Zoek.exe Version 5.0.0.0 Updated 31-December-2015 Tool run by Elke on ma 22/02/2016 at 10:18:51,30. Microsoft Windows 7 Ultimate 6.1.7600 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Elke\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2015-08-10-093401.log 50988 bytes ==== Empty Folders Check ====================== C:\Program Files\tell me more kids deleted successfully C:\PROGRA~2\BlueStacksSetup deleted successfully C:\PROGRA~2\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98} deleted successfully C:\Users\Elke\AppData\Roaming\Media Player Classic deleted successfully C:\Users\Elke\AppData\Roaming\VMware deleted successfully C:\Users\Elke\AppData\Local\VMware deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2414527585-3944006083-3816331441-1000\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== æTorrent Adobe Acrobat Reader DC - Nederlands Adobe Digital Editions 2.0 Adobe Flash Player 20 NPAPI Adobe Photoshop CS6 Adobe Refresh Manager Adobe Shockwave Player 12.0 Akamai NetSession Interface Angry Birds Angry Birds Rio Angry Birds Space Angry Birds Star Wars Angry Birds Star Wars II 1.51 ANT Drivers Installer x86 Apple Application Support Apple Software Update ASIO4ALL Belgium e-ID middleware 4.0.7 (build 7466) CCleaner DAEMON Tools Lite Elevated Installer FARO LS 1.1.501.0 Freemake Audio Converter versie 1.1.0 Garmin Express Garmin Express Tray Google Chrome Google Drive Google Earth Plug-in Google Update Helper HitmanPro 3.7 HP Deskjet 3520 series Basic Device Software HP Deskjet 3520 series Help HP Deskjet 3520 series Product Improvement Study HP Deskjet 3520 series Setup Guide HP FWUpdateEDO2 HP Photo Creations HP Update HPDiagnosticAlert Intel(R) Graphics Media Accelerator Driver Intel(R) Network Connections Drivers ISOBuddy Java 8 Update 73 Java Auto Updater K-Lite Codec Pack 9.6.5 (Full) Klikkerdeklik 2 Lenovo Mouse Suite Lenovo System Update Malwarebytes Anti-Malware versie 2.2.0.1024 Max en het Vreemde dier McAfee Security Scan Plus MergeModule_x86 Metric Collection SDK Microsoft .NET Framework 4.5 Microsoft Office Access MUI (English) 2010 Microsoft Office Access Setup Metadata MUI (English) 2010 Microsoft Office Excel MUI (English) 2010 Microsoft Office Groove MUI (English) 2010 Microsoft Office InfoPath MUI (English) 2010 Microsoft Office OneNote MUI (English) 2010 Microsoft Office Outlook MUI (English) 2010 Microsoft Office PowerPoint MUI (English) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proofing (English) 2010 Microsoft Office Publisher MUI (English) 2010 Microsoft Office Shared MUI (English) 2010 Microsoft Office Shared Setup Metadata MUI (English) 2010 Microsoft Office Word MUI (English) 2010 Microsoft Silverlight Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft XNA Framework Redistributable 3.1 Microsoft_VC80_CRT_x86 Microsoft_VC90_CRT_x86 Mozilla Firefox 44.0.2 (x86 nl) Mozilla Maintenance Service PlayMemories Home PMB_ModeEditor PMB_ServiceUploader QuickTime 7 Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader Recuva Skype Click to Call SkypeT 7.6 SOHLib for PlayMemories Home SoundMAX swMSM tiptoi© Manager 3.0.4 Versie 1.0 VLC media player Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Windows Driver Package - Fedict SmartCard (04/30/2014 4.0.7.5) Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) WinRAR 4.20 (32-bit) YouTubeByClick ==== Running Processes ====================== C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Program Files\HitmanPro\hmpsched.exe C:\Windows\System32\spoolsv.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Windows\system32\taskhost.exe C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe C:\Windows\system32\sppsvc.exe C:\Windows\system32\WUDFHost.exe C:\Windows\system32\taskeng.exe C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.exe C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\vsnpstd3.exe C:\Windows\vsnp2uvc.exe C:\Program Files\DAEMON Tools Lite\DTLite.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\CCleaner\CCleaner.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe C:\Windows\system32\SearchIndexer.exe C:\Users\Elke\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe C:\Users\Elke\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE C:\Program Files\Lenovo\Lenovo Mouse Suite\Pelmiced.exe C:\Program Files\Lenovo\Lenovo Mouse Suite\PelElvDm.exe C:\Users\Elke\AppData\Local\Akamai\netsession_win.exe C:\Users\Elke\AppData\Local\Akamai\netsession_win.exe C:\Users\Elke\Desktop\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\system32\conhost.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k imgsvc ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Elke\AppData\Roaming\Mozilla\Firefox\Profiles\prwxdqng.default ---- Lines yahoo removed from prefs.js ---- user_pref("browser.search.selectedEngine", "Yahoo®"); user_pref("capability.policy.maonoscript.sites", "addons.mozilla.org afx.ms ajax.aspnetcdn.com cdnjs.cloudflare.com code.jquery.com facebook.com first ---- FireFox user.js and prefs.js backups ---- user_20162202_1032_.backup prefs_20162202_1032_.backup ==== Batch Command(s) Run By Tool====================== Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ==== Deleting Files \ Folders ====================== C:\Program Files\tell me more kids not found C:\PROGRA~2\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98} not found "C:\Users\Elke\AppData\Roaming\3X8HTLQDfzJnDnWi9Ui3f78.exe" not found "C:\Users\Elke\AppData\Roaming\Do7ZPsjcpq64J7.exe" not found "C:\Users\Elke\AppData\Roaming\KqpZPvDZMTtghLW7icsVJW.exe" not found "C:\Users\Elke\AppData\Roaming\R3aIcac8T976pastmTwq2OkVER.exe" not found "C:\Users\Elke\AppData\Roaming\wW0XcCEAH8.exe" not found "C:\Users\Elke\AppData\Roaming\xpN5kg1dYJ4N6ZfS5eB.exe" not found C:\Users\Elke\AppData\Roaming\Mozilla\Firefox\Profiles\prwxdqng.default\searchplugins\yahoo-lavasoft.xml deleted C:\Windows\system32\Tasks\ElkeTreasonsHayersV2 deleted C:\PROGRA~2\65ad47d7-2e27-4a5c-b238-26643fdaeb98 deleted C:\Prefs.js deleted C:\install.exe deleted C:\Users\Elke\AppData\Roaming\GoldenGate deleted C:\Users\Elke\AppData\Roaming\droid4xinstaller.log deleted C:\Users\Elke\AppData\Roaming\ProductData deleted C:\PROGRA~2\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat deleted C:\PROGRA~2\ProductData deleted C:\PROGRA~2\Package Cache deleted C:\Users\Elke\AppData\Local\Gameo deleted C:\Windows\system32\config\systemprofile\AppData\Local\LavasoftTcpService deleted C:\Users\Elke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url deleted C:\Users\Elke\AppData\LocalLow\Unity deleted C:\Users\Elke\Desktop\Play Games Online.url deleted C:\Users\Elke\AppData\Roaming\Mozilla\Firefox\Profiles\prwxdqng.default\Yahoo Inc deleted "C:\Windows\tasks\3X8HTLQDfzJnDnWi9Ui3f78.job" deleted "C:\Windows\tasks\Do7ZPsjcpq64J7.job" deleted "C:\Windows\tasks\KqpZPvDZMTtghLW7icsVJW.job" deleted "C:\Windows\tasks\R3aIcac8T976pastmTwq2OkVER.job" deleted "C:\Windows\tasks\wW0XcCEAH8.job" deleted "C:\Windows\tasks\xpN5kg1dYJ4N6ZfS5eB.job" deleted "C:\Users\Elke\AppData\Roaming\3X8HTLQDfzJnDnWi9Ui3f78" deleted "C:\Windows\tasks\3X8HTLQDfzJnDnWi9Ui3f78.job" deleted "C:\Windows\system32\tasks\3X8HTLQDfzJnDnWi9Ui3f78" not deleted "C:\Users\Elke\AppData\Roaming\Do7ZPsjcpq64J7" deleted "C:\Windows\tasks\Do7ZPsjcpq64J7.job" deleted "C:\Windows\system32\tasks\Do7ZPsjcpq64J7" deleted "C:\Users\Elke\AppData\Roaming\KqpZPvDZMTtghLW7icsVJW" deleted "C:\Windows\tasks\KqpZPvDZMTtghLW7icsVJW.job" deleted "C:\Windows\system32\tasks\KqpZPvDZMTtghLW7icsVJW" deleted "C:\Users\Elke\AppData\Roaming\R3aIcac8T976pastmTwq2OkVER" deleted "C:\Windows\tasks\R3aIcac8T976pastmTwq2OkVER.job" deleted "C:\Windows\system32\tasks\R3aIcac8T976pastmTwq2OkVER" deleted "C:\Users\Elke\AppData\Roaming\wW0XcCEAH8" deleted "C:\Windows\tasks\wW0XcCEAH8.job" deleted "C:\Windows\system32\tasks\wW0XcCEAH8" deleted "C:\Users\Elke\AppData\Roaming\xpN5kg1dYJ4N6ZfS5eB" deleted "C:\Windows\tasks\xpN5kg1dYJ4N6ZfS5eB.job" deleted "C:\Windows\system32\tasks\xpN5kg1dYJ4N6ZfS5eB" deleted ==== System Specs ====================== Windows: Windows 7 Ultimate Edition (Build 7600) Memory (RAM): 3046 MB CPU Info: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz CPU Speed: 2376,6 MHz Sound Card: Speakers (2- TASCAM US-144 MKII | Speakers (SoundMAX Integrated D | Display Adapters: Intel(R) Q35 Express Chipset Family | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Intel(R) 82566DM-2 Gigabit Network Connection CD / DVD Drives: 2x (D: | E: | ) D: TSSTcorpDVD-ROM TS-H353B | E: HL-DT-STDVD-RAM GSA-H60L Ports: COM1 LPT1 Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 74,4GB | G: 698,5GB Hard Disks - Free: C: 22,7GB | G: 591,0GB Manufacturer *: LENOVO BIOS Info: AT/AT COMPATIBLE | 01/25/08 | LENOVO - 60400d0 Time Zone: Romance Standard Time Motherboard *: LENOVO LENOVO Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} Default Browser: Firefox 44.0.2 Internet Explorer version: 8.0.7600.16385 Mozilla Firefox version: 44.0.2 (x86 nl) Google Chrome version: 48.0.2564.116 Adobe Reader version: 15.10.20056.167417 Sun Java version: 1.8.0_73 (32-bit) Flash Player version: 20.0.0.306 Shockwave Player version: 12.0.7r148 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2016-02-14 17:35:40 0569002CB22F9E800A0867A3B536C190 325 ----a-w- C:\Windows\hegames.ini ====== C:\Users\Elke\AppData\Local\Temp ==== 2016-02-20 10:30:22 91AE80D9D74E9D7EE2A60D758F903824 1039113 ----a-w- C:\Users\Elke\AppData\Local\Temp\ICSW1.18\ICSW1.18_0U1E1Q1T2Z1P0S2Z1T1C1V1N1P1G1P1C1L1R1.18.exe 2016-02-20 10:30:05 2DB34C7D07707168429B0B2633FF75C0 643948 ----a-w- C:\Users\Elke\AppData\Local\Temp\in6804F1F7\27E87333_stp\sqlite3.dll 2016-02-20 04:01:02 CFFE1AD40668B5540DB4EEF4D6118261 356864 ----a-w- C:\Users\Elke\AppData\Local\Temp\SuspiciouslyMarketplace.dll 2016-02-08 16:58:28 DD40DDFAE58C293F07D5C2A310727D04 195032 ----a-w- C:\Users\Elke\AppData\Local\Temp\HYD450.tmp.1454950702\HTA\3rdparty\OCComSDK.dll ====== Java Cache ===== ====== C:\Windows\system32 ===== 2016-02-21 17:51:25 5614386D4CFDF9E56F355C45BEEBC976 12872 ----a-w- C:\Windows\System32\bootdelete.exe ====== C:\Windows\system32\drivers ===== ====== C:\Windows\Tasks ====== 2016-02-20 10:57:57 -------- d-----w- C:\Windows\system32\Tasks\Apple 2016-02-14 17:35:34 35720FF8F2926AAFC36BF454865D171A 3026 ----a-w- C:\Windows\system32\Tasks\{B979215E-1C5A-4FDC-BEF3-D9125ABB521B} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2016-02-22 09:14:07 -------- d-----w- C:\Program Files\Common Files\Java 2016-02-20 10:57:50 -------- d-----w- C:\Program Files\Apple Software Update 2016-02-20 10:57:02 -------- d-----w- C:\Program Files\Common Files\Apple 2016-01-28 06:53:12 -------- d-----w- C:\Program Files\Common Files\IObit ======= C: ===== ====== C:\Users\Elke\AppData\Roaming ====== 2016-02-19 06:13:19 -------- d-----w- C:\Users\Elke\AppData\Locallow\uTorrent 2016-01-29 05:51:38 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\IObit ====== C:\Users\Elke ====== 2016-02-22 09:12:45 FFF4F6F8511D34CF5C2D0F9086C44A46 735328 ----a-w- C:\Users\Elke\Desktop\jxpiinstall.exe 2016-02-20 10:59:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime 2016-02-20 10:58:52 -------- d-----w- C:\ProgramData\Apple Computer 2016-02-20 10:30:59 839F353DA85D5BBBB437369A769947B7 117766424 ----a-w- C:\Users\Elke\Downloads\iTunesSetup.exe 2016-02-20 10:30:35 -------- d-----w- C:\ProgramData\ab5b5a28-60f3-0 2016-02-20 10:30:32 -------- d-----w- C:\ProgramData\ab5b5a28-5387-1 2016-02-02 06:23:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2016-01-25 07:13:51 -------- d--h--w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools ====== C: exe-files == 2016-02-22 09:13:32 DB409F9BD2FA779E75835B1E0FE1181C 159328 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\unpack200.exe 2016-02-22 09:13:32 C84504D069A78BE5E4444EA06AA5E102 16480 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\orbd.exe 2016-02-22 09:13:32 B100697A0837596183F3BBD94448F68E 30816 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\jabswitch.exe 2016-02-22 09:13:32 ABC1BAF673FA608029D45EB6C78E1D04 50784 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\ssvagent.exe 2016-02-22 09:13:32 AB6E988F108E2437E65536F3F5550BA2 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\ktab.exe 2016-02-22 09:13:32 A3AA0A0935506C7ECA6EF2F584CD416F 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\policytool.exe 2016-02-22 09:13:32 8BD1E7120713F9581645D5FDD14B8D25 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\rmid.exe 2016-02-22 09:13:32 876744373E18627410A9F23C348C5D9E 76896 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\jp2launcher.exe 2016-02-22 09:13:32 6ABADA3CA8DC4AC2AFDA69A6836C362F 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\pack200.exe 2016-02-22 09:13:32 66550F1F363BC66AFD9A530AD8CB6570 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\kinit.exe 2016-02-22 09:13:32 5B98DCE4893425BA4F08C2BE134CABE5 191584 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\javaw.exe 2016-02-22 09:13:32 4383D5735FD7743D01AD04E9AAD1D6CF 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\keytool.exe 2016-02-22 09:13:32 3B74EE580794FCBDE389639E9D8ECEFB 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\rmiregistry.exe 2016-02-22 09:13:32 328A57535A2B74C924FA34DD29039E9D 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\java-rmi.exe 2016-02-22 09:13:32 2942578781EFB763366176C015F09ACD 16480 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\tnameserv.exe 2016-02-22 09:13:32 249C1C8BD8AC9568E5C5A0EC2FB39018 191072 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\java.exe 2016-02-22 09:13:32 237CDD69D6E3866533B402F321A11A4E 68192 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\javacpl.exe 2016-02-22 09:13:32 2211C51BABE577798343D69F818E25AB 278624 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\javaws.exe 2016-02-22 09:13:32 16E2FE80EE89DCCA1907D97E34656E19 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\jjs.exe 2016-02-22 09:13:32 0A7708846A0629D518739075A40DDD06 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\servertool.exe 2016-02-22 09:13:32 04E0265E964D9ECB07B105D456B96982 15968 ----a-w- C:\Program Files\Java\jre1.8.0_73\bin\klist.exe 2016-02-22 09:12:45 FFF4F6F8511D34CF5C2D0F9086C44A46 735328 ----a-w- C:\Users\Elke\Desktop\jxpiinstall.exe 2016-02-21 17:51:25 5614386D4CFDF9E56F355C45BEEBC976 12872 ----a-w- C:\Windows\System32\bootdelete.exe 2016-02-20 10:30:59 839F353DA85D5BBBB437369A769947B7 117766424 ----a-w- C:\Users\Elke\Downloads\iTunesSetup.exe 2016-02-20 10:30:22 91AE80D9D74E9D7EE2A60D758F903824 1039113 ----a-w- C:\Users\Elke\AppData\Local\Temp\ICSW1.18\ICSW1.18_0U1E1Q1T2Z1P0S2Z1T1C1V1N1P1G1P1C1L1R1.18.exe 2016-02-19 21:27:34 45AB0193BCF8693503AF810B1E60D7FE 879512 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\48.0.2564.116\48.0.2564.116_48.0.2564.109_chrome_updater.exe === C: other files == 2016-02-22 09:13:32 EFE4B4EBEBBF14DE84461AFCC281DA12 14130 ----a-w- C:\Program Files\Java\jre1.8.0_73\lib\deploy\ffjcext.zip ==== Orphaned Tasks deleted from Registry ====================== ElkeTreasonsHayersV2 deleted Norton 8M deleted ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files\Garmin\Express Tray\ExpressTray.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2414527585-3944006083-3816331441-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Akamai NetSession Interface"="C:\Users\Elke\AppData\Local\Akamai\netsession_win.exe" "DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" "GarminExpressTrayApp"="C:\Program Files\Garmin\Express Tray\ExpressTray.exe" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "uTorrent"="C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "GarminExpressTrayApp"="C:\Program Files\Garmin\Express Tray\ExpressTray.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Daemon for Mouse Suite"="C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE 30" "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "PMBVolumeWatcher"="C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe /SysAutoRun" "HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "snpstd3"="C:\Windows\vsnpstd3.exe" "snp2uvc"="C:\Windows\vsnp2uvc.exe" "APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Akamai NetSession Interface"="C:\Users\Elke\AppData\Local\Akamai\netsession_win.exe" "DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" "GarminExpressTrayApp"="C:\Program Files\Garmin\Express Tray\ExpressTray.exe" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "uTorrent"="C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10/02/2016 15:50] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [31/08/2015 11:03] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [Undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Acrobat Update Task" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\Driver Booster SkipUAC (Elke)" [C:\Program Files\IObit\Driver Booster\DriverBooster.exe] "C:\Windows\system32\tasks\GarminUpdaterTask" [C:\Program Files\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\HP AR Program Upload - 306fa1163424425b8575b45cda62b786b7339f673fc947889603a642cd08b529" [C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe] "C:\Windows\system32\tasks\HP AR Program Upload - 53e87de216c64571ba7c7263db082b2b4919c46b9ad84b9aa903d5473321af71" [C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe] "C:\Windows\system32\tasks\HP AR Program Upload - 6935414a800449a5b02fe2cbdca84b2abf75b9c067134545bbb4b534a7a22992" [C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe] "C:\Windows\system32\tasks\HP AR Program Upload - 775a7c0c46af4cbda1a8fa85ffe4c8e851d471cb03414053b8a7b0eb3e2b8252" [C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe] "C:\Windows\system32\tasks\HP AR Program Upload - bdd84ec8812b4e3587427456f27443bdade292f2faa746a3a6ae222a5cc6a4ad" [C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe] "C:\Windows\system32\tasks\HP AR Program Upload - d64f4c065aaf49ed9c0850e0492ade50bd391a4e47a94240aff56460bed0d106" [C:\Program Files\HP\HP Deskjet 3520 series\bin\HPRewards.exe] "C:\Windows\system32\tasks\HPCustParticipation HP Deskjet 3520 series" ["C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe"] "C:\Windows\system32\tasks\{8D711F62-0DFE-44B4-8909-8B3A8D01FFC8}" [C:\Program Files\Lucidity\revLoader.exe] "C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\system32\tasks\Lenovo\Lenovo Customer Feedback Program" ["%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] "C:\Windows\system32\tasks\Sony Corporation\Sony Home Network Library\SOHLib SOHDms" [C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe] "C:\Windows\system32\tasks\TVT\TVSUUpdateTask" ["C:\Program Files\Lenovo\System Update\tvsuShim.exe"] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "belgiumeid@eid.belgium.be"="C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be" [14/02/2016 12:13] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Elke\AppData\Roaming\Mozilla\Firefox\Profiles\prwxdqng.default - Belgium eID - %ProfilePath%\extensions\belgiumeid@eid.belgium.be.xpi - Facebook Select All - %ProfilePath%\extensions\jid0-n2ISP7BOUOHLqFZBUsiANkm14Ck@jetpack.xpi - NoScript - %ProfilePath%\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi - YouTube Flash Video Player - %ProfilePath%\extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi AppDir: C:\Program Files\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Skype - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Elke\AppData\Roaming\Mozilla\Firefox\Profiles\prwxdqng.default 999A833D87C8CD918B5EE8C3F8149D2B - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll - Adobe Acrobat AF8A94BCB98C299C49B28CC12EBC0ED2 - C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll - Google Update 0A7CFC4EE9CC3206B1DC522FCB8C3DB1 - c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll - Silverlight Plug-In 5B92CB0A3EEE50F6B9AE036B4F9B0F0C - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin F3B0E300AFC94E1A775A2D935A7D384F - C:\Windows\system32\Adobe\Director\np32dsw_1207148.dll - Shockwave for Director / Shockwave for Director 0E8B2D0D9E3415A91EF259CE1112C579 - C:\Windows\system32\Adobe\Director\np32dsw_1210150.dll - Shockwave for Director / Shockwave for Director 6FE651F6E3025AD51CC1D54913AEEADC - C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll - Shockwave Flash 0B8378EA70622A6F3EC50CC4AF62764C - c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrlui.dll - Microsoft® Silverlight ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bopakagnckmlgajfccecajhnimjiiedh - No path found[] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[08/01/2016 10:47] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions apdfllckaahabafndbhieahigkjlhalf - C:\Users\Elke\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx[21/07/2014 19:41] lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[] Google Docs - Elke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Elke\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Elke\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Elke\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Docs Offline - Elke\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Chrome Web Store Payments - Elke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Elke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.ecosia.org/" "Default_Page_URL"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Default_Search_URL"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="https://www.ecosia.org/" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} - http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 HKLM\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC HKCU\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} - http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 ==== HijackThis Entries ====================== O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll O4 - HKLM\..\Run: [Daemon for Mouse Suite] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE 30 O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe /SysAutoRun O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [snpstd3] C:\Windows\vsnpstd3.exe O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Elke\AppData\Local\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [uTorrent] "C:\Users\Elke\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'Default user') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O15 - Trusted Zone: http://*.webcompanion.com O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: FLEXnet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files\Garmin\Device Interaction Service\GarminService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: Session Launcher Service (PelService) - Unknown owner - C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Sony Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe O23 - Service: Sony Device Searcher (SOHDs) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDs.exe O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files\Lenovo\System Update\SUService.exe ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Elke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Elke\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Elke\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Elke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\Elke\AppData\Local\Mozilla\Firefox\Profiles\prwxdqng.default\cache2 emptied successfully C:\Users\Elke\AppData\Roaming\Mozilla\Firefox\Profiles\prwxdqng.default\storage\default\https+++www.pinterest.com\cache emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Elke\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully C:\Users\Elke\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1085 folders=465 1438101047 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Elke\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Elke\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Windows\system32\tasks\3X8HTLQDfzJnDnWi9Ui3f78" not found "C:\Users\Elke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on ma 22/02/2016 at 10:40:26,04 ======================