Zoek.exe v5.0.0.0 Updated 13-July-2014 Tool run by DOSTI on ma 14-07-2014 at 9:29:21,37. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64 Running in: Safe Mode NETWORK Internet Access Detected Launched: C:\Users\DOSTI\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== ==== Empty Folders Check ====================== C:\PROGRA~2\MSXML 4.0 deleted successfully C:\Program Files\Google deleted successfully C:\PROGRA~3\ALM deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\Users\DOSTI\AppData\Roaming\DAEMON Tools Pro deleted successfully C:\Users\DOSTI\AppData\Roaming\Opera deleted successfully C:\Users\DOSTI\AppData\Local\Opera deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-39699657-3793838071-17724609-1000\Software\Microsoft\Internet Explorer\SearchScopes\{FA1611B7-A547-4c5c-9BCD-C68ECD80E267} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-39699657-3793838071-17724609-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4646332D-5637-006A-76A7-7A786E7484D7} deleted successfully ==== Installed Programs ====================== æTorrent Active@ KillDisk Professional Adobe Acrobat X Pro - English, Fran‡ais, Deutsch Adobe AIR Adobe Creative Suite 6 Master Collection Adobe CS6 Design and Web Premium Adobe Flash Player 11 Plugin Adobe Flash Player 14 ActiveX Adobe Help Manager Adobe Reader X (10.1.4) - Nederlands Adobe Widget Browser AI Suite II AMD Accelerated Video Transcoding AMD APP SDK Runtime AMD Catalyst Install Manager AMD Drag and Drop Transcoding AMD Media Foundation Decoders Android SDK Tools Application Profiles ArcSoft MediaConverter 8 ASUS Ai Charger ASUS PC Diagnostics Avidemux 2.6 (32-bit) AviSynth 2.5 AVStoDVD 2.7.1 Basissoftware voor HP Photosmart 5510 series BufferChm Catalyst Control Center - Branding Catalyst Control Center Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner Cisco Systems VPN Client 5.0.07.0290 Citrix online plug-in - web Citrix online plug-in (DV) Citrix online plug-in (HDX) Citrix online plug-in (USB) Citrix online plug-in (Web) Citrix Presentation Server Client - Web Only CyberLink PowerDVD 13 D3DX10 DAEMON Tools Lite Data Lifeguard Diagnostic for Windows Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition Destinations DocProc Dropbox DVD Flick 1.3.0.7 EndNote X5 ESN Sonar FileZilla Client 3.7.3 Football Manager 2013 Football Manager 2014 FormatFactory 3.1.1 Free MKV Video2Dvd 3.30 GlassFish Server Open Source Edition 4.0 Google Chrome Google Update Helper GPBaseService2 GrabIt 1.7.2 Beta 6 (build 1008) Groovy-1.8.4 HD Tune Pro 5.00 Hewlett-Packard ACLM.NET v1.1.0.0 HitmanPro 3.7 HP FWUpdateEDO2 HP Imaging Device Functions 13.0 HP Photo Creations HP Photosmart 5510 series Haelp HP Photosmart Essential 3.5 HP Product Detection HP Scanjet G2410 and 2400 HP Solution Center 13.0 HP Update hpg2410 HPPhotosmartEssential HPProductAssistant IBM SPSS Statistics 20 ImgBurn Intel(R) Control Center Intel(R) Network Connections 17.4.95.0 Intel(R) Rapid Storage Technology Intel© Watchdog Timer Driver (Intel© WDT) Java 7 Update 25 (64-bit) Java 7 Update 60 Java Auto Updater Java SE Development Kit 7 Update 25 (64-bit) Java(TM) 6 Update 29 Java(TM) 6 Update 29 (64-bit) Java(TM) SE Development Kit 7 Update 2 (64-bit) JavaFX 2.0.2 (64-bit) JavaFX 2.0.2 SDK (64-bit) JMicron JMB36X Driver Junk Mail filter update marvell 91xx driver MATLAB R2012b MATLAB R2013a Medal of HonorT Warfighter MediaMonkey 4.0 Mendeley Desktop 1.7.1 Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft Access MUI (Dutch) 2013 Microsoft Application Error Reporting Microsoft DCF MUI (Dutch) 2013 Microsoft Excel MUI (Dutch) 2013 Microsoft Groove MUI (Dutch) 2013 Microsoft InfoPath MUI (Dutch) 2013 Microsoft Lync MUI (Dutch) 2013 Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office 32-bit Components 2013 Microsoft Office Korrekturhilfen 2013 - Deutsch Microsoft Office Office 64-bit Components 2007 Microsoft Office OSM MUI (Dutch) 2013 Microsoft Office OSM UX MUI (Dutch) 2013 Microsoft Office Professional Plus 2013 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing (Dutch) 2013 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Proofing Tools 2013 - English Microsoft Office Proofing Tools 2013 - Nederlands Microsoft Office Shared 32-bit MUI (Dutch) 2013 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2013 Microsoft Office SharePoint Designer 2007 Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) Microsoft Office SharePoint Designer MUI (Dutch) 2007 Microsoft OneNote MUI (Dutch) 2013 Microsoft Outlook MUI (Dutch) 2013 Microsoft PowerPoint MUI (Dutch) 2013 Microsoft Publisher MUI (Dutch) 2013 Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Word MUI (Dutch) 2013 Microsoft_VC80_CRT_x86 Microsoft_VC90_CRT_x86 MiKTeX 2.9 MKV to DVD Converter and Burner 5.1.1.0 MozBackup 1.5.1 Mozilla Thunderbird (7.0) MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 12 Nero Audio Pack 1 Nero BackItUp Nero BackItUp Help (CHM) Nero Blu-ray Player Nero Blu-ray Player Help (CHM) Nero Burning ROM Nero Burning ROM Help (CHM) Nero ControlCenter Nero ControlCenter Help (CHM) Nero Core Components Nero Disc Menus Basic Nero Effects Basic Nero Express Nero Express Help (CHM) Nero Kwik Media Nero Kwik Media Help (CHM) Nero Kwik Themes Basic Nero Launcher Nero PiP Effects Basic Nero Recode Nero Recode Help (CHM) Nero RescueAgent Nero RescueAgent Help (CHM) Nero SharedVideoCodecs Nero Update Nero Video Nero Video Help (CHM) Nero12Final NetBeans IDE 7.3.1 OCR Software by I.R.I.S. 13.0 Origin Outils de v‚rification linguistique 2013 de Microsoft Officeÿ- Fran‡ais PCDJ DEX 2 2.6.0.0 PDF Settings CS6 Photo Common Prerequisite installer Productverbeteringonderzoek HP Photosmart 5510 series QuickPar 0.9 R-Studio 6.1 Reader for PC Renesas Electronics USB 3.0 Host Controller Driver RuneScape Launcher 1.2.3 SAMSUNG PC Share Manager Scan Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft Lync 2013 (KB2881013) 64-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880513) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office SharePoint Designer 2007 (KB2596810) 32-Bit Edition Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition SimCityT SmartPack 1.20.5 SolutionCenter Speccy Spotnet Steam System Requirements Lab for Intel (64-bit) Toetstrainer Rekenen TreeSize Professional V5.5.5 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Excel 2013 (KB2881085) 64-Bit Edition Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition Update for Microsoft Lync 2013 (KB2850074) 64-Bit Edition Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office 2013 (KB2760344) 64-Bit Edition Update for Microsoft Office 2013 (KB2760544) 64-Bit Edition Update for Microsoft Office 2013 (KB2768012) 64-Bit Edition Update for Microsoft Office 2013 (KB2817302) 64-Bit Edition Update for Microsoft Office 2013 (KB2826040) 64-Bit Edition Update for Microsoft Office 2013 (KB2837644) 64-Bit Edition Update for Microsoft Office 2013 (KB2863843) 64-Bit Edition Update for Microsoft Office 2013 (KB2880457) 64-Bit Edition Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition Update for Microsoft Office 2013 (KB2880464) 64-Bit Edition Update for Microsoft Office 2013 (KB2880478) 64-Bit Edition Update for Microsoft Office 2013 (KB2880987) 64-Bit Edition Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition Update for Microsoft Office 2013 (KB2881074) 64-Bit Edition Update for Microsoft Office 2013 (KB2881084) 64-Bit Edition Update for Microsoft Office 2013 (KB2881086) 64-Bit Edition Update for Microsoft OneDrive for Business (KB2881087) 64-Bit Edition Update for Microsoft OneNote 2013 (KB2881082) 64-Bit Edition Update for Microsoft Outlook 2013 (KB2880470) 64-Bit Edition Update for Microsoft PowerPoint 2013 (KB2881075) 64-Bit Edition Update for Microsoft Publisher 2013 (KB2880999) 64-Bit Edition Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition Update for Microsoft Word 2013 (KB2878319) 64-Bit Edition Update for Microsoft Word 2013 (KB2881080) 64-Bit Edition USB Multi-Channel Audio Device VLC media player 2.1.2 WD Align - Powered by Acronis WebReg Welcome App (Start-up experience) Widevine Media Optimizer Chrome 6.0.0 Widevine Media Optimizer IE 6.0.0 WinAVI Video Converter Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinRAR 4.20 (64-bit) ==== Running Processes ====================== C:\Windows\SysWOW64\notepad.exe C:\Windows\SysWOW64\notepad.exe C:\Users\DOSTI\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE ==== Deleting Services ====================== ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"=- "9356272db73b5bbca1d96677b6f61d22"=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] ==== Deleting Files \ Folders ====================== "C:\ProgramData\hkcmde.exe" not found C:\Users\DOSTI\.android deleted C:\PROGRA~2\SupTab deleted C:\found.000 deleted C:\Users\DOSTI\AppData\Roaming\GetRightToGo deleted C:\PROGRA~3\InstallMate deleted C:\Users\DOSTI\Searches deleted C:\Users\DOSTI\AppData\LocalLow\Yahoo! deleted C:\Users\DOSTI\AppData\LocalLow\Yahoo! Companion deleted "C:\ComboFix.txt" deleted "C:\Windows\Installer\283ea.msi" deleted "C:\PROGRA~3\316e5c9f-3cfb-46b5-b505-d6b9ce513b67\5da05f4e-24db-402d-a8f9-78ea46dea3e6" deleted "C:\PROGRA~3\4b0389b7-274a-40dc-969d-e708c6d75452\29f346f7-5a0d-41da-8d20-e17443a79481" deleted "C:\PROGRA~3\4b0389b7-274a-40dc-969d-e708c6d75452\412f6b53-ee98-4618-8a59-eef23a7c516d" deleted "C:\PROGRA~3\4b0389b7-274a-40dc-969d-e708c6d75452\c215b160-ca08-4137-b296-03029148b75c" deleted "C:\PROGRA~3\4b0389b7-274a-40dc-969d-e708c6d75452\e5680600-3aec-42bd-a0be-8415d41b7bdc" deleted "C:\PROGRA~3\63f2ec79-2486-477a-b23e-484b04ed9c87\2e93a560-71ce-4e89-91a0-642cfaf36a11" deleted "C:\PROGRA~3\63f2ec79-2486-477a-b23e-484b04ed9c87\3ab4d08e-7cd1-4370-b619-d6e540d9d59b" deleted "C:\PROGRA~3\8eae7723-c33a-443f-bc80-0218a76ed3f8\add37e38-23b6-4063-bb82-0804ebdf338f" deleted "C:\PROGRA~3\8eae7723-c33a-443f-bc80-0218a76ed3f8\e81b9417-ca68-48db-8aeb-3ffa0463cd3e" deleted "C:\PROGRA~3\b6277b63-8e78-4c6b-b947-71f77deeb738\5901550c-e0d8-43a5-94c9-b21c4660edc1" deleted "C:\PROGRA~3\b6277b63-8e78-4c6b-b947-71f77deeb738\c0d96ef8-588f-4629-a370-a30c8b826f6e" deleted "C:\PROGRA~3\bab5c70e-1299-423c-b379-03b5d62b2f73\4057fdf6-d15f-463c-860b-d009a2b7f3e8" deleted "C:\PROGRA~3\bab5c70e-1299-423c-b379-03b5d62b2f73\63cfbd6d-330d-48d1-a8da-18743d935d44" deleted "C:\Programdata\Windows\sysprep.exe" deleted "C:\PROGRA~3\316e5c9f-3cfb-46b5-b505-d6b9ce513b67" deleted "C:\PROGRA~3\4b0389b7-274a-40dc-969d-e708c6d75452" deleted "C:\PROGRA~3\63f2ec79-2486-477a-b23e-484b04ed9c87" deleted "C:\PROGRA~3\8eae7723-c33a-443f-bc80-0218a76ed3f8" deleted "C:\PROGRA~3\b6277b63-8e78-4c6b-b947-71f77deeb738" deleted "C:\PROGRA~3\bab5c70e-1299-423c-b379-03b5d62b2f73" deleted "C:\Programdata\Windows" deleted "C:\Qoobox" deleted ==== System Specs ====================== Windows: Windows 7 Professional Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 8160 MB CPU Info: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz CPU Speed: 3469,3 MHz Sound Card: Not detected Display Adapters: | RDP Encoder Mirror Driver Monitors: 1x; Screen Resolution: 800 X 600 - 32 bit Network: Network Present Network Adapters: Cisco Systems VPN Adapter for 64-bit Windows | Intel(R) 82579V Gigabit Network Connection CD / DVD Drives: 3x (D: | E: | F: | ) D: TSSTcorpDVD-ROM TS-H353B | E: DTSOFT BDROM | F: ATAPI iHBS112 2 Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 119,1GB | G: 232,8GB | H: 0,0MB | J: 1087,1GB | L: 0,0MB | M: 0,0MB | U: 1862,9GB Hard Disks - Free: C: 24,1GB | G: 55,3GB | H: 0,0MB | J: 555,8GB | L: 0,0MB | M: 0,0MB | U: 487,7GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 05/15/12 | ALASKA - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: ASUSTeK Computer INC. SABERTOOTH P67 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Spyware: Windows Defender disabled (Outdated) Internet Explorer Version: 11.0.9600.17207 Adobe Reader version: 10.1.4.38 Sun Java version: 1.7.0_25 (32-bit) Sun Java version: 1.7.0_25 (64-bit) Flash Player version: 11.6.602.180 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\DOSTI\AppData\Local\Temp ==== 2014-07-14 07:20:40 5634C601025C31032A0AF1590B4C0CA6 43008 ----a-w- C:\Users\DOSTI\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpxwkvs1.dll ====== Java Cache ===== 2014-07-11 10:30:11 3302136A5932EB7F9942185C303A651D 759 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\136c4a81-1b386c5e 2014-07-11 10:30:10 F7190E8177BA50B46E5908CA9F10B093 128 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\4376964d-635ad96ebfe4c384dd2d708c77ed78d02b26d1159a5530c0176045b2443a93c8-6.0.lap 2014-07-04 08:22:10 2BEA4F40BEE67370B8DB272A202BD7C6 514 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\5de1fe52-66fb5326 2014-07-11 10:30:14 544C298DE5294DD84049B8250501F2C9 3353 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\2166f4d3-6ca15f39 2014-07-04 08:21:49 6EA88607BE86C32BDE53A615472675AA 101180 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\38194a96-238d6888 2014-07-11 10:30:10 6EA88607BE86C32BDE53A615472675AA 101180 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\665f1bda-425d895b 2014-07-11 10:30:11 1E3E36BA76DD67140537852695285382 327139 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\1664bd60-2beac6a7 2014-07-11 10:30:11 51D94DBCCB35850F03513729DE539657 327135 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\27f96e66-5fd260ef 2014-07-04 08:21:53 3302136A5932EB7F9942185C303A651D 759 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\bca3ce7-3051c9df 2014-07-11 14:03:58 9DF03EECED0CD8BD4C33EA7EDA639DD5 62293 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-199b6aa4 2014-07-11 13:21:57 9C6D5A86B986060616B2006709164F6A 29671 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-1b3713d5 2014-07-11 14:08:29 6AD2D1A6EC5AC7136E1A49951CB81DF2 160960 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-1d9e5543 2014-07-11 14:08:37 605D25484515221C783A555ED87122C1 11278 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-2217c65d 2014-07-11 13:34:40 6AD2D1A6EC5AC7136E1A49951CB81DF2 160960 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-26f5bac2 2014-07-11 13:34:42 D1E61D0922966AFFD4CF110B7E093660 77941 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-2f847179 2014-07-11 13:43:38 688F14C3843626345F560CC1385AD200 163647 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-317bd91c 2014-07-11 13:42:38 688F14C3843626345F560CC1385AD200 163647 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-31af8d0a 2014-07-11 13:34:42 9DF03EECED0CD8BD4C33EA7EDA639DD5 62293 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-372eac32 2014-07-11 14:08:37 0D27D7ACA6A2DB3076203540F525527C 60585 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-39b4e8c3 2014-07-11 13:38:08 688F14C3843626345F560CC1385AD200 163647 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-3c628235 2014-07-11 13:39:08 605D25484515221C783A555ED87122C1 11278 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-3e3d9354 2014-07-11 13:34:42 7EAAAE0276EAD75E3905261CC03C8850 11797 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-4515a886 2014-07-11 13:42:08 D1E61D0922966AFFD4CF110B7E093660 77941 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-471d651a 2014-07-11 13:18:21 688F14C3843626345F560CC1385AD200 163647 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-5b66b65e 2014-07-11 13:39:38 688F14C3843626345F560CC1385AD200 163647 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-61f6ac63 2014-07-11 13:41:38 7EAAAE0276EAD75E3905261CC03C8850 11797 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-651b8762 2014-07-11 13:40:08 6AD2D1A6EC5AC7136E1A49951CB81DF2 160960 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-6a004f27 2014-07-11 13:41:08 F5E1016A69DA45AE06588B1C19DA519B 51854 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-6e63aa4a 2014-07-11 13:37:38 ABBA9B29C3B1285EB3DBB6BDDA57C178 17176 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-71442c73 2014-07-11 13:43:08 ABBA9B29C3B1285EB3DBB6BDDA57C178 17176 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-795e17e8 2014-07-11 13:44:08 7EAAAE0276EAD75E3905261CC03C8850 11797 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-79c92a34 2014-07-11 13:38:08 8C8B11E00805BAE31D599CCB790864A5 12285 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-7a034a66 2014-07-11 13:40:38 8C8B11E00805BAE31D599CCB790864A5 12285 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\10dcd56c-7b37846c 2014-07-04 08:21:56 3ED46791CA2DDC1AEFA80C6FA817A4B6 243 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\212418ad-5f452fc9 2014-07-11 10:30:13 3ED46791CA2DDC1AEFA80C6FA817A4B6 243 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\655953f2-39784fac 2014-07-04 08:21:53 1E3E36BA76DD67140537852695285382 327139 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\5216c7f4-384c7952 2014-07-11 10:30:11 F55AB63D94A5433DC2601C82E6AA75D6 12876 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\7dca3ef5-38dd6ec0 2014-07-11 10:30:25 2BEA4F40BEE67370B8DB272A202BD7C6 514 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\63515bf6-64b38576 2014-07-04 08:21:48 378C2294F177B5876D99893C3399D4FF 128 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\702d7677-a2e4626f635c1aae33c25ffdd86c621421905417440f108b8baf85fa7c945460-6.0.lap 2014-07-04 08:21:53 51D94DBCCB35850F03513729DE539657 327135 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\55e7ee3d-1cdb193f 2014-07-04 08:21:53 F55AB63D94A5433DC2601C82E6AA75D6 12876 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\3a07823e-628b54c9 2014-07-04 08:21:57 544C298DE5294DD84049B8250501F2C9 3353 ----a-w- C:\Users\DOSTI\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\3613b008-56c5f7a9 ====== C:\Windows\SysWOW64 ===== 2014-07-09 07:27:02 C6A991D7DF17EBD8DE4739CD1F283133 646144 ----a-w- C:\Windows\SysWOW64\osk.exe 2014-07-09 07:27:02 492FF9C530EC0352B3C904CE9898269D 509440 ----a-w- C:\Windows\SysWOW64\qedit.dll 2014-07-09 07:27:01 F95E1E9D97D25C11F29CA34C843A6F4D 247808 ----a-w- C:\Windows\SysWOW64\schannel.dll 2014-07-09 07:27:01 E3ECF5FFE3DEDF61DC6877B6A99ACBBF 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll 2014-07-09 07:27:01 C71CC796F0E2E9BD542C87532706FCFE 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll 2014-07-09 07:27:01 C61DDFE40204F3BE3DF111981D91560E 220160 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2014-07-09 07:27:01 8BA721F76C97A219599E88722AA48875 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll 2014-07-09 07:27:01 6CB2616152ADCDF39F05B08E4858F476 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll 2014-07-09 07:27:01 1A0BE0092646F564FAF204E678AF8E03 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll 2014-07-09 07:27:00 E739AEDCA67F214F96C2520BA293B12B 526336 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-07-09 07:27:00 E3065F51EE0BB099EAAE48C3FC3A25B6 592896 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2014-07-09 07:27:00 DFA59840BB1220AFD261FDAE83543959 17276416 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-07-09 07:27:00 BE0EA764820239F7785410CBE3880086 32256 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-07-09 07:27:00 9385D7C5DF2566D01B1FB150F381D50B 367616 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2014-07-09 07:27:00 91CF46BBB827E461C498A1D7D1A71AD6 32768 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2014-07-09 07:27:00 7C44C697BA6D0B698B91AC6516A731C3 1139200 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-07-09 07:27:00 67EA1BB7F6428A10C64D5A732976F871 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-07-09 07:27:00 448854C4FE94C0FA329CC38FF103DC74 51200 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2014-07-09 07:26:59 CE94480E78CC3A1A17B53F2BB65639BD 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2014-07-09 07:26:59 4B774E842F268D51DB942EF9637828B9 1964544 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-07-09 07:26:59 42BF66A4DC35DAD3564065173372CCE9 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2014-07-09 07:26:59 084FB28A790685F32A6D7D003777696D 2179072 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-07-09 07:26:58 FC733FD7721200D5136F6F8112E97B00 11742208 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-07-09 07:26:58 F2A99A4293CAF7956FF7801D36D5A3B2 442368 ----a-w- C:\Windows\SysWOW64\ieui.dll 2014-07-09 07:26:58 A9F8343A3234FC7A42DDA4569827B411 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2014-07-09 07:26:58 A98E303FCB7058C6E78FD1FBBCBB5EEF 240824 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2014-07-09 07:26:58 573E522A27210701EB8A6C476D36FFF6 239616 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-07-09 07:26:57 FDA05E78813F543A6E9AC6B23EC696F2 1068032 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2014-07-09 07:26:57 98C7B1AFA0A99EE3BE99EAABEFB72CA0 4254720 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-07-09 07:26:57 09CBE4B1AEF497FC05493B09EA2C1757 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-07-09 07:26:55 CCC198257901BEEA2FBF8EB1E7678356 1791488 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-07-09 07:26:55 8046CF629D8AE766C22145F4A6AFFBE1 164864 ----a-w- C:\Windows\SysWOW64\msrating.dll 2014-07-09 07:26:55 557D60DF85D61C290A1D09E7115B294B 62464 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2014-07-09 07:26:55 175A663547805367C10746FC416D4605 704512 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-07-09 07:26:55 045A91095A605BB20FF2B37546FE62B0 455168 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2014-07-09 07:26:48 A0E053D8D97ED0F913D56E6AF21DD26F 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2014-07-09 07:26:48 230AAF45031E87638CA4053C0399C1E6 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2014-07-04 08:20:49 8C7C6D494D86307CDCF63E0478767C16 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-07-04 07:52:01 A5F833506BF6A1B5D693E1499DEE2444 626688 ----a-w- C:\Windows\SysWOW64\usp10.dll 2014-07-04 07:52:00 E227B810296AA27E6C69307A7B6456E5 1389056 ----a-w- C:\Windows\SysWOW64\msxml6.dll 2014-07-04 07:52:00 8B8D1CEF498678CAB9DF17145D34BC64 1237504 ----a-w- C:\Windows\SysWOW64\msxml3.dll 2014-07-04 07:52:00 2E673E776136354ECFB57BFD62E7EC3D 2048 ----a-w- C:\Windows\SysWOW64\msxml6r.dll 2014-07-04 07:52:00 0789F82BAE171323F74B8F175D406AB8 2048 ----a-w- C:\Windows\SysWOW64\msxml3r.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-07-09 07:27:02 F1726E14C8F7B40CD828345890AAF764 3157504 ----a-w- C:\Windows\Sysnative\win32k.sys 2014-07-09 07:27:02 D6AFBAA93169E6772565A1BC896D666B 624128 ----a-w- C:\Windows\Sysnative\qedit.dll 2014-07-09 07:27:02 A064A1D9CBD7F6959AAEAEAFF96DB2E9 692736 ----a-w- C:\Windows\Sysnative\osk.exe 2014-07-09 07:27:01 E8E98B3B7A6E1250F4AA7AF8FA17D5BB 340992 ----a-w- C:\Windows\Sysnative\schannel.dll 2014-07-09 07:27:01 E23BA7A7BD97FC6B8AB5EA32A46D05CD 307200 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2014-07-09 07:27:01 C9DD5C0D5AF2D7A54BA32E8FBD3B67F1 22016 ----a-w- C:\Windows\Sysnative\credssp.dll 2014-07-09 07:27:01 BFC98590EAB40C785D6134B1FA818A62 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll 2014-07-09 07:27:01 A805B5E68262302D1A60BE3DED5846C9 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll 2014-07-09 07:27:01 7D1017ED11B7C3B162628069742B5E58 314880 ----a-w- C:\Windows\Sysnative\msv1_0.dll 2014-07-09 07:27:01 79EE13A5A406E4603874686B8005DA72 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll 2014-07-09 07:27:00 FC50DF22550C565DD096ACFAF18A37ED 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll 2014-07-09 07:27:00 DA5BAC4C5BDB22BBC6771534EA95AD33 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2014-07-09 07:27:00 C2F62DF01E3552DB0571FEF4D514675B 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2014-07-09 07:27:00 C0F9F52C36E584C0339406ABF6DA1FBA 266424 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2014-07-09 07:27:00 5E646AD50848A409291418B5759595B9 38400 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2014-07-09 07:26:59 73C7D1FCF6F58F3BF077FB42B0214BC0 1393664 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-07-09 07:26:58 D8E6706AECD7AA50764E126CE3F36555 631808 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-07-09 07:26:58 CA67F68CEC788C0C69AD47C5125DDD8E 608768 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-07-09 07:26:58 7469D4E046BD7D155CAC2697BD28B58B 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll 2014-07-09 07:26:58 7176CB0FFAAC3E54ABB2014E821120F9 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2014-07-09 07:26:58 391D68668CFC061F26BE593A61F745E0 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2014-07-09 07:26:58 2E40D5E11BCC597352EE0314AF629A0F 452608 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2014-07-09 07:26:58 1685AA234852657C4A6D253CCBBE84E0 2040832 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-07-09 07:26:57 A21C6231459F4CAC212676A9367A1A68 2768384 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-07-09 07:26:55 8B2ADE09864BF3F7AA6D395DAFEC41B5 51200 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2014-07-09 07:26:54 CD76B3D60D28634A67B0AD7CB2E45929 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2014-07-09 07:26:54 945FA19B388FCF0FEA6124B5FD71C72F 1249280 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2014-07-09 07:26:54 854C5F171F5CEE272232AC0286F3B3B9 598016 ----a-w- C:\Windows\Sysnative\ieui.dll 2014-07-09 07:26:54 50FF2DD806CC6CF3B3F98F9A1A711603 752640 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2014-07-09 07:26:54 4EC7738394D2BC7BCB5F7A3657F57252 5721088 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-07-09 07:26:54 415DF2B045167D6D85223CFFF00FCFC7 292864 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-07-09 07:26:54 366FA6D38406DC8BED62825C196144D1 13527040 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-07-09 07:26:54 1FD6C2F6AC489C271565730F6E9E1A05 85504 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-07-09 07:26:53 F876957CA193B20A21D52F91418657D7 195584 ----a-w- C:\Windows\Sysnative\msrating.dll 2014-07-09 07:26:53 BDD4A74421B023C81DA63168BD10C01B 846336 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-07-09 07:26:53 89A53CDE0DA5680AF48A181D82C752CA 83968 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2014-07-09 07:26:53 2EE102DF0EDD8A1EDD3D1E9B99A91BEC 2266112 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-07-09 07:26:53 00401347C3BC466E5F2516387EBBCA7D 548352 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-07-09 07:26:52 FEC19C351EF1B2C998A85D1BFD765675 23464448 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-07-09 07:26:52 52012C83F7E9AF65D13F04415F0508F5 940032 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2014-07-09 07:26:48 D4CCE15190269486A5E6D4D4E597F798 1460736 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2014-07-04 07:52:01 088CF6AFCD5CDD44E40C0ACDE3C1A5E0 801280 ----a-w- C:\Windows\Sysnative\usp10.dll 2014-07-04 07:52:00 ECA6AC33BD9E441F7B47D173D715D268 1882112 ----a-w- C:\Windows\Sysnative\msxml3.dll 2014-07-04 07:52:00 3408DD8081DC22858AE2E6ABD2594C02 2048 ----a-w- C:\Windows\Sysnative\msxml6r.dll 2014-07-04 07:52:00 0E3A7EC2B9590EA7767BBB1823630DEA 2002432 ----a-w- C:\Windows\Sysnative\msxml6.dll 2014-07-04 07:52:00 0465A8CFDDB4FFDB569802A70B9443D5 2048 ----a-w- C:\Windows\Sysnative\msxml3r.dll 2014-07-03 08:43:58 EF2D8BBA6E077559B675513BC0EE5FC2 3178496 ----a-w- C:\Windows\Sysnative\rdpcorets.dll 2014-07-03 08:43:58 2147C5330F983D76A36B73F4A804F778 16384 ----a-w- C:\Windows\Sysnative\RdpGroupPolicyExtension.dll ====== C:\Windows\Sysnative\drivers ===== 2014-07-09 07:27:02 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys 2014-07-04 07:52:01 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2014-07-04 07:52:01 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2014-06-29 23:31:39 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys ====== C:\Windows\Tasks ====== 2014-07-03 08:41:54 BAA15456A39C57A10D18DD8FAEEC2854 4052 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA1cf969aa49da922 2014-07-03 08:41:54 71F725272E0FF4498E6CBDAEB2E26D23 1056 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf969aa49da922.job ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-07-11 11:33:46 -------- d-----w- C:\Program Files\Speccy 2014-06-27 23:00:14 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2014-07-04 08:20:52 -------- d-----w- C:\PROGRA~2\COMMON~1\Java ======= C: ===== 2014-07-03 08:02:52 FE7066A059855F1C123E2D122DE97863 3536 ------w- C:\bootsqm.dat ====== C:\Users\DOSTI\AppData\Roaming ====== 2014-07-01 12:41:41 -------- d-----w- C:\Users\Public\AppData\Local\temp 2014-07-01 12:41:41 -------- d-----w- C:\Users\Gebruiker\AppData\Local\temp 2014-07-01 12:41:41 -------- d-----w- C:\Users\Default\AppData\Local\temp 2014-07-01 12:41:41 -------- d-----w- C:\Users\Default User\AppData\Local\temp 2014-06-27 23:09:04 -------- d-----w- C:\Users\DOSTI\AppData\Roaming\TuneUp Software ====== C:\Users\DOSTI ====== 2014-07-14 07:07:24 -------- d-----w- C:\ProgramData\F-Secure-UninstallationTool 2014-07-01 12:41:41 -------- d-----w- C:\Users\Public\AppData 2014-06-27 23:04:03 -------- d--h--w- C:\ProgramData\Common Files ====== C: exe-files == 2014-07-14 07:28:24 64B788CC2DEA41BC7F70AA9992B32164 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-39699657-3793838071-17724609-1000\$IZ0W4GR.exe 2014-07-14 07:11:51 352E8561E633B17ED22012366721FFDC 1285120 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-39699657-3793838071-17724609-1000\$RZ0W4GR.exe 2014-07-14 07:07:24 56F0AF930937BBA47364985F731D2EA3 59944 ----a-w- C:\ProgramData\F-Secure-UninstallationTool\instfsps_x64.exe 2014-07-14 07:07:24 0A7E8134A5EC86842A495DE4245471DB 2370600 ----a-w- C:\ProgramData\F-Secure-UninstallationTool\UninstallationTool.exe 2014-07-11 11:42:40 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\DOSTI.exe 2014-07-09 07:27:04 A1CF92651A2274E887189DABD2929DEF 82944 ----a-w- C:\Windows\SysWOW64\Dism\DismHost.exe 2014-07-09 07:27:04 516A5FCE06BB388499238A5F9286CB74 96768 ----a-w- C:\Windows\System32\Dism\DismHost.exe 2014-07-09 07:27:02 C6A991D7DF17EBD8DE4739CD1F283133 646144 ----a-w- C:\Windows\SysWOW64\osk.exe 2014-07-09 07:27:02 A064A1D9CBD7F6959AAEAEAFF96DB2E9 692736 ----a-w- C:\Windows\System32\osk.exe 2014-07-09 07:27:02 89D2706FCD45E33CECFBD46BCBAD7E16 10240 ----a-w- C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe 2014-07-09 07:27:02 20235ED4653CFDDCDEF721F5126A1C47 224768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe 2014-07-09 07:27:00 61FF1A9683EDD471797FE0F56057FD09 222720 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2014-07-09 07:27:00 24868C9D422EDB5B249C0C81B01A0C19 810160 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-07-09 07:26:59 CD900EFB4F8946A2BB1950D9F45915C2 812216 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-07-09 07:26:59 65D0ECD485C8605B07C8338708224818 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-07-09 07:26:59 2168067C03FADB690B77633104A2E64B 470016 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2014-07-09 07:26:58 CA67F68CEC788C0C69AD47C5125DDD8E 608768 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-07-09 07:26:58 8395829B1CE9E11C6441753257DC7591 482816 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-07-09 07:26:58 7176CB0FFAAC3E54ABB2014E821120F9 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-07-09 07:26:57 09CBE4B1AEF497FC05493B09EA2C1757 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-07-09 07:26:54 CD76B3D60D28634A67B0AD7CB2E45929 139264 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-07-09 07:26:52 52012C83F7E9AF65D13F04415F0508F5 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe === C: other files == 2014-07-09 07:27:02 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\System32\drivers\afd.sys 2014-07-09 07:27:02 F1726E14C8F7B40CD828345890AAF764 3157504 ----a-w- C:\Windows\System32\win32k.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-39699657-3793838071-17724609-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\DOSTI\AppData\Local\Google\Update\GoogleUpdate.exe /c" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ASUS Ai Charger"="C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "PowerDVD13Agent"="J:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13\PowerDVD13Agent.exe" "ConnectionCenter"="C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\concentr.exe /startup" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\DOSTI\AppData\Local\Google\Update\GoogleUpdate.exe /c" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acrobat Assistant 8.0] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Acrobat Assistant 8.0" "hkey"="HKLM" "command"="\"G:\\Program Files\\adobe 2012\\Acrobat 10.0\\Acrobat\\Acrotray.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Acrobat Speed Launcher] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe Acrobat Speed Launcher" "hkey"="HKLM" "command"="\"G:\\Program Files\\adobe 2012\\Acrobat 10.0\\Acrobat\\Acrobat_sl.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeAAMUpdater-1.0" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS6ServiceManager] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeCS6ServiceManager" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\CS6ServiceManager\\CS6ServiceManager.exe\" -launchedbylogin" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BCSSync" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCU] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="BCU" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\DeviceVM\\Browser Configuration Utility\\BCU.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Cm106Sound] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Cm106Sound" "hkey"="HKLM" "command"="C:\\Windows\\syswow64\\RunDll32.exe C:\\Windows\\Syswow64\\cm106.dll,CMICtrlWnd" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DAEMON Tools Lite" "hkey"="HKCU" "command"="\"G:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\F-Secure Manager] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="F-Secure Manager" "hkey"="HKLM" "command"="\"g:\\Program Files (x86)\\F-Secure\\Common\\FSM32.EXE\" /splash" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\F-Secure TNB] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="F-Secure TNB" "hkey"="HKLM" "command"="\"g:\\Program Files (x86)\\F-Secure\\FSGUI\\TNBUtil.exe\" /CHECKALL /WAITFORSW" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Google Update" "hkey"="HKCU" "command"="\"C:\\Users\\DOSTI\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Photosmart 5510 series (NET)] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HP Photosmart 5510 series (NET)" "hkey"="HKCU" "command"="\"C:\\Program Files\\HP\\HP Photosmart 5510 series\\Bin\\ScanToPCActivationApp.exe\" -deviceID \"CN1CS327TG05V3:NW\" -scfn \"HP Photosmart 5510 series (NET)\" -AutoStart 1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HP Software Update" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\hpqSRMon] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="hpqSRMon" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\HP\\Digital Imaging\\bin\\hpqSRMon.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IAStorIcon] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="IAStorIcon" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Intel\\Intel(R) Rapid Storage Technology\\IAStorIcon.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\JMB36X IDE Setup] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="JMB36X IDE Setup" "hkey"="HKLM" "command"="C:\\Windows\\RaidTool\\xInsIDE.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\msnmsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msnmsgr" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Windows Live\\Messenger\\msnmsgr.exe\" /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NUSB3MON] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NUSB3MON" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Renesas Electronics\\USB 3.0 Host Controller Driver\\Application\\nusb3mon.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\OfficeSyncProcess] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="OfficeSyncProcess" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\MSOSYNC.EXE\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Reader Application Helper] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Reader Application Helper" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Sony\\ReaderDesktop\\appHelper\\ReaderAppHelper.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Steam] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Steam" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Steam\\Steam.exe\" -silent" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SwitchBoard] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SwitchBoard" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\VoipDiscount] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="VoipDiscount" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\VoipDiscount.com\\VoipDiscount\\VoipDiscount.exe\" -nosplash -minimized" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Program Neighborhood Agent.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Program Neighborhood Agent.lnk" "backup"="C:\\Windows\\pss\\Program Neighborhood Agent.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\Windows\\Installer\\{2624B680-02BC-4CBC-839C-DA20DF6EF6EC}\\pnaico.exe.20FBBF0A_A7E5_4BDE_9798_9811C3D135AC.exe " "item"="Program Neighborhood Agent" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^vpngui.exe.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\vpngui.exe.lnk" "backup"="C:\\Windows\\pss\\vpngui.exe.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\Windows\\Installer\\{467D5E81-8349-4892-9E81-C3674ED8E451}\\Icon09DB8A851.exe -user_logon" "item"="vpngui.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^DOSTI^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Inktwaarschuwingen controleren - HP Photosmart 5510 series (netwerk).lnk] "path"="C:\\Users\\DOSTI\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Inktwaarschuwingen controleren - HP Photosmart 5510 series (netwerk).lnk" "backup"="C:\\Windows\\pss\\Inktwaarschuwingen controleren - HP Photosmart 5510 series (netwerk).lnk.Startup" "backupExtension"=".Startup" "command"="C:\\Windows\\system32\\RunDll32.exe \"C:\\Program Files\\HP\\HP Photosmart 5510 series\\bin\\HPStatusBL.dll\",RunDLLEntry SERIALNUMBER=CN1CS327TG05V3;CONNECTION=NW;MONITOR=1;" "item"="Inktwaarschuwingen controleren - HP Photosmart 5510 series (netwerk)" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^DOSTI^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Schermopname en Snel starten.lnk] "path"="C:\\Users\\DOSTI\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OneNote 2010 Schermopname en Snel starten.lnk" "backup"="C:\\Windows\\pss\\OneNote 2010 Schermopname en Snel starten.lnk.Startup" "backupExtension"=".Startup" "command"="C:\\PROGRA~2\\MICROS~1\\Office14\\ONENOTEM.EXE /tsr" "item"="OneNote 2010 Schermopname en Snel starten" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AllShare] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BCUService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CVPND] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\F-Secure Gatekeeper Handler Starter] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\F-Secure Network Request Broker] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\FSMA] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Sony SCSI Helper Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Steam Client Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SwitchBoard] ==== Startup Folders ====================== 2013-04-03 21:43:04 1049 ----a-w- C:\Users\DOSTI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [09-07-2014 10:21] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29-01-2014 10:53] C:\Windows\tasks\GoogleUpdateTaskMachineUA1cf969aa49da922.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29-01-2014 10:53] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-39699657-3793838071-17724609-1000Core.job --a------ C:\Users\DOSTI\AppData\Local\Google\Update\GoogleUpdate.exe [05-12-2011 23:54] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-39699657-3793838071-17724609-1000UA.job --a------ C:\Users\DOSTI\AppData\Local\Google\Update\GoogleUpdate.exe [05-12-2011 23:54] C:\Windows\tasks\HP Photo Creations Messager.job --a------ C:\ProgramData\HP Photo Creations\MessageCheck.exe [15-02-2011 12:11] C:\Windows\tasks\MATLAB R2012b Startup Accelerator.job --a------ C:\Program Files\MATLAB\R2012b\bin\win64\MATLABStartupAccelerator.exe [] C:\Windows\tasks\MATLAB R2013a Startup Accelerator.job --ah----- \C:\Program Files\MATLAB\R2013a\bin\win64\MATLABStartupAccelerator.exe [] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-DOSTI-PC-DOSTI" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA1cf969aa49da922" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-39699657-3793838071-17724609-1000Core" [C:\Users\DOSTI\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-39699657-3793838071-17724609-1000UA" [C:\Users\DOSTI\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HP Photo Creations Messager" [C:\ProgramData\HP Photo Creations\MessageCheck.exe] "C:\Windows\SysNative\tasks\HPCustParticipation HP Photosmart 5510 series" ["C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPCustPartic.exe"] "C:\Windows\SysNative\tasks\MATLAB R2012b Startup Accelerator" [C:\Program Files\MATLAB\R2012b\bin\win64\MATLABStartupAccelerator.exe] "C:\Windows\SysNative\tasks\MATLAB R2013a Startup Accelerator" [J:\Program Files\MATLAB\R2013a\bin\win64\MATLABStartupAccelerator.exe] "C:\Windows\SysNative\tasks\{082F201D-3739-4963-B367-028D3317E460}" [E:\Spelling\SETUP.EXE] "C:\Windows\SysNative\tasks\{3BCDF84E-E760-4959-9F6F-78FEB1B4CFC4}" [C:\Program Files (x86)\Steam\SteamApps\common\Football Manager 2013\fm.exe] "C:\Windows\SysNative\tasks\{6035A015-A21E-4E60-9D1A-D6E212D63D3A}" ["c:\program files\internet explorer\iexplore.exe" http://www.skype.com/go/downloading?source=lightinstaller&ver=6.14.0.104&LastError=12007] "C:\Windows\SysNative\tasks\{6C5ED0C4-CADD-49C2-BF8B-7CF2CC433EE5}" [E:\Spelling\SETUP.EXE] "C:\Windows\SysNative\tasks\{837A0AA9-32EE-4BCA-ABDF-A0D62DB78227}" [C:\Program Files (x86)\Origin\Origin.exe] "C:\Windows\SysNative\tasks\{A88A6142-DBC5-43C0-86FD-11B4314CFC08}" [C:\Program Files (x86)\Origin\Origin.exe] "C:\Windows\SysNative\tasks\{B5062A7C-AC6F-4CFC-8DA0-175CAA5A4CBA}" [C:\Program Files (x86)\Steam\SteamApps\common\Football Manager 2013\fm.exe] "C:\Windows\SysNative\tasks\{D1403FEB-59FC-4414-85CE-D9B2A634E031}" [C:\Program Files (x86)\Steam\SteamApps\common\Football Manager 2013\fm.exe] "C:\Windows\SysNative\tasks\{F96F6010-9400-4E39-A2A0-0BDCDCBA0BB8}" [C:\Program Files (x86)\Steam\SteamApps\common\Football Manager 2013\fm.exe] "C:\Windows\SysNative\tasks\{FE8A9B8D-CAFF-4DFE-802B-559A1A6A67AF}" [E:\Spelling\SETUP.EXE] "C:\Windows\SysNative\tasks\ASUS\ASUS AI Suite II Execute" [C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe] "C:\Windows\SysNative\tasks\ASUS\ASUS DigiVRM Help" [C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "web2pdfextension@web2pdf.adobedotcom"="G:\Program Files\adobe 2012\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn" [21-10-2012 02:33] ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions pkndmigholgfjlniaohblojbhgjbkakn - C:\Users\DOSTI\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx[] YouTube - DOSTI\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - DOSTI\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - DOSTI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Java Enterprise - DOSTI\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnafbcjeekpmfmgkekdaddgmjkjdije Gmail - DOSTI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\DOSTI\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pkndmigholgfjlniaohblojbhgjbkakn_0.localstorage deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/" "Default_Page_URL"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{FA1611B7-A547-4c5c-9BCD-C68ECD80E267}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{FA1611B7-A547-4c5c-9BCD-C68ECD80E267}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="https://www.google.nl/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {3C0FD167-EE4D-4f30-9F56-069C9BDE49E9} Google Url="http://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=nl&q={searchTerms}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F60730A4A66673047777F5728467D401 deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{28F11E16-A484-FBB7-092B-D6AD78B64291} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\pkndmigholgfjlniaohblojbhgjbkakn deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\F60730A4A66673047777F5728467D401 deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCU deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\F-Secure Manager deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\F-Secure TNB deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OfficeSyncProcess deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VoipDiscount deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O4 - HKLM\..\Run: [ASUS Ai Charger] C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [PowerDVD13Agent] "J:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13\PowerDVD13Agent.exe" O4 - HKLM\..\Run: [ConnectionCenter] "C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Google Update] "C:\Users\DOSTI\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = DOSTI\AppData\Roaming\Dropbox\bin\Dropbox.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Users\DOSTI\AppData\Local\Citrix\ICA Client\IcaMimeFilter.dll O23 - Service: ArcSoft Exchange Service (ADExchange) - ArcSoft, Inc. - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe O23 - Service: CyberLink PowerDVD 13 Media Server Monitor Service - CyberLink - J:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe O23 - Service: CyberLink PowerDVD 13 Media Server Service - CyberLink - J:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\DOSTI\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\DOSTI\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\DOSTI\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FK4FQ2V5 will be deleted at reboot C:\Users\DOSTI\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\DOSTI\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=76 folders=39 227780761 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\DOSTI\AppData\Local\Temp will be emptied at reboot C:\Users\Gebruiker\AppData\Local\temp emptied successfully C:\Users\Public\AppData\Local\temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\DOSTI\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\DOSTI\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat" deleted "C:\Users\DOSTI\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FK4FQ2V5" not found ==== EOF on ma 14-07-2014 at 9:42:09,90 ======================