Zoek.exe v5.0.0.0 Updated 02-June-2014 Tool run by J on di 10-06-2014 at 16:14:53,57. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\J\Desktop\zoek.exe [Scan all users] [Deep Scan] [Auto Clean] ==== Older Logs ====================== C:\zoek-results2014-06-04-063321.log 47804 bytes C:\zoek-results2014-06-09-212509.log 15237 bytes ==== Empty Folders Check ====================== C:\Users\J\AppData\Local\Wisdom-soft deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe C:\Program Files\Grass Valley\EDIUS 7\GV DownloadAgent\GVDownloadAgent.exe C:\Program Files (x86)\Browny02\BrYNSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Grass Valley\GV LicenseManager\AppMaintainer.exe C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe C:\Program Files (x86)\7 Sticky Notes\7StickyNotes.exe C:\Program Files (x86)\Wisdom-soft ScreenHunter 6.0 Pro\ScreenHunter.exe C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\fsx.exe C:\Program Files (x86)\EZCA\EZCA.exe C:\Users\J\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 32688 MB CPU Info: Intel(R) Core(TM) i7-4820K CPU @ 3.70GHz CPU Speed: 3703,7 MHz Sound Card: Speakers (Realtek High Definiti | Realtek Digital Output (Realtek | Display Adapters: AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series Monitors: 2x; Generic PnP Monitor | Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: TAP-Win32 Adapter V9 | Intel(R) 82579V Gigabit Network Connection CD / DVD Drives: 2x (H: | I: | ) H: HL-DT-STBD-RE BH16NS40 | I: HL-DT-STDVDRAM GH22LS50 Ports: COM1 LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 917,1GB | D: 2794,4GB | E: 1863,0GB | F: 1863,0GB | G: 74,5GB Hard Disks - Free: C: 709,9GB | D: 2686,9GB | E: 1366,6GB | F: 1048,8GB | G: 70,8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 09/05/13 | ALASKA - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: Gigabyte Technology Co., Ltd. X79-UD3 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Google Chrome 35.0.1916.114 Internet Explorer Version: 11.0.9600.17107 Google Chrome version: 35.0.1916.114 Adobe Reader version: 11.0.0.379 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-05-23 19:56:37 AA0E2F17E8FD6AAADCC737C76A8620BF 61 --sh--w- C:\Windows\cnerolf.bin ====== C:\Users\J\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-06-05 15:16:56 0DC5AF80D059DEC792B665ED598C6567 536576 ----a-w- C:\Windows\SysWOW64\sqlite3.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-06-09 18:27:08 FF8C13A9515BE95054C50D69AFF3D8DF 850 ----a-w- C:\Windows\Sysnative\cc_20140609_202704.reg 2014-06-06 15:11:09 F90D972A55BD4F1E51839951F2004AD1 10752 ----a-w- C:\Windows\Sysnative\cc_20140606_171103.reg 2014-06-01 06:13:16 E9C92676D001213C8CF81CACFD0E276B 99004 ----a-w- C:\Windows\Sysnative\cc_20140601_081221 1-6-2014.reg ====== C:\Windows\Sysnative\drivers ===== 2014-05-26 09:16:43 F38232291F05CE25BA1C47FB51EB64CB 206080 ----a-w- C:\Windows\Sysnative\drivers\ssudmdm.sys 2014-05-26 09:16:43 1E0F456A03E204F92D24437CD907A512 110336 ----a-w- C:\Windows\Sysnative\drivers\ssudbus.sys 2014-05-17 08:07:43 019CC610AD95FF47EAD7C08B7A683B96 257880 ----a-w- C:\Windows\Sysnative\drivers\WdFilter.sys 2014-05-17 08:07:42 6CC1BB8F6851A262E2E824F0E92D5EEF 123224 ----a-w- C:\Windows\Sysnative\drivers\WdNisDrv.sys 2014-05-17 08:07:41 F5D4FA3E1F4879C361FFF3855259D2C2 35856 ----a-w- C:\Windows\Sysnative\drivers\WdBoot.sys 2014-05-15 08:15:54 77B0CB56D53C9B7BC5A5BCDCB3A8E2F8 3172632 ----a-w- C:\Windows\Sysnative\drivers\gvzkrnl.sys 2014-05-15 08:15:54 628F3B8D1A8522461F6A29B3ECFF8910 54040 ----a-w- C:\Windows\Sysnative\drivers\clpkrnl.sys 2014-05-15 08:15:54 4FB72D0CDEDA92C0470334A79FDE65BC 48920 ----a-w- C:\Windows\Sysnative\drivers\pnxakrnl.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-06-07 14:04:14 -------- d-----w- C:\Program Files\Speccy 2014-06-04 04:22:28 -------- d-----w- C:\Program Files\trend micro 2014-06-02 08:02:44 -------- d-----w- C:\Program Files\CyberLink 2014-06-02 08:01:28 -------- d-----w- C:\Program Files\Common Files\OFX 2014-06-02 08:01:26 -------- d-----w- C:\Program Files\Common Files\NewBlue 2014-06-02 08:01:20 -------- d-----w- C:\Program Files\NewBlue 2014-05-27 12:02:16 -------- d-----w- C:\Program Files\Grass Valley 2014-05-27 12:02:16 -------- d-----w- C:\Program Files\Common Files\Canopus Shared ======= C:\PROGRA~2 ===== 2014-06-02 08:02:44 -------- d-----w- C:\PROGRA~2\CyberLink 2014-06-02 08:01:49 -------- d-----w- C:\PROGRA~2\COMMON~1\eSellerate 2014-06-02 08:01:27 -------- d-----w- C:\PROGRA~2\COMMON~1\OFX 2014-05-31 08:31:51 -------- d-----w- C:\PROGRA~2\DAMN NFO Viewer 2014-05-27 16:20:09 -------- d-----w- C:\PROGRA~2\Portable 2014-05-27 11:57:54 -------- d-----w- C:\PROGRA~2\Grass Valley 2014-05-27 11:57:54 -------- d-----w- C:\PROGRA~2\COMMON~1\Canopus Shared 2014-05-25 21:19:56 -------- d-----w- C:\PROGRA~2\EZCA 2014-05-23 05:18:29 -------- d-----w- C:\PROGRA~2\Windows Installer Clean Up 2014-05-18 06:43:04 -------- d-----w- C:\PROGRA~2\Wisdom-soft ScreenHunter 6.0 Pro 2014-05-15 14:09:19 -------- d-----w- C:\PROGRA~2\7 Sticky Notes 2014-05-13 06:54:33 -------- d-----w- C:\PROGRA~2\Microsoft 2014-05-13 06:51:53 -------- d-----w- C:\PROGRA~2\COMMON~1\Macrovision Shared 2014-05-13 06:51:03 -------- d-----w- C:\PROGRA~2\PMDG Operations Center ======= C: ===== 2014-05-19 12:25:33 56284B626858E2E6180F2F6CB2DCEAE2 270 ----a-w- C:\trike_.ini ====== C:\Users\J\AppData\Roaming ====== 2014-06-09 21:24:13 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm 2014-06-09 21:23:51 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2014-06-09 21:23:51 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2014-06-09 21:23:51 -------- d-----w- C:\Users\J\AppData\Local\Temp 2014-06-09 21:23:51 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2014-06-09 21:23:51 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2014-06-09 11:40:11 -------- d-----w- C:\Users\J\AppData\Roaming\AVG 2014-06-09 11:40:11 -------- d-----w- C:\Users\J\AppData\Local\AVG 2014-06-09 11:26:36 -------- d-----w- C:\Users\J\AppData\Roaming\MPEG Streamclip 2014-06-07 14:04:23 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking 2014-06-03 11:48:31 -------- d-----w- C:\Users\J\AppData\Roaming\Titler 2.0 2014-06-01 11:26:27 -------- d-----w- C:\Users\J\AppData\Local\Microsoft Toolkit 2014-05-28 18:36:29 -------- d-----w- C:\Users\J\AppData\Roaming\VS Revo Group 2014-05-27 16:20:10 -------- d-----w- C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portable Programs 2014-05-27 13:05:34 -------- d-----w- C:\Users\J\AppData\Roaming\Grass Valley 2014-05-18 06:43:06 -------- d-----w- C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wisdom-soft ScreenHunter 6 Pro 2014-05-16 13:06:12 -------- d-----w- C:\Users\J\AppData\Roaming\EZCA 2014-05-15 14:09:39 -------- d-----w- C:\Users\J\AppData\Roaming\7 Sticky Notes 2014-05-13 06:51:05 -------- d-----w- C:\Users\J\AppData\Roaming\RAASPRO ====== C:\Users\J ====== 2014-06-09 18:54:56 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\J\Desktop\RSITx64.exe 2014-06-09 11:40:02 -------- d-----w- C:\ProgramData\AVG 2014-06-09 11:39:49 -------- d--h--w- C:\ProgramData\Common Files 2014-06-07 14:04:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2014-06-07 14:03:32 6DC6EBDF9391271098C40F6BA7779430 4890736 ----a-w- C:\Users\J\Desktop\spsetup126.exe 2014-06-02 08:01:58 -------- d-----w- C:\ProgramData\eSellerate 2014-06-02 08:01:19 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue 2014-05-31 13:46:21 -------- d-----w- C:\ProgramData\Comodo 2014-05-31 13:45:53 531580A13F527C55822FE6D3EF1DC2F3 230403208 ----a-w- C:\Users\J\Downloads\Comodo Fire Wall Blocker.exe 2014-05-27 13:05:34 -------- d-----w- C:\ProgramData\Grass Valley 2014-05-27 11:57:59 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grass Valley 2014-05-23 15:02:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft 2014-05-18 06:43:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wisdom-soft ScreenHunter 6 Pro 2014-05-17 08:45:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZCA 2014-05-17 08:10:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7 Sticky Notes ====== C: exe-files == 2014-06-09 18:54:56 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\J\Desktop\RSITx64.exe 2014-06-07 14:03:32 6DC6EBDF9391271098C40F6BA7779430 4890736 ----a-w- C:\Users\J\Desktop\spsetup126.exe 2014-06-04 04:22:28 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\J.exe === C: other files == 2014-06-09 06:19:57 E46EF728E7A0AEA06956D3C8C5046D41 13680951 ----a-w- C:\Users\J\Desktop\FS_Build_Word_Web_Lay-out.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe" [HKEY_USERS\S-1-5-21-3461219250-293438672-4018326929-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_9A2DA9E299F25626A6E5A46963D67AB5"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BrStsMon00"="C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN" "LWS"="C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_9A2DA9E299F25626A6E5A46963D67AB5"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4" "Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch" "EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming" ==== Startup Folders ====================== 2014-06-09 23:20:25 2070 ----a-w- C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\7 Sticky Notes.lnk 2014-05-26 05:02:47 2064 ----a-w- C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ScreenHunter 6.0 Pro.lnk 2014-05-27 11:57:59 1295 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GV LicenseManager.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-04-2014 11:07] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-04-2014 11:07] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{CCE0EB80-43EE-4512-8D41-428C37D64E2A}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [23-05-2014 13:12] ==== Chrome Look ====================== Google Docs - J\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - J\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - J\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - J\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - J\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - J\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office15\URLREDIR.DLL O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN O4 - HKLM\..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_9A2DA9E299F25626A6E5A46963D67AB5] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'Default user') O4 - Startup: 7 Sticky Notes.lnk = C:\Program Files (x86)\7 Sticky Notes\7StickyNotes.exe O4 - Startup: ScreenHunter 6.0 Pro.lnk = C:\Program Files (x86)\Wisdom-soft ScreenHunter 6.0 Pro\ScreenHunter.exe O4 - Global Startup: GV LicenseManager.lnk = C:\Program Files (x86)\Grass Valley\GV LicenseManager\AppMaintainer.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Grass Valley Download Agent Service (GVDownloadAgentService) - Grass Valley K.K. - C:\Program Files\Grass Valley\EDIUS 7\GV DownloadAgent\GVDownloadAgent.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Stardock Start8 (Start8) - Stardock Software, Inc - C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\J\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\J\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\J\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=295 folders=74 51044388 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\J\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\J\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on di 10-06-2014 at 16:22:52,68 ======================