Zoek.exe v5.0.0.0 Updated 09-January-2015 Tool run by Jasper on di 13-01-2015 at 18:15:30,29. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Jasper\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 13-1-2015 18:19:23 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully C:\Program Files\Autodesk deleted successfully C:\Program Files\Google deleted successfully C:\Program Files\Common Files\Autodesk Shared deleted successfully C:\PROGRA~3\PCDr deleted successfully C:\Users\Jasper\AppData\Roaming\Creative deleted successfully C:\Users\Jasper\AppData\Roaming\Windows Live Writer deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-1645979706-1059302275-277437465-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{87775fdb-6972-41f9-ae51-8326e38cb206} deleted successfully HKEY_USERS\S-1-5-21-1645979706-1059302275-277437465-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{87775fdb-6972-41f9-ae51-8326e38cb206} deleted successfully ==== Running Processes ====================== C:\Program Files\Dell\DellDock\DockLogin.exe C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Windows\system32\DRIVERS\o2flash.exe C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe C:\Users\Jasper\AppData\Local\Akamai\netsession_win.exe C:\Users\Jasper\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Users\Jasper\AppData\Local\Akamai\netsession_win.exe C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Petzl\OSByPetzl\OSByPetzl.exe C:\Program Files (x86)\Petzl\OSByPetzl\WinPetzlController.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Jasper\Downloads\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\WinRAR\WinRAR.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\fmctmipl deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\fmctmipl deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gxiifmcv deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gxiifmcv deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\nzbjwpnu deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\nzbjwpnu deleted successfully ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- ==== Deleting Files \ Folders ====================== "C:\Users\Jasper\AppData\Roaming\RKQER.exe" not found C:\ProgramData\dealwithapp deleted C:\ProgramData\nicEdueal deleted C:\ProgramData\3872871776 deleted C:\Program Files (x86)\Enigma Software Group deleted C:\ProgramData\eekjpahinmlcpmnolccpbkmggjnmpobm deleted C:\ProgramData\neeodighdbkdelghjdmegcpkaliangpc deleted C:\ProgramData\dgclelcolhfaenmhbkconejfoiefalbd deleted C:\PROGRA~3\GreatSoft deleted C:\extensions deleted C:\Users\Jasper\AppData\Roaming\appdataFr2.bin deleted C:\PROGRA~3\cheapdeals deleted C:\PROGRA~3\browseonline deleted C:\PROGRA~3\gifter deleted C:\PROGRA~3\InstallMate deleted C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Clip Converter deleted C:\Windows\patsearch.bin deleted C:\windows\SysNative\Tasks\LaunchSignup deleted C:\windows\SysNative\drivers\Msft_Kernel_webinstrNHK_01009.Wdf deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\windows\SysNative\GroupPolicy\Machine deleted C:\windows\SysNative\GroupPolicy\User deleted C:\windows\SysNative\GroupPolicy\GPT.INI deleted C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted "C:\Windows\tasks\RKQER.job" deleted "C:\Users\Jasper\AppData\Roaming\RKQER" deleted "C:\Windows\tasks\RKQER.job" deleted "C:\Windows\SysNative\tasks\RKQER" deleted "C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseCustomCall.dll" deleted "C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseCustomCalla.exe" deleted "C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseCustomCalla11.dll" deleted "C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseCustomCalla11.exe" deleted "C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseCustomCalla2.dll" deleted "C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseCustomCalla3.dll" deleted "C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseCustomCalla4.dll" deleted "C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP\WiseData.ini" deleted "C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP" deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 3957 MB CPU Info: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz CPU Speed: 2392,4 MHz Sound Card: Luidsprekers / Koptelefoon (IDT | Display Adapters: ATI Mobility Radeon HD 5650 | ATI Mobility Radeon HD 5650 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: Microsoft Virtual WiFi Miniport Adapter | Realtek PCIe GBE Family Controller | Dell draadloze 1397 WLAN Mini-kaart | Hamachi Network Interface CD / DVD Drives: 1x (D: | ) D: HL-DT-STDVD+-RW GA31N Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 283,4GB Hard Disks - Free: C: 80,3GB Manufacturer *: Dell Inc. BIOS Info: AT/AT COMPATIBLE | 07/14/10 | DELL - 6040000 Time Zone: West-Europa (standaardtijd) Motherboard *: Dell Inc. 0KVMW2 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: Avira Desktop On-access scanning disabled (Outdated) Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated) Anti-Spyware: Microsoft Security Essentials disabled (Outdated) Anti-Spyware: Avira Desktop disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Google Chrome 38.0.2125.111 Internet Explorer Version: 11.0.9600.17501 Google Chrome version: 38.0.2125.111 Adobe Reader version: 9.2.0.124 Sun Java version: 1.6.0_22 (32-bit) Sun Java version: 1.6.0_20 (64-bit) Flash Player version: 15.0.0.246 Shockwave Player version: 11.6.8r638 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Jasper\AppData\Local\Temp ==== 2015-01-13 17:08:21 AC324B37B92EC29A0AF797D1BA862591 31489514 ----a-w- C:\Users\Jasper\AppData\Local\Temp\petzl-installer\OSByPetzlV3.exe 2015-01-13 17:08:21 A5EA466DB3C72174F9F122C1C7D721D0 50088 ----a-w- C:\Users\Jasper\AppData\Local\Temp\petzl-installer\tools\tlist.exe 2015-01-13 17:07:10 A210F1AC135E5331C314CE5F394FB5A5 413276 ----a-w- C:\Users\Jasper\AppData\Local\Temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll 2015-01-08 20:16:05 BCBA8747AB53932F8613C006444078E9 297672 ----a-w- C:\Users\Jasper\AppData\Local\Temp\CloudBackup3701.exe 2015-01-08 20:16:00 256F360DB3C119AB9E1B6EB4C8F66680 263224 ----a-w- C:\Users\Jasper\AppData\Local\Temp\Uniblue\Offers\aff_setup.exe 2015-01-07 20:21:38 C12C76D66250723F9D4BCDC38E297D6E 265216 ----a-w- C:\Users\Jasper\AppData\Local\Temp\238CD027-AE05-C689-01E7-FF2E962E92DE.exe 2015-01-07 20:21:38 99B452D20D0B53C6EFCB85CAB2AF5C3D 89088 ----a-w- C:\Users\Jasper\AppData\Local\Temp\238CD027-AE05-C689-01E7-FF2E962E92DE.dll 2015-01-07 20:21:38 87C26D5D2ABECE3BABEC03630471AFE8 632832 ----a-w- C:\Users\Jasper\AppData\Local\Temp\FA7766BD-B1AD-DB57-2B0D-C44E1D548452.exe 2015-01-07 20:19:59 FEFEF2F226FD6BE184BC4A3378B02AAF 155648 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\psmachine.dll 2015-01-07 20:19:59 FC7A2F466F7A0F3E873077505719C1A1 143360 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\GoogleUpdateHelper.msi 2015-01-07 20:19:59 F98DE4108614E4BB81E95E58E36C7000 46080 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\GoogleUpdateBroker.exe 2015-01-07 20:19:59 D858BA2EE718B1DB1CED20646E641D08 68608 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\GoogleUpdate.exe 2015-01-07 20:19:59 9B74473DD4DE90043CCDD3EB51E90976 761856 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\goopdate.dll 2015-01-07 20:19:59 8D90BB3A36521B50D0E512A781E36871 155648 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\psuser.dll 2015-01-07 20:19:59 7E767B342E55EB1DFD74A65D24EA4B70 46080 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\GoogleUpdateOnDemand.exe 2015-01-07 20:19:59 03114DADBD9977FC823F95B21FB987E7 72872 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\GoogleCrashHandler.exe 2015-01-07 20:19:59 00DBB62BBE46160B30DB22552EC313A1 220672 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\npGoogleUpdate4.dll 2015-01-07 20:03:23 4957B8ACDDC3070251DC3BB3494A4C4F 2996736 ----a-w- C:\Users\Jasper\AppData\Local\Temp\8238.exe 2015-01-07 19:53:48 24BD3AE30A14075138EDECFCD75267B8 1361408 ----a-w- C:\Users\Jasper\AppData\Local\Temp\657E7\temp\Spyhunter 4 crack, Serial Number Full Free Download.exe 2015-01-07 19:53:39 24BD3AE30A14075138EDECFCD75267B8 1361408 ----a-w- C:\Users\Jasper\AppData\Local\Temp\67B94FC99.exe 2015-01-07 19:45:50 24BD3AE30A14075138EDECFCD75267B8 1361408 ----a-w- C:\Users\Jasper\AppData\Local\Temp\10E98461F8cc\temp\Spyhunter 4 crack, Serial Number Full Free Download.exe 2015-01-07 19:45:35 24BD3AE30A14075138EDECFCD75267B8 1361408 ----a-w- C:\Users\Jasper\AppData\Local\Temp\A5e2B8.exe 2015-01-07 19:37:18 97511FE2CA09CC2E06C3CD6519C3494E 43008 ----a-w- C:\Users\Jasper\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpa6fojn.dll 2015-01-07 10:04:32 6F863592B75D156A15FC05070A6668EB 661416 ---ha-w- C:\Users\Jasper\AppData\Local\Temp\10E98461F8cc\temp\embededstub.exe 2015-01-07 03:32:45 FEA825F32A46DCB9E5324AE3A093C163 308680 ---ha-w- C:\Users\Jasper\AppData\Local\Temp\657E7\temp\wpc_mystartsearch.exe 2015-01-05 15:41:32 864B8BD1F538474E59212CECBCECC2E1 452784 ----a-w- C:\Users\Jasper\AppData\Local\Temp\smarter.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-01-07 23:22:12 A6D61CD951FB0057933FD2D2D8CDBC0B 112710672 ----a-w- C:\Windows\Sysnative\MRT.exe ====== C:\Windows\Sysnative\drivers ===== 2015-01-07 22:36:15 F627BFFCC52587350E49FC2C2A03C7F9 43064 ----a-w- C:\Windows\Sysnative\drivers\avnetflt.sys 2015-01-07 22:19:34 AF61774060F277FE45CBD3A9A8E7D45A 131608 ----a-w- C:\Windows\Sysnative\drivers\avipbb.sys 2015-01-07 22:19:34 390184FAD8FCC1B6DA25AEBAE928C3B6 28600 ----a-w- C:\Windows\Sysnative\drivers\avkmgr.sys 2015-01-07 22:19:34 1B87A1F2FA5B91AC1A7D171B8D952441 119272 ----a-w- C:\Windows\Sysnative\drivers\avgntflt.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-01-08 16:33:52 -------- d-----w- C:\Program Files\trend micro 2014-12-29 17:10:17 -------- d-----w- C:\Program Files\Enigma Software Group ======= C:\PROGRA~2 ===== 2015-01-13 17:09:43 -------- d-----w- C:\PROGRA~2\Petzl 2015-01-07 22:19:32 -------- d-----w- C:\PROGRA~2\Avira 2015-01-07 20:06:09 -------- d-----w- C:\PROGRA~2\COMMON~1\Wise Installation Wizard ======= C: ===== 2014-12-29 17:11:56 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat ====== C:\Users\Jasper\AppData\Roaming ====== 2015-01-13 17:09:16 -------- d-----w- C:\Users\Jasper\AppData\Roaming\OSByPetzl 2015-01-13 17:08:25 -------- d-----w- C:\Users\Jasper\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OS by Petzl 2015-01-08 20:16:30 -------- d-----r- C:\Users\Jasper\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2015-01-07 22:22:59 -------- d-----w- C:\Users\Jasper\AppData\Roaming\Avira 2015-01-07 20:09:06 -------- d-sh--w- C:\Users\Jasper\AppData\Local\EmieBrowserModeList ====== C:\Users\Jasper ====== 2015-01-13 17:10:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Petzl 2015-01-08 20:14:13 58C71AE163336E9343B23FDF1516EFF0 1303056 ----a-w- C:\Users\Jasper\Downloads\speedupmypc.exe 2015-01-08 16:32:32 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Jasper\Downloads\RSITx64.exe 2015-01-07 22:52:15 61CA40317EBF1254770BF8B495B3F8DA 2191360 ----a-w- C:\Users\Jasper\Downloads\AdwCleaner (1).exe 2015-01-07 22:51:51 61CA40317EBF1254770BF8B495B3F8DA 2191360 ----a-w- C:\Users\Jasper\Downloads\AdwCleaner.exe 2015-01-07 22:20:25 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-01-07 21:38:52 7AD5531075937B0D6F2C348DA482C444 155218352 ----a-w- C:\Users\Jasper\Downloads\avira_free_antivirus_nl.exe 2015-01-07 21:31:22 3BD59D6C407AB1F6DDD7C5D9BD727469 20447072 ----a-w- C:\Users\Jasper\Downloads\mbam-setup-2.0.4.1028 (1).exe 2015-01-07 21:14:50 3BD59D6C407AB1F6DDD7C5D9BD727469 20447072 ----a-w- C:\Users\Jasper\Downloads\mbam-setup-2.0.4.1028.exe 2015-01-07 20:38:45 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-01-07 20:37:43 04DC1E84ADE2184CECA72488135BC125 2123440 ----a-w- C:\Users\Jasper\Downloads\wrar510nl.exe 2015-01-07 20:22:06 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\ProgramData\ntuser.pol 2015-01-07 20:18:03 5AA3C54BF1F3D4DED1B79E1033A4A05B 491408 ----a-w- C:\Users\Jasper\Downloads\Spy_Hunter (3).exe 2015-01-07 20:16:38 5AA3C54BF1F3D4DED1B79E1033A4A05B 491408 ----a-w- C:\Users\Jasper\Downloads\Spy_Hunter (2).exe 2015-01-07 20:16:17 5AA3C54BF1F3D4DED1B79E1033A4A05B 491408 ----a-w- C:\Users\Jasper\Downloads\Spy_Hunter (1).exe 2015-01-07 20:16:04 5AA3C54BF1F3D4DED1B79E1033A4A05B 491408 ----a-w- C:\Users\Jasper\Downloads\Spy_Hunter.exe 2015-01-07 20:05:45 C5129AAED888B5A223A2425464F371FA 15397208 ----a-w- C:\Users\Jasper\Downloads\spyhunterS (1).exe 2015-01-07 20:05:29 C5129AAED888B5A223A2425464F371FA 15397208 ----a-w- C:\Users\Jasper\Downloads\spyhunterS.exe 2015-01-07 19:44:00 24BD3AE30A14075138EDECFCD75267B8 1361408 ----a-w- C:\Users\Jasper\Downloads\Spyhunter 4 crack, Serial Number Full Free Download.exe 2014-12-29 17:11:10 -------- d-----w- C:\Users\Jasper\Start Menu ====== C: exe-files == 2015-01-13 17:09:17 F1546E6359715C3A87273760A935BE8D 54432 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\airappinstaller.exe 2015-01-13 17:09:17 F1546E6359715C3A87273760A935BE8D 54432 ----a-w- C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\airappinstaller.exe 2015-01-13 17:09:17 99F744C8DF9AFF058D45E2870EC6C6D7 96768 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe 2015-01-13 17:09:17 32146D6C26CD993F72F298E26DA1B75D 59392 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe 2015-01-13 17:09:17 1DEF6E8D8BCDB1CF4C9597C414281A38 130208 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe 2015-01-13 17:08:39 C0620C6672AB9375DBF55F61E357D59F 1204736 ----a-w- C:\Program Files (x86)\Petzl\OSByPetzl\WinPetzlController.exe 2015-01-13 17:08:38 068A76688B2223D2C442D2A8D998EDF7 225280 ----a-w- C:\Program Files (x86)\Petzl\OSByPetzl\OSByPetzl.exe 2015-01-13 17:08:21 AC324B37B92EC29A0AF797D1BA862591 31489514 ----a-w- C:\Users\Jasper\AppData\Local\Temp\petzl-installer\OSByPetzlV3.exe 2015-01-13 17:08:21 A5EA466DB3C72174F9F122C1C7D721D0 50088 ----a-w- C:\Users\Jasper\AppData\Local\Temp\petzl-installer\tools\tlist.exe 2015-01-08 20:16:05 BCBA8747AB53932F8613C006444078E9 297672 ----a-w- C:\Users\Jasper\AppData\Local\Temp\CloudBackup3701.exe 2015-01-08 20:16:00 256F360DB3C119AB9E1B6EB4C8F66680 263224 ----a-w- C:\Users\Jasper\AppData\Local\Temp\Uniblue\Offers\aff_setup.exe 2015-01-08 20:15:59 256F360DB3C119AB9E1B6EB4C8F66680 263224 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PDQFPHCK\aff_setup[1].exe 2015-01-08 20:14:54 23B9FAEDA4D97203E4D9F7FA4E500E2D 18923232 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y0X50VGF\SpeedUpMyPC-standalone-setup[1].exe 2015-01-08 16:33:53 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Jasper.exe 2015-01-08 14:19:05 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-000000C6.exe 2015-01-08 14:19:05 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-000000C5.exe 2015-01-08 14:19:05 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-000000C4.exe 2015-01-08 14:19:05 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-000000C3.exe 2015-01-08 14:19:04 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-000000C2.exe 2015-01-08 12:53:40 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-000000A2.exe 2015-01-08 12:53:38 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-000000A1.exe 2015-01-08 11:51:43 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-000000A0.exe 2015-01-08 11:51:39 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-0000009F.exe 2015-01-08 11:51:39 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-0000009E.exe 2015-01-08 10:39:13 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000046.EXE 2015-01-08 10:36:47 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-0000003E.exe 2015-01-08 10:36:42 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-0000003D.EXE 2015-01-08 10:36:42 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-0000003C.EXE 2015-01-08 10:36:38 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000039.exe 2015-01-08 10:36:34 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000038.exe 2015-01-08 10:36:34 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000037.exe 2015-01-08 10:32:08 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000021.EXE 2015-01-08 10:32:08 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000020.EXE 2015-01-08 10:32:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-0000001D.exe 2015-01-08 10:31:47 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-0000001C.exe 2015-01-08 10:31:42 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-0000001B.exe 2015-01-08 09:52:15 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000009.exe 2015-01-08 09:51:41 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000008.exe 2015-01-08 09:51:40 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000007.EXE 2015-01-08 09:51:40 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000006.EXE 2015-01-08 09:51:37 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000003.exe 2015-01-08 09:51:37 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVSCAN-20150108-095215-1FFD0CD4\AVSCAN-00000002.exe 2015-01-07 22:19:42 1760501720176500A3FDD91A9AE4596F 494328 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe 2015-01-07 22:19:37 B738781F55FD0DDA6CF698DB94398648 1063728 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\update.exe 2015-01-07 22:19:37 27D75D3B73AA23A02D5939CB75E96C21 394032 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\updrgui.exe 2015-01-07 22:19:36 E20F64703B8CDCE036EBB03C7E99347D 880376 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\fact.exe 2015-01-07 22:19:36 C2700D35AA42311A32DF7EA09630B401 431920 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe 2015-01-07 22:19:36 A4D96077263AF3442A13DE3CCE17A7B1 659704 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\guardgui.exe 2015-01-07 22:19:36 921427ED219D403273F3D4E4F0E61FB8 418096 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\setuppending.exe 2015-01-07 22:19:36 86F299E972EFC911D420B18DA0D4B286 485112 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\licmgr.exe 2015-01-07 22:19:36 1C1964F85EE571D788DC8330E1F0195B 452856 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\ipmgui.exe 2015-01-07 22:19:36 163AF349B309539B9737FC8EF9CD7DD6 1834288 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\setup.exe 2015-01-07 22:19:36 063381603B58FD09CF6C3E37E337F54B 489208 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\inssda64.exe 2015-01-07 22:19:35 FDFA68518DF393B67322562BF5AE077F 410360 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avupgsvc.exe 2015-01-07 22:19:35 F104799A40E954596D326E70846C8D5C 465200 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\ccuac.exe 2015-01-07 22:19:35 C011EA41CAFC32B8454A90CD5C6D9985 401200 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\checkt.exe 2015-01-07 22:19:35 6BF71CFA3F441D83246EB555CE2E62AC 4583696 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avira_nl____fm.exe 2015-01-07 22:19:35 4959D50AF27559BFCAC93601F32D5338 497400 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebloader.exe 2015-01-07 22:19:35 0AA9A452FA676F0DD09FFB8FA189430B 1043664 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avwsc.exe 2015-01-07 22:19:35 051A7A9C035BBAB779E2C96E65C32600 992560 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe 2015-01-07 22:19:35 027820FE847A7B4245234A4E6E825BE1 993584 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe 2015-01-07 22:19:34 C2700D35AA42311A32DF7EA09630B401 431920 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe 2015-01-07 22:19:34 A9FF6304EABD4AED70BBA6349FF9CEA5 820472 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avconfig.exe 2015-01-07 22:19:34 A162B967A88BF374A81E01EF6E7A2655 702768 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe 2015-01-07 22:19:34 4A50A8CBFA1D6477A0ABCBE153523F03 624432 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe 2015-01-07 22:19:34 27C5D1CB95D8E5B37297806A39762F3E 1015544 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe 2015-01-07 22:19:34 1D078D054F81CB58853CDF2BA7EE7DBA 702712 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe 2015-01-07 22:19:34 0B7DA5867F7F7A7484411207FAA8D5E6 547576 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avrestart.exe 2015-01-07 22:19:33 AAAF6BA1F7C06F931BFEB3E3743D0427 417072 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avadmin.exe 2015-01-07 22:19:33 45323697924B2FEB891B3EF5C888CCB3 703280 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe 2015-01-07 20:38:36 DD965038187296E9278C0207CB9C6477 151640 ----a-w- C:\Program Files (x86)\WinRAR\Uninstall.exe 2015-01-07 20:38:36 9FF6FF93F71549755FED8C7CF7D55D85 1388120 ----a-w- C:\Program Files (x86)\WinRAR\WinRAR.exe 2015-01-07 20:38:36 17191DF6B146369302C9386C6A153BE2 309848 ----a-w- C:\Program Files (x86)\WinRAR\UnRAR.exe 2015-01-07 20:38:35 1E9E954BC0C7E6FAA9F36727E940C2D3 496728 ----a-w- C:\Program Files (x86)\WinRAR\Rar.exe 2015-01-07 20:23:57 23CD6FCCE6D767ABFB416375BE7A37D6 8933 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZHUD1IQ9\yet_another_cleaner_cnt[1].exe 2015-01-07 20:23:21 AE243C6C9BCA00B7E39CE9F8710393AC 2611792 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZHUD1IQ9\XTab_Setup1615[2].exe 2015-01-07 20:21:38 C12C76D66250723F9D4BCDC38E297D6E 265216 ----a-w- C:\Users\Jasper\AppData\Local\Temp\238CD027-AE05-C689-01E7-FF2E962E92DE.exe 2015-01-07 20:21:38 87C26D5D2ABECE3BABEC03630471AFE8 632832 ----a-w- C:\Users\Jasper\AppData\Local\Temp\FA7766BD-B1AD-DB57-2B0D-C44E1D548452.exe 2015-01-07 20:19:59 F98DE4108614E4BB81E95E58E36C7000 46080 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\GoogleUpdateBroker.exe 2015-01-07 20:19:59 D858BA2EE718B1DB1CED20646E641D08 68608 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\GoogleUpdate.exe 2015-01-07 20:19:59 7E767B342E55EB1DFD74A65D24EA4B70 46080 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\GoogleUpdateOnDemand.exe 2015-01-07 20:19:59 03114DADBD9977FC823F95B21FB987E7 72872 ----a-w- C:\Users\Jasper\AppData\Local\Temp\comh.115938\GoogleCrashHandler.exe 2015-01-07 20:19:27 B95ED0CD278CB3290561C1378734FEE1 2702592 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ROBA9Y07\FreeTVDownloader4[1].exe 2015-01-07 20:03:23 4957B8ACDDC3070251DC3BB3494A4C4F 2996736 ----a-w- C:\Users\Jasper\AppData\Local\Temp\8238.exe 2015-01-07 19:58:20 32E68F07838230BE3A220C80B27C94E5 2835 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZHUD1IQ9\yet_another_cleaner_sfto_5_6_105[1].exe 2015-01-07 19:57:55 AE243C6C9BCA00B7E39CE9F8710393AC 2611792 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZHUD1IQ9\XTab_Setup1615[1].exe 2015-01-07 19:53:48 24BD3AE30A14075138EDECFCD75267B8 1361408 ----a-w- C:\Users\Jasper\AppData\Local\Temp\657E7\temp\Spyhunter 4 crack, Serial Number Full Free Download.exe 2015-01-07 19:53:39 24BD3AE30A14075138EDECFCD75267B8 1361408 ----a-w- C:\Users\Jasper\AppData\Local\Temp\67B94FC99.exe 2015-01-07 19:48:12 454A0A8296DD04B061141513A96779F9 7854784 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y0X50VGF\SPSetup[1].exe 2015-01-07 19:48:10 AE9DC93C1788422A2AFFA1F804F498A6 177432 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZHUD1IQ9\spstub[1].exe 2015-01-07 19:48:08 ADD8A127AC763D14689CB270214BEE4D 147552 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y0X50VGF\sp-downloader[1].exe 2015-01-07 19:45:50 24BD3AE30A14075138EDECFCD75267B8 1361408 ----a-w- C:\Users\Jasper\AppData\Local\Temp\10E98461F8cc\temp\Spyhunter 4 crack, Serial Number Full Free Download.exe 2015-01-07 19:45:35 24BD3AE30A14075138EDECFCD75267B8 1361408 ----a-w- C:\Users\Jasper\AppData\Local\Temp\A5e2B8.exe 2015-01-07 10:04:32 6F863592B75D156A15FC05070A6668EB 661416 ---ha-w- C:\Users\Jasper\AppData\Local\Temp\10E98461F8cc\temp\embededstub.exe 2015-01-07 03:32:45 FEA825F32A46DCB9E5324AE3A093C163 308680 ---ha-w- C:\Users\Jasper\AppData\Local\Temp\657E7\temp\wpc_mystartsearch.exe === C: other files == 2015-01-13 17:06:16 5110DAADBEEE8A4EDF1DB901C353F7E9 37857047 ----a-w- C:\Users\Jasper\Downloads\OS-by-Petzl-windows-installer.zip 2015-01-11 19:47:00 E0F39D0F3671B79F6BED5B258986E8FD 40474 ----a-w- C:\Users\Jasper\Downloads\the-drop_HI_english-1038013.zip 2015-01-07 22:36:15 F627BFFCC52587350E49FC2C2A03C7F9 43064 ----a-w- C:\Windows\System32\drivers\avnetflt.sys 2015-01-07 22:19:36 D66430ED8DF1E05D0F694B6BE3C1FB48 43040 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\sweb.zip 2015-01-07 22:19:34 F627BFFCC52587350E49FC2C2A03C7F9 43064 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avnetflt.sys 2015-01-07 22:19:34 AF61774060F277FE45CBD3A9A8E7D45A 131608 ----a-w- C:\Windows\System32\drivers\avipbb.sys 2015-01-07 22:19:34 AF61774060F277FE45CBD3A9A8E7D45A 131608 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avipbb.sys 2015-01-07 22:19:34 390184FAD8FCC1B6DA25AEBAE928C3B6 28600 ----a-w- C:\Windows\System32\drivers\avkmgr.sys 2015-01-07 22:19:34 390184FAD8FCC1B6DA25AEBAE928C3B6 28600 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avkmgr.sys 2015-01-07 22:19:34 1B87A1F2FA5B91AC1A7D171B8D952441 119272 ----a-w- C:\Windows\System32\drivers\avgntflt.sys 2015-01-07 22:19:34 1B87A1F2FA5B91AC1A7D171B8D952441 119272 ----a-w- C:\Program Files (x86)\Avira\AntiVir Desktop\avgntflt.sys 2015-01-07 20:23:14 5DEA20D1935226CAC0DF77B46AFE5487 606701 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ROBA9Y07\2[2].zip 2015-01-07 20:22:12 0BC1013B0120696DDD816C446DC0B636 2155075 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PDQFPHCK\1[1].zip 2015-01-07 19:57:50 C95561D88F68E24981FCA9FBD645FE8C 226045 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ROBA9Y07\2[1].zip 2015-01-07 19:57:17 46662357A1F95DE3133C74070C9BF82A 2004459 ----a-w- C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y0X50VGF\1[1].zip 2015-01-07 16:34:20 E9A4F815CCC7EADD7E8BE0D412369D18 52761772 ----a-w- C:\Users\Jasper\Dropbox\Majorproject Benedenrivieren\3 Giskaarten\Kaarten\Gerben\GISDATA\shapefiles\Gis Bestanden SBB.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1645979706-1059302275-277437465-1000\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "Akamai NetSession Interface"="C:\Users\Jasper\AppData\Local\Akamai\netsession_win.exe" "Spotify Web Helper"="C:\Users\Jasper\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "Desktop Disc Tool"="c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" "DellSupportCenter"="C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe /P DellSupportCenter" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "SSDMonitor"="C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" "AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin" "LogMeIn Hamachi Ui"="C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start" "avgnt"="C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe /min" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "Akamai NetSession Interface"="C:\Users\Jasper\AppData\Local\Akamai\netsession_win.exe" "Spotify Web Helper"="C:\Users\Jasper\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Broadcom Wireless Manager UI"="C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe" "QuickSet"="C:\Program Files\Dell\QuickSet\QuickSet.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " "SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe" ==== Startup Folders ====================== 2010-10-09 09:01:06 2000 ----a-w- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk 2010-10-09 09:01:06 2000 ----a-w- C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [10-12-2014 19:10] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [18-10-2014 11:22] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [18-10-2014 11:22] C:\Windows\tasks\RMAutoUpdate.job --a------ C:\Program Files (x86)\PC Tools Registry Mechanic\SULauncher.exe [27-12-2012 14:56] C:\Windows\tasks\RMSchedule.job --a------ C:\Program Files (x86)\PC Tools Registry Mechanic\RegMech.exe [27-12-2012 14:56] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\LoJack for Laptops Install" ["%PROGRAMFILES(x86)%\Absolute Software\LoJack Install\FactoryInstaller.exe"] "C:\Windows\SysNative\tasks\RMAutoUpdate" [C:\Program Files (x86)\PC Tools Registry Mechanic\SULauncher.exe] "C:\Windows\SysNative\tasks\RMSchedule" [C:\Program Files (x86)\PC Tools Registry Mechanic\RegMech.exe] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\D2WZ5ZN1\Administrator - Start WLAN Tray Applet" [C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE] ==== Chromium Look ====================== Google Chrome Version: 38.0.2125.111 (Possible outdated, latest Stable version: 39.0.2171.95) ==== Chromium Startpages ====================== C:\Users\Jasper\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.google.com/", "startup_urls": [ "http://www.google.com/" ], ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" "Search Page"="http://www.google.com" "Default_Page_URL"="http://www.google.com/" "Default_Search_URL"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7SUNC_nlNL402" {80c554b9-c7f8-4a21-9471-06d606da78a2} Bing Url="http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE" {ADB617A6-4223-44CC-B025-5F58413E7EDC} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1645979706-1059302275-277437465-1000\Software\Microsoft\Internet Explorer\SearchScopes\{ADB617A6-4223-44CC-B025-5F58413E7EDC} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyOverride"="*.local;127.0.0.1:9421;" "ProxyEnable"=dword:00000000 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\dda4e238-2884-4964-9f2c-7747b5d80c1b deleted successfully HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8348C1F2-1FE8-EADF-5C76-34B0728A3FBC} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AED1B7A5-67A5-84A5-B646-E3541CE0BB5F} deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [Desktop Disc Tool] "c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Jasper\AppData\Local\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Jasper\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user') O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user') O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MIF5BA~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwareupdate/su/ocx/15101/CTSUEng.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPID.cab O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Avira Planner (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\DRIVERS\o2flash.exe (file missing) O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: TurboBoost - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jasper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Jasper\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Jasper\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Jasper\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=152 folders=47 49462346 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Jasper\AppData\Local\Temp will be emptied at reboot C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Jasper\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on di 13-01-2015 at 20:10:58,66 ======================