Zoek.exe v5.0.0.0 Updated 15-November-2014 Tool run by Till on za 15-11-2014 at 20:52:05,33. Microsoft® Windows Vista™ Home Basic 6.0.6002 Service Pack 2 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Till\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2014-09-02-171557.log 19650 bytes ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{142E44A1-21D8-455E-A485-AE60EEE1D4} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{197887EB-27FF-4F8D-A9AF-E5D78C366E93} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1A97936B-9E5A-4895-9AB2-B4B9D5944DF7} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C79B69E-BDD4-4ABF-BC86-198E1CD86017} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{300FDC6E-41-4EDE-B9E7-06C9658B89C} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{358C1C1B-E782-4E4E-8FEB-B815E21F5339} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{359D426D-8574-4526-8DCF-F23AAA3A595D} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4C3E0342-24D5-4456-8349-6B55CFD8308F} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4EA8D10B-E305-4600-8A79-A9FDE99DCF5} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4ED85065-D259-464F-9345-435CE8FED12} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5BE35C48-8061-43C9-B19-AAB0198DB7B} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5D62C061-E05C-4811-AE7D-518B91E5BF32} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61C2110F-5206-470F-B738-712625212D31} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65FDDE4E-6FCC-41E7-80F8-6B8383E9CECC} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F16BB09-726D-4F4D-8CCC-49A14B154DC1} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{700A6FBB-3E1F-4C67-8CC7-17CB3126F16B} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{743A280D-7A3A-4B2D-A56B-553DA2E3EC89} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7BE019D1-9389-44C1-BD1C-C78768D21BBD} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7C692DC1-55DD-46CB-B71C-6C5C7914ED56} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{80880C05-7488-42C8-BC6-39632C7833E6} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{88E0CE54-7B29-4684-95F2-445E57F7BD97} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A1C9BFA-D65B-409D-A2E5-1C1368CAE4F8} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{917C6157-1428-4152-89C1-177EAD9735F} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{92CB04A5-F00F-419E-8974-634DFD6C8E0} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AAA32E36-7271-49AE-B614-AB3711ADCB5D} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AF3234A-7BDF-4566-9754-86C9A79F6C9} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B3102646-1599-4A11-92AF-BDB071535395} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C20D9E96-2F66-4AEF-B959-944362161DA} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2A7A881-4AD4-4AF8-8135-1BF6E5D89F4} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2F01673-579E-4626-B8B5-A6D7D2B5A3} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2F2E4F8-3044-4297-A77F-8D644C2DB616} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8914461-D7F6-4F59-81AC-C49ACEB6B83F} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CB024529-E21D-4BAB-8CF3-C170274CB6F} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D2CC243B-615D-45F8-A649-D8EF751E135A} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DB41A5B1-2EC9-461D-A664-476C6D804F2D} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DF99063B-9CF5-4045-A018-39DC53BFBABE} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0B9379D-E148-4213-80B4-D6715F3C14A} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E21AA9BE-FDDB-4481-A117-8F55849FEC31} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E566E7EA-ADC5-42F5-BE4A-4456E7A7FF7} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E818085A-277C-4D48-AC46-99DD1C6AF774} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E89A8E49-246F-4E1C-A225-333A90CE23BF} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EFADF81A-7D7E-4831-A19B-533754D5DFC} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F01911C-E4F2-490A-A477-B95D5D32CE62} deleted successfully HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F521529A-1330-4C2F-8B4A-FDCA3F702C71} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe C:\Windows\SysWOW64\svchost.exe C:\Windows\system32\HidService.exe C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\ABoard.exe C:\Program Files (x86)\Packard Bell\SetupMyPC\SmpSys.exe C:\Users\Till\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe C:\Program Files (x86)\Samsung\Kies\Kies.exe C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\StartAutorun.exe C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\KMConfig.exe C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\KMProcess.exe C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\AOSD.exe C:\Users\Till\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util innoApp deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Util innoApp deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Util innoApp deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Util innoApp deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update innoApp deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\Update innoApp deleted successfully ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\innoApp not found "C:\Users\Till\AppData\Roaming\HNSQNIS.exe" not found "C:\Users\Till\AppData\Roaming\LKLTLQT.exe" not found C:\PROGRA~2\globalUpdate deleted C:\PROGRA~2\Search Extensions deleted C:\Users\Till\AppData\Roaming\systweak deleted C:\Users\Till\AppData\Local\globalUpdate deleted C:\Users\Till\AppData\Local\CrashRpt deleted C:\Windows\SysNative\roboot64.exe deleted C:\Users\Till\AppData\LocalLow\boost_interprocess deleted C:\windows\SysNative\Tasks\LaunchSignup deleted C:\windows\SysNative\tasks\RocketTab deleted C:\windows\SysNative\tasks\RocketTab Update Task deleted C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted "C:\Windows\tasks\HNSQNIS.job" deleted "C:\Windows\tasks\LKLTLQT.job" deleted "C:\Users\Till\AppData\Roaming\HNSQNIS" deleted "C:\Windows\tasks\HNSQNIS.job" deleted "C:\Windows\SysNative\tasks\HNSQNIS" deleted "C:\Users\Till\AppData\Roaming\LKLTLQT" deleted "C:\Windows\tasks\LKLTLQT.job" deleted "C:\Windows\SysNative\tasks\LKLTLQT" deleted ==== System Specs ====================== Windows: Windows Vista Home Basic Edition (64-bit) Service Pack 2 (Build 6002) Memory (RAM): 3071 MB CPU Info: Intel(R) Celeron(R) CPU E1500 @ 2.20GHz CPU Speed: 2200,0 MHz Sound Card: Luidsprekers (SRS AudioFusion) | SAMSUNG-1 (2- NVIDIA High Defin | Luidsprekers (Realtek High Defi | Realtek Digital Output (Realtek | Display Adapters: NVIDIA GeForce 210 | NVIDIA GeForce 210 | RDPDD Chained DD | RDP Encoder Mirror Driver Monitors: 2x; Algemeen PnP-beeldscherm | Algemeen PnP-beeldscherm | Screen Resolution: 768 X 1366 - 32 bit Network: Network Present Network Adapters: Bluetooth-apparaat (Personal Area Network) #2 | NVIDIA nForce 10/100/1000 Mbps Ethernet CD / DVD Drives: 1x (E: | ) E: HL-DT-STDVDRAM GH40F Ports: COM4 | COM5 LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 141,7GB | D: 141,7GB Hard Disks - Free: C: 12,1GB | D: 135,2GB Manufacturer *: AMI BIOS Info: AT/AT COMPATIBLE | 06/06/09 | ACRSYS - 20090606 Time Zone: West-Europa (standaardtijd) Motherboard *: Packard Bell MCP73T-AD Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated) Anti-Spyware: Microsoft Security Essentials disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Internet Explorer Version: 9.0.8112.16421 Google Chrome version: 38.0.2125.111 Adobe Reader version: 9.5.5.316 Sun Java version: 1.8.0_25 (32-bit) Sun Java version: 1.8.0_25 (64-bit) Flash Player version: 15.0.0.223 Shockwave Player version: 12.0.7r148 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Till\AppData\Local\Temp ==== 2014-11-15 19:29:05 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite91468.dll 2014-11-15 16:36:06 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite77031.dll 2014-11-15 12:23:23 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite27093.dll 2014-11-15 11:24:59 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite78994.dll 2014-11-15 07:05:12 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite30990.dll 2014-11-14 22:53:44 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite43815.dll 2014-11-14 16:36:08 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite58867.dll 2014-11-14 15:45:29 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite90849.dll 2014-11-13 22:36:08 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite63881.dll 2014-11-13 16:36:16 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite86212.dll 2014-11-13 12:07:40 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite99467.dll 2014-11-13 11:29:36 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite19711.dll 2014-11-13 11:20:35 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite68500.dll 2014-11-12 22:36:07 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite71129.dll 2014-11-12 18:31:33 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite13290.dll 2014-11-12 18:22:45 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite81708.dll 2014-11-11 22:36:08 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite10429.dll 2014-11-11 19:12:12 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite14404.dll 2014-11-11 16:36:06 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite39633.dll 2014-11-11 13:43:18 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite27099.dll 2014-11-11 01:01:15 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite23189.dll 2014-11-10 16:36:09 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite30701.dll 2014-11-10 14:56:00 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite65354.dll 2014-11-09 22:36:22 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite73854.dll 2014-11-09 16:36:12 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite43365.dll 2014-11-09 10:36:08 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite20174.dll 2014-11-09 09:00:44 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite75106.dll 2014-11-09 01:01:38 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite33448.dll 2014-11-08 16:36:06 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite87903.dll 2014-11-08 14:16:08 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite48624.dll 2014-11-08 01:01:26 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite87066.dll 2014-11-07 16:36:08 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite84783.dll 2014-11-07 15:57:40 C480490FFE7928A239493DC2E8E39D3A 92364640 ----a-w- C:\Users\Till\AppData\Local\Temp\SamsungAPInstaller_1415375860590.exe 2014-11-07 11:49:46 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite27748.dll 2014-11-06 22:36:06 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite92341.dll 2014-11-06 16:36:07 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite18949.dll 2014-11-06 15:53:52 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite79385.dll 2014-11-05 22:36:04 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite60880.dll 2014-11-05 16:36:05 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite64544.dll 2014-11-05 12:15:34 9DD4672E5D04D53F20A47B2D890A3D4E 92362592 ----a-w- C:\Users\Till\AppData\Local\Temp\SamsungAPInstaller_1415189734476.exe 2014-11-05 10:36:04 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite56244.dll 2014-11-05 09:11:41 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite79390.dll 2014-11-05 09:05:01 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite41171.dll 2014-11-04 22:52:18 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite98783.dll 2014-11-04 16:36:06 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite65890.dll 2014-11-04 10:36:01 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite94340.dll 2014-11-04 09:08:50 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite98933.dll 2014-11-04 01:01:22 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite66968.dll 2014-11-03 16:36:09 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite80721.dll 2014-11-03 14:55:00 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite40422.dll 2014-11-03 01:01:29 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite47296.dll 2014-11-02 16:36:09 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite86936.dll 2014-11-02 10:36:01 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite84579.dll 2014-11-02 09:07:15 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite41823.dll 2014-11-02 01:01:38 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Till\AppData\Local\Temp\System.Data.SQLite79351.dll ====== Java Cache ===== 2014-11-15 19:47:05 30810F09A3FCC03EC583120B033700BC 282329 ----a-w- C:\Users\Till\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\7e60542d-15741d02 2014-11-15 19:47:05 67911F367EC150BDC8F2CB46397F0925 845 ----a-w- C:\Users\Till\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-4b4246be 2014-11-15 19:47:05 23183BA2D386BF2ACB5BAEB10BA4E936 437 ----a-w- C:\Users\Till\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-e2e4c8970372d2fb4193a7ef29d16f6c3f08527947fcb9208b3a0e48820369fd-6.0.lap ====== C:\Windows\SysWOW64 ===== 2014-11-15 19:36:16 A042349B7208BF8BED858B1E9B48B06D 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-11-13 11:39:34 C0D56D9E570D8C294D1D9B2B32D4C857 278528 ----a-w- C:\Windows\SysWOW64\schannel.dll 2014-11-13 11:33:38 FD7A26BF790751B527E632BD9346DDFD 729600 ----a-w- C:\Windows\SysWOW64\IMJP10K.DLL 2014-11-13 11:32:20 51992CC4DF2DB150950C6CB505556B9A 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll 2014-11-13 11:32:18 15F315B53C69930BF907D9A0FFCB6206 619520 ----a-w- C:\Windows\SysWOW64\adtschema.dll 2014-11-13 11:32:14 00FF37CF978D4862AE27FC915D5BEEBA 77312 ----a-w- C:\Windows\SysWOW64\secur32.dll 2014-11-13 11:32:05 2908C2D90B78FDC24326B7854079E44E 564224 ----a-w- C:\Windows\SysWOW64\oleaut32.dll 2014-11-13 11:31:59 A520DEE408C04104F281896A4767EFF2 115712 ----a-w- C:\Windows\SysWOW64\AudioSes.dll 2014-11-13 11:31:59 9E76B8FDB95B52B00AD89DAC72A9DEEB 88576 ----a-w- C:\Windows\SysWOW64\audiodg.exe 2014-11-13 11:31:58 BE377621E2D2B483F8EF447079E55585 396800 ----a-w- C:\Windows\SysWOW64\AudioEng.dll 2014-11-13 11:31:58 56B73070DB745E192307EB7AB6C55CD5 274432 ----a-w- C:\Windows\SysWOW64\AUDIOKSE.dll 2014-11-13 11:23:04 BC4C024BDC8B676CC58BCE1D5BA7BC04 67072 ----a-w- C:\Windows\SysWOW64\packager.dll 2014-11-13 11:22:46 06A9049BA8B9F20D755CF03FD12E8AFD 2048 ----a-w- C:\Windows\SysWOW64\msxml3r.dll 2014-11-13 11:22:45 37A4DF3BCA563FB7537B881AE91BA9C4 1249280 ----a-w- C:\Windows\SysWOW64\msxml3.dll 2014-11-12 23:02:56 B6260FAA9ACF8AC13312C739B23BD0BE 1129472 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-11-12 23:02:56 AB9015D5B288898E7298BE0DC93BFF0E 176640 ----a-w- C:\Windows\SysWOW64\ieui.dll 2014-11-12 23:02:56 565188FD523603C94FD7619E14FB7E32 421376 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2014-11-12 23:02:56 556F78D100D031073A7A01992B74E98E 717824 ----a-w- C:\Windows\SysWOW64\jscript.dll 2014-11-12 23:02:56 0484379BFC58E440EF432D2C80CF0912 1810944 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-11-12 23:02:55 4AF7834C2D41512749BE5FB46CF6EF37 2382848 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2014-11-12 23:02:55 348F63C1CD7952B1433691D4F8E8B1A8 353792 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2014-11-12 23:02:53 BF493C48DF485DF0DE5F10EFA1BAA1D2 223232 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-11-12 23:02:53 9F702DD4CE7AC7C5FD3D8E10D012AC06 73216 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-11-12 23:02:47 5BDCC7129C2F0A25F8A8FF6A3BDD9896 12366848 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-11-12 23:02:44 DE0269B69861CD68EC8D29AD4A01894E 11776 ----a-w- C:\Windows\SysWOW64\mshta.exe 2014-11-12 23:02:42 08E805C724637412C73A57E50212DBEC 1427968 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-11-12 23:02:40 ECED64B195BF217D5CFD65698BC9727D 65536 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2014-11-12 23:02:40 2A60B15FFD6EEDFBA73728593171AA19 41472 ----a-w- C:\Windows\SysWOW64\msfeedsbs.dll 2014-11-12 23:02:40 27FA9CA22666E0AFB03F4433A4CEA5B7 1139712 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-11-12 23:02:38 D07699ACF5301E45006AFD7566769E1B 607744 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-11-12 23:02:38 C94AEBE5CCA3F390E7CBC64D2FF30CDF 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-11-12 23:02:38 5C4AE6F46A4307CC5885FF000EEF3A5D 231936 ----a-w- C:\Windows\SysWOW64\url.dll 2014-11-12 23:02:37 BE27559260267DD7431F9E01F0BF87B6 1802752 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-11-12 23:02:35 3A98C11FD14209D9D3A0B4E2943B302C 9739776 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-11-12 23:02:32 F832CFAFA6015E21B33A583C7B2CA19A 10752 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-11-13 11:41:15 98EC1BC64CBC5BF410AB95CD53869E5E 2782208 ----a-w- C:\Windows\Sysnative\win32k.sys 2014-11-13 11:39:33 9C8B92C35FFFFBA2A47C14BAFF348EDA 347136 ----a-w- C:\Windows\Sysnative\schannel.dll 2014-11-13 11:33:39 012A2A7BA039426C6D892833BD7A2486 923136 ----a-w- C:\Windows\Sysnative\IMJP10K.DLL 2014-11-13 11:32:20 9830823789AB15764A5F16572D6BF157 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll 2014-11-13 11:32:18 CED0EC8EF863D10958E317C68EF14160 619520 ----a-w- C:\Windows\Sysnative\adtschema.dll 2014-11-13 11:32:13 D17405765FE2D520B0651243A8891BA5 1689600 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2014-11-13 11:32:13 5A67A1108E347FCA6A64B74FFB108BDE 548352 ----a-w- C:\Windows\Sysnative\termsrv.dll 2014-11-13 11:32:05 D9DB15FB804B5625FC7F53CD2CD07FB2 847360 ----a-w- C:\Windows\Sysnative\oleaut32.dll 2014-11-13 11:31:59 BD02348F0B209D724C211F05B57F9824 474624 ----a-w- C:\Windows\Sysnative\AudioEng.dll 2014-11-13 11:31:59 4FCE8096191D260028FB6585A4159D6F 446976 ----a-w- C:\Windows\Sysnative\audiosrv.dll 2014-11-13 11:31:58 EC131860B88DAFF53D65BC1197D5377F 201728 ----a-w- C:\Windows\Sysnative\EncDump.dll 2014-11-13 11:31:58 35F27BBD477BFD71304CAA62FD2AB002 313344 ----a-w- C:\Windows\Sysnative\AUDIOKSE.dll 2014-11-13 11:23:04 F6DE4E8C5F3016A3CA69AAF7024A47C6 77312 ----a-w- C:\Windows\Sysnative\packager.dll 2014-11-13 11:22:46 450F7B50C48638141E2CECC3AC9D2DC1 2048 ----a-w- C:\Windows\Sysnative\msxml3r.dll 2014-11-13 11:22:46 44FB9CE1680F16CC7E679F4AA9C35FEA 1869824 ----a-w- C:\Windows\Sysnative\msxml3.dll 2014-11-12 23:02:57 0053EA3A1291B2D91C237AF3BC7F60BC 2339840 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-11-12 23:02:56 3EB858DEABAE01C426ED4202C3424867 2382848 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2014-11-12 23:02:56 2DBFA18FF28839418387519F573CCA6C 599040 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-11-12 23:02:55 189A96C0E45C4A3814C9160EF1F790B5 1392128 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-11-12 23:02:54 DAB06C4B2931783188E045FE723F53C5 96768 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-11-12 23:02:54 79585625DDF8FD8B4EF3289491321A2C 86016 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2014-11-12 23:02:54 435CD55A531A8CE35F6ABE0E7708530F 453120 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2014-11-12 23:02:50 BE956E1FAF9217F0FAC32E538FB2BE33 816640 ----a-w- C:\Windows\Sysnative\jscript.dll 2014-11-12 23:02:48 6F980F2FF2978D2D4AF9C1B699EB1F68 282112 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-11-12 23:02:47 857D7A99E30C975A8541C2905B9551B8 248320 ----a-w- C:\Windows\Sysnative\ieui.dll 2014-11-12 23:02:45 93690EE6C30DEFC5E07D33B440BCC985 17870336 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-11-12 23:02:42 E8DE90B036D513905C4FFDADAC966F8B 12800 ----a-w- C:\Windows\Sysnative\mshta.exe 2014-11-12 23:02:40 00A7D6582A860ECE9ACC1A93D79FC60D 173056 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2014-11-12 23:02:39 82D4EA3C0103833E38A63964299B1E88 2157056 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-11-12 23:02:39 659B7AA886B669E0F6FAFED8DBDA0814 55296 ----a-w- C:\Windows\Sysnative\msfeedsbs.dll 2014-11-12 23:02:38 EA68F5EF02B136582E28E62F2F98D1FF 1388032 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-11-12 23:02:37 EA6E0E20941FEFAB89A617200686817B 729088 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-11-12 23:02:36 B55354B1FFCF46543EEA4AA2510699E6 237056 ----a-w- C:\Windows\Sysnative\url.dll 2014-11-12 23:02:36 A7E9D88EB3026DF3807589F377640D44 1494016 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-11-12 23:02:35 57472704B1786A678359786291E4E9DE 10921472 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-11-12 23:02:32 0552324DFF49A7137E9B7B33845B77C0 11264 ----a-w- C:\Windows\Sysnative\msfeedssync.exe ====== C:\Windows\Sysnative\drivers ===== ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2014-11-15 19:34:56 -------- d-----w- C:\PROGRA~2\Java 2014-11-04 23:24:21 -------- d-----w- C:\PROGRA~2\Popcorn Time Free 2014-10-27 14:35:58 -------- d-----w- C:\PROGRA~2\PamelaPCR ======= C: ===== ====== C:\Users\Till\AppData\Roaming ====== 2014-11-15 19:23:24 -------- d-----r- C:\Users\Till\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8 2014-11-04 23:35:01 -------- d-----w- C:\Users\Till\AppData\Local\Popcorn-Time 2014-10-27 14:36:37 -------- d-----w- C:\Users\Till\AppData\Roaming\Pamela Call Recorder 2014-10-27 13:01:29 -------- d-----w- C:\Users\Till\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps ====== C:\Users\Till ====== 2014-11-15 19:36:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-11-15 19:27:01 -------- d-----w- C:\ProgramData\Oracle 2014-11-15 19:10:36 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\Users\Till\Desktop\chromeinstall-8u25.exe 2014-11-15 16:39:17 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Till\Desktop\RSITx64.exe 2014-11-05 23:15:30 54C0C514304ABE0E7BC2BFCDB11EB754 880272 ----a-w- C:\Users\Till\Downloads\ChromeSetup.exe 2014-10-27 14:38:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-10-27 14:36:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PamelaPCR ====== C: exe-files == 2014-11-15 20:02:11 E2471280CFDB37431BB7F68F5764891F 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-576860058-1132661054-1124574131-1000\$IW6ME5X.exe 2014-11-15 19:36:03 AA3520FB0133A56BEE1DB34D74DBEF64 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2014-11-15 19:36:03 75D477E868CA51EC1B09D730570F322B 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2014-11-15 19:36:03 691D49FB44EDE9788288CABE4F7E0DAF 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2014-11-15 19:35:49 E3E6B18458FFB07CB24D7A0BA77C9FDF 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\pack200.exe 2014-11-15 19:35:49 DC197DCE6325CBAC905DE0D0E3BA3E8E 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmid.exe 2014-11-15 19:35:49 B719E0F43166037DF46B5CFBE60A5118 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jjs.exe 2014-11-15 19:35:49 A458E2535E46151690E53E2A03FAA711 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\keytool.exe 2014-11-15 19:35:49 9BFAEF308D50779F6B255CB7BA7DCA5A 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\kinit.exe 2014-11-15 19:35:49 7AB1F1B3FB6C3DACA34EA2F988CDF5AC 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\orbd.exe 2014-11-15 19:35:49 75EE99C7F0038C746D82C76221ECA4EF 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\policytool.exe 2014-11-15 19:35:49 67F763B09F4BC8689E6FA9761E068D74 159656 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\unpack200.exe 2014-11-15 19:35:49 57E1F756FAA787623DFCD2C1B2AACC68 51112 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssvagent.exe 2014-11-15 19:35:49 4367C05B0CF5553E71B34F51003D0615 76200 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2launcher.exe 2014-11-15 19:35:49 4109C4DB4BD48F5BF8115C7523A6B6F8 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\klist.exe 2014-11-15 19:35:49 33D2AF53E209DA3E2BA939EB89801DC0 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmiregistry.exe 2014-11-15 19:35:49 29E65AC6AFD8A0A9CAA361FF6F7B4886 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\servertool.exe 2014-11-15 19:35:49 28FC00F89631B0F6E1E9CA386FADD566 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\tnameserv.exe 2014-11-15 19:35:49 26C7F32186B1F0364CD06EA69227A79D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\ktab.exe 2014-11-15 19:35:45 BB8C890E3E6372F2720709262BD42BF4 30632 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jabswitch.exe 2014-11-15 19:35:45 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\java.exe 2014-11-15 19:35:45 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaw.exe 2014-11-15 19:35:45 74713E9C1B01B152DDD3A1A3519A3647 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\java-rmi.exe 2014-11-15 19:35:45 70E67429D2C011FD0419AF899A8D0D70 68520 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\javacpl.exe 2014-11-15 19:35:45 691D49FB44EDE9788288CABE4F7E0DAF 272296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaws.exe 2014-11-15 19:33:17 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-576860058-1132661054-1124574131-1000\$RW6ME5X.exe 2014-11-15 19:10:36 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\Users\Till\Desktop\chromeinstall-8u25.exe 2014-11-15 16:39:17 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Till\Desktop\RSITx64.exe 2014-11-13 11:33:40 5BFAC4694BD7193BF0DE61C7B3ADFA72 144896 ----a-w- C:\Windows\System32\IME\IMEJP10\imjpuexc.exe 2014-11-13 11:33:39 A5300B1610FF61B8C28D1C379CFA7A52 105984 ----a-w- C:\Windows\SysWOW64\IME\IMEJP10\imjpuexc.exe 2014-11-13 11:31:59 9E76B8FDB95B52B00AD89DAC72A9DEEB 88576 ----a-w- C:\Windows\SysWOW64\audiodg.exe 2014-11-12 23:02:44 DE0269B69861CD68EC8D29AD4A01894E 11776 ----a-w- C:\Windows\SysWOW64\mshta.exe 2014-11-12 23:02:42 E8DE90B036D513905C4FFDADAC966F8B 12800 ----a-w- C:\Windows\System32\mshta.exe 2014-11-12 23:02:41 06DE47CAE6D862847A4F24753C199394 757968 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-11-12 23:02:40 7BA2683147FD7748A54D2F04306561CB 22528 ----a-w- C:\Program Files (x86)\Internet Explorer\ExtExport.exe 2014-11-12 23:02:40 00A7D6582A860ECE9ACC1A93D79FC60D 173056 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-11-12 23:02:38 C94AEBE5CCA3F390E7CBC64D2FF30CDF 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-11-12 23:02:37 B1CE75EA01F9562284D711EE7B928548 763600 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-11-12 23:02:32 F832CFAFA6015E21B33A583C7B2CA19A 10752 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe 2014-11-12 23:02:32 446DA3FA1EB4294A0270B6369FC49C4E 223232 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2014-11-12 23:02:32 3AA7BA61D586DF930689BD00611721C3 223744 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-11-12 23:02:32 0552324DFF49A7137E9B7B33845B77C0 11264 ----a-w- C:\Windows\System32\msfeedssync.exe 2014-11-12 23:02:31 3DF83938DDB281B310D1CA27A08C4411 470016 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2014-11-12 23:02:30 4A201AEA90D14809BED083D876A43669 483840 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe === C: other files == 2014-11-15 19:35:50 CE44A9D4918DCDC7CCCF5503BF4D7A3D 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\lib\deploy\ffjcext.zip 2014-11-15 14:42:27 65C83DE51D9424977783B2651D68199C 61883 ----a-w- C:\Users\Till\AppData\Roaming\Winamp\Plugins\report.zip 2014-11-13 11:41:15 98EC1BC64CBC5BF410AB95CD53869E5E 2782208 ----a-w- C:\Windows\System32\win32k.sys 2014-11-12 22:09:59 37E3EF55DDDCCBD3F1A0667F43C61583 201817 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.enigmatv-1.0.0.zip 2014-11-12 22:08:16 8BBCCF4EC1438DF179141CE5FC5D53D5 409987 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.9gagtv-1.0.0.zip 2014-11-12 22:07:54 74EF92ABED5DA95EEFEDFA3C727DC64D 239794 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.7tv-2.1.0.zip 2014-11-11 20:56:55 6C260C3EFFDDBEAF50279433832E1AAD 22231 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.euronews_com-2.0.5.zip 2014-11-11 20:56:37 D94003A81CF3669976FBE79F05276AE0 842963 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.engineeringtv-1.0.2.zip 2014-11-11 20:55:48 EDCEF6685FBDE0858D6DBAF5A669F1CC 119219 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.corbettreport-0.0.9.zip 2014-11-11 20:54:53 82EEC24BB9DC591B2F6D54341F207FBC 30977 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.bestofyoutube_com-2.1.1.zip 2014-11-11 20:54:38 1406C7EEE9EF6DFB77CFA37472CCFE93 56014 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.arte_tv-2.1.1.zip 2014-11-11 16:53:44 143DE2C035C037197D766419968DBD89 189468 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.liveleak-0.0.2.zip 2014-11-11 16:53:29 F42A568D632E495AD27EA8FCB131EBD9 16372 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.manoto-1.1.0.zip 2014-11-11 16:53:19 4770B25F4E921D1DEDEB6EEC1D4E566A 52101 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.mtv_de-3.1.2.zip 2014-11-11 16:52:21 F4181FC3ADF98D56E087DE0FB89B8670 80896 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.rtlxl-1.0.9.zip 2014-11-11 16:51:57 CD44A11F91328A47931C86A49DDA74B7 344973 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.tagesschau-2.0.3.zip 2014-11-11 16:51:44 B7593421443AA5120EC950A92ADD2157 64971 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\script.module.elementtree-1.2.8.zip 2014-11-11 16:51:43 2EDD1B6CEFD1753E0C61D45CB54AA620 118674 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.ted.talks-4.2.4.zip 2014-11-11 16:50:35 8471FCC80156563525DE61B5D2301CD0 44318 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.videobash_com-0.0.3.zip 2014-11-11 15:39:36 CE82015FD9FA729A89B0842BEAEC9A8D 136168 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\service.xbmc.versioncheck-0.1.24.zip 2014-11-11 15:39:34 C5814BBF39F7F66CAB9FE5AD4D0A4261 51207 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\script.module.simple.downloader-1.9.5.zip 2014-11-11 15:39:34 972A86FCB7A6471CC70C501BE847E8B4 102452 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\script.module.buggalo-1.1.6.zip 2014-11-11 15:39:33 F40908887C07FCA401CF3E90FB7B5ED0 226451 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.nrk-4.4.17.zip 2014-11-11 15:39:28 533FCA3E25B5E05822E5FAB64B406BFE 729807 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\plugin.video.nederland24-4.2.3.zip 2014-11-11 15:39:28 1F18CC322A18301CF7FC813F835611B1 67483 ----a-w- C:\Users\Till\AppData\Roaming\XBMC\addons\packages\metadata.themoviedb.org-3.7.9.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-576860058-1132661054-1124574131-1000\Software\Microsoft\Windows\CurrentVersion\Run] "SmpcSys"="C:\Program Files (x86)\Packard Bell\SetupMyPC\SmpSys.exe" "Octoshape Streaming Services"="C:\Users\Till\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe -inv:bootrun" "KiesPreload"="C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "WMPNSCFG"="C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WebStorage"="C:\Program Files (x86)\ASUS\WebStorage\2.1.15.438\AsusWSPanel.exe /S" "RemoteControl8"="C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "PDVD8LanguageShortcut"="C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe" "KMConfig"="C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\StartAutorun.exe KMConfig.exe" "KiesTrayAgent"="C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" "EEventManager"="C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe" "DivXUpdate"="C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe /CHECKNOW" "DivXMediaServer"="C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" "ArcSoft Connection Service"="C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "SmpcSys"="C:\Program Files (x86)\Packard Bell\SetupMyPC\SmpSys.exe" "Octoshape Streaming Services"="C:\Users\Till\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe -inv:bootrun" "KiesPreload"="C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "WMPNSCFG"="C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe" "Samsung Link"="C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "FijiKeyboard"="c:\Acer\Preload\Autorun\DRV\FIJI Keyboard\ABoard.exe" ==== Startup Folders ====================== 2014-08-16 06:40:25 1147 ----a-w- C:\Users\Till\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk 2014-08-16 06:40:25 2122 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS AudioFusion.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [11-11-2014 22:24] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\6C:\ProgramC:FilesC:x86\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16-07-2014 16:12] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\SLUIMER" [shutdown] "C:\Windows\SysNative\tasks\Acer\Burn Notification" [C:\Program Files\Packard Bell\Packard Bell Recovery Management\NotificationCenter\Notification.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [25-12-2013 04:02] ==== Chromium Look ====================== Comodo Drag&Drop Service - Till\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo Comodo Web Inspector - Till\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn Comodo Media Downloader - Till\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo Comodo Share Page Service - Till\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\mcmdgbiocnkpnaccjkailibfgepaccgf HD for YouTubeâ„¢ - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf Google Voice Search Hotword (Beta) - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn YouTube - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Disable Youtubeâ„¢ HTML5 Player - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\enmofgaijnbjpblfljopnpdogpldapoc AdBlock - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Instant Translate - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke 3D Solar System Simulator - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\jepfaioimehapnjhmjihcbajchcfjfhk Love Smoke - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgibfhhccaknggplelmbaepoikkcnllb Alarm Clock Radio - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\kipdhcpepbpjaoggihaloebfjfafagmi Google Play - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi PurpleGene Feed Reader - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgjiekambmjckfnbedchbjiamngedppn Naptha - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\molncoemjfmpgdkbdlbjmhlcgniigdnf Google Wallet - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ImTranslator Google Translate - Till\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh ==== Chromium Fix ====================== C:\Users\Till\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully C:\Users\Till\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Till\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.specsavers.nl_0.localstorage deleted successfully C:\Users\Till\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.specsavers.nl_0.localstorage-journal deleted successfully C:\Users\Till\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.istartsurf.com_0.localstorage deleted successfully C:\Users\Till\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.istartsurf.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.symbaloo.com/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://www.istartsurf.com/web/?type=ds&ts=1410613337&from=ild&uid=3219913727_1789_76AD157B&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Search Page"="http://www.istartsurf.com/web/?type=ds&ts=1410613337&from=ild&uid=3219913727_1789_76AD157B&q={searchTerms}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.symbaloo.com/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_nlNL568" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully ==== HijackThis Entries ====================== O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: TerraTec Home Cinema - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\PROGRA~2\TerraTec\TERRAT~1\THCDES~1.DLL O4 - HKLM\..\Run: [WebStorage] "C:\Program Files (x86)\ASUS\WebStorage\2.1.15.438\AsusWSPanel.exe" /S O4 - HKLM\..\Run: [RemoteControl8] "C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe" O4 - HKLM\..\Run: [KMConfig] "C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\StartAutorun.exe" KMConfig.exe O4 - HKLM\..\Run: [KiesTrayAgent] "C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe" O4 - HKLM\..\Run: [EEventManager] C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [DivXMediaServer] "C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" O4 - HKLM\..\Run: [ArcSoft Connection Service] "C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [SmpcSys] C:\Program Files (x86)\Packard Bell\SetupMyPC\SmpSys.exe O4 - HKCU\..\Run: [Octoshape Streaming Services] "C:\Users\Till\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: SRS AudioFusion.lnk = C:\Program Files\SRS Labs\SRS AudioFusion\SRSPremiumPanel_64.exe O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: SAMSUNG AllShare Service (AllShare) - Unknown owner - C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe O23 - Service: AllShare Framework DMS - Samsung - C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing) O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Windows\SYSTEM32\HidService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Samsung Link Service - Copyright 2013 SAMSUNG - C:\Program Files\Samsung\Samsung Link\Samsung Link.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\PROGRA~2\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Till\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Till\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Till\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully C:\Users\Till\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=28 folders=13 4776089 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\Public\AppData\Local\temp emptied successfully C:\Users\Till\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Till\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Till\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on za 15-11-2014 at 21:20:40,10 ======================