Zoek.exe v5.0.0.0 Updated 19-10-2014 Tool run by Eigenaar on vr 24-10-2014 at 11:13:53,88. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\66SAERQK\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2014-10-23-130429.log 22599 bytes C:\zoek-results2014-10-24-081438.log 40580 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Program Files\Norman\Npm\Bin\nfservice.exe C:\Program Files\Norman\nse\bin\nseupdatesvc.exe C:\Program Files\Norman\nvc\bin\nvcsvc.exe C:\Program Files\Norman\Npm\Bin\nvoy.exe C:\Program Files\Norman\Ngs\Bin\Nnf.exe C:\Program Files\Norman\npf\bin\npfsvc32.exe C:\Program Files\Norman\Ngs\Bin\Nprosec.exe C:\Program Files\Norman\Npm\Bin\nwscmon.exe C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\SLsvc.exe C:\Program Files\Norman\Npm\Bin\Zanda.exe C:\Windows\system32\Dwm.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe C:\Windows\system32\FsUsbExService.Exe C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe C:\Windows\system32\TODDSrv.exe c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\DRIVERS\xaudio.exe C:\Windows\system32\spool\DRIVERS\W32X86\3\HP1006MC.EXE C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe C:\Windows\System32\alg.exe C:\Program Files\Norman\Npm\Bin\scheduler.exe C:\Program Files\Norman\Npm\Bin\Njeeves2.exe C:\Program Files\Norman\npc\bin\nuaa.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe C:\Program Files\DYMO\DYMO Label Software\DLSService.exe C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Norman\Npm\Bin\Zlh.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe C:\Program Files\DYMO\DYMO Label Software\DymoQuickPrint.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac C:\Program Files\Norman\Npm\Bin\zlhh.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe C:\Program Files\Windows Mail\WinMail.exe C:\Program Files\Norman\npf\bin\npfuser.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_15_0_0_167_ActiveX.exe C:\Windows\system32\wuauclt.exe C:\Windows\system32\Taskmgr.exe C:\Windows\Explorer.EXE C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\66SAERQK\zoek.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k HsfXAudioService C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation ==== Deleting Services ====================== ==== System Specs ====================== Windows: Windows Vista Home Premium Edition Service Pack 2 (Build 6002) Memory (RAM): 3062 MB CPU Info: Intel(R) Pentium(R) Dual CPU T2390 @ 1.86GHz CPU Speed: 508,0 MHz Sound Card: Luidsprekers (Realtek High Defi | Display Adapters: Mobile Intel(R) 965 Express Chipset Family | Mobile Intel(R) 965 Express Chipset Family | RDPDD Chained DD | RDP Encoder Mirror Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1280 X 800 - 32 bit Network: Network Present Network Adapters: Intel(R) PRO/Wireless 3945ABG Network Connection | Realtek PCIe FE Family Controller CD / DVD Drives: 1x (F: | ) F: MATSHITADVD-RAM UJ-850S Ports: COM3 | COM5 | COM6 LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 74,4GB | E: 73,2GB Hard Disks - Free: C: 27,7GB | E: 68,3GB Manufacturer *: INSYDE BIOS Info: AT/AT COMPATIBLE | 07/10/08 | TOSINV - 1 Time Zone: West-Europa (standaardtijd) Motherboard *: Intel Corp. Base Board Product Name Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Norman Security Suite Anti-Virus On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: Norman Security Suite Anti-Spyware disabled (Outdated) Firewall: Norman Security Suite Firewall disabled Internet Explorer Version: 9.0.8112.16421 Adobe Reader version: 8.1.0.2007051100 Sun Java version: 1.8.0_25 (32-bit) ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Eigenaar\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\system32 ===== 2014-10-23 19:28:34 C6F05AA16F02B3152FEBA9CB27005E4E 191952 ----a-w- C:\Windows\System32\nscrnsav.scr 2014-10-16 17:35:57 8580484193CE0A0788830FBAB97CF13B 1131664 ----a-w- C:\Windows\System32\dfshim.dll 2014-10-16 17:35:57 842DE20A6487D830A458DDB5E0363F13 156824 ----a-w- C:\Windows\System32\mscorier.dll 2014-10-16 17:35:57 653DFC2662680AB61232E1531147558A 81560 ----a-w- C:\Windows\System32\mscories.dll 2014-10-16 17:33:24 69EEF0917300F377BC056FFF9C861649 2054656 ----a-w- C:\Windows\System32\win32k.sys 2014-10-16 01:05:18 90634CE0C5601BF19E93076052D2A3D6 10752 ----a-w- C:\Windows\System32\msfeedssync.exe 2014-10-16 01:05:18 89FACA9614F1C949106106BEB23D1EC0 353792 ----a-w- C:\Windows\System32\dxtmsft.dll 2014-10-16 01:05:17 E8B3EE6038623D549264AE37BD3E0209 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll 2014-10-16 01:05:17 E5C50FC8B9EDF1530EF230A687A5EB0B 421376 ----a-w- C:\Windows\System32\vbscript.dll 2014-10-16 01:05:17 29B990A63A3448A2AAC5FB9A441C8AF0 65536 ----a-w- C:\Windows\System32\jsproxy.dll 2014-10-16 01:05:16 1524E24AC57E375F3C42481A9ACEE038 1138688 ----a-w- C:\Windows\System32\urlmon.dll 2014-10-16 01:05:16 09192845BF15D30A86E8AD012F232AEC 11776 ----a-w- C:\Windows\System32\mshta.exe 2014-10-16 01:05:15 D93F3F1134C9CBC81D6F7D470A29E557 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2014-10-16 01:05:14 10B238C056068548211288D5DCC109DD 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2014-10-16 01:05:13 4037D4729F978F9677B4BD8E2D855BD7 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-10-16 01:05:12 A6F7BBEFFD204C45BD732A261A52EED4 231936 ----a-w- C:\Windows\System32\url.dll 2014-10-16 01:05:12 77742DDD19DB7503EEBF0A4A5A0AD6B1 1802752 ----a-w- C:\Windows\System32\iertutil.dll 2014-10-16 01:05:12 12486BDE40B31322A239D150C595BAF4 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-10-16 01:05:11 8163D88337C067C8B75BA80BEBC0B0CD 9739776 ----a-w- C:\Windows\System32\ieframe.dll 2014-10-16 01:05:11 3252D4791357FEE6C2BAF0619C041317 1129472 ----a-w- C:\Windows\System32\wininet.dll 2014-10-16 01:05:09 EE05498252DED63A6998C2629FFEFB89 223232 ----a-w- C:\Windows\System32\dxtrans.dll 2014-10-16 01:05:09 9B2FD5A84AA985B0393E0BF33391F4EF 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2014-10-16 01:05:08 7F2188097B1D46554A7D1A31C787C978 717824 ----a-w- C:\Windows\System32\jscript.dll 2014-10-16 01:05:08 5B170AD076338C48CDC77ABA487DD6FC 176640 ----a-w- C:\Windows\System32\ieui.dll 2014-10-16 01:05:03 3E7834CD2A543D58443BBE38FD74E8EB 12364288 ----a-w- C:\Windows\System32\mshtml.dll 2014-10-16 01:05:01 1DDFA163F4FA305DE1F81CD80DE53F87 1810432 ----a-w- C:\Windows\System32\jscript9.dll 2014-10-16 01:02:54 1EB8CA23B805D3F8DBDAC8CAE7979B8B 66560 ----a-w- C:\Windows\System32\packager.dll ====== C:\Windows\system32\drivers ===== 2014-10-23 19:17:37 F60B2134727AC6ED5A6C38CE18F0661F 30856 ----a-w- C:\Windows\System32\drivers\nnetsecl.sys 2014-10-23 19:17:37 A22F51BC86AC93A69163B5A296AA0EF0 53928 ----a-w- C:\Windows\System32\drivers\nnetsec.sys 2014-10-23 19:17:37 85C5422B148ABE2C6D02031483EBAAB2 133152 ----a-w- C:\Windows\System32\drivers\ale7_nf64.sys 2014-10-23 19:17:37 7F32D8753F687CB54E75C68D2B921359 123888 ----a-w- C:\Windows\System32\drivers\ale7_nf.sys 2014-10-23 19:17:37 702C1C2F4986A8080DAC71AE034F6BBC 461120 ----a-w- C:\Windows\System32\drivers\tdi_nf.sys 2014-10-23 19:17:37 5AC76B4546B057771FB806AE83C16F56 130080 ----a-w- C:\Windows\System32\drivers\ale_nf64.sys 2014-10-23 19:17:37 3EA5049AD478F9A62B8E2DF96FA07D2B 120792 ----a-w- C:\Windows\System32\drivers\ale_nf.sys 2014-10-23 19:17:37 2EFE2EAB05EB55158894330DDCC29CBB 34440 ----a-w- C:\Windows\System32\drivers\nnetsecl64.sys 2014-10-23 19:17:33 130AFD0E373F22A6320B60FEBB7E8D56 360376 ----a-w- C:\Windows\System32\drivers\Trufos.sys 2014-10-16 01:07:23 4E404505B3F62ECFBDBCBBCF0A72DBC5 143360 ----a-w- C:\Windows\System32\drivers\fastfat.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-10-23 19:15:12 -------- d-----w- C:\Program Files\Norman 2014-10-22 14:23:12 -------- d-----w- C:\Program Files\Common Files\Java 2014-10-21 18:02:07 -------- d-----w- C:\Program Files\trend micro ======= C: ===== ====== C:\Users\Eigenaar\AppData\Roaming ====== 2014-10-24 08:03:50 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2014-10-24 08:03:50 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2014-10-24 08:03:50 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2014-10-24 08:03:50 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2014-10-24 08:03:49 -------- d-----w- C:\Users\Eigenaar\AppData\Local\Temp ====== C:\Users\Eigenaar ====== 2014-10-22 14:20:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-10-22 13:28:33 92F975B07E65EF3AE67D89A016FDAACC 638888 ----a-w- C:\Users\Eigenaar\Downloads\JavaSetup8u25.exe ====== C: exe-files == 2014-10-23 19:28:34 7E1E01FA85E662DD217AA079183DCD9C 169280 ----a-w- C:\Program Files\Norman\nvc\bin\nvcc.exe 2014-10-23 19:28:34 415DB655D042BE9028E48F4351F25FDF 338200 ----a-w- C:\Program Files\Norman\nvc\bin\nvcod.exe 2014-10-23 19:28:34 061854835AE0EAE8CF2015783DF76DC0 204824 ----a-w- C:\Program Files\Norman\nvc\bin\nvcrtui.exe 2014-10-23 19:17:51 8CE44639891CF46D0B3AED42287606FA 231008 ----a-w- C:\Program Files\Norman\Npm\Bin\nwscmon.exe 2014-10-23 19:17:51 771FD156CC24BBCE0F3D93945D6BFFBE 189768 ----a-w- C:\Program Files\Norman\Npm\Bin\nsupinfo.exe 2014-10-23 19:17:50 E8789A8ACE1E4482D1F6C90A8F583426 177008 ----a-w- C:\Program Files\Norman\Npm\Bin\scheduler.exe 2014-10-23 19:17:50 DB43BFBDCE900B323BCB555D52D6C381 3072 ----a-w- C:\Program Files\Norman\Npm\Bin\nscrnsavh.exe 2014-10-23 19:17:50 D053884F9B10519D8A9809C90E593579 112208 ----a-w- C:\Program Files\Norman\Npm\Bin\nvccf.exe 2014-10-23 19:17:50 A50AE863019B8A78605B32CE002C500C 414432 ----a-w- C:\Program Files\Norman\Npm\Bin\niu.exe 2014-10-23 19:17:50 63747591F65DC4705D65AA967BE22598 179080 ----a-w- C:\Program Files\Norman\Npm\Bin\njeeves2.exe 2014-10-23 19:17:50 468F6CC9C9C6CE00894E0DAF13927DED 278472 ----a-w- C:\Program Files\Norman\Npm\Bin\nsupport.exe 2014-10-23 19:17:48 F4D14A9117533E8FB0405EB5629C8B21 108104 ----a-w- C:\Program Files\Norman\Npm\Bin\lnq.exe 2014-10-23 19:17:48 322DB0DF5D52BC28D7E0DEC294E3533D 72896 ----a-w- C:\Program Files\Norman\Npm\Bin\nwscl.exe 2014-10-23 19:17:45 6897EE304FA33084A4175656A3524204 85408 ----a-w- C:\Program Files\Norman\Npm\Bin\vc9redist.exe 2014-10-23 19:17:45 5689D43C3B201DD3810FA3BBA4A6476A 4216840 ----a-w- C:\Program Files\Norman\Npm\Bin\vcredist_x86.exe 2014-10-23 19:17:39 F25CA6DAAFB5575115813D6D97CFE099 300208 ----a-w- C:\Program Files\Norman\Npm\Bin\licwiz.exe 2014-10-23 19:17:39 E6EC3415AB77ADB51E23AB7E50B364F7 127152 ----a-w- C:\Program Files\Norman\Npc\bin\nuaa.exe 2014-10-23 19:17:39 E501AE524C4E4DD6D730A84A7B7DF8A6 121912 ----a-w- C:\Program Files\Norman\Qtn\bin\nqtnrst.exe 2014-10-23 19:17:39 CCEB851A9ACF0019D6DB7F9A446907BF 107096 ----a-w- C:\Program Files\Norman\Npc\bin\npc.exe 2014-10-23 19:17:38 FA97AABC51BEC708DE35E92B04ACDBE0 455664 ----a-w- C:\Program Files\Norman\Npf\bin\npfwiz.exe 2014-10-23 19:17:38 F5BB9AC1A6D6533A8EC54616CFC81121 156968 ----a-w- C:\Program Files\Norman\Nse\bin\zanexe_nse.exe 2014-10-23 19:17:38 9EF135F9FC488A8F3FEFD86A8EECB43F 385632 ----a-w- C:\Program Files\Norman\Npf\bin\npfrules.exe 2014-10-23 19:17:38 94DBDF7D3A8CD948EDEFD015482D54DA 408344 ----a-w- C:\Program Files\Norman\Npf\bin\npfsvc32.exe 2014-10-23 19:17:38 7064A0F8AFC1CAD587B08DE810413C0B 247072 ----a-w- C:\Program Files\Norman\Nse\bin\nseupdatesvc.exe 2014-10-23 19:17:38 68DF3B61063B5EFB9F6D797571AAC09B 269288 ----a-w- C:\Program Files\Norman\Npf\bin\npfcmd32.exe 2014-10-23 19:17:38 2AD5F68EDF44693F187E0013B003AAA8 323832 ----a-w- C:\Program Files\Norman\Npf\bin\npfports.exe 2014-10-23 19:17:38 26D9844F17AF6CE8F5FD352AE8B4F113 385624 ----a-w- C:\Program Files\Norman\Npf\bin\npfuser.exe 2014-10-23 19:17:38 26D35E078E210A13ECC1F875F69AA7B9 426832 ----a-w- C:\Program Files\Norman\Npf\bin\npflgutl.exe 2014-10-23 19:17:37 E07782C93835EBAE6808A2D8E5384A69 140032 ----a-w- C:\Program Files\Norman\Ngs\bin\nprosec.exe 2014-10-23 19:17:37 DC3B66E5E1E965630D74BC00FB00A1C5 110160 ----a-w- C:\Program Files\Norman\Ngs\bin\ngs.exe 2014-10-23 19:17:37 A5E7543B265A2F8486DF0545C2E7FFE4 281128 ----a-w- C:\Program Files\Norman\Ngs\bin\nnf.exe 2014-10-23 19:17:37 4A26DD45823E801E48949157975EBD0D 245552 ----a-w- C:\Program Files\Norman\Ngs\bin\nlf_user.exe 2014-10-23 19:17:37 3434C3BDC673C257ADF66F20475A025D 86472 ----a-w- C:\Program Files\Norman\Ngs\bin\nregsec.exe 2014-10-23 19:17:33 DB43BFBDCE900B323BCB555D52D6C381 3072 ----a-w- C:\Program Files\Norman\nvc\bin\nscrnsavh.exe 2014-10-23 19:17:33 A8BD474379B2F89620E109CBA6B56A88 216672 ----a-w- C:\Program Files\Norman\nvc\bin\zanexe_nvc.exe 2014-10-23 19:17:33 4A0E53C9B499F9EF4CE1B9C6C970BE73 376328 ----a-w- C:\Program Files\Norman\nvc\bin\nvcsvc.exe 2014-10-23 19:17:33 01262C25FA7B8EFB39EE10223BCC07D2 167744 ----a-w- C:\Program Files\Norman\nvc\bin\zanexe_nvcflt.exe 2014-10-22 14:21:01 AA3520FB0133A56BEE1DB34D74DBEF64 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2014-10-22 14:21:01 75D477E868CA51EC1B09D730570F322B 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2014-10-22 14:21:01 691D49FB44EDE9788288CABE4F7E0DAF 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2014-10-22 14:20:26 DC197DCE6325CBAC905DE0D0E3BA3E8E 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\rmid.exe 2014-10-22 14:20:26 67F763B09F4BC8689E6FA9761E068D74 159656 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\unpack200.exe 2014-10-22 14:20:26 57E1F756FAA787623DFCD2C1B2AACC68 51112 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\ssvagent.exe 2014-10-22 14:20:26 33D2AF53E209DA3E2BA939EB89801DC0 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\rmiregistry.exe 2014-10-22 14:20:26 29E65AC6AFD8A0A9CAA361FF6F7B4886 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\servertool.exe 2014-10-22 14:20:26 28FC00F89631B0F6E1E9CA386FADD566 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\tnameserv.exe 2014-10-22 14:20:25 E3E6B18458FFB07CB24D7A0BA77C9FDF 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\pack200.exe 2014-10-22 14:20:25 B719E0F43166037DF46B5CFBE60A5118 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jjs.exe 2014-10-22 14:20:25 A458E2535E46151690E53E2A03FAA711 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\keytool.exe 2014-10-22 14:20:25 9BFAEF308D50779F6B255CB7BA7DCA5A 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\kinit.exe 2014-10-22 14:20:25 7AB1F1B3FB6C3DACA34EA2F988CDF5AC 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\orbd.exe 2014-10-22 14:20:25 75EE99C7F0038C746D82C76221ECA4EF 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\policytool.exe 2014-10-22 14:20:25 4367C05B0CF5553E71B34F51003D0615 76200 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jp2launcher.exe 2014-10-22 14:20:25 4109C4DB4BD48F5BF8115C7523A6B6F8 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\klist.exe 2014-10-22 14:20:25 26C7F32186B1F0364CD06EA69227A79D 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\ktab.exe 2014-10-22 14:20:24 BB8C890E3E6372F2720709262BD42BF4 30632 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jabswitch.exe 2014-10-22 14:20:24 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\java.exe 2014-10-22 14:20:24 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javaw.exe 2014-10-22 14:20:24 74713E9C1B01B152DDD3A1A3519A3647 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\java-rmi.exe 2014-10-22 14:20:24 70E67429D2C011FD0419AF899A8D0D70 68520 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe 2014-10-22 14:20:24 691D49FB44EDE9788288CABE4F7E0DAF 272296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javaws.exe 2014-10-22 13:28:33 92F975B07E65EF3AE67D89A016FDAACC 638888 ----a-w- C:\Users\Eigenaar\Downloads\JavaSetup8u25.exe 2014-10-21 18:02:25 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Eigenaar.exe 2014-10-19 06:37:52 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateOnDemand.exe 2014-10-19 06:37:51 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateBroker.exe 2014-10-19 06:37:45 27DC334376EE08A0962E6367E23D3CBA 880272 ----a-w- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateSetup.exe 2014-10-19 06:37:23 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateComRegisterShell64.exe 2014-10-19 06:37:22 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler64.exe 2014-10-19 06:37:21 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler.exe 2014-10-19 06:37:16 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdate.exe 2014-10-19 06:37:02 27DC334376EE08A0962E6367E23D3CBA 880272 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.25.5\GoogleUpdateSetup.exe === C: other files == 2014-10-23 19:17:37 FDD3834E51AFFC9A3C1151E5C1895202 55824 ----a-w- C:\Program Files\Norman\Ngs\bin\nnetsecc.sys 2014-10-23 19:17:37 F8072E0410FF380D2B8131154B2E4D55 28120 ----a-w- C:\Program Files\Norman\Ngs\bin\ngs.sys 2014-10-23 19:17:37 F60B2134727AC6ED5A6C38CE18F0661F 30856 ----a-w- C:\Windows\System32\drivers\nnetsecl.sys 2014-10-23 19:17:37 CB5E32DA1B9E8003D66264D26B8BBD7B 55408 ----a-w- C:\Program Files\Norman\Ngs\bin\nnetsecc64.sys 2014-10-23 19:17:37 BC1D22C69F95A06C80FF36E16EB41065 41536 ----a-w- C:\Program Files\Norman\Ngs\bin\nprosec64.sys 2014-10-23 19:17:37 A22F51BC86AC93A69163B5A296AA0EF0 53928 ----a-w- C:\Windows\System32\drivers\nnetsec.sys 2014-10-23 19:17:37 85C5422B148ABE2C6D02031483EBAAB2 133152 ----a-w- C:\Windows\System32\drivers\ale7_nf64.sys 2014-10-23 19:17:37 7F32D8753F687CB54E75C68D2B921359 123888 ----a-w- C:\Windows\System32\drivers\ale7_nf.sys 2014-10-23 19:17:37 702C1C2F4986A8080DAC71AE034F6BBC 461120 ----a-w- C:\Windows\System32\drivers\tdi_nf.sys 2014-10-23 19:17:37 6F1B00834A77A903102235E96CD967DB 67256 ----a-w- C:\Program Files\Norman\Ngs\bin\nregsec.sys 2014-10-23 19:17:37 5AC76B4546B057771FB806AE83C16F56 130080 ----a-w- C:\Windows\System32\drivers\ale_nf64.sys 2014-10-23 19:17:37 59D487049CE5631F6C6129AC3D3AEC9B 108360 ----a-w- C:\Program Files\Norman\Ngs\bin\nprosec.sys 2014-10-23 19:17:37 56BA627C4B8F5EFE96B5D3C32990A1BE 68792 ----a-w- C:\Program Files\Norman\Ngs\bin\nregsec64.sys 2014-10-23 19:17:37 3EA5049AD478F9A62B8E2DF96FA07D2B 120792 ----a-w- C:\Windows\System32\drivers\ale_nf.sys 2014-10-23 19:17:37 2EFE2EAB05EB55158894330DDCC29CBB 34440 ----a-w- C:\Windows\System32\drivers\nnetsecl64.sys 2014-10-23 19:17:37 1212300DB580311D3B94154DA5FEB92B 23488 ----a-w- C:\Program Files\Norman\Ngs\bin\ngs64.sys 2014-10-23 19:17:33 36E2FD64A7C47A2C5D827D86837E5DBD 154464 ----a-w- C:\Program Files\Norman\nvc\bin\gzflt.sys 2014-10-23 19:17:33 130AFD0E373F22A6320B60FEBB7E8D56 360376 ----a-w- C:\Windows\System32\drivers\Trufos.sys 2014-10-23 19:17:33 130AFD0E373F22A6320B60FEBB7E8D56 360376 ----a-w- C:\Program Files\Norman\nvc\bin\trufos.sys 2014-10-22 14:20:26 CE44A9D4918DCDC7CCCF5503BF4D7A3D 14130 ----a-w- C:\Program Files\Java\jre1.8.0_25\lib\deploy\ffjcext.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-2269768402-2839460773-3768887760-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "TOSCDSPD"="TOSCDSPD.EXE" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "AutoStartNPSAgent"="C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe" "DymoQuickPrint"="C:\Program Files\DYMO\DYMO Label Software\DymoQuickPrint.exe /startup" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "RtHDVCpl"="RtHDVCpl.exe" "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "topi"="C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup" "Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe /startup" "Desktop SMS"="C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe /auto" "Camera Assistant Software"="C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe /start" "Toshiba Registration"="C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe" "CanonSolutionMenu"="C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon" "ArcSoft Connection Service"="C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" "DLSService"="C:\Program Files\DYMO\DYMO Label Software\DLSService.exe" "BtTray"="C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe" "WinampAgent"="C:\Program Files\Winamp\winampa.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "Norman ZANDA"="C:\Program Files\Norman\Npm\Bin\ZLH.EXE /LOAD /SPLASH" "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" "TPwrMain"="%ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE" "SmoothView"="%ProgramFiles%\Toshiba\SmoothView\SmoothView.exe " "00TCrdMain"="%ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe " [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "TOSCDSPD"="TOSCDSPD.EXE" "ehTray.exe"="C:\Windows\ehome\ehTray.exe" "AutoStartNPSAgent"="C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe" "DymoQuickPrint"="C:\Program Files\DYMO\DYMO Label Software\DymoQuickPrint.exe /startup" "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe Reader Speed Launcher" "hkey"="HKLM" "command"="\"C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CanonMyPrinter] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CanonMyPrinter" "hkey"="HKLM" "command"="C:\\Program Files\\Canon\\MyPrinter\\BJMyPrt.exe /logon" ==== Startup Folders ====================== 2008-02-26 16:14:32 1835 ----a-w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk 2008-02-26 16:14:32 1835 ----a-w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [24-09-2014 09:11] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [19-10-2014 08:37] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [19-10-2014 08:37] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\RealUpgradeLogonTaskS-1-5-21-2269768402-2839460773-3768887760-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\system32\tasks\RealUpgradeScheduledTaskS-1-5-21-2269768402-2839460773-3768887760-1000" [C:\Program Files\Real\RealUpgrade\RealUpgrade.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{0153E448-190B-4987-BDE1-F256CADA672F}"="C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext" [13-10-2012 14:23] ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jfmjfhklogoienhpfnppmbcbjfjnkonk - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx[13-10-2012 14:22] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.startpagina.nl/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.startpagina.nl/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {231668FB-6872-48D1-87CB-B874DCD6C8C0} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_nl" ==== HijackThis Entries ====================== O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [Desktop SMS] C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe /auto O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe" /start O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe O4 - HKLM\..\Run: [DLSService] "C:\Program Files\DYMO\DYMO Label Software\DLSService.exe" O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Norman ZANDA] "C:\Program Files\Norman\Npm\Bin\ZLH.EXE" /LOAD /SPLASH O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe O4 - HKCU\..\Run: [DymoQuickPrint] "C:\Program Files\DYMO\DYMO Label Software\DymoQuickPrint.exe" /startup O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Download met MiPony - file://C:\Program Files\MiPony\Browser\IEContext.htm O9 - Extra button: eBay - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url2.pl?NL (file missing) O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home (file missing) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com/bin/srldetect_intel_4.5.22.0.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\system32\skype4com.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Norman Flight Recorder service (nfservice) - Norman Safeground AS - C:\Program Files\Norman\Npm\Bin\nfservice.exe O23 - Service: Norman Jeeves (NJeeves2) - Unknown owner - C:\Program Files\Norman\Npm\Bin\Njeeves2.exe O23 - Service: Norman Network Filtering service (NNFSVC) - Norman Safeground AS - C:\Program Files\Norman\Ngs\Bin\Nnf.exe O23 - Service: Norman ZANDA - Norman Safeground AS - C:\Program Files\Norman\Npm\Bin\Zanda.exe O23 - Service: Norman Personal Firewall Service (NPFSvc32) - Norman Safeground AS - C:\Program Files\Norman\npf\bin\npfsvc32.exe O23 - Service: Norman Security service (NPROSECSVC) - Norman Safeground AS - C:\Program Files\Norman\Ngs\Bin\Nprosec.exe O23 - Service: Norman Engine Update Service (nseupdatesvc) - Norman Safeground AS - C:\Program Files\Norman\nse\bin\nseupdatesvc.exe O23 - Service: Norman User Activity Agent (NUAA) - Unknown owner - C:\Program Files\Norman\npc\bin\nuaa.exe O23 - Service: Norman Anti Malware Service (nvcsvc) - Norman Safeground AS - C:\Program Files\Norman\nvc\bin\nvcsvc.exe O23 - Service: Norman Resource Provider (NICCA) (nvoy) - Norman AS - C:\Program Files\Norman\Npm\Bin\nvoy.exe O23 - Service: Norman WSC Monitor Service (NWSCMON) - Norman Safeground AS - C:\Program Files\Norman\Npm\Bin\nwscmon.exe O23 - Service: Norman Scheduler Service (Scheduler) - Norman Safeground AS - C:\Program Files\Norman\Npm\Bin\scheduler.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\66SAERQK will be deleted at reboot C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=100 folders=6 103245358 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Eigenaar\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Eigenaar\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\66SAERQK" not found ==== EOF on vr 24-10-2014 at 11:47:40,30 ======================