinema\PowerDirector UpdateWithCreateOnce Software\CyberLink\PowerDirector\7.0" "RemoteControl8"="C:\Program Files\HomeCinema\PowerDVD8\PDVD8Serv.exe" "PDVD8LanguageShortcut"="C:\Program Files\HomeCinema\PowerDVD8\Language\Language.exe" "UpdatePPShortCut"="C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe C:\Program Files\HomeCinema\PowerProducer update Software\CyberLink\PowerProducer\5.0" "UCam_Menu"="C:\Program Files\HomeCinema\YouCam\MUITransfer\MUIStartMenu.exe C:\Program Files\HomeCinema\YouCam UpdateWithCreateOnce Software\CyberLink\YouCam\2.0" "hpqSRMon"="C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe" "NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" "Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe" "NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup" "AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "KiesTrayAgent"="C:\Program Files\Samsung\Kies\KiesTrayAgent.exe" "AVG_UI"="C:\Program Files\AVG\AVG2014\avgui.exe /TRAYONLY" "Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe " "Show missed alarms"=""C:\Program Files\Alarm Clock\Alarm.exe" -d120000" "ITSecMng"="%ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe -scheduler" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "KiesPreload"="C:\Program Files\Samsung\Kies\Kies.exe /preload" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "HP Software Update"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe" "Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"" "Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2011-05-02 20:02:35 821 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk 2009-03-29 16:08:43 1976 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task] C:\Windows\tasks\Google Software Updater.job --a------ C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [21-08-2012 14:52] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [Undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [12-07-2009 13:48] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\system32\tasks\ASC4_PerformanceMonitor" [C:\Program Files\IObit\Advanced SystemCare 4\PMonitor.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\Google Software Updater" [C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\HP-Online updateprogramma" [C:\Program Files\HP\HP Software Update\HPWuSchd2.exe] "C:\Windows\system32\tasks\Java Update Scheduler" [C:\Program Files\Common Files\Java\Java Update\jusched.exe] "C:\Windows\system32\tasks\SmartDefrag_Startup" [C:\Program Files\IObit\Smart Defrag 2\SmartDefrag.exe] "C:\Windows\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files\AVG\AVG PC TuneUp\OneClick.exe] "C:\Windows\system32\tasks\{568BDEB8-CB8A-41FF-A667-A774A879E54B}" ["c:\program files\internet explorer\iexplore.exe" http://www.skype.com/go/downloading?source=lightinstaller&ver=5.10.0.116&LastError=12002] "C:\Windows\system32\tasks\{B7B6AA38-0C65-4EE3-8CFD-972BE9472391}" [C:\Program Files\Skype\Phone\Skype.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [24-06-2009 12:43] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Margret\AppData\Roaming\TomTom\HOME\Profiles\fx82iakq.default - Undetermined - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - Undetermined - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.7.131.8483@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.7.163.8493@tomtom.com ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\Margret\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[22-11-2012 10:30] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\Margret\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[] Google Docs - Margret\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Margret\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Margret\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo uTorrentBar_NL - Margret\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb Google Search - Margret\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Skype Click to Call - Margret\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Google Wallet - Margret\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Margret\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\Margret\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.nl/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.nl/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="res://ieframe.dll/tabswelcome.htm" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7RNWN_nlNL323" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully ==== HijackThis Entries ====================== O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [UpdatePDRShortCut] "C:\Program Files\HomeCinema\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\HomeCinema\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\7.0" O4 - HKLM\..\Run: [RemoteControl8] "C:\Program Files\HomeCinema\PowerDVD8\PDVD8Serv.exe" O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files\HomeCinema\PowerDVD8\Language\Language.exe" O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files\HomeCinema\PowerProducer" update "Software\CyberLink\PowerProducer\5.0" O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\HomeCinema\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\HomeCinema\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe O4 - HKLM\..\Run: [Show missed alarms] "C:\Program Files\Alarm Clock\Alarm.exe" -d120000 O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: http://www.hyves.nl O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file) O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Talking Alarm Clock user logon monitor (AlarmClockMonitor) - Cinnamon Software Inc. - C:\Program Files\Alarm Clock\AlarmMonitor.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\Windows\SYSTEM32\crypserv.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Updateservice (gupdate1ca02ef248af3b4) (gupdate1ca02ef248af3b4) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: Reset Reader (resetWinService) - Unknown owner - C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe ==== Empty IE Cache ====================== C:\Users\Margret\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Margret\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low(39)\Content.IE5 emptied successfully C:\Users\Margret\AppData\Local\temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Margret\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Margret\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2007 folders=287 180377796 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\Margret\AppData\Local\temp will be emptied at reboot C:\Users\Public\AppData\Local\temp emptied successfully C:\Users\ReleaseEngineer.MACROVISION\AppData\Local\temp emptied successfully C:\Users\RELEAS~1.MAC\AppData\Local\temp emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot