Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Andy on ma 18/01/2016 at 11:03:05,21. Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Documents and Settings\Andy\Mijn documenten\Downloads\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 18/01/2016 11:05:04 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\Program Files\Malwarebytes' Anti-Malware deleted successfully C:\Program Files\Wise deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 7-Zip 9.20 Acrobat.com Adobe Acrobat 9 Pro - English, Fran‡ais, Deutsch Adobe Acrobat 9.5.5 - CPSID_83708 Adobe After Effects CS4 Third Party Content Adobe AIR Adobe Anchor Service CS4 Adobe Bridge CS4 Adobe CMaps CS4 Adobe Color EU Recommended Settings CS4 Adobe Color JA Extra Settings CS4 Adobe Color NA Extra Settings CS4 Adobe Creative Suite 4 Master Collection Adobe CSI CS4 Adobe Default Language CS4 Adobe Drive CS4 Adobe Encore CS4 Codecs Adobe ExtendScript Toolkit CS4 Adobe Extension Manager CS4 Adobe Flash Player 11 ActiveX Adobe Flash Player 13 Plugin Adobe Fonts All Adobe InDesign CS4 Adobe InDesign CS4 Application Feature Set Files (Roman) Adobe InDesign CS4 Common Base Files Adobe InDesign CS4 Icon Handler Adobe Linguistics CS4 Adobe Media Encoder CS4 Exporter Adobe Media Encoder CS4 Importer Adobe Media Player Adobe Output Module Adobe PDF Library Files CS4 Adobe Premiere Pro CS4 Third Party Content Adobe Reader 9.5.3 - Nederlands Adobe Search for Help Adobe Service Manager Extension Adobe Setup Adobe SGM CS4 Adobe SING CS4 Adobe Soundbooth CS4 Codecs Adobe Type Support CS4 Adobe Update Manager CS4 Adobe WinSoft Linguistics Plugin Adobe XMP Panels CS4 AdobeColorCommonSetCMYK AdobeColorCommonSetRGB Akamai NetSession Interface AMD Athlon 64 Processor Driver Autodesk Design Review 2013 Basissoftware voor HP Deskjet 3050A J611 series Beveiligingsupdate for Windows XP (KB941569) Beveiligingsupdate voor Microsoft Windows (KB2564958) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2360131) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2510531) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2846071) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2862772) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2870699) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2879017) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2888505) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2898785) Beveiligingsupdate voor Windows Internet Explorer 8 (KB971961) Beveiligingsupdate voor Windows Internet Explorer 8 (KB981332) Beveiligingsupdate voor Windows Internet Explorer 8 (KB982381) Beveiligingsupdate voor Windows Media Player (KB2378111) Beveiligingsupdate voor Windows Media Player (KB2834904-v2) Beveiligingsupdate voor Windows Media Player (KB2834904) Beveiligingsupdate voor Windows Media Player (KB952069) Beveiligingsupdate voor Windows Media Player (KB954155) Beveiligingsupdate voor Windows Media Player (KB973540) Beveiligingsupdate voor Windows Media Player (KB975558) Beveiligingsupdate voor Windows Media Player (KB978695) Beveiligingsupdate voor Windows Media Player (KB979402) Beveiligingsupdate voor Windows Media Player 11 (KB954154) Beveiligingsupdate voor Windows XP (KB2115168) Beveiligingsupdate voor Windows XP (KB2121546) Beveiligingsupdate voor Windows XP (KB2229593) Beveiligingsupdate voor Windows XP (KB2259922) Beveiligingsupdate voor Windows XP (KB2279986) Beveiligingsupdate voor Windows XP (KB2286198) Beveiligingsupdate voor Windows XP (KB2296011) Beveiligingsupdate voor Windows XP (KB2347290) Beveiligingsupdate voor Windows XP (KB2360937) Beveiligingsupdate voor Windows XP (KB2387149) Beveiligingsupdate voor Windows XP (KB2393802) Beveiligingsupdate voor Windows XP (KB2419632) Beveiligingsupdate voor Windows XP (KB2423089) Beveiligingsupdate voor Windows XP (KB2440591) Beveiligingsupdate voor Windows XP (KB2443105) Beveiligingsupdate voor Windows XP (KB2478960) Beveiligingsupdate voor Windows XP (KB2478971) Beveiligingsupdate voor Windows XP (KB2479943) Beveiligingsupdate voor Windows XP (KB2481109) Beveiligingsupdate voor Windows XP (KB2483185) Beveiligingsupdate voor Windows XP (KB2485663) Beveiligingsupdate voor Windows XP (KB2506212) Beveiligingsupdate voor Windows XP (KB2507938) Beveiligingsupdate voor Windows XP (KB2508429) Beveiligingsupdate voor Windows XP (KB2509553) Beveiligingsupdate voor Windows XP (KB2535512) Beveiligingsupdate voor Windows XP (KB2536276-v2) Beveiligingsupdate voor Windows XP (KB2544893-v2) Beveiligingsupdate voor Windows XP (KB2566454) Beveiligingsupdate voor Windows XP (KB2570947) Beveiligingsupdate voor Windows XP (KB2584146) Beveiligingsupdate voor Windows XP (KB2585542) Beveiligingsupdate voor Windows XP (KB2592799) Beveiligingsupdate voor Windows XP (KB2598479) Beveiligingsupdate voor Windows XP (KB2603381) Beveiligingsupdate voor Windows XP (KB2618451) Beveiligingsupdate voor Windows XP (KB2619339) Beveiligingsupdate voor Windows XP (KB2620712) Beveiligingsupdate voor Windows XP (KB2624667) Beveiligingsupdate voor Windows XP (KB2631813) Beveiligingsupdate voor Windows XP (KB2653956) Beveiligingsupdate voor Windows XP (KB2655992) Beveiligingsupdate voor Windows XP (KB2659262) Beveiligingsupdate voor Windows XP (KB2661637) Beveiligingsupdate voor Windows XP (KB2676562) Beveiligingsupdate voor Windows XP (KB2686509) Beveiligingsupdate voor Windows XP (KB2691442) Beveiligingsupdate voor Windows XP (KB2698365) Beveiligingsupdate voor Windows XP (KB2705219-v2) Beveiligingsupdate voor Windows XP (KB2712808) Beveiligingsupdate voor Windows XP (KB2719985) Beveiligingsupdate voor Windows XP (KB2723135-v2) Beveiligingsupdate voor Windows XP (KB2727528) Beveiligingsupdate voor Windows XP (KB2753842-v2) Beveiligingsupdate voor Windows XP (KB2757638) Beveiligingsupdate voor Windows XP (KB2758857) Beveiligingsupdate voor Windows XP (KB2770660) Beveiligingsupdate voor Windows XP (KB2780091) Beveiligingsupdate voor Windows XP (KB2802968) Beveiligingsupdate voor Windows XP (KB2807986) Beveiligingsupdate voor Windows XP (KB2813345) Beveiligingsupdate voor Windows XP (KB2820197) Beveiligingsupdate voor Windows XP (KB2820917) Beveiligingsupdate voor Windows XP (KB2834886) Beveiligingsupdate voor Windows XP (KB2839229) Beveiligingsupdate voor Windows XP (KB2845187) Beveiligingsupdate voor Windows XP (KB2847311) Beveiligingsupdate voor Windows XP (KB2849470) Beveiligingsupdate voor Windows XP (KB2850851) Beveiligingsupdate voor Windows XP (KB2850869) Beveiligingsupdate voor Windows XP (KB2859537) Beveiligingsupdate voor Windows XP (KB2862152) Beveiligingsupdate voor Windows XP (KB2862330) Beveiligingsupdate voor Windows XP (KB2862335) Beveiligingsupdate voor Windows XP (KB2864063) Beveiligingsupdate voor Windows XP (KB2868038) Beveiligingsupdate voor Windows XP (KB2868626) Beveiligingsupdate voor Windows XP (KB2876217) Beveiligingsupdate voor Windows XP (KB2876315) Beveiligingsupdate voor Windows XP (KB2876331) Beveiligingsupdate voor Windows XP (KB2883150) Beveiligingsupdate voor Windows XP (KB2892075) Beveiligingsupdate voor Windows XP (KB2893294) Beveiligingsupdate voor Windows XP (KB2893984) Beveiligingsupdate voor Windows XP (KB2898715) Beveiligingsupdate voor Windows XP (KB2900986) Beveiligingsupdate voor Windows XP (KB923561) Beveiligingsupdate voor Windows XP (KB946648) Beveiligingsupdate voor Windows XP (KB950762) Beveiligingsupdate voor Windows XP (KB950974) Beveiligingsupdate voor Windows XP (KB951376-v2) Beveiligingsupdate voor Windows XP (KB951748) Beveiligingsupdate voor Windows XP (KB952004) Beveiligingsupdate voor Windows XP (KB952954) Beveiligingsupdate voor Windows XP (KB955069) Beveiligingsupdate voor Windows XP (KB956572) Beveiligingsupdate voor Windows XP (KB956744) Beveiligingsupdate voor Windows XP (KB956802) Beveiligingsupdate voor Windows XP (KB956803) Beveiligingsupdate voor Windows XP (KB956844) Beveiligingsupdate voor Windows XP (KB958644) Beveiligingsupdate voor Windows XP (KB958869) Beveiligingsupdate voor Windows XP (KB959426) Beveiligingsupdate voor Windows XP (KB960225) Beveiligingsupdate voor Windows XP (KB960803) Beveiligingsupdate voor Windows XP (KB960859) Beveiligingsupdate voor Windows XP (KB961501) Beveiligingsupdate voor Windows XP (KB969059) Beveiligingsupdate voor Windows XP (KB970238) Beveiligingsupdate voor Windows XP (KB970430) Beveiligingsupdate voor Windows XP (KB971468) Beveiligingsupdate voor Windows XP (KB971657) Beveiligingsupdate voor Windows XP (KB972270) Beveiligingsupdate voor Windows XP (KB973507) Beveiligingsupdate voor Windows XP (KB973869) Beveiligingsupdate voor Windows XP (KB973904) Beveiligingsupdate voor Windows XP (KB974112) Beveiligingsupdate voor Windows XP (KB974318) Beveiligingsupdate voor Windows XP (KB974392) Beveiligingsupdate voor Windows XP (KB974571) Beveiligingsupdate voor Windows XP (KB975025) Beveiligingsupdate voor Windows XP (KB975467) Beveiligingsupdate voor Windows XP (KB975560) Beveiligingsupdate voor Windows XP (KB975561) Beveiligingsupdate voor Windows XP (KB975562) Beveiligingsupdate voor Windows XP (KB975713) Beveiligingsupdate voor Windows XP (KB977816) Beveiligingsupdate voor Windows XP (KB977914) Beveiligingsupdate voor Windows XP (KB978037) Beveiligingsupdate voor Windows XP (KB978338) Beveiligingsupdate voor Windows XP (KB978542) Beveiligingsupdate voor Windows XP (KB978601) Beveiligingsupdate voor Windows XP (KB978706) Beveiligingsupdate voor Windows XP (KB979309) Beveiligingsupdate voor Windows XP (KB979482) Beveiligingsupdate voor Windows XP (KB979559) Beveiligingsupdate voor Windows XP (KB979683) Beveiligingsupdate voor Windows XP (KB979687) Beveiligingsupdate voor Windows XP (KB980195) Beveiligingsupdate voor Windows XP (KB980218) Beveiligingsupdate voor Windows XP (KB980232) Beveiligingsupdate voor Windows XP (KB980436) Beveiligingsupdate voor Windows XP (KB981322) Beveiligingsupdate voor Windows XP (KB981852) Beveiligingsupdate voor Windows XP (KB981957) Beveiligingsupdate voor Windows XP (KB981997) Beveiligingsupdate voor Windows XP (KB982132) Beveiligingsupdate voor Windows XP (KB982214) Beveiligingsupdate voor Windows XP (KB982381) Beveiligingsupdate voor Windows XP (KB982665) Bonjour-afdrukservices Bonjour Canon Large Format Printer Extended Survey Program CCleaner Compatibiliteitspakket voor het 2007 Microsoft Office system Connect Dropbox DWG TrueView 2012 ESET NOD32 Antivirus Fiery Remote Scan 5.1.2.6 FinePrint Google Chrome Google Update Helper Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB976002-v5) Hotfix voor Windows Media Player 11 (KB939683) Hotfix voor Windows XP (KB2158563) Hotfix voor Windows XP (KB2779562) Hotfix voor Windows XP (KB942288-v3) Hotfix voor Windows XP (KB952287) Hotfix voor Windows XP (KB961118) Hotfix voor Windows XP (KB981793) HP Deskjet 3050A J611 series Haelp HP LaserJet 2100 software HP Update ImageMixer for Sony DVD Handycam imagePROGRAF Firmware Update Tool imagePROGRAF Printer Driver Extra Kit imagePROGRAF Status Monitor iPF750 Media Configuration Tool iPF8400SE Series Media Configuration Tool Java 8 Update 66 Java Auto Updater kuler Malwarebytes Anti-Malware versie 2.1.8.1057 Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - NLD Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - NLD Microsoft .NET Framework 3.5 Language Pack SP1 - nld Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Extended Microsoft Application Error Reporting Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Default Manager Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 Microsoft Office Word Viewer 2003 Microsoft Security Client Microsoft Security Essentials Microsoft Silverlight Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 MicroStaff WINASPI My Net View Naviextras Toolbox Prerequesities Oce 9400 OpenOffice.org 3.4.1 PDF Settings CS4 Philips Flat Panel Adjust Photoshop Camera Raw Picasa 3 Platform Productverbeteringonderzoek HP Deskjet 3050A J611 series Realtek AC'97 Audio Renault Media Nav Toolbox Samsung Kies SAMSUNG USB Driver for Mobile Phones Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407) Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2) SmartLF Ci USB driver 1.0.3.0 SmartLF Ci Utilites 1.1.2 SmartLF Gx+Ci Ethernet driver 1.0.3 Smartworks Ez 1.0.5 SmartWorks EZ Touch 2.1.1 Sony DVD Handycam USB Driver Suite Shared Configuration CS4 SUPERAntiSpyware Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update voor Windows Internet Explorer 8 (KB976662) Update voor Windows XP (KB2141007) Update voor Windows XP (KB2345886) Update voor Windows XP (KB2661254-v2) Update voor Windows XP (KB2749655) Update voor Windows XP (KB2863058) Update voor Windows XP (KB2904266) Update voor Windows XP (KB951978) Update voor Windows XP (KB955759) Update voor Windows XP (KB967715) Update voor Windows XP (KB968389) Update voor Windows XP (KB971029) Update voor Windows XP (KB971737) Update voor Windows XP (KB973687) Update voor Windows XP (KB973815) VIA Platform apparaatbeheer VLC media player 2.0.4 VTech Download Agent Library WD My Cloud WD Quick View WD SmartWare WD SmartWare Installer WebFldrs XP Windows Defender Windows Driver Package - Colortrac Ltd Image (07/23/2010 1.0.3.0) Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 8 Windows Media Format 11 runtime Windows Media Player 11 Windows XP Service Pack 3 WinRAR 4.01 (32-bit) XML Paper Specification Shared Components Language Pack 1.0 Xvid Video Codec ==== Running Processes ====================== C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\Program Files\Microsoft Security Client\MsMpEng.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\SUPERAntiSpyware\SASCORE.EXE C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwisam.exe C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwida.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\FsUsbExService.Exe C:\Documents and Settings\Andy\Local Settings\Application Data\Akamai\netsession_win.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\CCleaner\CCleaner.exe C:\Program Files\Canon\LPESP\CNWILSVC.EXE C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe C:\Documents and Settings\Andy\Local Settings\Application Data\Akamai\netsession_win.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe C:\Program Files\Outlook Express\msimn.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Andy\Mijn documenten\Downloads\zoek.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k imgsvc ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Program Files\Wise not found C:\Program Files\WindowsUpdate deleted C:\Program Files\AvRack deleted C:\Program Files\Bonjour Print Services deleted C:\AutodeskDesignRevSetup.exe deleted C:\ocewpd1.18.1.exe deleted C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallMate deleted C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tarma Installer deleted C:\DOCUME~1\ALLUSE~1\APPLIC~1\Package Cache deleted F:\Mijn documenten\HANDIGE PROGS\COLORTRAC SCANNER\Ci-usb-drv1030install\Ci usb driver 1030 installer\SmartLF Ci USB driver-Setup.exe deleted ==== System Specs ====================== Windows: Windows XP Home Edition Service Pack 3 (Build 2600) Memory (RAM): 2048 MB CPU Info: AMD Athlon(tm) 64 Processor 2800+ CPU Speed: 1834,9 MHz Sound Card: Realtek AC97 Audio | Display Adapters: RADEON 9200 SE Family (Microsoft Corporation) | RADEON 9200 SE SEC Family (Microsoft Corporation) | NetMeeting driver | RDPDD Chained DD Monitors: 1x; Plug en Play-monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: VIA Networking Velocity Family Giga-bit Ethernet Adapter - Pakketplanner-minipoort CD / DVD Drives: 1x (D: | ) D: COMBI RW32/DVD Ports: COM1 LPT1 Mouse: 8 Button Wheel Mouse Present Hard Disks: C: 232,9GB | F: 931,5GB Hard Disks - Free: C: 167,1GB | F: 705,9GB Manufacturer *: Phoenix Technologies, LTD BIOS Info: AT/AT COMPATIBLE | 10/12/04 | VIAK8T - 42302e31 Time Zone: West-Europa (standaardtijd) Motherboard *: http://www.abit.com.tw/ KV8 Pro (VIA K8T800P-8237) Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095} AV: ESET NOD32 Antivirus 4.2 *Enabled/Outdated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} Default Browser: Google Chrome 47.0.2526.111 Internet Explorer version: 8.0.6001.18702 Google Chrome version: 47.0.2526.111 Adobe Reader version: 9.5.3.305 Flash Player version: 13.0.0.206 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\DOCUME~1\Andy\LOCALS~1\Temp ==== 2016-01-18 09:58:56 2504A1F4DA3B06B47CF2F81AFB365B79 585824 ----a-w- C:\Documents and Settings\Andy\Local Settings\Temp\jre-8u66-windows-au.exe ====== Java Cache ===== ====== C:\WINDOWS\system32 ===== 2016-01-18 09:33:47 0CD5FA4957A29BC9BF9CB8D5AF026D59 8192 ----a-w- C:\WINDOWS\System32\WDPABKP.dat ====== C:\WINDOWS\system32\drivers ===== ====== C:\WINDOWS\Tasks ====== 2016-01-16 13:06:47 CCA54CAD430F1B18DA3B5C99D387BA96 1040 ----a-w- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-16 13:06:46 ECF14A1CE22434710F3F209CD5F3A324 1036 ----a-w- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-01-18 10:00:55 -------- d-----w- C:\Program Files\Common Files\Java ======= C: ===== ====== C:\Documents and Settings\Andy\Application Data ====== ====== C:\Documents and Settings\Andy ====== 2016-01-18 10:00:41 -------- d-----w- C:\Documents and Settings\Andy\.oracle_jre_usage 2016-01-16 12:12:22 -------- d--h--r- C:\Documents and Settings\Andy\Onlangs geopend 2016-01-09 09:27:29 -------- d-----w- C:\Documents and Settings\All Users\Documenten\new-renault-C6A24-seeklogo.net 2016-01-09 09:12:13 -------- d-----w- C:\Documents and Settings\All Users\Documenten\dacia-FB71EB24-logoeps.com 2016-01-05 17:59:12 -------- d-----w- C:\Documents and Settings\All Users\Documenten\volleybal 2015-2016 ====== C: exe-files == 2016-01-18 10:00:09 ADAF1151B29D2D1691FA027B6C55B3D7 50784 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\ssvagent.exe 2016-01-18 10:00:09 0A3936FE18FC04350159A1E647201501 16480 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\tnameserv.exe 2016-01-18 10:00:09 092F4D3C25F3086D4C7FDEC79DD71302 159328 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\unpack200.exe 2016-01-18 10:00:08 D8EEED21B06866E85DA30485F5059FF6 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\servertool.exe 2016-01-18 10:00:08 73368169BFD965EC6257E77C23CED879 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\rmiregistry.exe 2016-01-18 10:00:08 3B306D41F07396975ECE34A860BD9036 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\pack200.exe 2016-01-18 10:00:08 17A8DD2484DC26E38DFE3209C8B36980 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\policytool.exe 2016-01-18 10:00:08 0B82777B13B81417E5520DF7B1E8C319 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\rmid.exe 2016-01-18 10:00:07 46AB480B01CD30801B3AE89B5AAE75A8 16480 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\orbd.exe 2016-01-18 10:00:06 7BE9BE6E15653824A28F5CED6B273588 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\klist.exe 2016-01-18 10:00:06 28FB06FC63D5817153B5502A49DF3F00 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\ktab.exe 2016-01-18 10:00:05 CA51FB3FE5012E21D9A14AC071527866 76896 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\jp2launcher.exe 2016-01-18 10:00:05 525027DF51378DDA25F0F52C20BCB132 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\kinit.exe 2016-01-18 10:00:05 36A44033C6B970F95E2A1448F4481CEA 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\keytool.exe 2016-01-18 10:00:04 8977B87AB10AB1DA8769CA0053B401B0 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\jjs.exe 2016-01-18 09:59:59 FDF059C05249FAEA0221ED65CD59A9C8 68192 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\javacpl.exe 2016-01-18 09:59:59 F003BBCB09CACF8A9F4CE0C67A2D6E63 278624 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\javaws.exe 2016-01-18 09:59:59 7BDD7F1BC2A20971DEE17B6920D61BBC 191584 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\javaw.exe 2016-01-18 09:59:58 EFC80BC662BCC20B0B09700636FDC732 30816 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\jabswitch.exe 2016-01-18 09:59:58 A9E84AD3536425BC68263B723C2442E4 191072 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\java.exe 2016-01-18 09:59:58 04D67FF5044A605F1E7D923A1D6F1751 15968 ----a-w- C:\Program Files\Java\jre1.8.0_66\bin\java-rmi.exe 2016-01-18 09:58:56 2504A1F4DA3B06B47CF2F81AFB365B79 585824 ----a-w- C:\Documents and Settings\Andy\Local Settings\Temp\jre-8u66-windows-au.exe 2016-01-18 09:57:10 81EDCA9D9BFDDB931ED448078762A31A 584288 ----a-w- C:\Documents and Settings\Andy\Mijn documenten\Downloads\chromeinstall-8u66 (1).exe 2016-01-18 09:55:18 81EDCA9D9BFDDB931ED448078762A31A 584288 ----a-w- C:\Documents and Settings\Andy\Mijn documenten\Downloads\chromeinstall-8u66.exe 2016-01-18 08:22:23 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Documents and Settings\Andy\Mijn documenten\Downloads\RSIT.exe 2016-01-16 13:07:10 367BD81821F43B8CA6BE104B765F760B 43991120 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\47.0.2526.111\47.0.2526.111_chrome_installer.exe 2016-01-16 13:06:44 EC0FAADC62E1C1DADA953DE433BEFB01 88392 ----atw- C:\Program Files\Google\Update\1.3.29.1\GoogleUpdateOnDemand.exe 2016-01-16 13:06:44 BA7396EF42213C0F84343C186610B851 88392 ----atw- C:\Program Files\Google\Update\1.3.29.1\GoogleUpdateWebPlugin.exe 2016-01-16 13:06:44 AD8495335C1A605A4E0E32334DF52303 88392 ----atw- C:\Program Files\Google\Update\1.3.29.1\GoogleUpdateBroker.exe 2016-01-16 13:06:44 88FBBB1C601A6BC42054E57C2897FA45 144200 ----atw- C:\Program Files\Google\Update\GoogleUpdate.exe 2016-01-16 13:06:44 047015ECBDCE8BD145B14DA0F2AF9546 927824 ----a-w- C:\Program Files\Google\Update\1.3.29.1\GoogleUpdateSetup.exe 2016-01-16 13:06:40 7DC16FAEA44C8D96A1C113305A4059A2 245576 ----atw- C:\Program Files\Google\Update\1.3.29.1\GoogleCrashHandler.exe 2016-01-16 13:06:40 73F542663FD48B49A798A56DAA18C136 307016 ----atw- C:\Program Files\Google\Update\1.3.29.1\GoogleCrashHandler64.exe 2016-01-16 13:06:40 5424FDF3776F5458EAFAABFB87AA9285 130888 ----atw- C:\Program Files\Google\Update\1.3.29.1\GoogleUpdateComRegisterShell64.exe 2016-01-16 13:06:39 88FBBB1C601A6BC42054E57C2897FA45 144200 ----atw- C:\Program Files\Google\Update\1.3.29.1\GoogleUpdate.exe 2016-01-16 13:06:24 047015ECBDCE8BD145B14DA0F2AF9546 927824 ----a-w- C:\Documents and Settings\Andy\Local Settings\Temporary Internet Files\Content.IE5\ZYC19RGW\ChromeSetup[1].exe 2016-01-12 17:50:28 FA734675C96D038C4FFAF273D3291B92 9096848 ----a-w- C:\Documents and Settings\Andy\Mijn documenten\Downloads\HitmanPro35A.exe === C: other files == 2016-01-18 10:00:11 4DB4B1F67E583B41F841F48254BE38E3 14130 ----a-w- C:\Program Files\Java\jre1.8.0_66\lib\deploy\ffjcext.zip 2016-01-15 08:12:27 D2F6A1B11344D9AC7BCFB75900D4ADE1 23668 ----a-w- C:\Program Files\Google\Chrome\Temp(2)\source3148_27662\Chrome-bin\47.0.2526.111\default_apps\youtube.crx 2016-01-15 08:12:27 8AD223868AB9974F7746D0227730A0CC 26392 ----a-w- C:\Program Files\Google\Chrome\Temp(2)\source3148_27662\Chrome-bin\47.0.2526.111\default_apps\search.crx 2016-01-15 08:12:27 2E2E328E5BF6BE61203164B3E9EA8094 24040 ----a-w- C:\Program Files\Google\Chrome\Temp(2)\source3148_27662\Chrome-bin\47.0.2526.111\default_apps\gmail.crx 2016-01-15 08:12:26 71E1283B8440F6264CEC99DF9AD81F5B 25561 ----a-w- C:\Program Files\Google\Chrome\Temp(2)\source3148_27662\Chrome-bin\47.0.2526.111\default_apps\drive.crx 2016-01-15 08:12:26 2C71C49F991095A1848624907BACBB08 4578 ----a-w- C:\Program Files\Google\Chrome\Temp(2)\source3148_27662\Chrome-bin\47.0.2526.111\default_apps\docs.crx 2016-01-13 10:57:30 F7315BA078BE725692FC51F5E8A25869 8163198 ----a-w- C:\Documents and Settings\Andy\Mijn documenten\Downloads\patronen.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-1993962763-261478967-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Run] "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background" "Akamai NetSession Interface"="C:\Documents and Settings\Andy\Local Settings\Application Data\Akamai\netsession_win.exe" "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AdobeCS4ServiceManager"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe -launchedbylogin" "Adobe Acrobat Speed Launcher"="C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" "Acrobat Assistant 8.0"="C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" "Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe -hide" "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "Microsoft Default Manager"="C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe -resume" "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "CnwiDeviceAgent"="C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwida.exe" "WD Quick View"="C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe" "DWQueuedReporting"="C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe /background" "Akamai NetSession Interface"="C:\Documents and Settings\Andy\Local Settings\Application Data\Akamai\netsession_win.exe" "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KiesPDLR" "hkey"="HKCU" "command"="C:\\Program Files\\Samsung\\Kies\\External\\FirmwareUpdate\\KiesPDLR.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AdobeARM" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Reader_sl" "hkey"="HKLM" "command"="\"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CCleaner" "hkey"="HKCU" "command"="\"C:\\Program Files\\CCleaner\\CCleaner.exe\" /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ctfmon.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ctfmon" "hkey"="HKCU" "command"="C:\\WINDOWS\\system32\\ctfmon.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\egui] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="egui" "hkey"="HKLM" "command"="\"C:\\Program Files\\ESET\\ESET NOD32 Antivirus\\egui.exe\" /hide /waitservice" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HPWuSchd2" "hkey"="HKLM" "command"="C:\\Program Files\\Hp\\HP Software Update\\HPWuSchd2.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IMJPMIG8.1] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="IMJPMIG" "hkey"="HKLM" "command"="\"C:\\WINDOWS\\IME\\imjp8_1\\IMJPMIG.EXE\" /Spoil /RemAdvDef /Migration32" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesPDLR] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KiesPDLR" "hkey"="HKCU" "command"="C:\\Program Files\\Samsung\\Kies\\External\\FirmwareUpdate\\KiesPDLR.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesPreload] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Kies" "hkey"="HKCU" "command"="C:\\Program Files\\Samsung\\Kies\\Kies.exe /preload" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KiesTrayAgent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KiesTrayAgent" "hkey"="HKLM" "command"="C:\\Program Files\\Samsung\\Kies\\KiesTrayAgent.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PHIME2002A] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="TINTSETP" "hkey"="HKLM" "command"="C:\\WINDOWS\\system32\\IME\\TINTLGNT\\TINTSETP.EXE /IMEName" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PHIME2002ASync] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="TINTSETP" "hkey"="HKLM" "command"="C:\\WINDOWS\\system32\\IME\\TINTLGNT\\TINTSETP.EXE /SYNC" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SoundMan] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SOUNDMAN" "hkey"="HKLM" "command"="SOUNDMAN.EXE" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WD Quick View] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="WDDMStatus" "hkey"="HKLM" "command"="C:\\Program Files\\Western Digital\\WD Quick View\\WDDMStatus.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^Andy^Menu Start^Programma's^Opstarten^Dropbox.lnk] "path"="C:\\Documents and Settings\\Andy\\Menu Start\\Programma's\\Opstarten\\Dropbox.lnk" "backup"="C:\\WINDOWS\\pss\\Dropbox.lnkStartup" "command"="C:\\DOCUME~1\\Andy\\APPLIC~1\\Dropbox\\bin\\Dropbox.exe /systemstartup" "item"="Dropbox" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a------ C:0C:\ProgramC:Files\Google\Update\GoogleUpdate.exe [] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [16/01/2016 14:06] C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job --ah----- C:\Program Files\Microsoft Security Client\MpCmdRun.exe [23/10/2013 15:01] C:\WINDOWS\tasks\____Volume_125fcd5f_0794_11e0_a7b4_806d6172696f__uuid_73656761_7465_7375_636b_0090a93aaa18_SmartWare_.job --a------ C:\Program Files\Western Digital\WD SmartWare\BackupTask.exe [20/07/2015 16:57] C:\WINDOWS\tasks\____Volume_125fcd5f_0794_11e0_a7b4_806d6172696f______Volume_3bf79791_d458_11e4_abe5_00508d690a7a__.job --a------ C:\Program Files\Western Digital\WD SmartWare\BackupTask.exe [20/07/2015 16:57] C:\WINDOWS\tasks\____Volume_cd0d5dae_082a_11e0_a646_00508d690a7a__dropbox_a819360b_1a3f_4d40_927c_935219fed879_dropbox_.job --a------ C:\Program Files\Western Digital\WD SmartWare\BackupTask.exe [20/07/2015 16:57] C:\WINDOWS\tasks\____Volume_cd0d5dae_082a_11e0_a646_00508d690a7a__dropbox_ce60718a_6bd1_4667_ad6e_e2ea37627a50_dropbox_.job --a------ C:\Program Files\Western Digital\WD SmartWare\BackupTask.exe [20/07/2015 16:57] C:\WINDOWS\tasks\____Volume_cd0d5dae_082a_11e0_a646_00508d690a7a__uuid_73656761_7465_7375_636b_0090a93aaa18_SmartWare_.job --a------ C:\Program Files\Western Digital\WD SmartWare\BackupTask.exe [20/07/2015 16:57] C:\WINDOWS\tasks\____Volume_cd0d5dae_082a_11e0_a646_00508d690a7a______Volume_3bf79791_d458_11e4_abe5_00508d690a7a__.job --a------ [Undetermined Task] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}"="C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension" [21/08/2012 09:26] ==== Firefox Extensions ====================== ProfilePath: C:\Documents and Settings\Andy\Application Data\KompoZer\Profiles\omlh9ab9.default - Undetermined - %ProfilePath%\extensions\installed-extensions.txt - KompoZer classic - %ProfilePath%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ProfilePath: C:\Documents and Settings\Andy\Application Data\kompozer.net\KompoZer\Profiles\0bwmeex5.default - Undetermined - %ProfilePath%\extensions\installed-extensions.txt - KompoZer classic - %ProfilePath%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== ==== Chromium Look ====================== Google Docs - Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Docs Offline - Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Chrome Web Store Payments - Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Fix ====================== C:\Documents and Settings\Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully C:\Documents and Settings\Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="res://ieframe.dll/tabswelcome.htm" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="about:newtab" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{506A877D-293C-4FC3-B0C4-CFA5CCD27278}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?FORM=UP09DF&PC=UP09&q={searchTerms}&src=IE-SearchBox HKCU\SearchScopes\{1AD1F491-8008-4299-8C38-67D32056A94F} - http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC HKCU\SearchScopes\{506A877D-293C-4FC3-B0C4-CFA5CCD27278} - http://www.google.be/search?hl=nl&q={searchTerms}&sourceid=ie8&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1C50328D-651E-4843-BD7D-B0342FA429AC} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D680D6FF-80A5-44E5-9015-B1F9AC0FCDA5} deleted successfully ==== HijackThis Entries ====================== O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [CnwiDeviceAgent] C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwida.exe O4 - HKLM\..\Run: [WD Quick View] C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe O4 - HKLM\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Documents and Settings\Andy\Local Settings\Application Data\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR O4 - Global Startup: imagePROGRAF Status Monitor.lnk = C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwism.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Canon imagePROGRAF Status Monitor - CANON INC - C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwisam.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Canon Large Format Printer Extended Survey Program (LPESPSVC) - Unknown owner - C:\Program Files\Canon\LPESP\CNWILSVC.EXE O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe ==== Empty IE Cache ====================== C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\Andy\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Documents and Settings\Andy\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=65 folders=34 53301177 bytes) ==== Empty Temp Folders ====================== C:\Documents and Settings\Andy\Local Settings\Temp will be emptied at reboot C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temp emptied successfully C:\Documents and Settings\NetworkService\Local Settings\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\DOCUME~1\Andy\LOCALS~1\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Documents and Settings\Andy\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on ma 18/01/2016 at 11:54:27,65 ======================