Zoek.exe v5.0.0.0 Updated 27-01-2015 Tool run by Henk on wo 28-01-2015 at 16:13:57,82. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: D:\Henk\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== D:\zoek-results2014-08-23-105042.log 58681 bytes D:\zoek-results2014-08-23-164109.log 8094 bytes ==== Empty Folders Check ====================== C:\PROGRA~2\ToolwizCareFree deleted successfully C:\PROGRA~3\BlueStacksSetup deleted successfully D:\Henk\AppData\Roaming\\The Complete Genealogy Reporter - FTB deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2771351034-1752285704-1091563883-1008\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B4256A73-837C-4195-BD10-0ADEE51BEFF6} deleted successfully HKEY_USERS\S-1-5-21-2771351034-1752285704-1091563883-1008\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F4E39681-15F8-4fda-B8A3-B5C98378F2F3} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== æTorrent 7-Zip 9.20 (x64 edition) Aangifte inkomstenbelasting 2010 Aangifte inkomstenbelasting 2011 Aangifte inkomstenbelasting 2012 Aangifte inkomstenbelasting 2013 Adobe Digital Editions Adobe Flash Player 16 ActiveX Adobe Flash Player 16 NPAPI Adobe Reader XI (11.0.10) - Nederlands Adobe Refresh Manager ATI AVIVO64 Codecs ATI Catalyst Install Manager Avast Free Antivirus bl Catalyst Control Center - Branding Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Common Catalyst Control Center Graphics Previews Vista Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-core-static ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Italian CCC Help Japanese CCC Help Norwegian CCC Help Spanish CCC Help Swedish CCleaner Components Setup D3DX10 Defraggler Dream Aquarium 1.234 F1 2014 Facebook Video Calling 3.1.0.521 FormatFactory 2.95 Google Chrome Google Earth Google Talk Plugin Google Update Helper Google+ Auto Backup HitmanPro.Alert HP Deskjet 1010 series Basissoftware van het apparaat HP Deskjet 1010 series Help HP FWUpdateEDO2 HP Support Solutions Framework HP Update HPDiagnosticAlert HPSupportUtilities30 IM Magician ImgBurn Insane 2 Java 7 Update 67 Java 8 Update 25 Java Auto Updater Junk Mail filter update K-Lite Codec Pack 6.5.0 (Full) Klaverjassen Liveupdate4 Magical Mysteries - Path of the Sorceress MailWasher Free 6.5.4 Malwarebytes Anti-Malware versie 2.0.4.1028 Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft Application Error Reporting Microsoft IntelliPoint 8.0 Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Professional Plus 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft OneDrive Microsoft Primary Interoperability Assemblies 2005 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft_VC80_CRT_x86 Microsoft_VC90_CRT_x86 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFCLOC_x86 Movie Maker Mozilla Firefox 33.0.2 (x86 en-US) Mozilla Maintenance Service MSI Afterburner 1.5.1 MSI Kombustor v1.0.7 MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MyHeritage Family Tree Builder NVIDIA Drivers NVIDIA PhysX Octoshape Streaming Services OpenAL ph Photo Common Photo Gallery PowerISO Productverbeteringsonderzoek voor HP Deskjet 1010 series Revo Uninstaller Pro 3.0.8 Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft .NET Framework 4.5.1 (KB2972107) Security Update for Microsoft .NET Framework 4.5.1 (KB2972216) Security Update for Microsoft .NET Framework 4.5.1 (KB2978128) Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2) Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596927) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2920790) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2920792) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2984942) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2920793) 32-Bit Edition Shockwave Director 11.0.3 SkypeT 6.11 SlimCleaner Sony Picture Utility Sony USB Driver Sound Blaster X-Fi MB Speccy Spotify swMSM Tibet Quest TomTom HOME TomTom HOME Visual Studio Merge Modules TreeSize Free V3.2.1 TuneUp Utilities 2014 TuneUp Utilities 2014 (en-US) UnderCoverXP 1.23 Unity Web Player Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2920789) 32-Bit Edition Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) Verzoek of wijziging voorlopige aanslag 2011 Vimicro USB2.0 UVC PC Camera Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live Messenger Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Windows Media Player Firefox Plugin World of Tanks Zylom Games Player Plugin ==== Running Processes ====================== C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe C:\Program Files\Alwil Software\Avast5\AvastSvc.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\SysWOW64\PnkBstrB.exe C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe D:\Henk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files\Alwil Software\Avast5\avastui.exe C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe C:\Program Files (x86)\FireTrust\MailWasher Free\MailWasher.exe D:\Henk\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] ""=- ==== Deleting Files \ Folders ====================== D:\Henk\AppData\Roaming\ProtectDISC deleted C:\Users\Public\Documents\iwin deleted C:\Windows\SysWow64\AI_RecycleBin deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 4096 MB CPU Info: AMD Athlon(tm) II X4 640 Processor CPU Speed: 2915,6 MHz Sound Card: Headphone (VIA HD Audio) | SPDIF Interface (TX0) (VIA HD A | Display Adapters: AMD Radeon HD 5670 | AMD Radeon HD 5670 | AMD Radeon HD 5670 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: NVIDIA nForce 10/100/1000 Mbps Ethernet CD / DVD Drives: 1x (E: | ) E: _NEC DVD_RW ND-2500A Ports: COM1 LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 221,6GB | D: 244,0GB | F: 931,5GB Hard Disks - Free: C: 82,6GB | D: 160,4GB | F: 470,5GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 05/17/10 | 051710 - 20100517 Time Zone: West-Europa (standaardtijd) Motherboard *: ASRock M3N78D Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: avast! Antivirus disabled (Outdated) Firewall: avast! Antivirus disabled Default Browser: Google Chrome 40.0.2214.93 Internet Explorer Version: 11.0.9600.17501 Mozilla Firefox version: 33.0.2 (x86 en-US) Google Chrome version: 40.0.2214.93 Adobe Reader version: 11.0.10.32 Sun Java version: 1.8.0_25 (32-bit) Sun Java version: 1.8.0_25 (64-bit) Flash Player version: 16.0.0.296 Shockwave Player version: 12.1.3r153 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-01-13 21:28:50 C95E569A0AFA984A39F05D6DD5ADEB3C 253952 ------w- C:\Windows\Setup1.exe 2015-01-13 21:28:45 B0B0F0F408C6F21BCD5AB05CAED28CA2 74752 ----a-w- C:\Windows\ST6UNST.EXE 2015-01-13 21:05:07 7D787B6ED5991C41D62DADD6E424638E 397312 ----a-w- C:\Windows\iwexec.exe ====== D:\Henk\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2015-01-18 20:00:29 F04ADF34F2D3C589D2E5635C68FA8B3D 454656 ----a-w- C:\Windows\SysWOW64\PaintX.dll 2015-01-18 20:00:29 59609ED124D91AFE76B131615DFCB326 2029056 ----a-w- C:\Windows\SysWOW64\PDFDocScout.DLL 2015-01-18 20:00:28 FB23C632BE3EECB4E1F59857EFAB857B 606208 ----a-w- C:\Windows\SysWOW64\HexUniRTFBox.ocx 2015-01-18 20:00:28 F8D176DB5B14AED7C9B25E0640226BD1 258352 ----a-w- C:\Windows\SysWOW64\unicows.dll 2015-01-18 20:00:28 EB5F811C1F78005B3C147599A0CCCF51 608448 ----a-w- C:\Windows\SysWOW64\comctl32.ocx 2015-01-18 20:00:28 D329085A88A9019ED5700C0F04B3176E 137000 ----a-w- C:\Windows\SysWOW64\msmapi32.ocx 2015-01-18 20:00:28 1AA06C81A0621E277E755B965B5E4B5F 372736 ----a-w- C:\Windows\SysWOW64\ijl15.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== 2015-01-24 19:38:54 8DE1B4F579F8F8897409856F3BB7A7D2 58056 ----a-w- C:\Windows\Sysnative\drivers\fssfltr.sys 2015-01-14 09:41:55 AE3334958D8F631FF14A0AEB3D7EFB3A 141312 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys ====== C:\Windows\Tasks ====== 2015-01-26 16:05:50 00741F67801B497772DACB2145355F83 3102 ----a-w- C:\Windows\Sysnative\Tasks\{C30AC2B3-8C7F-4ED9-8B85-6BBD4F78DA40} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2015-01-27 21:54:18 -------- d-----w- C:\PROGRA~2\JAM Software 2015-01-18 19:59:42 -------- d-----w- C:\PROGRA~2\MyHeritage ======= D: ===== ====== D:\Henk\AppData\Roaming ====== ====== D:\Henk ====== 2015-01-27 21:54:21 7ABF358DC49F99531C5D80818910F5A8 1039 ----a-w- D:\Henk\Desktop\TreeSize Free.lnk 2015-01-27 21:53:17 D7B02584717D1B274B202EEC59F590C0 5096104 ----a-w- D:\Henk\Downloads\TreeSizeFreeSetup.exe 2015-01-27 17:12:08 4F4155EEBC0AA0144014D76A0AFCEBDC 1402251 ----a-w- D:\Henk\Downloads\spacesniffer_1_2_0_2 (1).zip 2015-01-27 16:26:13 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- D:\Henk\Desktop\RSITx64.exe 2015-01-27 16:25:29 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- D:\Henk\Downloads\RSITx64.exe 2015-01-26 20:35:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler 2015-01-26 20:34:11 5028642A01C7D6EA50AA4BD5276819F4 4362512 ----a-w- D:\Henk\Downloads\dfsetup218.exe 2015-01-26 20:06:08 4F4155EEBC0AA0144014D76A0AFCEBDC 1402251 ----a-w- D:\Henk\Downloads\spacesniffer_1_2_0_2.zip 2015-01-26 19:44:10 43591DFBC581BA2795B423F5B551FC40 610575 ----a-w- D:\Henk\Downloads\kalender-2015.jpg 2015-01-25 20:32:34 65E1D73AD948CC63F3AC2C1A2C9E22A6 24347 ----a-w- D:\Henk\Downloads\Download.pdf 2015-01-24 19:33:03 D1FD677582820AB3A60528EAC18FE31C 1243328 ----a-w- D:\Henk\Downloads\wlsetup-web.exe 2015-01-24 19:20:40 -------- d-----w- D:\Henk\Documents\Mijn ontvangen bestanden 2015-01-23 22:22:06 F118DFE41C509D6236FA904DFBED7278 46426 ----a-w- D:\Henk\Downloads\FACT22288646_646627.pdf 2015-01-21 19:06:07 850620A3C0574E72723D4BCF6CFB1778 22349 ----a-w- D:\Henk\Pictures\Naamloos.jpg 2015-01-20 22:24:12 212CFA2345ADCA7E20A23852BE768BD6 87552 ----a-w- D:\Henk\Downloads\gb_alt_canum (1).doc 2015-01-20 21:07:50 212CFA2345ADCA7E20A23852BE768BD6 87552 ----a-w- D:\Henk\Downloads\gb_alt_canum.doc 2015-01-19 16:36:45 A6A37082A0F8DFACD6E2AAE1E8CA3D8C 739 ----a-w- D:\Henk\Downloads\export (1).ged 2015-01-18 22:45:43 6EA377DA154B0111D59AE70C35F9864E 2186752 ----a-w- D:\Henk\Downloads\AdwCleaner (1).exe 2015-01-18 21:37:56 7B2E863FFC4DEFA95AFD1AA585659AFC 434 ----a-w- D:\Henk\Downloads\export.ged 2015-01-18 20:00:55 -------- d-----w- D:\Henk\Documents\MyHeritage 2015-01-18 20:00:55 -------- d-----w- C:\ProgramData\MyHeritage 2015-01-18 20:00:40 8648635592378D143932B75BCD625432 967 ----a-w- D:\Henk\Desktop\MyHeritage Family Tree Builder.lnk 2015-01-18 19:58:56 6ECF2174AC366D7E84D04DC3FFAC8633 36986424 ----a-w- D:\Henk\Downloads\family_tree_builder_7138.exe 2015-01-18 14:55:05 B2254D0DB4CE5474282E056A9056EDA5 531444 ----a-w- D:\Henk\Downloads\Labrijn M 350594.pdf 2015-01-18 13:33:22 BE20A31CA0616856834B3029E55758D8 138644 ----a-w- D:\Henk\Downloads\Vragenlijst.pdf 2015-01-18 12:45:43 026D0E3B032819A29436CF130032FDC7 185201 ----a-w- D:\Henk\Downloads\38539001_2D_DWG.zip 2015-01-17 21:47:32 EF63FA07E24BC99B2DBA79CFC6FBFE91 97 ----a-w- D:\Henk\Desktop\Sanit Ersatzteile - Ersatzteilfachmann.de - Ersatzteile für Jedermann.url 2015-01-17 14:33:49 5D479D0096ADD7E4B522A06DC53F5902 62874 ----a-w- D:\Henk\Downloads\TransactieHistorie (5).pdf 2015-01-17 14:32:36 51C068193ECCA4A015C0F725F042D939 61903 ----a-w- D:\Henk\Downloads\TransactieHistorie (4).pdf 2015-01-17 14:31:51 6E39D1AEFF2E4A8ECD0D68B105ABFF6C 62814 ----a-w- D:\Henk\Downloads\TransactieHistorie (3).pdf 2015-01-17 14:28:47 43DE89B510DEF7BC8C3A1BDABEFA03C6 62582 ----a-w- D:\Henk\Downloads\TransactieHistorie (2).pdf 2015-01-17 14:27:44 C3C9ADD473BFD1FFC5D3AA906AFA98FB 53249 ----a-w- D:\Henk\Downloads\TransactieHistorie (1).pdf 2015-01-17 14:24:55 BAA22CB4BBD6CF5611DDB575311F1B85 62611 ----a-w- D:\Henk\Downloads\TransactieHistorie.pdf 2015-01-16 12:12:39 61CA40317EBF1254770BF8B495B3F8DA 2191360 ----a-w- D:\Henk\Downloads\AdwCleaner.exe 2015-01-16 12:10:04 E45823AE0D754FC0206F14C1FC43EB74 5317104 ----a-w- D:\Henk\Downloads\ccsetup501.exe 2015-01-16 12:06:43 3BD59D6C407AB1F6DDD7C5D9BD727469 20447072 ----a-w- D:\Henk\Downloads\mbam-setup-2.0.4.1028.exe 2015-01-13 22:51:01 D0022467D4E14CF128D52CC0738F2A5B 28040 ----a-w- D:\Henk\Downloads\artikel_8832 (1).pdf 2015-01-13 22:44:18 49D8B7C52645853D48EAA20AAA45FCAB 27230 ----a-w- D:\Henk\Downloads\artikel_8832.pdf 2015-01-13 22:10:20 AAA9FF25B967B38E2A1BCEAA2B9DDDC3 62976 ----a-w- D:\Henk\Downloads\HERMA8832-A4-30,48x16,93.doc 2015-01-13 22:06:10 EE18B0CDA6AE4629DA5729402461511A 27287 ----a-w- D:\Henk\Downloads\artikel_4211.pdf 2015-01-13 21:28:16 C0451D63DD3D7787635058309108D86E 9030325 ----a-w- D:\Henk\Downloads\herma_etikettenassistent_31_de.exe 2015-01-13 21:05:07 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HERMA Label World DE 2015-01-13 21:04:17 CF56E3074CB1590B675AA845DFA6C82C 15314893 ----a-w- D:\Henk\Downloads\herma_label_world_de.exe 2015-01-13 20:56:27 77C5F91EE80DBC7DAA1D9CB9135D24DF 2426589 ----a-w- D:\Henk\Downloads\word_0213.zip 2015-01-10 16:00:55 319553CE51D3F2A4C79AB6232948B56F 4190832 ----a-w- D:\Henk\Downloads\ccsetup501_pro (1).exe 2015-01-10 16:00:13 319553CE51D3F2A4C79AB6232948B56F 4190832 ----a-w- D:\Henk\Downloads\ccsetup501_pro.exe 2015-01-10 11:42:54 560CD17A9B48E086005A1C212F1B4239 3744960 ----a-w- D:\Henk\Downloads\hrsolide-3-vhr-3c.pdf 2015-01-10 11:42:37 4ED3C609E81A17BEEF19DCE3EEDFF402 689667 ----a-w- D:\Henk\Downloads\hrsolide-vhr.pdf 2015-01-10 11:22:24 9D8271254D1C0179BD280024E39DD74B 559784 ----a-w- D:\Henk\Downloads\2012042911219handleidingroundmodulationhoneywell.pdf 2015-01-09 19:47:33 7D2B2E026F9B2000C2EC99B7A1F9E3B2 78909 ----a-w- D:\Henk\Downloads\Bestektekst_Geberit_Kombifix_sanitaire_montage_elementen.docx 2015-01-07 20:01:54 5E37781C46CCBB94C41544DB40AD8475 164238 ----a-w- D:\Henk\Downloads\sptdatasheet.pdf 2015-01-04 21:51:32 0F5DA2346C3E0EE2E39524B001DFA367 5740395 ----a-w- D:\Henk\Downloads\HB_Binnenriolering_Afvalwater_1113_13-249.pdf 2015-01-04 21:40:43 7FB82C4E1446FC391C28AAA64F9C68D3 2572131 ----a-w- D:\Henk\Downloads\HB_Huis_en_Kolkaansluitingena_06-05_05-171.pdf 2015-01-04 12:27:16 4C00DE66D4E264701943D1B85FE64C37 1884765 ----a-w- D:\Henk\Downloads\TECE_Spueltechnik_NL_02 2012.pdf ====== C: exe-files == 2015-01-27 21:54:18 E91A14F1C48D90A61AE7F591AD2A888E 3736944 ----a-w- C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe 2015-01-27 21:54:18 24D7A172A0FDEE230997E4D2F274B779 1253232 ----a-w- C:\Program Files (x86)\JAM Software\TreeSize Free\unins000.exe 2015-01-27 10:44:24 220A0B7B557EFEF7C399CDC1E9DBDA2D 875088 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\40.0.2214.93\40.0.2214.93_40.0.2214.91_chrome_updater.exe 2015-01-24 19:34:24 DDCE338BB173B32024679D61FB4F2BA6 537432 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\bfade34a1d0380c04\DXSETUP.exe 2015-01-24 19:34:15 DDCE338BB173B32024679D61FB4F2BA6 537432 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\bbf436aa1d0380c02\DXSETUP.exe 2015-01-24 19:34:12 F5443547CAAC20AA334A88817579270F 525656 -c--a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\b89785c01d0380c01\DXSETUP.exe === C: other files == 2015-01-24 19:38:54 8DE1B4F579F8F8897409856F3BB7A7D2 58056 -c--a-w- C:\Windows\System32\DRVSTORE\fssfltr_53B1A1E03F7FFD1D0FE056B8522FE410DEDAC734\fssfltr.sys 2015-01-24 19:38:54 8DE1B4F579F8F8897409856F3BB7A7D2 58056 ----a-w- C:\Windows\System32\drivers\fssfltr.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2771351034-1752285704-1091563883-1008\Software\Microsoft\Windows\CurrentVersion\Run] "Wisdom-soft ScreenHunter 5.1 Free"="C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "Spotify Web Helper"="D:\Henk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui" "Family Tree Builder Update"="C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Wisdom-soft ScreenHunter 5.1 Free"="C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "Spotify Web Helper"="D:\Henk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" ==== Startup Registry Disabled ====================== [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-] "Google Update"="\"D:\\Henk\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Speed Launcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\RunOnce" "item"="Adobe Speed Launcher" "hkey"="HKCU" "command"="1419163156" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CCleaner Monitoring" "hkey"="HKCU" "command"="\"C:\\Program Files\\CCleaner\\CCleaner64.exe\" /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IntelliPoint] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="IntelliPoint" "hkey"="HKLM" "command"="c:\\program files\\microsoft intellipoint\\ipoint.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mctadmin] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\RunOnce" "item"="mctadmin" "hkey"="HKCU" "command"="C:\\Windows\\System32\\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RunDLLEntry] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RunDLLEntry" "hkey"="HKLM" "command"="C:\\Windows\\system32\\RunDLL32.exe C:\\Windows\\system32\\AmbRunE.dll,RunDLLEntry" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sidebar] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Sidebar" "hkey"="HKCU" "command"="%ProgramFiles%\\Windows Sidebar\\Sidebar.exe /autoRun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Spotify Web Helper" "hkey"="HKCU" "command"="\"D:\\Henk\\AppData\\Roaming\\Spotify\\Data\\SpotifyWebHelper.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\StartCCC] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="StartCCC" "hkey"="HKLM" "command"="\"c:\\program files (x86)\\ati technologies\\ati.ace\\core-static\\clistart.exe\" msrun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\sdAuxService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\sdCoreService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ThreatFire] ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [25-01-2015 11:36] C:\Windows\tasks\CCleanerClean.job --a------ C:\Program Files\CCleaner\CCleaner.exe [20-01-2015 22:02] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008Core.job --a------ C:\Henk\AppData\Local\Facebook\Update\FacebookUpdate.exe [] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008UA.job --a------ C:\Henk\AppData\Local\Facebook\Update\FacebookUpdate.exe [] C:\Windows\tasks\Google Software Updater.job --a------ C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [07-09-2011 18:49] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24-10-2014 08:12] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24-10-2014 08:12] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008Core.job --a------ C:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008UA.job --a------ C:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe [] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe online update program" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\CCleanerClean" [C:\Program Files\CCleaner\CCleaner.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008Core" [D:\Henk\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008UA" [D:\Henk\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\Google Software Updater" [C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe] "C:\Windows\SysNative\tasks\Google Updater and Installer" [D:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008Core" [D:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2771351034-1752285704-1091563883-1008UA" [D:\Henk\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HPCustParticipation HP Deskjet 1010 series" ["C:\Program Files\HP\HP Deskjet 1010 series\Bin\HPCustPartic.exe"] "C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\ShouldIRemoveIt_Notifications" [C:\Program Files (x86)\Reason\Should I Remove It\ShouldIRemoveIt.exe] "C:\Windows\SysNative\tasks\SlimCleaner Run" ["C:\Program Files (x86)\SlimCleaner\SlimCleaner.exe"] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{722E2EDB-48D9-45C6-B267-3418D47ED143}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{E1139F21-08C1-44BB-A074-AB90112287DD}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\{77CFD4D3-DDEB-4AA5-B501-8E1389EA906C}" [C:\Program Files\Alwil Software\Avast5\AvastUI.exe] "C:\Windows\SysNative\tasks\{EFBB3A01-09C5-412F-8123-89935713112A}" [C:\Program Files\Alwil Software\Avast5\AvastUI.exe] ==== Firefox Start and Search pages ====================== ProfilePath: D:\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\94okqsys.default user_pref("browser.startup.homepage", "about:home"); user_pref("browser.search.defaulturl", "https://www.google.com/search"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.bdtoolbar.orig_keyword_url", "chrome://browser-region/locale/region.properties"); user_pref("keyword.URL", "https://www.google.com/search"); ProfilePath: D:\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\spnf0wg6.default user_pref("browser.search.defaultenginename", "Yahoo!"); user_pref("browser.search.selectedEngine", "Yahoo!"); user_pref("keyword.URL", "http://nl.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=114576&p="); ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\Alwil Software\Avast5\WebRep\FF" [28-01-2015 15:53] ==== Firefox Extensions ====================== ProfilePath: D:\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\94okqsys.default - Avast Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF - Undetermined - wrc@avast.com ProfilePath: D:\Henk\AppData\Roaming\TomTom\HOME\Profiles\iy0ambly.default - Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: D:\Henk\AppData\Roaming\Mozilla\Firefox\Profiles\94okqsys.default D2377C9458EFEB094E38B8C874AA214C - D:\Henk\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll - Google Update DDC4B753983AF90EEDA7360C16D4D39A - D:\Henk\AppData\Roaming\Mozilla\plugins\npoctoshape.dll - Octoshape Streaming Services 2BC6A052D9B153F6DC2F0E420FB4F407 - D:\Henk\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player 3CD19649B2C3023D65E67C056457A2BC - D:\Henk\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin DCB0BCEF594E2C410793C4A823C318F3 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll - Shockwave for Director / Shockwave for Director FE5EBC41BC74FEB22D64FCB715F067F5 - D:\Henk\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll - Google Talk Plugin Video Accelerator 4CD25DDA1221224BB92591756ED12602 - D:\Henk\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer A0D63D14016C75D718F5432B13FC6576 - D:\Henk\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin FC5866F7793AF2CBCD425CC4B8D32A9E - C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll - Zylom Plugin 7D04E74E8B63FF93F26C6A2EC14A4EE7 - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director ==== Chromium Look ====================== Google Chrome Version: 40.0.2214.93 (Up to date, latest Stable version: 40.0.2214.93) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx[16-11-2014 12:29] Google Docs - AppData\Local - Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - AppData\Local - Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf TV - AppData\Local - Profile 3\Extensions\beobeededemalmllhkmnkinmfembdimh Facebook Background Changer Plus NO ADs - AppData\Local - Profile 3\Extensions\cnoidmlhdpcdlmnkdecpdalonkmgcodd Puzzle Games - AppData\Local - Profile 3\Extensions\dijbjapfnfhcljlohpbipaklifkeaone Puzzle Skill Games - AppData\Local - Profile 3\Extensions\djpbeidibgdgnhcgoamegepdcgmnlbaj AdBlock Premium - AppData\Local - Profile 3\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj Tank Riders - AppData\Local - Profile 3\Extensions\gdmmodjlfegeieihcdcgcalkgmhgmiae Avast Online Security - AppData\Local - Profile 3\Extensions\gomekmidlodglbbmalcneegieacbdmki Cargo Bridge: Armor Games Edition - AppData\Local - Profile 3\Extensions\hlpiaibleklmjieibbnmkignbggodmmj Cut the Rope - AppData\Local - Profile 3\Extensions\jfbadlndcminbkfojhlimnkgaackjmdo Solitaire - AppData\Local - Profile 3\Extensions\lkbhppfbabandkdmgjmifahoabeodiep Unblock Car 3D - AppData\Local - Profile 3\Extensions\ndaflanlochpiijbgjgofgmnbgmhgkmd Google Wallet - AppData\Local - Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - AppData\Local - Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} Microsoft (Bing) Url="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01" ==== Deleting Registry Keys ====================== HKEY_CURRENT_USER\Software\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mctadmin deleted successfully ==== HijackThis Entries ====================== O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe O4 - HKCU\..\Run: [Wisdom-soft ScreenHunter 5.1 Free] C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [Spotify Web Helper] "D:\Henk\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\Alwil Software\Avast5\ng\vbox\AvastVBoxSVC.exe O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HitmanPro.Alert Service (hmpalertsvc) - SurfRight B.V. - C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: Sound Blaster X-Fi MB Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully D:\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully D:\Henk\backup system files\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully D:\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V5PYYWT4 will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== D:\Henk\AppData\Local\\Google\Chrome\User Data\Profile 3\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=15 folders=17 4758235 bytes) ==== Empty Temp Folders ====================== D:\Henk\AppData\Local\\Temp will be emptied at reboot C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "D:\Henk\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V5PYYWT4" not found ==== EOF on wo 28-01-2015 at 17:03:23,51 ======================