Zoek.exe v5.0.0.0 Updated 08-February-2015 Tool run by Gebruiker on ma 09/02/2015 at 12:38:00,31. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Gebruiker\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 9/02/2015 12:39:23 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\GUM1109.tmp deleted successfully C:\PROGRA~2\GUM738F.tmp deleted successfully C:\PROGRA~2\GUM8F6E.tmp deleted successfully C:\Users\Gebruiker\AppData\Roaming\Wewuuq deleted successfully C:\Users\Gebruiker\AppData\Local\PackageStaging deleted successfully C:\Users\Gebruiker\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== æTorrent 64 Bit HP CIO Components Installer 7-Zip 9.20 (x64 edition) Adobe AIR Adobe Community Help Adobe Dreamweaver CS5 Adobe Dreamweaver CS5.5 Adobe Media Player Adobe Photoshop Elements 11 Adobe Reader XI (11.0.10) - Nederlands Adobe Refresh Manager Adobe Widget Browser AIO_Scan ANT Drivers Installer x64 AVG 2015 BufferChm C5200 C5200_Help Canon Utilities Digital Photo Professional Canon Utilities EOS Utility CCleaner Citrix Online Launcher Copy CPUID CPU-Z 1.70 Destinations DeviceDiscovery DocProc EagleGet version 2.0.2.0 Easy Create Card 4.0 version 4.0 Elements 11 Organizer Elevated Installer FastStone Image Viewer 5.3 FastStone Photo Resizer 3.3 Fax FileZilla Client 3.9.0.3 Garmin Express Garmin Express Tray GIMP 2.8.14 Google Afmelden voor advertentiecookie Google Earth Google Update Helper GoToMeeting 6.4.11.2273 GPBaseService2 HP Imaging Device Functions 14.0 HP Photosmart All-In-One Driver Software HP Solution Center 14.0 HP Update HPPhotoGadget HPProductAssistant Imagenomic Noiseware 4.2 Professional Plug-in (build 4205) Imagenomic Noiseware 5.0.2 Plug-in (build 5020) Intel(R) Processor Graphics InternetOff 2.3, 32\\64 bit edition IrfanView (remove only) LibreOffice 4.3.0.4 Logitech SetPoint 6.65 Microsoft Image Composite Editor Microsoft Silverlight Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft_VC80_CRT_x86 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFCLOC_x86 Microsoft_VC90_ATL_x86 Microsoft_VC90_CRT_x86 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFCLOC_x86 Neat Image v7.6.0 Demo plug-in for Photoshop (64-bit) Network64 Nik Collection Noiseware Professional Edition OCR Software by I.R.I.S. 14.0 PhotoME Beta-Release PS_AIO_02_ProductContext PS_AIO_02_Software PS_AIO_02_Software_Min PSE11 STI Installer PTLens Should I Remove It SolutionCenter Status Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) SyncBackFree Toolbox TrayApp Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables VLC media player 0.9.9 WebReg ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe J:\EagleGet\EGMonitor.exe C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe C:\WINDOWS\SysWOW64\svchost.exe K:\Elements 11 Organizer\PhotoshopElementsFileAgent.exe C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe J:\EagleGet\EGMonitor.exe C:\Program Files (x86)\InternetOff\InternetOff.exe J:\EagleGet\EagleGet.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\WINDOWS\SysWOW64\ctfmon.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe K:\Photoshop Elements 11\PhotoshopElementsEditor.exe C:\Users\Gebruiker\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Users\Gebruiker\daemonprocess.txt deleted C:\Users\Gebruiker\.android deleted C:\Users\Gebruiker\AppData\Roaming\ShiftN.ini deleted C:\PROGRA~3\Avg_Update_0814av deleted C:\PROGRA~3\Package Cache deleted C:\Users\Gebruiker\AppData\Local\Software deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\WINDOWS\SysNative\config\systemprofile\Searches deleted C:\WINDOWS\SysWow64\AI_RecycleBin deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 7846 MB CPU Info: Intel(R) Core(TM) i5-4670 CPU @ 3.40GHz CPU Speed: 3496,6 MHz Sound Card: Luidsprekers (High Definition A | Digitale audio (S/PDIF) (High D | Display Adapters: Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 Monitors: 1x; SyncMaster T220HD(Analog) | Screen Resolution: 1344 X 840 - 32 bit Network: Network Present Network Adapters: Intel(R) Ethernet-verbinding I217-V CD / DVD Drives: 1x (E: | ) E: ATAPI iHAS124 W Ports: COM1 LPT1 Mouse: 8 Button Wheel Mouse Present Hard Disks: C: 111,4GB | D: 97,7GB | F: 97,7GB | G: 102,8GB | I: 363,6GB | J: 181,8GB | K: 181,8GB | L: 204,3GB | M: 119,2GB Hard Disks - Free: C: 54,4GB | D: 63,5GB | F: 34,0GB | G: 27,7GB | I: 180,7GB | J: 151,6GB | K: 179,9GB | L: 21,4GB | M: 118,2GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 12/06/13 | ALASKA - 1072009 Time Zone: Romance (standaardtijd) Motherboard *: ASRock B85M Pro4 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Virus: AVG AntiVirus Free Edition 2015 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG AntiVirus Free Edition 2015 disabled (Outdated) Internet Explorer Version: 11.0.9600.17498 Adobe Reader version: 11.0.10.32 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\GEBRUI~1\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== ====== C:\WINDOWS\Sysnative\drivers ===== 2015-01-14 09:18:30 F0CB6DB513CAC393D04A0FCE0A59E1BF 75776 ----a-w- C:\WINDOWS\Sysnative\drivers\ahcache.sys 2015-01-14 09:18:30 DB32958F0E704EFBF7F15161A569E39F 140800 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxdav.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2015-02-09 09:26:04 -------- d-----w- C:\Program Files\trend micro 2015-01-10 12:19:12 -------- d-----w- C:\Program Files\ePaperPress ======= C:\PROGRA~2 ===== ======= C: ===== ====== C:\Users\Gebruiker\AppData\Roaming ====== 2015-01-18 12:03:31 -------- d-----w- C:\Users\Gebruiker\AppData\Local\NikLicenseFiles 2015-01-18 12:03:28 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Programs 2015-01-18 12:03:27 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\TuneUp Software 2015-01-18 11:22:50 -------- d-----w- C:\Users\Gebruiker\AppData\Roaming\Garmin 2015-01-18 00:00:43 -------- d-----w- C:\Users\Gebruiker\AppData\Local\Remove_Empty_Directories ====== C:\Users\Gebruiker ====== 2015-02-09 09:25:29 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Gebruiker\Desktop\RSITx64.exe 2015-01-18 12:03:29 -------- d-----w- C:\Users\Public\Videos 2015-01-18 12:03:29 -------- d-----w- C:\Users\Public\Pictures 2015-01-18 12:03:29 -------- d-----w- C:\Users\Public\Music 2015-01-18 12:03:29 -------- d-----w- C:\Users\Public\Downloads 2015-01-18 12:03:29 -------- d-----w- C:\Users\Gebruiker\Videos 2015-01-18 12:03:29 -------- d-----w- C:\Users\Gebruiker\Saved Games 2015-01-18 12:03:19 -------- d-----w- C:\ProgramData\Canneverbe Limited ====== C: exe-files == 2015-02-09 09:26:04 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Gebruiker.exe 2015-02-09 09:25:29 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Gebruiker\Desktop\RSITx64.exe 2015-02-07 10:21:08 FD98434B6A06FE31A35E4BFBC827B290 52040 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe 2015-02-07 10:21:08 7CA00A58AA808F4B9844C91845910377 880208 ----a-w- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateSetup.exe 2015-02-07 10:21:08 5F0A3AA68785C49454F56C9F2DDA0237 52040 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateWebPlugin.exe 2015-02-07 10:21:08 4C02536F4CA35911FB3EA5715F300C57 52040 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateBroker.exe 2015-02-07 10:21:07 F3B6470DA7CE34E559D3BA7365CC909C 115528 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateComRegisterShell64.exe 2015-02-07 10:21:07 E1B44A75947137F4143308D566889837 107848 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdate.exe 2015-02-07 10:21:07 83BB030C71C9727DCFB2737005772C4E 232264 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe 2015-02-07 10:21:07 323CFFFDAF253AC65CD194A101BE6231 287048 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe 2015-02-07 10:21:06 7CA00A58AA808F4B9844C91845910377 880208 ----a-w- C:\Program Files (x86)\Google\Update\Install\{DCBBF82B-CCC6-42CA-9F65-4E417A3638B5}\GoogleUpdateSetup.exe 2015-02-07 10:21:06 7CA00A58AA808F4B9844C91845910377 880208 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.26.9\GoogleUpdateSetup.exe === C: other files == 2015-02-09 07:33:28 015F6E9776F88A5AA23EE899308D8919 544404 ----a-w- C:\Users\Gebruiker\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\extensions\staged\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" [HKEY_USERS\S-1-5-21-1033252319-1798021727-3399454392-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" "InternetOff"="C:\Program Files (x86)\InternetOff\InternetOff.exe" "Edtion"="regsvr32.exe C:\Users\Gebruiker\AppData\Local\Edtion\luafar3.dll" "EagleGet"="J:\EagleGet\Eagleget.exe -V" "Edtion Update"="regsvr32.exe C:\Users\Gebruiker\AppData\Local\Edtion\NetIOMetaWeblog.dll" "Ufmedia"="C:\Windows\SysWOW64\regsvr32.exe C:\Users\Gebruiker\AppData\Local\Ajworks\CNBP_250.DLL" "Edtion Tray"="regsvr32.exe C:\Users\Gebruiker\AppData\Local\Edtion\jabber.dll" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY" "HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "AdobeCS5ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe -launchedbylogin" "AdobeCS5.5ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe -launchedbylogin" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" "InternetOff"="C:\Program Files (x86)\InternetOff\InternetOff.exe" "Edtion"="regsvr32.exe C:\Users\Gebruiker\AppData\Local\Edtion\luafar3.dll" "EagleGet"="J:\EagleGet\Eagleget.exe -V" "Edtion Update"="regsvr32.exe C:\Users\Gebruiker\AppData\Local\Edtion\NetIOMetaWeblog.dll" "Ufmedia"="C:\Windows\SysWOW64\regsvr32.exe C:\Users\Gebruiker\AppData\Local\Ajworks\CNBP_250.DLL" "Edtion Tray"="regsvr32.exe C:\Users\Gebruiker\AppData\Local\Edtion\jabber.dll" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming" ==== Startup Folders ====================== 2014-08-15 09:51:50 2119 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\G2MUpdateTask-S-1-5-21-1033252319-1798021727-3399454392-1001.job --a-------- C:\Users\Gebruiker\AppData\Local\Citrix\GoToMeeting\2273\g2mupdate.exe [26/01/2015 00:26] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- [Undetermined Task] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\WINDOWS\SysNative\tasks\G2MUpdateTask-S-1-5-21-1033252319-1798021727-3399454392-1001" [C:\Users\Gebruiker\AppData\Local\Citrix\GoToMeeting\2273\g2mupdate.exe] "C:\WINDOWS\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{4F53196E-05B7-476A-8CC2-EFA531C1CE0D}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\2BrightSparks\SyncBackFree\EIGENAAR-PC-Gebruiker\SyncBackFree foto's" [J:\SyncBackFree\SyncBackFree.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{F003DA68-8256-4b37-A6C4-350FA04494DF}"="C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt" [15/08/2014 11:26] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.hln.be/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.hln.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{E4E06587-F76B-47F5-90E5-C6CEFCEADF37}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {E4E06587-F76B-47F5-90E5-C6CEFCEADF37} Google Url="http://www.google.be/search?hl=nl&q={searchTerms}&sourceid=ie8&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}" ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O1 - Hosts: ::1 localhost O1 - Hosts: 5.45.78.80 www.google-analytics.com. O1 - Hosts: 5.45.78.80 google-analytics.com. O1 - Hosts: 5.45.78.80 connect.facebook.net. O1 - Hosts: 107.181.174.68 www.google-analytics.com. O1 - Hosts: 107.181.174.68 google-analytics.com. O1 - Hosts: 107.181.174.68 connect.facebook.net. O2 - BHO: bteagleget.com - {1E871FF8-029C-4732-8AA7-39E3D3872057} - J:\EagleGet\eagleSniffer.dll O2 - BHO: Afmelden voor advertentiecookie - {8E425EB4-ADBD-4816-B1E8-49BB9DECF034} - C:\Program Files (x86)\Google\Advertising Cookie Opt-out\opt_out.dll O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" O4 - HKCU\..\Run: [InternetOff] C:\Program Files (x86)\InternetOff\InternetOff.exe O4 - HKCU\..\Run: [Edtion] regsvr32.exe C:\Users\Gebruiker\AppData\Local\Edtion\luafar3.dll O4 - HKCU\..\Run: [EagleGet] J:\EagleGet\Eagleget.exe -V O4 - HKCU\..\Run: [Edtion Update] regsvr32.exe C:\Users\Gebruiker\AppData\Local\Edtion\NetIOMetaWeblog.dll O4 - HKCU\..\Run: [Ufmedia] C:\Windows\SysWOW64\regsvr32.exe C:\Users\Gebruiker\AppData\Local\Ajworks\CNBP_250.DLL O4 - HKCU\..\Run: [Edtion Tray] regsvr32.exe C:\Users\Gebruiker\AppData\Local\Edtion\jabber.dll O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: Download all links with EagleGet - res://J:\EagleGet\IEGraberBHO.dll/202 O8 - Extra context menu item: Download with EagleGet - res://J:\EagleGet\IEGraberBHO.dll/201 O8 - Extra context menu item: Foto in PhotoME openen... - J:\PhotoMEBeta\iemenuext.html O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} (20-20 3D Viewer for IKEA) - http://kitchenplanner.ikea.com/be/Core/Player/2020PlayerAX_IKEA_Win32.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{8718928D-CBEB-45EA-A621-800A9249001D}: NameServer = 8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8 O17 - HKLM\System\CCS\Services\Tcpip\..\{9EBE8193-ACC4-41B5-8C80-5AAD001C3292}: NameServer = 8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8 O17 - HKLM\System\CS1\Services\Tcpip\..\{8718928D-CBEB-45EA-A621-800A9249001D}: NameServer = 8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8,8.8.8.8 O23 - Service: Adobe Active File Monitor V11 (AdobeActiveFileMonitor11.0) - Adobe Systems Incorporated - K:\Elements 11 Organizer\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: egGetSvc - Unknown owner - J:\EagleGet\EGMonitor.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing) O23 - Service: Internet Off Service (InternetOffService) - Unknown owner - C:\Program Files (x86)\InternetOff\IOffSvc.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\GYSNG6G7 will be deleted at reboot C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\J4RPI53R will be deleted at reboot C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\QKYEXEUT will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=36 folders=46 62004735 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Gebruiker\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\GYSNG6G7" not found "C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\J4RPI53R" not found "C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\INetCache\IE\QKYEXEUT" not found ==== EOF on ma 09/02/2015 at 12:47:11,62 ======================