Zoek.exe v5.0.0.1 Updated 19-September-2016 Tool run by Donckers on do 24-11-2016 at 11:55:49,24. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Donckers\Desktop\zoek(1).exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2014-10-23-104742.log 25948 bytes ==== Empty Folders Check ====================== C:\Program Files\BSR Screen Recorder 6 deleted successfully C:\Users\Donckers\AppData\Roaming\Curse Advertising deleted successfully C:\Users\Donckers\AppData\Local\DriverToolkit deleted successfully C:\Users\Public\AppData\Local\Bulents deleted successfully ==== Installed Programs ====================== Adobe Digital Editions 4.5 Adobe Flash Player 23 NPAPI Adobe Reader X (10.1.16) - Nederlands Adobe Refresh Manager AMD Catalyst Control Center AMD Catalyst Install Manager AMD Fuel Ashampoo Burning Studio FREE v.1.14.5 Battle.net BitTorrent BlackBerry Desktop Software 7.1 BlackBerry World Browser Plugin Brother MFL-Pro Suite DCP-195C Catalyst Control Center - Branding Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner CDisplayEx 1.10.29 Core Temp 1.0 RC6 Curse Client Debut Video Capture Software Definition Update for Microsoft Office 2010 (KB3115321) 32-Bit Edition DriverToolkit version 8.5.0.0 ePub Converter version 3.17 eSupport UndeletePlus 3.0.5.506 Express Burn Disc Burning Software f.lux Futuremark SystemInfo GEAR 32bit Driver Installer Google Chrome Google Drive Google Update Helper HD Tune 2.55 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) IMG to ISO Malwarebytes Anti-Malware versie 2.2.1.1043 Microsoft .NET Framework 3.5 Language Pack SP1 - nld Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.5.2 (Nederlands) Microsoft .NET Framework 4.5.2 (NLD) Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Security Client Microsoft Security Essentials Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - NLD MiniTool Partition Wizard Free 9.1 MixMeister Fusion + Video 7.3.2 Mozilla Firefox 50.0 (x86 nl) Mozilla Maintenance Service MSXML 4.0 SP2 (KB927978) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) NVIDIA PhysX PaperPort Image Printer Recuva ScanSoft PaperPort 11 Secure Download Manager Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697) Security Update for Microsoft .NET Framework 4.5.2 (KB3023224) Security Update for Microsoft .NET Framework 4.5.2 (KB3035490) Security Update for Microsoft .NET Framework 4.5.2 (KB3037581) Security Update for Microsoft .NET Framework 4.5.2 (KB3048077) Security Update for Microsoft .NET Framework 4.5.2 (KB3072310) Security Update for Microsoft .NET Framework 4.5.2 (KB3074230) Security Update for Microsoft .NET Framework 4.5.2 (KB3074550) Security Update for Microsoft .NET Framework 4.5.2 (KB3097996) Security Update for Microsoft .NET Framework 4.5.2 (KB3098781) Security Update for Microsoft .NET Framework 4.5.2 (KB3099869) Security Update for Microsoft .NET Framework 4.5.2 (KB3122656) Security Update for Microsoft .NET Framework 4.5.2 (KB3127229) Security Update for Microsoft .NET Framework 4.5.2 (KB3135996) Security Update for Microsoft .NET Framework 4.5.2 (KB3135996v2) Security Update for Microsoft .NET Framework 4.5.2 (KB3142033) Security Update for Microsoft .NET Framework 4.5.2 (KB3163251) Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition Security Update for Microsoft Excel 2010 (KB3115322) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB3114414) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881029) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956063) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3054984) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085528) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition Security Update for Microsoft Office 2010 (KB3101520) 32-Bit Edition Security Update for Microsoft Outlook 2010 (KB3115246) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB3115118) 32-Bit Edition Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition Security Update for Microsoft Visio 2010 (KB3114872) 32-Bit Edition Security Update for Microsoft Visio Viewer 2010 (KB2999465) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition Security Update for Microsoft Word 2010 (KB3115317) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition Speccy Steam SUPERAntiSpyware Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - NLD Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2999508) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition Update for Microsoft Office 2010 (KB2881030) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition Update for Microsoft Office 2010 (KB3054977) 32-Bit Edition Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition Update for Microsoft Office 2010 (KB3114555) 32-Bit Edition Update for Microsoft Office 2010 (KB3114750) 32-Bit Edition Update for Microsoft Office 2010 (KB3114989) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition Update for Microsoft OneNote 2010 (KB3114410) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2760779) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3114756) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition VLC media player 2.1.3 vReveal 3 Warcraft III WhoCrashed 5.02 Winamp WinRAR 5.01 (32-bit) Xvid Video Codec ==== Running Processes ====================== C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\system32\atiesrxx.exe C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\SLsvc.exe C:\Windows\system32\atieclxx.exe C:\Windows\system32\Dwm.exe C:\Windows\System32\spoolsv.exe C:\Windows\Explorer.EXE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\System32\WUDFHost.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Windows\system32\taskeng.exe C:\Program Files\Google\Update\1.3.31.5\GoogleCrashHandler.exe C:\Program Files\DriverToolkit\DriverToolkit.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe C:\Program Files\Brother\ControlCenter3\brccMCtl.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Google\Drive\googledrivesync.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Users\Donckers\AppData\Local\FluxSoftware\Flux\flux.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe C:\Users\Donckers\AppData\Local\Apps\2.0\G3QYWMD0.Z4W\M8KZYPGX.0JN\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\CurseClient.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Windows\system32\conime.exe C:\Program Files\Google\Drive\googledrivesync.exe C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE C:\Windows\system32\wbem\wmiprvse.exe C:\Users\Donckers\Desktop\zoek(1).exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k SDRSVC ==== Registry Search Results for "AODDriver" ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC1007AA3831D6044837AF470D0A44E3] "429E14CF0FA93DB8D20B6A8826A84F47"="C?\\Program Files\\ATI Technologies\\ATI.ACE\\Fuel\\i386\\aoddriver2.sys" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "C:\\Program Files\\ATI Technologies\\ATI.ACE\\Fuel\\i386\\aoddriver2.sys"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AODDRIVER4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "Service"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "DeviceDesc"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AODDriver4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AODDriver4.2.0] "DisplayName"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AODDriver4.3] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AODDriver4.3] "DisplayName"="AODDriver4.3" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "Service"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "DeviceDesc"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000\Control] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000\Control] "ActiveService"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.2.0] "DisplayName"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.2.0\Enum] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.2.0\Enum] "0"="Root\\LEGACY_AODDRIVER4.2.0\\0000" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.3] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.3] "DisplayName"="AODDriver4.3" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AODDRIVER4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "Service"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "DeviceDesc"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\AODDriver4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\AODDriver4.2.0] "DisplayName"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\AODDriver4.3] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\AODDriver4.3] "DisplayName"="AODDriver4.3" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "Service"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "DeviceDesc"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000\Control] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000\Control] "ActiveService"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.2.0] "DisplayName"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.2.0\Enum] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.2.0\Enum] "0"="Root\\LEGACY_AODDRIVER4.2.0\\0000" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.3] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.3] "DisplayName"="AODDriver4.3" [HKEY_USERS\S-1-5-21-4244574384-3522590807-510949372-1000\Software\Innovative Solutions\DriverMax\Dump\74] "Desc"="AODDriver4.2.0" ==== Registry Search Results for "AODDriver" ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC1007AA3831D6044837AF470D0A44E3] "429E14CF0FA93DB8D20B6A8826A84F47"="C?\\Program Files\\ATI Technologies\\ATI.ACE\\Fuel\\i386\\aoddriver2.sys" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs] "C:\\Program Files\\ATI Technologies\\ATI.ACE\\Fuel\\i386\\aoddriver2.sys"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AODDRIVER4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "Service"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "DeviceDesc"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AODDriver4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AODDriver4.2.0] "DisplayName"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AODDriver4.3] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AODDriver4.3] "DisplayName"="AODDriver4.3" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "Service"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "DeviceDesc"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000\Control] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_AODDRIVER4.2.0\0000\Control] "ActiveService"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.2.0] "DisplayName"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.2.0\Enum] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.2.0\Enum] "0"="Root\\LEGACY_AODDRIVER4.2.0\\0000" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.3] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AODDriver4.3] "DisplayName"="AODDriver4.3" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AODDRIVER4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "Service"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "DeviceDesc"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\AODDriver4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\AODDriver4.2.0] "DisplayName"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\AODDriver4.3] [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\AODDriver4.3] "DisplayName"="AODDriver4.3" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "Service"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000] "DeviceDesc"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000\Control] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AODDRIVER4.2.0\0000\Control] "ActiveService"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.2.0] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.2.0] "DisplayName"="AODDriver4.2.0" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.2.0\Enum] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.2.0\Enum] "0"="Root\\LEGACY_AODDRIVER4.2.0\\0000" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.3] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AODDriver4.3] "DisplayName"="AODDriver4.3" [HKEY_USERS\S-1-5-21-4244574384-3522590807-510949372-1000\Software\Innovative Solutions\DriverMax\Dump\74] "Desc"="AODDriver4.2.0" ==== System Specs ====================== Operating System: Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 32-bits Manufacturer: System manufacturer - Model: System Product Name Install Date: 9-5-2014 16:21:21 Last Boot: 24-11-2016 8:19:23 Processor: AMD Phenom(tm) 9950 Quad-Core Processor Number of Processors: 4 Work Station Bootmode: Normal boot Total RAM: 3326 MB ( - 0) Computername: PC_VAN_DONCKERS Domain: WORKGROUP User: Donckers (Administrator account) Removable Disk: A:\ - - GB (free GB) Local Disk: C:\ - NTFS - 439 GB (free 319 GB) Local Disk: D:\ - NTFS - 492 GB (free 65 GB) CD \ DVD Drive: E:\ Removable Disk: F:\ - - GB (free GB) Removable Disk: H:\ - - GB (free GB) Removable Disk: I:\ - - GB (free GB) Removable Disk: J:\ - - GB (free GB) Removable Disk: K:\ - - GB (free GB) Bootdevice: \Device\HarddiskVolume1 Windows update: 2016-10-01 08:54:47 Country: Nederland Language: NLD ==== System Specs (Software) ====================== AV: Microsoft Security Essentials *Disabled/Updated* {768124D7-F5F7-6D2F-DDC2-94DFA4017C95} SP: Microsoft Security Essentials *Disabled/Updated* {CDE0C533-D3CD-62A1-E772-AFADDF863628} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} Default Browser: Firefox 50.0 Internet Explorer Version: 9.0.8112.16421 Mozilla Firefox version: 50.0 (x86 nl) Google Chrome version: 49.0.2623.112 Adobe Reader version: 10.1.16.13 Flash Player version: 23.0.0.207 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Donckers\AppData\Local\Temp ==== 2016-11-22 08:03:17 4CB48768D948C6A3449C0731E3232CB4 15572752 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-50d19dd3.exe 2016-11-22 07:51:54 63CFBCA02B4414ABCB64A5FE467AED02 9834504 ----a-w- C:\Users\Donckers\AppData\Local\temp\3d89df9a-6806-434b-8e43-4409bd608233\mpengine.dll 2016-11-21 11:59:10 !HASH: COULD NOT OPEN FILE !!!!! 9834504 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\4a032bc3-4e5d-48b0-a88c-80d45659e058\mpengine.dll 2016-11-21 11:58:43 DFB0C1D0EE7EF45D2117A13DFADDFC38 15271704 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-551cbe3f.exe 2016-11-20 17:27:30 37E6FDA064FADF0D15466186A04907B6 14979864 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-6f8364ad.exe 2016-11-20 14:15:49 FF644ABE4BF2389EBEF3E63D13D21076 14943512 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-887b20a7.exe 2016-11-16 13:35:40 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-bba17445.exe 2016-11-15 19:29:30 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-7e5c662c.exe 2016-11-15 11:18:30 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-fbdd6879.exe 2016-11-14 18:59:57 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-4a3811a6.exe 2016-11-14 12:05:36 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-e5062884.exe 2016-11-13 19:36:55 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-88cf387e.exe 2016-11-13 14:10:29 8F53B04ABC4BEB64496CD24A20397CAB 2818048 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-8708e5d5.exe 2016-11-13 13:55:50 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-c3e69b14.exe 2016-11-12 18:27:13 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-4453d3c8.exe 2016-11-11 18:09:28 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-60bc8264.exe 2016-11-11 07:30:19 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-1b2bde5a.exe 2016-11-10 19:04:22 C23760A267D0AB4F4571837A362E1BFF 2269184 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-b47a1162.exe 2016-11-10 12:17:27 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\mpam-8f3accb1.exe ====== Java Cache ===== ====== C:\Windows\system32 ===== ====== C:\Windows\system32\drivers ===== ====== C:\Windows\Tasks ====== 2016-11-04 16:33:03 0A9A96743A0B6CFB441F0C1EB60FE6BD 3130 ----a-w- C:\Windows\system32\Tasks\{B22C18A4-42E5-43D8-B452-F00467F3AB93} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2016-11-07 11:18:08 -------- d-----w- C:\Program Files\IMG to ISO 2016-11-03 14:38:28 -------- d-----w- C:\Program Files\MiniTool Partition Wizard Free 9.1 ======= C: ===== ====== C:\Users\Donckers\AppData\Roaming ====== 2016-11-16 16:31:34 -------- d-----w- C:\Users\Donckers\AppData\Locallow\Mozilla 2016-11-04 16:32:28 -------- d-----w- C:\Users\Donckers\AppData\Roaming\Nero ====== C:\Users\Donckers ====== 2016-11-07 11:18:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IMG to ISO 2016-11-07 11:12:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Related Programs 2016-11-03 14:38:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Free 9.1 ====== C: exe-files == 2016-11-22 08:03:17 4CB48768D948C6A3449C0731E3232CB4 15572752 ----a-w- C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-50d19dd3.exe 2016-11-21 11:58:43 DFB0C1D0EE7EF45D2117A13DFADDFC38 15271704 ----a-w- C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-551cbe3f.exe 2016-11-20 17:27:30 37E6FDA064FADF0D15466186A04907B6 14979864 ----a-w- C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-6f8364ad.exe 2016-11-20 14:15:49 FF644ABE4BF2389EBEF3E63D13D21076 14943512 ----a-w- C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-887b20a7.exe === C: other files == 2016-11-24 07:21:41 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-r- C:\Users\Donckers\AppData\Local\temp\_MEI38562\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2016-11-24 07:21:40 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-r- C:\Users\Donckers\AppData\Local\temp\_MEI38562\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2016-11-18 06:44:03 116D9D4BEAA0D3F353D3ED8CEC7AD3F7 656040703 ----a-r- C:\Users\Donckers\AppData\Local\temp\Metabolic+Cooking+Package+PDF.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-4244574384-3522590807-510949372-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Xvid"="C:\Program Files\Xvid\CheckUpdate.exe" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "GoogleDriveSync"="C:\Program Files\Google\Drive\googledrivesync.exe /autostart" "f.lux"="C:\Users\Donckers\AppData\Local\FluxSoftware\Flux\flux.exe /noshow" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "WinampAgent"="C:\Program Files\Winamp\winampa.exe" "SSBkgdUpdate"="C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot" "PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" "IndexSearch"="C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" "PPort11reminder"="C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe -r C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini" "BrMfcWnd"="C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN" "ControlCenter3"="C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun" "RIMBBLaunchAgent.exe"="C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" "StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe MSRun" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Xvid"="C:\Program Files\Xvid\CheckUpdate.exe" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "GoogleDriveSync"="C:\Program Files\Google\Drive\googledrivesync.exe /autostart" "f.lux"="C:\Users\Donckers\AppData\Local\FluxSoftware\Flux\flux.exe /noshow" ==== Startup Folders ====================== 2014-11-23 20:23:52 0 ----a-w- C:\Users\Donckers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [08-11-2016 10:26] C:\Windows\tasks\DriverToolkit Autorun.job --a------ C:\Program Files\DriverToolkit\DriverToolkit.exe [01-07-2015 13:15] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [27-04-2016 10:43] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [27-04-2016 10:43] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Acrobat Update Task" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\DriverMaxWelcome" [C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe] "C:\Windows\system32\tasks\DriverToolkit Autorun" [C:\Program Files\DriverToolkit\DriverToolkit.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\Donckers\AppData\Roaming\Mozilla\Firefox\Profiles\fbg7q48v.default user_pref("browser.startup.homepage", "http://www.google.nl/"); user_pref("browser.newtab.url", "about:newtab"); ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [21-05-2014 19:48] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Donckers\AppData\Roaming\Mozilla\Firefox\Profiles\fbg7q48v.default - 1-Click YouTube Video Downloader - %ProfilePath%\extensions\YoutubeDownloader@PeterOlayev.com.xpi - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files\Mozilla Firefox - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Donckers\AppData\Roaming\Mozilla\Firefox\Profiles\fbg7q48v.default F169116C1BA501AB4D0D66D41FF496B5 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat FC5D7AF1FC3A63782E19B375E2312D1C - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat 0CA4180B21C6B728578F3B0433BB740E - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin 3EE8AE0ECFE5D79DE1737A855AD1E84C - C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll - Google Update 25FA8C3B9789A26CA7D61C8E9B4EA799 - C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll - RIM Handheld Application Loader 24F0772AD0C76B7CF25B36224D64230B - C:\Program Files\Research In Motion Limited\BlackBerry World Browser Plugin\npappworld.dll - BlackBerry AppWorld AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation 83FCFA3C1E0D7523C21CCFBF336D2687 - C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_207.dll - Shockwave Flash ==== Chromium Look ====================== HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[] Google Docs - Donckers\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Donckers\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Donckers\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Sheets - Donckers\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - Donckers\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Google Drive App Launcher - Donckers\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh Chrome Web Store Payments - Donckers\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Donckers\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== IE Start and Search Settings ====================== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== HijackThis Entries ====================== O1 - Hosts: ::1 localhost O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini" O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun O4 - HKCU\..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart O4 - HKCU\..\Run: [f.lux] "C:\Users\Donckers\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow O4 - Startup: CurseClientStartup.ccip O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: BlackBerry Device Manager (Blackberry Device Manager) - Research In Motion Limited - C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files\Futuremark\SystemInfo\FMSISvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe ==== C:\zoek_backup content ====================== C:\zoek_backup (files=7 folders=8 6733250 bytes) ==== EOF on do 24-11-2016 at 12:07:13,41 ======================