Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by svenv_000 on di 19/05/2015 at 6:58:14,70. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\svenv_000\AppData\Local\Microsoft\Windows\INetCache\IE\ITXJ69U4\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 19/05/2015 6:59:34 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\Users\svenv_000\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe c:\Program Files (x86)\Nero\Update\NASvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Users\svenv_000\AppData\Local\Microsoft\Windows\INetCache\IE\ITXJ69U4\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\WINDOWS\SysNative\config\systemprofile\Searches deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 3915 MB CPU Info: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz CPU Speed: 2397,6 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics | Intel(R) HD Graphics | Intel(R) HD Graphics Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: Intel(R) Technology Access TAP Driver (NDIS 6.30) | Microsoft Wi-Fi Direct Virtual Adapter | Bluetooth-apparaat (Personal Area Network) | Qualcomm Atheros AR956x Wireless Network Adapter | Qualcomm Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.30) CD / DVD Drives: 1x (D: | ) D: HL-DT-STDVDRAM GT90N Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 443,5GB Hard Disks - Free: C: 406,2GB Manufacturer *: Insyde Corp. BIOS Info: AT/AT COMPATIBLE | | ACRSYS - 1 Time Zone: West-Europa (standaardtijd) Motherboard *: Acer EA70_HC Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: avast! Antivirus disabled (Outdated) Internet Explorer Version: 11.0.9600.17801 Google Chrome version: 42.0.2311.152 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2015-05-11 16:35:48 2169B4B1EFAA3453A4DA732F1F94C1E1 43112 ----a-w- C:\WINDOWS\avastSS.scr ====== C:\Users\SVENV_~1\AppData\Local\Temp ==== 2015-05-18 14:47:34 E3A25C80E2375B2D42C3D4729769BDF3 10240 ----a-w- C:\Users\svenv_000\AppData\Local\Temp\SDIAG_d3d38160-9310-4a2a-9ab4-1e817cb2c8d4\NetworkDiagnosticSnapIn.dll ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2015-05-14 06:33:26 A8B72561E67739D416C4BB3A62EC7331 102608 ----a-w- C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-05-13 16:18:43 3250046189DF6429ECD93D9B483C62C7 1943040 ----a-w- C:\WINDOWS\SysWOW64\dwmcore.dll 2015-05-13 16:18:31 96111DD5552A2A1DC02FC090EF80AF2D 324096 ----a-w- C:\WINDOWS\SysWOW64\certcli.dll 2015-05-13 16:18:30 CB07788DF1639ED547F645403BECD759 141824 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2015-05-13 16:18:30 0FDCB0931B57280D59942556A6706372 21504 ----a-w- C:\WINDOWS\SysWOW64\sdbinst.exe 2015-05-13 16:18:29 69304975B8DF00BDC9567AAAF97791F2 1812992 ----a-w- C:\WINDOWS\SysWOW64\SRH.dll 2015-05-13 16:18:29 3C2B9089839D283DD6F91CF5F0748D1D 2985984 ----a-w- C:\WINDOWS\SysWOW64\dbgeng.dll 2015-05-13 16:18:28 697177C5242095DBDB3A3B52DD27C400 1207296 ----a-w- C:\WINDOWS\SysWOW64\dbghelp.dll 2015-05-13 16:18:28 032D9982B72E4F9A9B62A43B4CEDB072 1969664 ----a-w- C:\WINDOWS\SysWOW64\wpdshext.dll 2015-05-13 16:18:25 F601DD8702FB90928A4069AAF3329D2D 1560576 ----a-w- C:\WINDOWS\SysWOW64\DWrite.dll 2015-05-13 16:18:25 95AB9B30166221ED22E43290D47198CD 364544 ----a-w- C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll 2015-05-13 16:18:25 7C29FBB11679B9B4F08D5AA771DABD90 358912 ----a-w- C:\WINDOWS\SysWOW64\schannel.dll 2015-05-13 16:18:20 D74445161E58644309F858342F5E265C 19691008 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2015-05-13 16:18:18 6E2B4875B968324E5844F35A37A79260 4305920 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2015-05-13 16:18:18 0E22CD36FC3292CB812CC46CBCFD8444 12828672 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2015-05-13 16:18:17 F2DB87F164BC13AB8EF90FBF5D866B65 664576 ----a-w- C:\WINDOWS\SysWOW64\jscript.dll 2015-05-13 16:18:17 CB5F450D21B9D76B7F01D006E4AEDB40 1882112 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2015-05-13 16:18:17 C525258A00ECFB4CE089F54C163268C3 2278400 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2015-05-13 16:18:17 C1A32612710492D0C3339E46EC15E333 504320 ----a-w- C:\WINDOWS\SysWOW64\vbscript.dll 2015-05-13 16:18:17 AA2F2D55DEF98007839D0189D721D70B 1310208 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2015-05-13 16:18:16 C2EB0AA5570CF8BC881B36EE55A59337 688640 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2015-05-13 16:18:15 F7F090E8B59FEFC50BE6F2A1ABB1ED5D 230400 ----a-w- C:\WINDOWS\SysWOW64\webcheck.dll 2015-05-13 16:18:15 D8CAF4753CD2456C761E6761F2C713EE 128000 ----a-w- C:\WINDOWS\SysWOW64\iepeers.dll 2015-05-13 16:18:15 CFCB89C0FE8EF502A7934C0D20E5DBD6 76288 ----a-w- C:\WINDOWS\SysWOW64\mshtmled.dll 2015-05-13 16:18:15 8004E2E3D4DFEE81D6E102C537568AEC 327168 ----a-w- C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-05-13 16:18:15 7B4FA4B41FBDBB12C5038FCB6E6652AA 285696 ----a-w- C:\WINDOWS\SysWOW64\dxtrans.dll 2015-05-13 16:18:15 48143005C6FCE6D252162EE371532063 880128 ----a-w- C:\WINDOWS\SysWOW64\inetcomm.dll 2015-05-13 16:18:15 136687227F11CE928CB05F4FD90319AC 2052608 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-05-13 16:18:15 07E82A31808C8BC053D1DE547082C58F 341504 ----a-w- C:\WINDOWS\SysWOW64\html.iec 2015-05-13 16:18:14 63A2E3E9C771B1D4D7D84942D6FCB661 710144 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2015-05-14 06:33:26 5461373AB510F4C22CE61EB7965BE8F2 124112 ----a-w- C:\WINDOWS\Sysnative\PresentationCFFRasterizerNative_v0300.dll 2015-05-13 16:18:43 3DB29814EA5A2091425200B58E25BA15 2256896 ----a-w- C:\WINDOWS\Sysnative\dwmcore.dll 2015-05-13 16:18:33 A709D50BD3125B53283220BA44B78690 116736 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsDatabase.dll 2015-05-13 16:18:33 4658D596725A71521971054D3AF1DCD0 2819584 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers.dll 2015-05-13 16:18:32 9D17F78BB04A3EF67426AFD087660188 410017 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml 2015-05-13 16:18:32 9703EC57F5BBB94F89CA80A5D0C12221 1429504 ----a-w- C:\WINDOWS\Sysnative\diagtrack.dll 2015-05-13 16:18:32 4C0E8295772A78291A0E256882A0D0E2 36864 ----a-w- C:\WINDOWS\Sysnative\UtcResources.dll 2015-05-13 16:18:31 CBB2FE432D81825C174A65DCE538A610 1441792 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2015-05-13 16:18:31 2DDC7AE2C753033E5EC95F3358358043 445440 ----a-w- C:\WINDOWS\Sysnative\certcli.dll 2015-05-13 16:18:30 952D277678FC177CA8549B92A01C4C2C 24576 ----a-w- C:\WINDOWS\Sysnative\sdbinst.exe 2015-05-13 16:18:30 7E36F0698777668A09DD316E59807E0E 172544 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Input.Inking.dll 2015-05-13 16:18:29 8442CC9A31FC381255B98D615E49EF82 2162176 ----a-w- C:\WINDOWS\Sysnative\SRH.dll 2015-05-13 16:18:29 48CC2698381AA1F6FBE0D78507281B40 4417536 ----a-w- C:\WINDOWS\Sysnative\dbgeng.dll 2015-05-13 16:18:29 0F5DF8F08C138D9E1DE88984FEAA1B96 1696256 ----a-w- C:\WINDOWS\Sysnative\wevtsvc.dll 2015-05-13 16:18:28 E0C7813A97CA7947FF5C18A8F3B61A45 410128 ----a-w- C:\WINDOWS\Sysnative\services.exe 2015-05-13 16:18:28 161156327265FB02A820506B98DA7A07 1491456 ----a-w- C:\WINDOWS\Sysnative\dbghelp.dll 2015-05-13 16:18:28 0BB6089A1AEE468209FE22E29E6B87BD 2067968 ----a-w- C:\WINDOWS\Sysnative\wpdshext.dll 2015-05-13 16:18:26 053EF531F55B508343BB3CA91386C1C7 186368 ----a-w- C:\WINDOWS\Sysnative\dpapisrv.dll 2015-05-13 16:18:25 B023C38663271E79FC2A9B63F6FE6417 445440 ----a-w- C:\WINDOWS\Sysnative\PhotoMetadataHandler.dll 2015-05-13 16:18:25 7719BBE3BDA2171FF0955171D9460D26 4180480 ----a-w- C:\WINDOWS\Sysnative\win32k.sys 2015-05-13 16:18:25 6C068E7207F183FF3647E45D2599E80C 1387008 ----a-w- C:\WINDOWS\Sysnative\FntCache.dll 2015-05-13 16:18:25 62E3FCC2789CA52AA8A59122FDFCE26E 429568 ----a-w- C:\WINDOWS\Sysnative\schannel.dll 2015-05-13 16:18:25 4829F2EFACF23F63D6D85B7F1084FB70 1996800 ----a-w- C:\WINDOWS\Sysnative\DWrite.dll 2015-05-13 16:18:22 C31D57F7A58FACDA2671075CEBA75199 24971776 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2015-05-13 16:18:19 E061B5A1D0F9BBACA41149201ADF4A3B 14401536 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2015-05-13 16:18:18 79A4C71CD8B610DE9F66B72B5654C450 6025728 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2015-05-13 16:18:17 F0289B3A341429117696F0279DA977B6 2352128 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2015-05-13 16:18:17 ED4EB5A0CDD251A17B946C515CB94D70 1547264 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2015-05-13 16:18:17 B85ECB91C88F6E74045061B7F7DDEFA2 584192 ----a-w- C:\WINDOWS\Sysnative\vbscript.dll 2015-05-13 16:18:17 843D063E75B19188759CBEC82828BCB1 2885120 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2015-05-13 16:18:17 63061A0826839DE8F5B4713976C99F1B 816640 ----a-w- C:\WINDOWS\Sysnative\jscript.dll 2015-05-13 16:18:16 E20B5098C8707B2CF0858024568234FF 801280 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2015-05-13 16:18:16 C1D6BD834E69E8F77C8B4DDFCEE073F6 417792 ----a-w- C:\WINDOWS\Sysnative\html.iec 2015-05-13 16:18:16 5EDC6AF7589B65C89CB1154B3377D0C4 720384 ----a-w- C:\WINDOWS\Sysnative\ie4uinit.exe 2015-05-13 16:18:15 F918BE3C5ACA0B6485D725CC1A5348DC 2125824 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2015-05-13 16:18:15 EB9FCD39D65E23380CB2C2F0E6F2ED53 316928 ----a-w- C:\WINDOWS\Sysnative\dxtrans.dll 2015-05-13 16:18:15 AB8DF81AC1BF4546C3102469B840009E 145408 ----a-w- C:\WINDOWS\Sysnative\iepeers.dll 2015-05-13 16:18:15 8541124139D68239B1EDE3E490367A6C 107520 ----a-w- C:\WINDOWS\Sysnative\inseng.dll 2015-05-13 16:18:15 673582881DAC4B27E9368BC8834507DD 374272 ----a-w- C:\WINDOWS\Sysnative\iedkcs32.dll 2015-05-13 16:18:15 1D610F215769E4FF56C7B1847DE4B86D 633856 ----a-w- C:\WINDOWS\Sysnative\ieui.dll 2015-05-13 16:18:15 1921A72BF1273BED72E569EF1F1A0611 92160 ----a-w- C:\WINDOWS\Sysnative\mshtmled.dll 2015-05-13 16:18:15 14673D16D433373898FE3006C5A01157 1032704 ----a-w- C:\WINDOWS\Sysnative\inetcomm.dll 2015-05-13 16:18:15 0D2B130C7B5BCEC85D7A789A4338F9B7 262144 ----a-w- C:\WINDOWS\Sysnative\webcheck.dll 2015-05-13 16:18:14 49B1935F131A44CD29857D6900CB643F 800768 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2015-05-11 16:35:56 9CA2FDD44F7C1F8AC1652F6C2638CFED 364472 ----a-w- C:\WINDOWS\Sysnative\aswBoot.exe ====== C:\WINDOWS\Sysnative\drivers ===== 2015-05-13 16:18:41 95B0179BDA907252025DEEA183699FB3 467776 ----a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2015-05-13 16:18:40 272A62B660A48AEF366F8A1836CED19F 57856 ----a-w- C:\WINDOWS\Sysnative\drivers\bthhfenum.sys 2015-05-13 16:18:31 5E5AB950693F2C6D6ACBEE3A74697ED7 561928 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2015-05-13 16:18:30 FE14D249D39368CA62D8DA6BC94AC694 80384 ----a-w- C:\WINDOWS\Sysnative\drivers\ahcache.sys 2015-05-13 16:18:29 C54B6B2170BF628FD42F799A66956D75 239424 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2015-05-13 16:18:29 95E295FD19F80B3AD33629B5AEFEC9C7 154432 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpsd.sys 2015-05-13 16:18:26 C61EAF8E1E4B2F62BA4FDF457440B2C6 316416 ----a-w- C:\WINDOWS\Sysnative\drivers\udfs.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== ======= C: ===== 2015-04-23 14:30:33 420D404AC92FB942597CE34936976D22 710 ----a-w- C:\DelFix.txt ====== C:\Users\svenv_000\AppData\Roaming ====== 2015-05-18 14:47:54 -------- d-----w- C:\Users\svenv_000\AppData\Local\Diagnostics ====== C:\Users\svenv_000 ====== ====== C: exe-files == 2015-05-18 15:31:12 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\svenv_000\AppData\Local\Microsoft\Windows\INetCache\IE\0V4LW0VY\RSITx64.exe 2015-05-14 14:30:45 EB81815F1628247337DCF5C44A137366 869192 ----a-w- C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\SwReporter\3.20.1\software_reporter_tool.exe 2015-05-14 14:15:09 D308FEE17FBACB94C2E27067AE2C57A6 1044048 ----a-w- C:\Program Files (x86)\Google\Update\Install\{A647D6BF-832F-4A0E-8E1E-039A415B2C92}\42.0.2311.152_42.0.2311.135_chrome_updater.exe 2015-05-14 14:15:09 D308FEE17FBACB94C2E27067AE2C57A6 1044048 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\42.0.2311.152\42.0.2311.152_42.0.2311.135_chrome_updater.exe 2015-05-13 16:18:39 57ABF04B01CBA20B76F3EE89C18C6612 474624 ----a-w- C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe 2015-05-13 16:18:33 E022185998E5BC0F2EBD8F5875747D3E 87296 ----a-w- C:\Windows\ImmersiveControlPanel\SystemSettings.exe 2015-05-13 16:18:30 952D277678FC177CA8549B92A01C4C2C 24576 ----a-w- C:\Windows\System32\sdbinst.exe 2015-05-13 16:18:30 0FDCB0931B57280D59942556A6706372 21504 ----a-w- C:\Windows\SysWOW64\sdbinst.exe 2015-05-13 16:18:28 E0C7813A97CA7947FF5C18A8F3B61A45 410128 ----a-w- C:\Windows\System32\services.exe 2015-05-13 16:18:16 5EDC6AF7589B65C89CB1154B3377D0C4 720384 ----a-w- C:\Windows\System32\ie4uinit.exe 2015-05-13 16:18:01 3E4D0668C6E0AFD10AFF52C134AC3CC8 2138112 ----a-w- C:\Program Files\Windows Journal\Journal.exe === C: other files == 2015-05-17 07:05:59 F5B285246DAFA459FDEA34F6C4458777 4176 ----a-w- C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE\ara_4.3_all_livetri[10].zip 2015-05-14 06:10:00 F5B285246DAFA459FDEA34F6C4458777 4176 ----a-w- C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE\ara_4.3_all_livetri[9].zip 2015-05-13 16:18:41 95B0179BDA907252025DEEA183699FB3 467776 ----a-w- C:\Windows\System32\drivers\USBHUB3.SYS 2015-05-13 16:18:40 272A62B660A48AEF366F8A1836CED19F 57856 ----a-w- C:\Windows\System32\drivers\bthhfenum.sys 2015-05-13 16:18:31 5E5AB950693F2C6D6ACBEE3A74697ED7 561928 ----a-w- C:\Windows\System32\drivers\cng.sys 2015-05-13 16:18:30 FE14D249D39368CA62D8DA6BC94AC694 80384 ----a-w- C:\Windows\System32\drivers\ahcache.sys 2015-05-13 16:18:29 C54B6B2170BF628FD42F799A66956D75 239424 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2015-05-13 16:18:29 95E295FD19F80B3AD33629B5AEFEC9C7 154432 ----a-w- C:\Windows\System32\drivers\dumpsd.sys 2015-05-13 16:18:26 C61EAF8E1E4B2F62BA4FDF457440B2C6 316416 ----a-w- C:\Windows\System32\drivers\udfs.sys 2015-05-13 16:18:25 7719BBE3BDA2171FF0955171D9460D26 4180480 ----a-w- C:\Windows\System32\win32k.sys ==== Startup Registry Enabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Apoint"="C:\Program Files\Apoint2K\Apoint.exe" "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16/08/2014 20:17] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16/08/2014 20:17] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\ALU" [C:\Program Files (x86)\Acer\Live Updater\updater.exe] "C:\WINDOWS\SysNative\tasks\ALUAgent" [C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe] "C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" [C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe] "C:\WINDOWS\SysNative\tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon" ["C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe"] "C:\WINDOWS\SysNative\tasks\Launch Manager" ["C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe"] "C:\WINDOWS\SysNative\tasks\Norton Online Backup ARA" [C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.3.0.14\\Ara.exe] "C:\WINDOWS\SysNative\tasks\Power Management" ["C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{07545ACE-8461-4216-8B61-4AEEA057D62E}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\Recovery Management\Notification" [C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [11/05/2015 18:35] ==== Chromium Look ====================== Google Chrome Version: 42.0.2311.152 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[15/03/2015 19:20] Google Docs - Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Bookmark Manager - svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik Google Wallet - svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - svenv_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{9182694D-FEB0-4E61-B03D-2F322D02B75A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" {9182694D-FEB0-4E61-B03D-2F322D02B75A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" ==== Reset Google Chrome ====================== C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Web Data.tmp was reset successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Technology Access Service (Intel(R) TechnologyAccessService) - Intel(R) Corporation - C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: Nero Update (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Sven\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Sven\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\svenv_000\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\svenv_000\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\svenv_000\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\svenv_000\AppData\Local\Microsoft\Windows\INetCache\IE\ITXJ69U4 will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=3 folders=1 789 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Sven\AppData\Local\Temp emptied successfully C:\Users\svenv_000\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\SVENV_~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found "C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found "C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted "C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted "C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted "C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted "C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Cache\data_4" deleted "C:\Users\svenv_000\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted "C:\Users\svenv_000\AppData\Local\Microsoft\Windows\INetCache\IE\ITXJ69U4" not found "C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on di 19/05/2015 at 7:19:03,41 ======================