Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by Vlasman on wo 24-06-2015 at 14:26:47.04. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode No Internet Access Detected Launched: C:\Users\Vlasman\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2015-05-26-092024.log 58086 bytes ==== Empty Folders Check ====================== C:\PROGRA~2\epson deleted successfully C:\PROGRA~2\Malwarebytes' Anti-Malware deleted successfully C:\PROGRA~2\TweakBit deleted successfully C:\Program Files\Google deleted successfully C:\Users\Vlasman\AppData\Roaming\Malwarebytes deleted successfully C:\Users\Vlasman\AppData\Local\DriverToolkit deleted successfully C:\Users\Vlasman\AppData\Local\EmieBrowserModeList deleted successfully C:\Users\Vlasman\AppData\Local\EmieSiteList deleted successfully C:\Users\Vlasman\AppData\Local\EmieUserList deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 64 Bit HP CIO Components Installer Aangifte inkomstenbelasting 2011 Aangifte inkomstenbelasting 2012 ABBYY FineReader 9.0 Sprint Adobe Digital Editions Adobe Flash Player 17 NPAPI Adobe Flash Player 17 PPAPI Adobe Flash Player 18 ActiveX Adobe Reader XI (11.0.11) Adobe Refresh Manager AIMP3 AMD Accelerated Video Transcoding AMD APP SDK Runtime AMD Catalyst Install Manager AMD Drag and Drop Transcoding AMD Media Foundation Decoders Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update Avast Free Antivirus Bonjour Catalyst Control Center - Branding Catalyst Control Center Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner DirPrinting Dropbox DYMO Label v.8 FormatFactory 3.0.1 Google Chrome Google Update Helper HD Tune 2.55 HPDiagnosticAlert iCloud ICY Thermostat Assistant v2.3 inSSIDer Home iTunes JavaFX 2.1.1 LastPass (alleen de‹nstalleren) Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft .NET Framework 4.5.2 Microsoft Office Klik-en-Klaar 2010 Microsoft Office Starter 2010 - Nederlands Microsoft PowerPoint Viewer Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Paragon Backup & RecoveryT 2013 Free Philips Media Converter Picasa 3 SAMSUNG PC Share Manager Security Update for Microsoft .NET Framework 4.5.2 (KB3023224) Security Update for Microsoft .NET Framework 4.5.2 (KB3035490) Security Update for Microsoft .NET Framework 4.5.2 (KB3037581) Shared C Run-time for x64 SkypeT 7.4 Software Updater Speccy Taalpakket voor Visual Studio Tools for Office 3.0 Runtime - NLD TP-LINK 300Mbps Wireless USB Adapter Stuurprogramma TP-LINK Draadloos configuratie hulpprogramma TVersity Codec Pack 1.7 TVersity Media Server 3.5 VC80CRTRedist - 8.0.50727.6195 Visual Studio C++ 10.0 Runtime Visual Studio Tools for the Office system 3.0 Runtime Visual Studio Tools for the Office system 3.0 Runtime Language Pack - NLD Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) VLC media player Windows-stuurprogrammapakket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/11/2009 2.0.0010.00002) Windows Mobile Apparaatcentrum Windows Mobile Device Center Driver Update Winmx Community 1 WinRAR 5.20 (64-bit) Xiph.Org Open Codecs 0.85.17777 ==== Running Processes ====================== C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\http_ss_win_pro.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe C:\ProgramData\TVersity\Media Server\MediaServer.exe C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe C:\Users\Vlasman\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\epson not found C:\PROGRA~2\TweakBit not found C:\SFCFix deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Registry Cleaner deleted "C:\Windows\tasks\DriverToolkit Autorun.job" deleted "C:\Windows\Installer\73e75.msi" deleted ==== System Specs ====================== Operating System: Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 64-bits Manufacturer: Acer - Model: Aspire X3812 Install Date: 26-8-2011 9:33:33 Last Boot: 24-6-2015 9:30:43 Processor: Intel(R) Core(TM)2 Quad CPU Q8300 @ 2.50GHz Number of Processors: 4 Work Station Bootmode: Normal boot Total RAM: 4095 MB (free 2328 MB - 56) Computername: CPU-PC Domain: WORKGROUP User: Vlasman (Administrator account) Local Disk: C:\ - NTFS - 244 GB (free 140 GB) Local Disk: D:\ - NTFS - 198 GB (free 99 GB) Local Disk: E:\ - NTFS - 931 GB (free 77 GB) Local Disk: F:\ - NTFS - 488 GB (free 383 GB) CD \ DVD Drive: G:\ Removable Disk: I:\ - - GB (free GB) Removable Disk: J:\ - - GB (free GB) Local Disk: Q:\ - - GB (free GB) Bootdevice: \Device\HarddiskVolume1 Windows update: Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: avast! Antivirus disabled (Outdated) Default Browser: Google Chrome 43.0.2357.130 Internet Explorer Version: 11.0.9600.17843 Google Chrome version: 43.0.2357.130 Adobe Reader version: 11.0.11.18 Flash Player version: 17.0.0.190 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-06-10 10:39:38 D0A4FFA13B818455E97DFEA90177F01E 512114690 ----a-w- C:\Windows\MEMORY.DMP ====== C:\Users\Vlasman\AppData\Local\Temp ==== 2015-06-24 11:52:38 132CFB3B0FB07D3FC3F8F2888C77B63F 376832 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\Rar$DRa0.781\UWT v2.2\Ultimate Windows Tweaker.exe 2015-06-24 11:49:38 5C3A6D4B54AD990ED8E00AF89C36C0FA 512456 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del__iu14D2N\GASender.exe 2015-06-24 11:49:38 127234A104FD4059B82AA117FF77AC00 789448 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del__iu14D2N\GoogleAnalyticsHelper.dll 2015-06-24 11:48:39 FC71D51ECAC99EECDA669EB70ECDB3CB 457672 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del_FixMyPC\GASender.exe 2015-06-24 11:48:39 C9B7071740CDB11F80647B81CBF3C25E 734152 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del_FixMyPC\GoogleAnalyticsHelper.dll 2015-06-24 11:44:20 5C3A6D4B54AD990ED8E00AF89C36C0FA 512456 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del_pc-cleaner-setup\GASender.exe 2015-06-24 11:44:20 127234A104FD4059B82AA117FF77AC00 789448 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del_pc-cleaner-setup\GoogleAnalyticsHelper.dll 2015-06-24 11:43:31 51976EECD8A3398356AC2D9B8B8E7D52 8043720 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\pc-cleaner-setup.exe 2015-06-24 11:41:07 FC71D51ECAC99EECDA669EB70ECDB3CB 457672 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del_fix-my-pc-setup\GASender.exe 2015-06-24 11:41:07 C9B7071740CDB11F80647B81CBF3C25E 734152 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del_fix-my-pc-setup\GoogleAnalyticsHelper.dll 2015-06-18 08:58:04 C184C29CA97F5307056A32A03C46D0F0 6245888 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\AutoDetectUtilApp.exe 2015-06-17 12:03:27 96F10059C625CAB099BF3694298E2D9E 160489864 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\13-9-legacy_vista_win7_64_dd_ccc_whql.exe 2015-06-17 06:19:49 53234AC35F1A9199BB6256DD0A87B15C 9170416 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\EPSON\Download\Resource\E-WebPrint_12300_ALL_41.exe 2015-06-17 06:17:26 E78071D46EB4559762C995CC1E39EC55 6146328 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\EPSON\Download\Resource\CESU4370.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2015-06-19 14:10:02 9A4FA0EDEF2BF5743EE4EE78883BD1D0 53248 ----a-w- C:\Windows\SysWOW64\CSVer.dll 2015-06-17 17:05:04 C1D7451054FEDC3F96F2903B6F84A4EE 173056 ----a-w- C:\Windows\SysWOW64\wuwebv.dll 2015-06-17 17:05:04 B4667963F9711C644F5E43D9A46D8680 33792 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2015-06-17 17:05:04 81AE5637F2D2DE4DAF67F540F5A076AA 30208 ----a-w- C:\Windows\SysWOW64\wups.dll 2015-06-17 17:05:04 61302CE8DDB8513A4FF03CEE2A14471F 92672 ----a-w- C:\Windows\SysWOW64\wudriver.dll 2015-06-17 17:05:04 4A99665068B907CCB0EE4A5D3F2584D7 566784 ----a-w- C:\Windows\SysWOW64\wuapi.dll 2015-06-17 17:05:01 F7F135F7702E0FB3EFE89283E2BE2EBB 67584 ----a-w- C:\Windows\SysWOW64\dwmapi.dll 2015-06-17 17:05:01 B01B8C949EDEC1B8A856E3056BDA7C42 1372160 ----a-w- C:\Windows\SysWOW64\dwmcore.dll 2015-06-17 17:04:59 F4AFDB5ABEA0C9079E8193E24D1DB21D 1174528 ----a-w- C:\Windows\SysWOW64\crypt32.dll 2015-06-17 17:04:59 33F67BBCC3C0499D3F3382473114CFA8 143872 ----a-w- C:\Windows\SysWOW64\cryptsvc.dll 2015-06-17 17:04:58 D864C283FFD7C080FDC25FD4C798FF8D 103936 ----a-w- C:\Windows\SysWOW64\cryptnet.dll 2015-06-17 17:04:58 588D52C2D0E60EE71FD5A64407865B10 179200 ----a-w- C:\Windows\SysWOW64\wintrust.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-06-17 17:05:07 14882A15F5CE7B8EADC8E7F54FD5B53B 2589184 ----a-w- C:\Windows\Sysnative\wuaueng.dll 2015-06-17 17:05:05 4152B8E73C7198DBFBB1FD8A5FFD41F9 3147776 ----a-w- C:\Windows\Sysnative\wucltux.dll 2015-06-17 17:05:04 E89F94AED85BF3611F61608C26B64177 135168 ----a-w- C:\Windows\Sysnative\wuauclt.exe 2015-06-17 17:05:04 D7897C17117286A237A639209F53C51C 98304 ----a-w- C:\Windows\Sysnative\wudriver.dll 2015-06-17 17:05:04 C8C3839305F2C4D9A4B33DE6AB83334E 191488 ----a-w- C:\Windows\Sysnative\wuwebv.dll 2015-06-17 17:05:04 A76DAC2E9CBB9595D2F806CBFB5C0BC4 696320 ----a-w- C:\Windows\Sysnative\wuapi.dll 2015-06-17 17:05:04 803E9B4DF2E931FDB3210F342B89BE9F 36864 ----a-w- C:\Windows\Sysnative\wups.dll 2015-06-17 17:05:04 4D9BE5567F9DDC54D41907C9A95F61BF 12288 ----a-w- C:\Windows\Sysnative\wu.upgrade.ps.dll 2015-06-17 17:05:04 478007800DAF83A33CECCD776E7FA734 37888 ----a-w- C:\Windows\Sysnative\wups2.dll 2015-06-17 17:05:04 29F4030F3A449AAF68778C1C67603569 87040 ----a-w- C:\Windows\Sysnative\WinSetupUI.dll 2015-06-17 17:05:04 19165E301A50829D28C27A832AD16FB0 36864 ----a-w- C:\Windows\Sysnative\wuapp.exe 2015-06-17 17:05:01 DDFCECAADEE51EFB82A0548BE5EBD8AC 82944 ----a-w- C:\Windows\Sysnative\dwmapi.dll 2015-06-17 17:05:01 20E761A4D203D5F403B6EC2FB95B7A6B 1632768 ----a-w- C:\Windows\Sysnative\dwmcore.dll 2015-06-17 17:04:59 7BC3E861F7E8EB543A630090FAE779E0 188416 ----a-w- C:\Windows\Sysnative\cryptsvc.dll 2015-06-17 17:04:59 71187FA11F58012C188453877E16EB8B 1480192 ----a-w- C:\Windows\Sysnative\crypt32.dll 2015-06-17 17:04:58 C5752F5CE47B6B00F914AE91087C0CB4 229376 ----a-w- C:\Windows\Sysnative\wintrust.dll 2015-06-17 17:04:58 7EE0A3B9E904AF4744E4D8F00CB5CA32 140288 ----a-w- C:\Windows\Sysnative\cryptnet.dll 2015-06-17 17:03:27 53405CDA694982E5C6A0E9454AC1D407 493504 ----a-w- C:\Windows\Sysnative\mcupdate_GenuineIntel.dll ====== C:\Windows\Sysnative\drivers ===== 2015-06-10 10:52:49 36E0DDD19038C92B7C7709BFA03F813F 69888 ----a-w- C:\Windows\Sysnative\drivers\stream.sys 2015-06-10 10:52:26 272C27711C8AA6E7815EE33F8ACA9C66 155584 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2015-06-10 10:52:25 BF69D973523D539A35807946C6DA7E16 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys ====== C:\Windows\Tasks ====== 2015-06-24 11:44:18 -------- d-----w- C:\Windows\Sysnative\Tasks\TweakBit ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-06-23 13:55:08 -------- d-----w- C:\Program Files\trend micro 2015-06-17 12:13:44 -------- d-----w- C:\Program Files\Common Files\ATI Technologies 2015-06-17 12:10:41 -------- d-----w- C:\Program Files\ATI 2015-06-17 12:06:57 -------- d-----w- C:\Program Files\ATI Technologies 2015-06-17 11:53:16 -------- d-----w- C:\Program Files\AMD 2015-05-27 10:34:40 -------- d-----w- C:\Program Files\SUPERAntiSpyware 2015-05-26 08:29:35 -------- d-----w- C:\Program Files\Speccy ======= C:\PROGRA~2 ===== 2015-06-19 14:10:02 -------- d-----w- C:\PROGRA~2\Intel 2015-06-18 09:34:06 -------- d-----w- C:\PROGRA~2\DriverToolkit 2015-06-17 12:13:52 -------- d-----w- C:\PROGRA~2\AMD AVT 2015-06-17 12:13:50 -------- d-----w- C:\PROGRA~2\AMD APP 2015-06-17 12:13:44 -------- d-----w- C:\PROGRA~2\COMMON~1\ATI Technologies 2015-06-17 12:10:50 -------- d-----w- C:\PROGRA~2\ATI Technologies 2015-06-07 06:46:51 -------- d-----w- C:\PROGRA~2\HD Tune 2015-05-27 12:30:43 -------- d-----w- C:\PROGRA~2\Eusing Free Registry Cleaner 2015-05-26 11:14:13 -------- d-----w- C:\PROGRA~2\NirSoft ======= C: ===== ====== C:\Users\Vlasman\AppData\Roaming ====== 2015-06-17 12:13:59 -------- d-----w- C:\Users\Vlasman\AppData\Roaming\ATI 2015-06-17 12:13:59 -------- d-----w- C:\Users\Vlasman\AppData\Local\ATI 2015-06-02 09:59:54 -------- d-----w- C:\Users\Vlasman\AppData\Local\niemiro 2015-06-02 06:33:20 -------- d-----w- C:\Users\Vlasman\AppData\Local\GWX 2015-05-27 12:35:38 -------- d-----w- C:\Users\Vlasman\AppData\Roaming\Eusing 2015-05-26 09:18:20 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2015-05-26 09:18:20 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2015-05-26 09:18:20 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2015-05-26 09:18:20 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2015-05-26 09:18:19 -------- d-----w- C:\Users\Vlasman\AppData\Local\Temp ====== C:\Users\Vlasman ====== 2015-06-24 12:09:17 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3 2015-06-24 11:43:27 -------- d-----w- C:\ProgramData\TweakBit 2015-06-24 11:43:24 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakBit 2015-06-23 13:54:09 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Vlasman\Downloads\RSITx64.exe 2015-06-19 13:24:18 A95BC2E1F0232DEF2BB738D7324DCD74 4352304 ----a-w- C:\Users\Vlasman\Downloads\Intel-Chipset-Win8-7-Server-2012-2008-2003-Vista-XP-32-64bit-13.exe 2015-06-18 14:06:40 -------- d-----r- C:\Users\Public\Documents\Favorites 2015-06-18 09:33:04 A228C547CA354598E3AD3125A3AB1C3C 2448688 ----a-w- C:\Users\Vlasman\Downloads\DriverToolkitInstaller.exe 2015-06-17 12:13:59 -------- d-----w- C:\ProgramData\ATI 2015-06-17 12:13:54 -------- d-----w- C:\ProgramData\AMD 2015-06-17 12:13:34 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center 2015-06-17 12:01:28 CB1816FBB0D9B2BF2B05B7870A999E3A 5451464 ----a-w- C:\Users\Vlasman\Downloads\autodetectutility.exe 2015-06-17 11:45:06 51DB76F406012758E735D7C2A679847F 302470552 ----a-w- C:\Users\Vlasman\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win7-64bit.exe 2015-06-16 23:00:10 0EAEDE7417979B2342409080461132C1 1319424 ----a-w- C:\Users\Vlasman\Desktop\SFCFix.exe 2015-06-07 06:46:51 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune 2015-05-26 08:29:37 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy ====== C: exe-files == 2015-06-24 12:09:05 A23E9BF946E39CA9D408F32172EEECA2 354304 ----a-w- C:\Program Files (x86)\AIMP3\System\Encoders\opusenc.exe 2015-06-24 12:09:05 6B4FAFDE326A58EA6AB780478D28A44E 258560 ----a-w- C:\Program Files (x86)\AIMP3\System\Encoders\mpcenc.exe 2015-06-24 12:09:05 2231ABC1D18362C98DA09E5517589585 399872 ----a-w- C:\Program Files (x86)\AIMP3\System\Encoders\faac.exe 2015-06-24 12:08:41 1CDF331C2ED30014F81A6B29ECE49A7D 8938520 ----a-w- C:\Users\Vlasman\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DLARWE8T\aimp_3.60.1495[1].exe 2015-06-24 11:52:58 132CFB3B0FB07D3FC3F8F2888C77B63F 376832 ----a-w- C:\Users\Vlasman\Downloads\UWT v2.2\Ultimate Windows Tweaker.exe 2015-06-24 11:52:38 132CFB3B0FB07D3FC3F8F2888C77B63F 376832 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\Rar$DRa0.781\UWT v2.2\Ultimate Windows Tweaker.exe 2015-06-24 11:52:22 25FBE4576339B54A10CADB05E7A2D69A 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-3606609435-1336123501-1718763158-1000\$I69NF7A.exe 2015-06-24 11:49:38 5C3A6D4B54AD990ED8E00AF89C36C0FA 512456 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del__iu14D2N\GASender.exe 2015-06-24 11:48:39 FC71D51ECAC99EECDA669EB70ECDB3CB 457672 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del_FixMyPC\GASender.exe 2015-06-24 11:44:20 5C3A6D4B54AD990ED8E00AF89C36C0FA 512456 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del_pc-cleaner-setup\GASender.exe 2015-06-24 11:43:31 51976EECD8A3398356AC2D9B8B8E7D52 8043720 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\pc-cleaner-setup.exe 2015-06-24 11:41:07 FC71D51ECAC99EECDA669EB70ECDB3CB 457672 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\_Del_fix-my-pc-setup\GASender.exe 2015-06-24 11:19:15 C9FB643979A33E77100C5B7C262A04DB 8376008 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-3606609435-1336123501-1718763158-1000\$R69NF7A.exe 2015-06-23 14:34:46 31657ADA786863B73FAC28E5BD0753AD 382168 ----a-w- C:\ProgramData\Adobe\ARM\S\19575\AdobeARMHelper.exe 2015-06-23 13:55:08 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Vlasman.exe 2015-06-23 13:54:09 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Vlasman\Downloads\RSITx64.exe 2015-06-22 20:52:23 C29E128D08F09C9AEAABA0B602165262 1063504 ----a-w- C:\Program Files (x86)\Google\Update\Install\{A5500EEE-1EA8-4013-9D73-EDB740FD7A45}\43.0.2357.130_43.0.2357.124_chrome_updater.exe 2015-06-22 20:52:23 C29E128D08F09C9AEAABA0B602165262 1063504 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\43.0.2357.130\43.0.2357.130_43.0.2357.124_chrome_updater.exe 2015-06-19 13:25:17 743E0AFB9A6CE6F5E237BFF33FB57A70 5881080 ----a-w- C:\Users\Vlasman\Downloads\Chipsetdrivers\Intel-Chipset-Win8-7-Server-2012-2008-2003-Vista-XP-32-64bit\infinst_autol.exe 2015-06-19 13:24:18 A95BC2E1F0232DEF2BB738D7324DCD74 4352304 ----a-w- C:\Users\Vlasman\Downloads\Intel-Chipset-Win8-7-Server-2012-2008-2003-Vista-XP-32-64bit-13.exe 2015-06-18 09:33:04 A228C547CA354598E3AD3125A3AB1C3C 2448688 ----a-w- C:\Users\Vlasman\Downloads\DriverToolkitInstaller.exe 2015-06-18 08:58:04 C184C29CA97F5307056A32A03C46D0F0 6245888 ----a-w- C:\Users\Vlasman\AppData\Local\Temp\AutoDetectUtilApp.exe 2015-06-17 17:05:04 E89F94AED85BF3611F61608C26B64177 135168 ----a-w- C:\Windows\System32\wuauclt.exe 2015-06-17 17:05:04 B4667963F9711C644F5E43D9A46D8680 33792 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2015-06-17 17:05:04 19165E301A50829D28C27A832AD16FB0 36864 ----a-w- C:\Windows\System32\wuapp.exe === C: other files == 2015-06-24 12:08:58 8ADB47AB992C93DF8A02A65E54CAF48E 28788966 ----a-w- C:\Program Files (x86)\AIMP3\!Backup\z Before install v3.60.1495 [2015.06.24 14-08-58].zip 2015-06-24 11:20:34 FB63F5421C8B5641AFF2E24999B9F52F 142264 ----a-w- C:\Users\Vlasman\Downloads\UWT.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3606609435-1336123501-1718763158-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "iCloudDrive"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "AMD AVT"="Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "iCloudDrive"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "Windows Mobile Device Center"="%windir%\WindowsMobile\wmdc.exe " ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HP Software Update" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Draadloos configuratie hulpprogramma.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\TP-LINK Draadloos configuratie hulpprogramma.lnk" "backup"="C:\\Windows\\pss\\TP-LINK Draadloos configuratie hulpprogramma.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~2\\TP-LINK\\TP-LIN~1\\TWCU.exe -nogui" "item"="TP-LINK Draadloos configuratie hulpprogramma" ==== Startup Folders ====================== 2014-10-06 11:18:32 2114 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [23-06-2015 21:17] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [12-09-2014 18:20] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [12-09-2014 18:20] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Ad-Aware Update (Weekly)" [E:\Programs\AdAware\Ad-AwareAdmin.exe] "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\{0F4BEBA2-10F7-417F-8BA0-7FBA7C758F96}" [C:\Program Files (x86)\Deadtime Stories\DeadtimeStories.exe] "C:\Windows\SysNative\tasks\{42782ABB-C73A-4BDD-816E-D7615AC9654C}" [C:\Program Files (x86)\Grace's Quest - To Catch An Art Thief\GraceQuest.exe] "C:\Windows\SysNative\tasks\{489D1179-D30F-49CA-8EA7-E00AAA81E110}" [C:\Program Files (x86)\Princess Isabella - A Witch's Curse\Princess.exe] "C:\Windows\SysNative\tasks\{5AF743B5-CE0E-4907-85C2-0531131758A6}" [C:\Program Files (x86)\GAMESVOORIEDEREEN.NL\HetGeheimzinnigeDagboekCD\HetGeheimzinnigeDagboek_og.exe] "C:\Windows\SysNative\tasks\{5CFCEA6A-A4AE-41E1-883B-66AAC9E08F7E}" [C:\Program Files (x86)\Neptune's Secret\NeptunesSecret.exe] "C:\Windows\SysNative\tasks\{6568F0BB-C215-4917-BE5D-6469761A2DEA}" [C:\Program Files (x86)\The Hidden Object Show\THOS.exe] "C:\Windows\SysNative\tasks\{80C97CAF-E67E-4F5A-A841-FDD27F7AFEA3}" [C:\Program Files (x86)\Hidden Expedition - Everest\Hidden Expedition Everest.exe] "C:\Windows\SysNative\tasks\{A41B08E8-35C8-482B-9647-469486B37592}" [C:\Program Files (x86)\Escape the Museum\Museum.exe] "C:\Windows\SysNative\tasks\{B6273979-C0C7-4A5E-B8DB-B5157CC589EC}" [C:\Program Files (x86)\GAMESVOORIEDEREEN.NL\HetGeheimzinnigeDagboekCD\HetGeheimzinnigeDagboek_og.exe] "C:\Windows\SysNative\tasks\{BF6539F8-497F-4AFE-9D1B-4C20842C6CF7}" [C:\Program Files (x86)\Hidden Expedition - Everest\Hidden Expedition Everest.exe] "C:\Windows\SysNative\tasks\{F0E85869-1132-481F-8CBF-256285B2E314}" [C:\Program Files (x86)\Deadtime Stories\DeadtimeStories.exe] "C:\Windows\SysNative\tasks\{F9DE32D6-1251-4A73-A32D-A748F29809BA}" [C:\Program Files (x86)\Insider Tales - The Stolen Venus 2\venus.exe] "C:\Windows\SysNative\tasks\{FE8CA6FD-2856-49C7-8D51-9CBB5E4D0645}" [C:\Program Files (x86)\The 80s Game\T8G_Release.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] "C:\Windows\SysNative\tasks\TweakBit\FixMyPC\Start FixMyPC automatic scanning" [C:\Program Files (x86)\TweakBit\FixMyPC\FixMyPC.exe] "C:\Windows\SysNative\tasks\TweakBit\PCCleaner\Start PCCleaner ?n logon" [C:\Program Files (x86)\TweakBit\PCCleaner\PCCleaner.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [09-05-2015 13:50] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Vlasman\AppData\Roaming\Philips-Songbird\Profiles\h1o57o5z.default - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\7digital@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\albumart@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\cd-rip@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\concerts@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewaacdec@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewmp3enc@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\fileassociation@philips.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\gogear@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\gonzo@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\gracenote@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\mashTape@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\msc@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\mtp@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-addon-manager@philips.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-branding@philips.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-likemusic@philips.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-msc-mtp-switch@philips.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-promotions@philips.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-skin@philips.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-ui@philips.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\purplerain@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\windowsmedia@songbirdnest.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-minimizetotray@philips.com - Undetermined - C:\Program Files (x86)\Philips\Philips Songbird\extensions\sharing@songbirdnest.com ==== Firefox Plugins ====================== ==== Chromium Look ====================== Google Chrome Version: 43.0.2357.130 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[25-03-2015 13:25] Google Slides - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Avast Online Security - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki LastPass - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd Google Wallet - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Vlasman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/?gws_rd=ssl" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.nl/?gws_rd=ssl" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{378B88A6-8832-4B14-8EB8-36D61FA6A4CD}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {378B88A6-8832-4B14-8EB8-36D61FA6A4CD} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={sear" {F1E5DE38-27D5-4F6F-97F3-EA02708849D3} Google Url="https://www.google.com/search?q={searchTerms}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll O3 - Toolbar: LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: Install LastPass IE RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: LastPass - file://C:\Users\Vlasman\AppData\LocalLow\LastPass\context.html?cmd=lastpass O8 - Extra context menu item: LastPass Invulformulieren - file://C:\Users\Vlasman\AppData\LocalLow\LastPass\context.html?cmd=fillforms O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll O9 - Extra 'Tools' menuitem: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files%20(x86)/SKIP-BO%20Castaway%20Caper/Images/stg_drm.ocx O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: SAMSUNG AllShare Service (AllShare) - Unknown owner - C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: DYMO PnP Service (DymoPnpService) - Sanford, L.P. - C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TVersity Media Server (TVersityMediaServer) - Unknown owner - C:\ProgramData\TVersity\Media Server\MediaServer.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Vlasman\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Vlasman\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1U2NYZSR will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Vlasman\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache is not empty, a reboot is needed ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=19 folders=13 17406678 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Vlasman\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Vlasman\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Vlasman\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1U2NYZSR" not found "C:\Users\Vlasman\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\X7SU56NJ\gan.wavecdn.net" not found "C:\Users\Vlasman\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\X7SU56NJ\skype.com" not found ==== EOF on wo 24-06-2015 at 14:57:02.22 ======================