Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Marco on ma 29-08-2016 at 14:02:03,19. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Marco\Desktop\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 29-8-2016 14:03:49 Zoek.exe System Restore Point Created Successfully. ==== Reset Hosts File ====================== # Copyright (c) 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host 127.0.0.1 localhost ==== Empty Folders Check ====================== C:\Program Files\log deleted successfully C:\PROGRA~3\Babylon deleted successfully C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\PROGRA~3\systemk deleted successfully C:\Users\Marco\AppData\Local\ActiveSync deleted successfully C:\Users\Marco\AppData\Local\EmieBrowserModeList deleted successfully C:\Users\Marco\AppData\Local\EmieSiteList deleted successfully C:\Users\Marco\AppData\Local\EmieUserList deleted successfully C:\Users\Marco\AppData\Local\NetworkTiles deleted successfully C:\Users\Marco\AppData\Local\Skype deleted successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3000434625-2727981046-3562732110-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-3000434625-2727981046-3562732110-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} deleted successfully HKEY_USERS\S-1-5-21-3000434625-2727981046-3562732110-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{54739D49-AC03-4C57-9264-C5195596B3A1} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== Ace Stream Media 3.1.0 Adobe Acrobat Reader DC - Nederlands Adobe Flash Player 22 NPAPI Adobe Refresh Manager Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update ASUS InstantOn ASUS LifeFrame3 ASUS Live Update ASUS Screen Saver ASUS Smart Gesture ASUS Splendid Video Enhancement Technology ASUS USB Charger Plus ASUS Virtual Camera ASUS WebStorage Sync Agent ASUSDVD AsusVibe2.0 ATK Package Audacity 2.0.5 Azteca Bejeweled 3 Belgium e-ID middleware 4.1.7 (build 1666) Bonjour CCleaner ConTEXT v0.98.6 Cut the Rope CyberLink LabelPrint 2.5 CyberLink Power2Go D3DX10 Dacia Media Nav Toolbox Dropbox Dropbox Update Helper FileASSASSIN FileZilla Client 3.8.0 Fotogalerie Galerie de photos GIMP 2.8.10 GNU Solfege 3.22.2 Google Chrome Google Earth Google Update Helper HD Tune 2.55 iCloud Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel© Trusted Connect Service Client Interlinear Scripture Analyzer 2 basic iTunes Java 8 Update 101 Java Auto Updater Maxx Audio Installer (x64) McAfee Security Scan Plus Microsoft Application Error Reporting Microsoft Office 365 - nl-nl Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 MiniTool Partition Recovery 5.0 MiniTool Power Data Recovery Free Edition 7.0 Movie Maker MozBackup 1.5.1 Mozilla Maintenance Service Mozilla Thunderbird 45.2.0 (x86 nl) MSVCRT MSVCRT110 MSVCRT110_amd64 Musicnotes Player V1.32.2 and Viewer V1.19.0 MyBitCast 2.0 Naviextras Toolbox Prerequesities Office 16 Click-to-Run Extensibility Component Office 16 Click-to-Run Licensing Component Office 16 Click-to-Run Localization Component Online Bijbel 12.40 OpenOffice 4.1.2 Peggle Penguins Photo Common Photo Gallery Qualcomm Atheros Client Installation Program QuickTime 7 Raccolta foto Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Realtek PCIE Card Reader SceneSwitch Shared C Run-time for x64 Skype Meetings App SkypeT 7.26 SpeedFan (remove only) Stuurprogrammapakket voor Windows - Fedict SmartCard (08/08/2015 4.1.5) SubMagic V0.71 Tales of Lagoona TomTom MyDrive Connect 4.1.1.2797 TSP_CODEC Unlocker 1.9.2 Update Installer for WildTangent Games App Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables Visual Studio C++ 10.0 Runtime WildTangent Games Windows-stuurprogrammapakket - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) Windows Driver Package - ASUS (ATP) Mouse (09/17/2013 1.0.0.186) Windows Live Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack WinFlash Wise Care 365 4.24 Wise Force Deleter 1.23 XAMPP ==== Running Processes ====================== C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe C:\Program Files (x86)\ASUS\Splendid\ACMON.exe C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe C:\Users\Marco\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Users\Marco\AppData\Roaming\ACEStream\engine\ace_engine.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files (x86)\Dropbox\Client\Dropbox.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe C:\Users\Marco\AppData\Roaming\ACEStream\updater\ace_update.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\OpenOffice 4\program\scalc.exe C:\Program Files (x86)\OpenOffice 4\program\soffice.exe C:\Program Files (x86)\OpenOffice 4\program\soffice.bin C:\Program Files (x86)\ConTEXT\ConTEXT.exe C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe C:\Users\Marco\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\MiniTool Partition Recovery 5.0 deleted C:\PROGRA~2\PassShow-soft deleted C:\PROGRA~2\AVG Security Toolbar deleted C:\PROGRA~3\SetStretch.VBS deleted C:\PROGRA~3\Avg_Update_1114tb deleted C:\PROGRA~3\Avg_Update_1214tb deleted C:\PROGRA~3\AVG Security Toolbar deleted C:\PROGRA~3\InstallMate deleted C:\Users\Marco\AppData\Local\Babylon deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted "C:\Users\Marco\AppData\Roaming\.ACEStream\playlist\system.db" not deleted "C:\Users\Marco\AppData\Roaming\.ACEStream" not deleted "C:\Users\Marco\AppData\Roaming\.ACEStream\playlist" not deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 6030 MB CPU Info: Intel(R) Core(TM) i5-3337U CPU @ 1.80GHz CPU Speed: 1827,6 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 Monitors: 2x; Generic PnP Monitor | Generic PnP Monitor | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller | Qualcomm Atheros AR9485 Wireless Network Adapter | Microsoft Wi-Fi Direct Virtual Adapter CD / DVD Drives: 1x (E: | ) E: SlimtypeDVD A DA8A5SH Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 3 Button Wheel Mouse Present Hard Disks: C: 185,5GB | D: 258,3GB Hard Disks - Free: C: 102,6GB | D: 232,4GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | _ASUS_ - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: ASUSTeK COMPUTER INC. X550CA Country: Nederland Language: NLD ==== System Specs (Software) ====================== Default Browser: Google Chrome 52.0.2743.116 Internet Explorer Version: 11.545.10586.0 Google Chrome version: 52.0.2743.116 Adobe Reader version: 15.17.20050.192152 Sun Java version: 1.8.0_101 (32-bit) Sun Java version: 1.8.0_101 (64-bit) Flash Player version: 22.0.0.209 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Marco\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2016-08-27 08:10:10 C7F8818F8F064B8634DF99F374331A94 370728 ----a-w- C:\WINDOWS\Sysnative\FNTCACHE.DAT ====== C:\WINDOWS\Sysnative\drivers ===== 2016-08-10 09:33:05 C2138FE291C8235C3A26CD04EE629163 161632 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecpkg.sys 2016-08-10 09:33:05 570BA8E8E1E3064A7D92F862B7F59B60 604928 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2016-08-10 09:32:57 E5EF652F8C880EC48A4E827698416338 1988448 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2016-08-10 09:32:56 E61E8025B3FC30906B9BFF0E1602B1E8 576864 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2016-08-10 09:32:53 97269D0CF0C275A7DF5BFCA6692CC8B8 393056 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2016-08-10 09:32:51 34DDBE73E42A4EDED7BEFF66F270C1A4 99680 ----a-w- C:\WINDOWS\Sysnative\drivers\pdc.sys 2016-08-10 09:32:47 3F89E96BDA0A24A3D2DBB7CE1E625589 331616 ----a-w- C:\WINDOWS\Sysnative\drivers\pci.sys 2016-08-10 09:32:46 FAEBE339AB36831B77DC8F3B81DEDF75 465248 ----a-w- C:\WINDOWS\Sysnative\drivers\storport.sys 2016-08-10 09:32:12 1BB74617AE07539EC7C31C93F98644C7 422744 ----a-w- C:\WINDOWS\Sysnative\drivers\rdbss.sys ====== C:\WINDOWS\Tasks ====== 2016-08-16 09:08:27 8E6A46AFC7B0901AD17A28FD8223275E 3324 ----a-w- C:\WINDOWS\Sysnative\Tasks\OneDrive Standalone Update Task 2016-07-31 21:52:47 2D4599678A36E8CEA60ADF754F0E8A8B 3628 ----a-w- C:\WINDOWS\Sysnative\Tasks\ASUS Smart Gesture Launcher ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-08-29 07:25:21 -------- d-----w- C:\Program Files\trend micro 2016-08-04 09:25:20 -------- d---a-w- C:\Program Files\iTunes 2016-08-04 09:25:20 -------- d-----w- C:\Program Files\iPod ======= C:\PROGRA~2 ===== 2016-08-27 07:32:58 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2016-08-05 08:26:56 -------- d-----w- C:\PROGRA~2\SpeedFan 2016-08-04 09:25:21 -------- d-----w- C:\PROGRA~2\iTunes 2016-08-01 07:57:26 -------- d---a-w- C:\PROGRA~2\COMMON~1\DESIGNER ======= C: ===== ====== C:\Users\Marco\AppData\Roaming ====== 2016-08-27 08:09:07 655C6CE1F19ED23E10B357197B715496 206776 ----a-w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat 2016-08-05 08:26:57 -------- d-----w- C:\Users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan ====== C:\Users\Marco ====== 2016-08-29 08:49:28 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Marco\Desktop\RSITx64 (1).exe 2016-08-29 07:24:56 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Marco\Desktop\RSITx64.exe 2016-08-27 07:34:01 DB580074B2EC48F80147972D21F003E0 7943720 ----a-w- C:\Users\Marco\Desktop\WiseCare365 (2).exe 2016-08-24 19:40:23 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-08-04 09:25:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2016-08-01 06:31:03 -------- d-----w- C:\ProgramData\ASUS Smart Gesture ====== C: exe-files == 2016-08-29 11:57:12 4E95AB8BEB2C8FD53B348EF4AD5121C5 149184 ----a-w- C:\Users\Marco\AppData\Local\Temp\83F2DC86-371E-4D14-947C-D79D5344E0FC\DismHost.exe 2016-08-29 08:49:28 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Marco\Desktop\RSITx64 (1).exe 2016-08-29 07:25:22 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Marco.exe 2016-08-29 07:24:56 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Marco\Desktop\RSITx64.exe 2016-08-27 09:15:43 4E95AB8BEB2C8FD53B348EF4AD5121C5 149184 ----a-w- C:\Users\Marco\AppData\Local\Temp\D7B9B1E5-68C4-46C1-9531-B31BA7D46767\DismHost.exe 2016-08-27 08:34:35 6BF9CBE2A4A0722D636D4BFED559025E 1583096 ----a-w- C:\Users\Marco\AppData\Local\Google\Chrome\User Data\SwReporter\10.66.3\software_reporter_tool.exe 2016-08-27 07:35:36 68A0D079F52386BF34594C10C99F2325 1195936 ----a-w- C:\Program Files (x86)\Wise\Wise Care 365\unins000.exe 2016-08-27 07:34:01 DB580074B2EC48F80147972D21F003E0 7943720 ----a-w- C:\Users\Marco\Desktop\WiseCare365 (2).exe 2016-08-27 07:32:42 F8211DB97BF852C3292C3E9C710C19D9 269888 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\javaws.exe 2016-08-27 07:32:42 F434A8AC7F1C8C0E2587B9A9F30E397B 52800 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssvagent.exe 2016-08-27 07:32:42 ED3F3D8E4C382BF8095B9DE217511E29 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\policytool.exe 2016-08-27 07:32:42 E9AA62B1696145A08D223E7190785E25 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\pack200.exe 2016-08-27 07:32:42 E3E51A21B00CDDE757E4247257AA7891 191040 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\java.exe 2016-08-27 07:32:42 CF2F023D2B5F0BFB2ECF8AEEA7C51481 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\java-rmi.exe 2016-08-27 07:32:42 CA17B8CBD623477C5D1D334B79890225 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\klist.exe 2016-08-27 07:32:42 C2A59C7343D370BC57765896490331E5 70208 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\javacpl.exe 2016-08-27 07:32:42 C15F0FE651B05F4288CBC3672F6DC3CE 159296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\unpack200.exe 2016-08-27 07:32:42 B4AD335E868693F009B7644E2ED555C1 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\ktab.exe 2016-08-27 07:32:42 9A4CF09834F086568DF469E3F670BF07 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\keytool.exe 2016-08-27 07:32:42 7DA6AA3CC4763C6F9C20B43E6C9A9547 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\orbd.exe 2016-08-27 07:32:42 7624A9B769CDCF3A75FE5A9FEAADD61F 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\tnameserv.exe 2016-08-27 07:32:42 5F85F7F2DFAC397D642834B61809240F 82496 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2launcher.exe 2016-08-27 07:32:42 530D5597E565654D378F3C87654CCABA 30784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\jabswitch.exe 2016-08-27 07:32:42 4F11D43AA2215CE771DA528878F01C8E 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\jjs.exe 2016-08-27 07:32:42 4DE6BFE6EA98BC42A5358ED8307107B2 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\kinit.exe 2016-08-27 07:32:42 48C96771106DBDD5D42BBA3772E4B414 191552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\javaw.exe 2016-08-27 07:32:42 43C1D1D0E248604CB3B643C0BDF4EC9A 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\servertool.exe 2016-08-27 07:32:42 31C0CED43A07A2DFF3AFC557EBABBE0F 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\rmiregistry.exe 2016-08-27 07:32:42 12B6E1C3205A8B17AC20E00A889DFC43 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\bin\rmid.exe 2016-08-24 19:40:05 F5461BC7A9031C6E9DA37A50D2ED79AD 23889496 ----a-w- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe 2016-08-24 19:40:05 CD2441A8669DAFCF63884BC087F35526 25200 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbxsvc.exe 2016-08-24 19:40:05 9FF67D9D1C4F5E87381586D812C6BF8F 173288 ----a-w- C:\Program Files (x86)\Dropbox\Client\DropboxUninstaller.exe 2016-08-24 19:40:05 06D550C2767DBC288F2D1AD7C55AC057 25712 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbxsvc.exe 2016-08-24 19:38:57 6EE4A53055928E7836F6822D89A41839 69021240 ----a-w- C:\Program Files (x86)\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\8.4.21\DropboxClient_8.4.21.exe === C: other files == 2016-08-27 07:32:42 91052ADB799AEF68EA76931997C40CE4 14156 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_101\lib\deploy\ffjcext.zip 2016-08-24 19:40:05 D54A14EF632698CEB089654B5394F929 63600 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-canary.sys 2016-08-24 19:40:05 653F4F0B5A25F3147621FD88A3F1F481 64112 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-dev.sys 2016-08-24 19:40:05 602534C6AF65E07ACD260AFA55D89D0F 52848 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-stable.sys 2016-08-24 19:40:05 5A83DA46A3C55A0756230C8A02CA8696 63088 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-stable.sys 2016-08-24 19:40:05 03316C2B560AF4ECAAEB5AA5EE9F7C95 55408 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-dev.sys 2016-08-24 19:40:05 006F32093B0FF58A3839FF84288A2DE1 53360 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-canary.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-3000434625-2727981046-3562732110-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Power2GoExpress"="C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe" "MyDriveConnect.exe"="C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "OneDrive"="C:\Users\Marco\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "AceStream"="C:\Users\Marco\AppData\Roaming\ACEStream\engine\ace_engine.exe" [HKEY_USERS\S-1-5-21-3000434625-2727981046-3562732110-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\Marco\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Marco\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ASUSPRP"="C:\Program Files (x86)\ASUS\APRP\APRP.EXE" "ASUSWebStorage"="C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe /S" "RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "CLMLServer"="C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "Dropbox"="C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Power2GoExpress"="C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe" "MyDriveConnect.exe"="C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "OneDrive"="C:\Users\Marco\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "AceStream"="C:\Users\Marco\AppData\Roaming\ACEStream\engine\ace_engine.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\Marco\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Marco\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3" "XeroxEndeavorBackgroundTask"="rundll32.exe xrWCbgnd.dll,LaunchBgTask 1" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\PROGRA~2\\Linkey\\IEEXTE~1\\iedlC:\\PROGRA" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [13-07-2016 12:04] C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [24-06-2016 12:32] C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [24-06-2016 12:32] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31-08-2015 14:21] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\Wise Care 365.job --a-------- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [26-08-2016 15:38] C:\WINDOWS\tasks\Wise Turbo Checker.job --a-------- [Undetermined Task] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\WINDOWS\SysNative\tasks\ASUS Smart Gesture Launcher" [C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe] "C:\WINDOWS\SysNative\tasks\ASUS Splendid ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe] "C:\WINDOWS\SysNative\tasks\ASUS Splendid ColorU" [C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe] "C:\WINDOWS\SysNative\tasks\ASUS USB Charger Plus" ["C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"] "C:\WINDOWS\SysNative\tasks\AsusVibeSchedule" ["C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe"] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineCore" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe] "C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskMachineUA" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\OneDrive Standalone Update Task" [C:\Users\Marco\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{B930E11B-3D92-418C-A474-9889ADA7BB31}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\Wise Care 365" [C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe] "C:\WINDOWS\SysNative\tasks\Wise Care 365.job" [C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe] "C:\WINDOWS\SysNative\tasks\Wise Turbo Checker" [C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe] "C:\WINDOWS\SysNative\tasks\Wise Turbo Checker.job" [C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe] "C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\WINDOWS\SysNative\tasks\WiseCleaner\WFDSkipUAC" [C:\Program Files (x86)\Wise\Wise Force Deleter\WiseDeleter.exe] ==== Firefox Extensions Registry ====================== [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "acewebextension_unlisted@acestream.org"="C:\Users\Marco\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi" [18-12-2015 16:18] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Marco\AppData\Local\Thunderbird\Profiles\xfncs9a9.default - Identity Chooser - %ProfilePath%\extensions\identitychooser@janek.org.xpi - CompactHeader - %ProfilePath%\extensions\{58D4392A-842E-11DE-B51A-C7B855D89593}.xpi ProfilePath: C:\Users\Marco\AppData\Roaming\Thunderbird\Profiles\czfduq7i.default - Lightning - %ProfilePath%\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103} - Identity Chooser - %ProfilePath%\extensions\identitychooser@janek.org.xpi - CompactHeader - %ProfilePath%\extensions\{58D4392A-842E-11DE-B51A-C7B855D89593}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be ==== Firefox Plugins ====================== ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions mjbepbhonbojpoaenhckjocchgfiaofo - No path found[] Google Docs - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Web of Trust - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp eID Chrome Extension - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc YouTube - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf IBA Opt-out (by Google) - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb Allin1Convert - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl Google Docs Offline - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi TinEye Reverse Image Search - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl Any.do Extension - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdadialhpiikehpdeejjeiikopddkjem Ghostery - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij Chrome Web Store Payments - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Personal Blocklist (by Google) - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nolijncfnkgaikbjbdaogikpmpbdcdef Gmail - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Chrome Media Router - Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm ==== Chromium Fix ====================== C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_ad.360yield.com_0.localstorage deleted successfully C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adsoftheworld.com_0.localstorage deleted successfully C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl deleted successfully C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gcncagkkhfoombgbihckkccmkjemhohl_0.localstorage deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://mysearch.avg.com?cid={F1CD07C6-DBFE-4CA5-BC24-FB78BF9B22E9}&mid=2b01ec0ffd3c47d29dc16da73dc306de-750fcd9060b9e706c71e84bf074686de104de730&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0915tb&pr=pr&d=2014-08-31 14:07:54&v=18.9.0.231&pid=safeguard&sg=&sap=hp" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASU2JS HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-3000434625-2727981046-3562732110-1001\SOFTWARE\Mozilla\Firefox\Extensions\{BD4ACD0E-3854-3C2A-20FC-BC9B823C8DED} deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE" O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe /S O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Power2GoExpress] "C:\Program Files (x86)\CyberLink\Power2Go\Power2GoExpress.exe" O4 - HKCU\..\Run: [MyDriveConnect.exe] C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [OneDrive] "C:\Users\Marco\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [AceStream] C:\Users\Marco\AppData\Roaming\ACEStream\engine\ace_engine.exe O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Marco\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Marco\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64" O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe O23 - Service: Asus WebStorage Windows Service - Unknown owner - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: Dropbox-update-service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe O23 - Service: Dropbox-update-service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.376\McCHSvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Marco\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Marco\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Marco\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Marco\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=276 folders=108 28995961 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Marco\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Marco\AppData\Roaming\.ACEStream\playlist\system.db" not found "C:\Users\Marco\AppData\Roaming\.ACEStream" not found ==== EOF on ma 29-08-2016 at 14:26:59,66 ======================