Zoek.exe v5.0.0.0 Updated 02-June-2014 Tool run by nicofused on vr 06/06/2014 at 16:26:30,71. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\nicofused\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\system32\FBAgent.exe C:\Windows\system32\WLANExt.exe C:\Windows\system32\conhost.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe C:\Program Files\Intel\WiFi\bin\EvtEng.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe C:\Program Files (x86)\Polar\Daemon\polard.exe C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\taskhost.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe C:\Program Files\ASUS\P4G\BatteryLife.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\ASUS\Splendid\ACMON.exe C:\Windows\SysWOW64\ACEngSvr.exe C:\Windows\AsScrPro.exe C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Elantech\ETDCtrl.exe C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe C:\Program Files\Elantech\ETDCtrlHelper.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files\Intel\TurboBoost\TurboBoost.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Windows\system32\taskhost.exe C:\Windows\System32\WUDFHost.exe C:\Program Files\Microsoft Office\Office15\WINWORD.EXE C:\Program Files\Waterfox\waterfox.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Users\nicofused\Desktop\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe ==== System Restore Info ====================== 6/06/2014 16:29:44 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\1ClickDownload deleted successfully C:\PROGRA~2\Downloads deleted successfully C:\PROGRA~2\DsNET Corp deleted successfully C:\PROGRA~2\Lavasoft deleted successfully C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\ParetoLogic deleted successfully C:\PROGRA~3\CanonEPP deleted successfully C:\PROGRA~3\CanonIJEPPEX2 deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\PROGRA~3\ParetoLogic deleted successfully C:\PROGRA~3\Reflection deleted successfully C:\PROGRA~3\Reflector deleted successfully C:\PROGRA~3\Tarma Installer deleted successfully C:\Users\nicofused\AppData\Roaming\Canon deleted successfully C:\Users\nicofused\AppData\Roaming\ParetoLogic deleted successfully C:\Users\nicofused\AppData\Roaming\shrink_pic deleted successfully C:\Users\nicofused\AppData\Local\Canon Easy-PhotoPrint EX deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-623152935-1559822560-3994372864-1001\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ocr@babylon.com deleted successfully ==== Installed Programs ====================== ???? ??? Windows Live ???? Windows Live ????? Windows Live ?????? ??????? ?? Windows Live ???????? ?????????? Windows Live \"Nero SoundTrax Help æTorrent Acid Rack 2.1a Adobe Bridge CC (64 Bit) Adobe DNG Codec Adobe Flash Player 13 ActiveX Adobe Flash Player 13 Plugin Adobe Photoshop CC Adobe Reader X (10.1.10) - Nederlands Adobe Update Management Tool Advertising Center ALCATEL PC Suite V6.3.28 Alcor Micro USB Card Reader AmoK Playlist Copy 2.06 Apple Application Support Apple Mobile Device Support Apple Software Update ASIO4ALL Asmedia ASM104x USB 3.0 Host Controller Driver ASUS AI Recovery ASUS FaceLogon ASUS LifeFrame3 ASUS Live Update ASUS Power4Gear Hybrid ASUS Sonic Focus ASUS Splendid Video Enhancement Technology ASUS Virtual Camera ASUS WebStorage AsusScr_K3 Series_ENG AsusVibe2.0 Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver ATK Package Audacity 2.0.5 AVS Video Converter 8 BayGenie eBay Auction Sniper Free Edition 3.3.6.0 Bonjour Bubbletown C100 TOOLS Canon Easy-PhotoPrint EX Canon iP4500 series Canon My Printer Canon Utilities Solution Menu CD-LabelPrint CopyTrans Control Center Alleen Verwijderen CouchPotato Cyberfox Web Browser CyberLink LabelPrint CyberLink Media Suite CyberLink Power2Go D3DX10 DAEMON Tools Lite Deadtime Stories Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition DolbyFiles Dream Day First Home Dream Vacation Solitaire ETDWare PS/2-X64 8.0.5.5_WHQL EZ-RC Farm Frenzy 3 - Madagascar Fast Boot Fotosizer 2.08 Free Studio version 2014 Galapago Galeria de Fotografias do Windows Live Galer¡a fotogr fica de Windows Live Galerie de photos Windows Live Game Park Console GetFLV 9.3.1.8 GForce - Minimonsta Glary Utilities 5.1 Go Go Gourmet Chef of the Year Google Drive Google Update Helper HijackThis 1.99.1 Image Data Converter ImagXpress InstantOn for NB Intel PROSet Wireless Intel(R) Control Center Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) PROSet/Wireless WiFi Software Intel© Turbo Boost Technologie monitor 2.6 Internet Explorer Toolbar 4.6 by SweetPacks iTunes Java 7 Update 51 Java 7 Update 55 (64-bit) Java Auto Updater JavaFX 2.1.1 Jawbone Updater Junk Mail filter update LAME v3.99.3 (for Windows) Live 8.1.1 Mahjong Memoirs Malwarebytes Anti-Malware versie 2.0.2.1012 Menu Templates - Starter Kit Mesh Runtime Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft Access MUI (Dutch) 2013 Microsoft Application Error Reporting Microsoft Camera Codec Pack Microsoft DCF MUI (Dutch) 2013 Microsoft Excel MUI (Dutch) 2013 Microsoft Groove MUI (Dutch) 2013 Microsoft InfoPath MUI (Dutch) 2013 Microsoft Lync MUI (Dutch) 2013 Microsoft Office 32-bit Components 2013 Microsoft Office Korrekturhilfen 2013 - Deutsch Microsoft Office OSM MUI (Dutch) 2013 Microsoft Office OSM UX MUI (Dutch) 2013 Microsoft Office Professional Plus 2013 Microsoft Office Proofing (Dutch) 2013 Microsoft Office Proofing Tools 2013 - English Microsoft Office Proofing Tools 2013 - Nederlands Microsoft Office Shared 32-bit MUI (Dutch) 2013 Microsoft Office Shared MUI (Dutch) 2013 Microsoft OneNote MUI (Dutch) 2013 Microsoft Outlook MUI (Dutch) 2013 Microsoft PowerPoint MUI (Dutch) 2013 Microsoft Publisher MUI (Dutch) 2013 Microsoft Security Client Microsoft Security Essentials Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Word MUI (Dutch) 2013 Microsoft Xbox 360 Accessories 1.2 Moodagent Movie Templates - Starter Kit Mozilla Firefox 17.0.1 (x86 nl) Mozilla Maintenance Service MSVCRT MSVCRT_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Native Instruments FM8 Native Instruments Service Center Nero 9 Nero Burning ROM Help Nero BurnRights Nero BurnRights Help Nero ControlCenter Nero CoverDesigner Nero CoverDesigner Help Nero DiscSpeed Nero DiscSpeed Help Nero DriveSpeed Nero DriveSpeed Help Nero Express Help Nero InfoTool Nero InfoTool Help Nero Installer Nero Live Nero Live Help Nero PhotoSnap Nero PhotoSnap Help Nero Recode Nero Recode Help Nero Rescue Agent Nero RescueAgent Help Nero ShowTime Nero StartSmart Nero StartSmart Help Nero Vision Nero Vision Help Nero WaveEditor Nero WaveEditor Help NeroBurningROM NeroExpress NeroLiveGadget NeroLiveGadget Help neroxml NewsLeecher v3.9 Final NVIDIA Control Panel 285.64 NVIDIA Graphics Driver 285.64 NVIDIA Install Application NVIDIA Optimus 1.5.20 NVIDIA Update Components Outils de v‚rification linguistique 2013 de Microsoft Officeÿ- Fran‡ais PDF Settings CC PIXMA Extended Survey Program Plants vs Zombies PokerStars.be Polar Daemon Polar ProTrainer Polar WebSync Python 2.7.6 (64-bit) Python 3.4.0 QuickPar 0.9 QuickTime Raccolta foto di Windows Live Realtek High Definition Audio Driver Reflector Replay Video Capture 5 S?????? f?t???af??? t?? Windows Live SABnzbd 0.7.17 SciLor's groovesharkT.com Downloader 0.4.9.8 Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft Office 2013 (KB2878316) 64-Bit Edition Security Update for Microsoft Office 2013 (KB2880463) 64-Bit Edition Security Update for Microsoft Word 2013 (KB2863910) 64-Bit Edition Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition Shrink Pic (remove) SoulseekQt SoundTrax Spotnet Spybot - Search & Destroy Studio Units version 1.1.1 Sublight TeamViewer 9 Tube8 Video Downloader 3.23 Turbo Fiesta Ubuntu Update for Microsoft Excel 2013 (KB2880475) 64-Bit Edition Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition Update for Microsoft Lync 2013 (KB2880980) 64-Bit Edition Update for Microsoft Office 2013 (KB2760344) 64-Bit Edition Update for Microsoft Office 2013 (KB2760544) 64-Bit Edition Update for Microsoft Office 2013 (KB2768012) 64-Bit Edition Update for Microsoft Office 2013 (KB2817302) 64-Bit Edition Update for Microsoft Office 2013 (KB2826040) 64-Bit Edition Update for Microsoft Office 2013 (KB2837644) 64-Bit Edition Update for Microsoft Office 2013 (KB2863825) 64-Bit Edition Update for Microsoft Office 2013 (KB2863843) 64-Bit Edition Update for Microsoft Office 2013 (KB2863844) 64-Bit Edition Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition Update for Microsoft Office 2013 (KB2880464) 64-Bit Edition Update for Microsoft Office 2013 (KB2880476) 64-Bit Edition Update for Microsoft Office 2013 (KB2880478) 64-Bit Edition Update for Microsoft Office 2013 (KB2880482) 64-Bit Edition Update for Microsoft OneDrive for Business (KB2880480) 64-Bit Edition Update for Microsoft OneNote 2013 (KB2817628) 64-Bit Edition Update for Microsoft Outlook 2013 (KB2880470) 64-Bit Edition Update for Microsoft PowerPoint 2013 (KB2878315) 64-Bit Edition Update for Microsoft Publisher 2013 (KB2726952) 64-Bit Edition Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition Update for Microsoft Word 2013 (KB2878319) 64-Bit Edition Visual Studio 2008 x64 Redistributables Visual Studio 2010 x64 Redistributables VLC media player 2.0.3 VLC media player 2.1.4 Vyzex MPK49 Waterfox 26.0 (x64 en-US) WD Drive Utilities WD Quick View WD Security WD SmartWare WD SmartWare Installer Winamp WinDirStat 1.1.2 Windows-stuurprogrammapakket - Intel (NETwLv64) net (10/07/2010 13.4.0.139) Windows Live ??? Windows Live ???? Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live Fotogalerie Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Windows Live Mesh Windows Live Messenger Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinFlash WinRAR 4.00 (64-bit) Wondershare Dr.Fone for iOS(Build 4.5.1.6) Wondershare PDF Converter Pro (Build 3.2.0) World of Goo ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\NICOFU~1\AppData\Roaming\Mozilla\Firefox\Profiles\vpbpra6c.default-1357235101793 ---- Lines BabylonToolbar removed from prefs.js ---- user_pref("extensions.BabylonToolbar.admin", false); user_pref("extensions.BabylonToolbar.aflt", "babsst"); user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}"); user_pref("extensions.BabylonToolbar.autoRvrt", "false"); user_pref("extensions.BabylonToolbar.dfltLng", "nl"); user_pref("extensions.BabylonToolbar.excTlbr", false); user_pref("extensions.BabylonToolbar.id", "60cd791200000000000078929c8399bd"); user_pref("extensions.BabylonToolbar.instlDay", "15715"); user_pref("extensions.BabylonToolbar.instlRef", "na"); user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar"); user_pref("extensions.BabylonToolbar.prtnrId", "babylon"); user_pref("extensions.BabylonToolbar.rvrt", "false"); user_pref("extensions.BabylonToolbar.tlbrId", "base"); user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "http://search.babylon.com/?babsrc=TB_def&mntrId=60cd791200000000000078929c8399bd&q="); user_pref("extensions.BabylonToolbar.vrsn", "1.8.7.2"); user_pref("extensions.BabylonToolbar.vrsni", "1.8.7.2"); user_pref("extensions.BabylonToolbar_i.babExt", ""); user_pref("extensions.BabylonToolbar_i.babTrack", "affID=18763&tt=070113_i1_0213_2"); user_pref("extensions.BabylonToolbar_i.excTlbr", false); user_pref("extensions.BabylonToolbar_i.newTab", false); user_pref("extensions.BabylonToolbar_i.smplGrp", "none"); user_pref("extensions.BabylonToolbar_i.srcExt", "def"); user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.7.222:09:00"); ---- FireFox user.js and prefs.js backups ---- user_20140606_1637_.backup prefs_20140606_1637_.backup ==== Deleting Files \ Folders ====================== C:\Users\nicofused\.android deleted C:\PROGRA~2\Mozilla Firefox\defaults\preferences\.mkdir.done deleted C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted C:\PROGRA~2\Wondershare deleted C:\PROGRA~2\COMMON~1\Wondershare deleted C:\Users\nicofused\AppData\Roaming\DriverCure deleted C:\PROGRA~3\Package Cache deleted C:\Users\nicofused\AppData\Local\Wondershare deleted C:\Users\nicofused\AppData\Local\adawarebp deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted C:\Users\nicofused\Downloads\adt-bundle-windows-x86_64-20131030.zip deleted C:\Users\nicofused\Downloads\rcpsetup_python26.exe deleted C:\Users\nicofused\Downloads\FreeYouTubeToMP3Converter(1).exe deleted C:\Users\nicofused\Downloads\FreeYouTubeToMP3Converter(2).exe deleted C:\Users\nicofused\Downloads\FreeYouTubeToMP3Converter(3).exe deleted C:\Users\nicofused\Downloads\FreeYouTubeToMP3Converter.exe deleted C:\Users\nicofused\Downloads\conduit.exe deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\Windows\wininit.ini deleted C:\Users\NICOFU~1\AppData\Roaming\Mozilla\Firefox\Profiles\vpbpra6c.default-1357235101793\jetpack deleted "C:\Program Files (x86)\Mozilla Firefox\searchplugins\adawaretb.xml" deleted "C:\Users\nicofused\AppData\Local\emfvinkk" deleted "C:\Users\nicofused\AppData\Local\lodvxnre" deleted "C:\Users\nicofused\AppData\Local\nmglkgjq" deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 7969 MB CPU Info: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz CPU Speed: 2256,5 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics Family | Intel(R) HD Graphics Family | NVIDIA GeForce 610M | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Microsoft Virtual WiFi Miniport Adapter #12 | Microsoft Virtual WiFi Miniport Adapter #11 | Intel(R) Centrino(R) Wireless-N 100 | Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) CD / DVD Drives: 2x (E: | F: | ) E: HL-DT-STDVDRAM GT51N | F: DTSOFT BDROM Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 2 Button Mouse Present Hard Disks: C: 199,5GB | D: 707,0GB Hard Disks - Free: C: 1009,8MB | D: 22,3GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 08/10/12 | _ASUS_ - 6222004 Time Zone: Romance (standaardtijd) Motherboard *: ASUSTeK Computer Inc. K53SD Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: Spybot - Search and Destroy disabled (Outdated) Anti-Spyware: Microsoft Security Essentials disabled (Outdated) Default Browser: Waterfox 26.0 Internet Explorer Version: 9.0.8112.16421 Mozilla Firefox version: 17.0.1 (x86 nl) Adobe Reader version: 10.1.10.18 Sun Java version: 1.7.0_51 (32-bit) Sun Java version: 1.7.0_55 (64-bit) Flash Player version: 13.0.0.214 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\NICOFU~1\AppData\Local\Temp ==== ====== Java Cache ===== 2014-05-15 13:45:28 9645A5F5EE6EE18F8F4972CF766A2291 38 ----a-w- C:\Users\nicofused\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\1bc5372e-997893b8db55fb8f6befff78ca24796d0fbd88ec0e57de6ab220f8acfe5363de-6.0.lap ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== 2014-05-29 11:10:40 16E18CED459B1824234890386EE66CD5 52832 ----a-w- C:\Windows\SysWOW64\drivers\libusb0.sys ====== C:\Windows\Sysnative ===== 2014-06-05 09:58:20 71742FAE12E0A16AA14C8A2166F3B168 118048 ----a-w- C:\Windows\Sysnative\BootDefrag.exe 2014-05-30 11:48:22 82446D358A9FB51CB9DA32A5C901D7A0 21040 ----a-w- C:\Windows\Sysnative\sdnclean64.exe 2014-05-29 11:31:14 7160FC226391C0B50C85571FA1A546E5 2401112 ----a-w- C:\Windows\Sysnative\D3DX9_43.dll ====== C:\Windows\Sysnative\drivers ===== 2014-06-05 09:58:20 369D7E0E01117A1A4A23C9C6A04EED06 17600 ----a-w- C:\Windows\Sysnative\drivers\BootDefragDriver.sys 2014-06-05 09:41:25 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_WinUsb_01009.Wdf 2014-05-30 11:35:06 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys 2014-05-30 11:34:43 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys 2014-05-30 11:34:43 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys 2014-05-30 11:34:43 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys 2014-05-29 08:40:38 8E98D21EE06192492A5671A6144D092F 33240 ----a-w- C:\Windows\Sysnative\drivers\GEARAspiWDM.sys 2014-05-16 18:11:41 33F90B202E9DD9B7D489EB59310FDC34 283064 ----a-w- C:\Windows\Sysnative\drivers\dtsoftbus01.sys 2014-05-16 18:10:34 04697FD2E72486667CDE08696EE7586D 20672 ----a-w- C:\Windows\Sysnative\drivers\GUBootStartup.sys 2014-05-15 08:02:57 1C2D8E18AA8FD50CD04C15CC27F7F5AB 155072 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2014-05-15 08:02:55 353009DEDF918B2A51414F330CF72DEC 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys ====== C:\Windows\Tasks ====== 2014-05-29 08:39:00 -------- d-----w- C:\Windows\Sysnative\Tasks\Apple 2014-05-16 18:10:34 E2EF652BC63322C49EC1550F89C56BC7 2644 ----a-w- C:\Windows\Sysnative\Tasks\GlaryInitialize 5 2014-05-16 18:10:34 D7E76C938C5BE2AB407355ADF981260C 330 ----a-w- C:\Windows\Tasks\GlaryInitialize 5.job ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-06-05 15:51:53 -------- d-----w- C:\Program Files\trend micro 2014-05-29 11:31:12 -------- d-----w- C:\Program Files\Reflector 2014-05-29 11:10:37 -------- d-----w- C:\Program Files\Wondershare 2014-05-29 08:39:42 -------- d-----w- C:\Program Files\iPod 2014-05-29 08:39:41 -------- d-----w- C:\Program Files\iTunes 2014-05-29 08:38:49 -------- d-----w- C:\Program Files\Common Files\Apple 2014-05-29 08:38:30 -------- d-----w- C:\Program Files\Bonjour 2014-05-16 20:52:40 -------- d-----w- C:\Program Files\VideoLAN ======= C:\PROGRA~2 ===== 2014-05-31 08:48:10 -------- d-----w- C:\PROGRA~2\Sony 2014-05-29 11:10:37 -------- d--h--w- C:\PROGRA~2\Dr.Fone_Temp 2014-05-29 08:39:41 -------- d-----w- C:\PROGRA~2\iTunes 2014-05-29 08:38:57 -------- d-----w- C:\PROGRA~2\Apple Software Update 2014-05-29 08:38:30 -------- d-----w- C:\PROGRA~2\Bonjour 2014-05-29 08:38:21 -------- d-----w- C:\PROGRA~2\COMMON~1\Apple 2014-05-25 15:26:05 -------- d-----w- C:\PROGRA~2\DVDVideoSoft 2014-05-25 15:26:05 -------- d-----w- C:\PROGRA~2\COMMON~1\DVDVideoSoft 2014-05-17 10:06:18 -------- d-----w- C:\PROGRA~2\BMW Scanner v1.4.0 2014-05-16 18:11:20 -------- d-----w- C:\PROGRA~2\DAEMON Tools Lite 2014-05-16 18:10:09 -------- d-----w- C:\PROGRA~2\Glary Utilities 5 2014-05-08 22:59:05 -------- d-----w- C:\PROGRA~2\Cisco ======= C: ===== 2014-06-05 09:58:21 D4385950E30FA543F1D7FD5F63A29757 234 ----a-w- C:\BackupLoader.ini ====== C:\Users\nicofused\AppData\Roaming ====== 2014-05-31 12:59:00 7FF2BC3B46FD2C90D1A05445CE8E6463 132 ----a-w- C:\Users\nicofused\AppData\Roaming\Adobe CC-voorkeuren voor PNG-indeling 2014-05-31 10:38:41 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Roaming\Adobe 2014-05-31 10:38:41 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Adobe 2014-05-31 09:52:27 -------- d-----w- C:\Users\nicofused\AppData\Local\ACCCx2_6_0_393 2014-05-31 09:47:11 -------- d-----w- C:\Users\nicofused\AppData\Roaming\Sony Corporation 2014-05-30 11:50:16 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs 2014-05-30 11:31:52 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\nicofused\AppData\Roaming\SharedSettings.ccs 2014-05-29 11:31:32 -------- d-----w- C:\Users\nicofused\AppData\Local\Reflector 2014-05-29 11:31:12 -------- d-----w- C:\Users\nicofused\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Reflector 2014-05-29 10:52:55 -------- d-----w- C:\Users\nicofused\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center 2014-05-29 10:52:44 -------- d-----w- C:\Users\nicofused\AppData\Roaming\WindSolutions 2014-05-29 08:40:45 -------- d-----w- C:\Users\nicofused\AppData\Roaming\Apple Computer 2014-05-29 08:40:45 -------- d-----w- C:\Users\nicofused\AppData\Local\Apple Computer 2014-05-29 08:38:59 -------- d-----w- C:\Users\nicofused\AppData\Local\Apple 2014-05-29 08:38:52 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Apple Computer 2014-05-25 15:25:22 -------- d-----w- C:\Users\nicofused\AppData\Roaming\DVDVideoSoft 2014-05-16 18:16:48 -------- d-----w- C:\Users\nicofused\AppData\Local\.distlib 2014-05-10 08:43:44 -------- d-----w- C:\Users\nicofused\AppData\Roaming\InstallShield ====== C:\Users\nicofused ====== 2014-06-05 15:51:40 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\nicofused\Downloads\RSITx64.exe 2014-06-05 09:57:27 A3A9E11E07A4489648C0F0FFC974EE04 13567680 ----a-w- C:\Users\nicofused\Downloads\Glary_Utilities_v5.1.0.4.exe 2014-05-31 09:45:56 AF2EA42C7A3C8459930B14715D8A1D73 18013032 ----a-w- C:\Users\nicofused\Downloads\DNGCodec_2_0_Installer.exe 2014-05-31 09:39:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe 2014-05-31 09:38:49 36A0856A484A16E55494998C8D4F01C8 135538504 ----a-w- C:\Users\nicofused\Downloads\DNGConverter_8_2.exe 2014-05-31 08:48:10 -------- d-----w- C:\ProgramData\Sony Corporation 2014-05-31 08:48:10 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Data Converter 2014-05-31 08:46:52 2AF0CF0B6B18DF9CC6D3909E8EA04E9D 23653912 ----a-w- C:\Users\nicofused\Downloads\IDC423_1404a.exe 2014-05-30 11:34:11 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\nicofused\Downloads\mbam-setup-2.0.2.1012.exe 2014-05-29 11:10:37 -------- d-----w- C:\ProgramData\Wondershare 2014-05-29 11:09:52 95C38038D946CC94EFA5BFB7A949565C 899656 ----a-w- C:\Users\nicofused\Downloads\drfone-for-ios_setup_full1283.exe 2014-05-29 10:52:37 -------- d-----w- C:\ProgramData\WindSolutions 2014-05-29 10:52:15 49D7074E7D272C9B6842AA0E397953DA 5283824 ----a-w- C:\Users\nicofused\Downloads\Install_CopyTransControlCenter.exe 2014-05-29 08:40:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-05-29 08:39:41 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-05-29 08:38:21 -------- d-----w- C:\ProgramData\Apple 2014-05-29 08:37:25 054C2C14C8CEA153897C45D47A774068 112616784 ----a-w- C:\Users\nicofused\Downloads\iTunes64Setup.exe 2014-05-25 15:30:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft 2014-05-24 18:24:07 A9BE89DC48CB6E1EE0A3F93D659648C8 86488880 ----a-w- C:\Users\nicofused\Downloads\FreeStudio.exe 2014-05-16 18:17:08 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.4 2014-05-16 18:12:30 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2014-05-16 18:10:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2014-05-08 22:59:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless ====== C: exe-files == 2014-06-05 15:51:40 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\nicofused\Downloads\RSITx64.exe 2014-06-05 15:50:16 2B22CFAE19C5FF6AC7EE50329914E3CD 383808 ------r- C:\ProgramData\NVIDIA\Updatus\Download\5BA5\updatus.18551782_RUNASUSER.exe 2014-06-05 09:58:20 71742FAE12E0A16AA14C8A2166F3B168 118048 ----a-w- C:\Windows\System32\BootDefrag.exe 2014-06-05 09:57:27 A3A9E11E07A4489648C0F0FFC974EE04 13567680 ----a-w- C:\Users\nicofused\Downloads\Glary_Utilities_v5.1.0.4.exe 2014-06-05 09:35:25 862C2B75B223E3E8AAFEB20FE882A602 162816 ----a-w- C:\Users\nicofused\Desktop\SL101 Root & ROM\OneclickrecoveryV0.4.2\OneclickrecoveryV0.4.2\adb.exe 2014-06-03 08:51:31 640A5099A5395373E6EAABFEB26B5B54 383456 ----a-w- C:\ProgramData\NVIDIA\Updatus\Download\5B8D\updatus.18543140_RUNASUSER.exe 2014-06-03 01:26:58 5375CC903D2DF620BCAD31EAD8E80A1F 22304 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x86\RegBootDefrag.exe 2014-06-03 01:26:56 4AE21AE840640DAEBC7122991F8981A0 101664 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x86\BootDefrag.exe 2014-06-03 01:26:56 3733AA0E70A6B0D00C985A7D4D9C03BA 24352 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x64\RegBootDefrag.exe 2014-06-03 01:26:54 F256D33F91AFB5E0A1B511F3C5F19705 118048 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x64\BootDefrag.exe 2014-06-03 01:26:54 39786B891CAD490335C0E6C288B8A442 101664 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wnet_x86\BootDefrag.exe 2014-06-03 01:26:52 66B81431176F056208D6441A026E5378 118048 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wnet_x64\BootDefrag.exe 2014-06-03 01:26:50 E8C9B9549619274F842F35636D150F54 101664 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wlh_x86\BootDefrag.exe 2014-06-03 01:26:50 2F8A3BD38DC24B2E5393B17B953CA3F6 118048 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wlh_x64\BootDefrag.exe 2014-06-03 01:26:48 71742FAE12E0A16AA14C8A2166F3B168 118048 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\win7_x64\BootDefrag.exe 2014-06-03 01:26:48 38651D6ACEA02FF31CA0A1AB77052A59 101664 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\win7_x86\BootDefrag.exe 2014-06-03 01:26:46 E3A48BF352CF3831B57191D16FC30CB0 135968 ----a-w- C:\Program Files (x86)\Glary Utilities 5\x64\Win64ShellLink.exe 2014-06-03 01:26:44 ED727A1DF7AC6CFABFAF87C86D372885 64288 ----a-w- C:\Program Files (x86)\Glary Utilities 5\upgrade.exe 2014-06-03 01:26:42 AF3263A5A66D187DEF2982904CC25BF9 318752 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Uninstaller.exe 2014-06-03 01:26:42 63B733F070748E1437E1228A830BE600 360224 ----a-w- C:\Program Files (x86)\Glary Utilities 5\SoftwareUpdate.exe 2014-06-03 01:26:36 D2B1F828C7F36141A59577F0079D841B 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\TracksEraser.exe 2014-06-03 01:26:28 2DDE0858D29D896DDD08206DBAF4108D 37152 ----a-w- C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe 2014-06-03 01:26:28 1A3985E52CFF64663A8B890FB7DD104D 517408 ----a-w- C:\Program Files (x86)\Glary Utilities 5\sysinfo.exe 2014-06-03 01:26:24 68992075B685145F30FDB98F86FA6483 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\SpyRemover.exe 2014-06-03 01:26:22 4691F3E9A36B7D975A5014C8904B076B 138528 ----a-w- C:\Program Files (x86)\Glary Utilities 5\shredder.exe 2014-06-03 01:26:16 D6493011683868CC5E4E3C21486F0639 37152 ----a-w- C:\Program Files (x86)\Glary Utilities 5\RestoreCenter.exe 2014-06-03 01:26:12 79D05D22A64E382579CBAAF6007BF7A6 37152 ----a-w- C:\Program Files (x86)\Glary Utilities 5\RegistryCleaner.exe 2014-06-03 01:26:10 6EAE26485843E3C465832184B8D1354E 94496 ----a-w- C:\Program Files (x86)\Glary Utilities 5\regdefrag.exe 2014-06-03 01:26:08 EC111209BDA28DB9F2366BE592474F49 246560 ----a-w- C:\Program Files (x86)\Glary Utilities 5\QuickSearch.exe 2014-06-03 01:26:06 48C78753879B4827AA00433AAA1543C5 293152 ----a-w- C:\Program Files (x86)\Glary Utilities 5\procmgr.exe 2014-06-03 01:26:04 0387080EF404FF2E74D02D83A705865D 135968 ----a-w- C:\Program Files (x86)\Glary Utilities 5\PortableMaker.exe 2014-06-03 01:26:02 530D638D25A62934811894C7163D6878 227616 ----a-w- C:\Program Files (x86)\Glary Utilities 5\OneClickMaintenance.exe 2014-06-03 01:26:00 479475E95AA7D3B7F1D3F92B187F6CF9 402720 ----a-w- C:\Program Files (x86)\Glary Utilities 5\MemfilesService.exe 2014-06-03 01:25:58 BFF53C7D9382E2B9B2A4814A3AF2CE86 122656 ----a-w- C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe 2014-06-03 01:25:52 070FB0E9E68C7D2B052621FC04AE5FED 64288 ----a-w- C:\Program Files (x86)\Glary Utilities 5\joinExe.exe 2014-06-03 01:25:50 DC48DE098A11DFBC4EB033A3A7B4F466 377120 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Integrator_Portable.exe 2014-06-03 01:25:48 6B2DD56DD048F6FEF998737BE88A17AC 792864 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Integrator.exe 2014-06-03 01:25:46 4E8966B477CFD33C6C812F46D50E39A8 101152 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Initialize.exe 2014-06-03 01:25:44 8899CE238A835B887A8F12055ECB6E8A 63776 ----a-w- C:\Program Files (x86)\Glary Utilities 5\gsd.exe 2014-06-03 01:25:44 60278EB2BE09D1628D1954F698DF28C2 777504 ----a-w- C:\Program Files (x86)\Glary Utilities 5\iehelper.exe 2014-06-03 01:25:42 9CFFBFD71CBDCA0966FF9D676DEF2B7F 1424672 ----a-w- C:\Program Files (x86)\Glary Utilities 5\FileUndelete.exe 2014-06-03 01:25:40 BF06060480CF81506E54BB575E3B4343 103200 ----a-w- C:\Program Files (x86)\Glary Utilities 5\filesplitter.exe 2014-06-03 01:25:38 8A57C9E78152B0B220A2B14CFBD6313F 147232 ----a-w- C:\Program Files (x86)\Glary Utilities 5\fileencrypt.exe 2014-06-03 01:25:36 ABA58A9CEEF9630F3CAFC23387968DE7 214816 ----a-w- C:\Program Files (x86)\Glary Utilities 5\EmptyFolderFinder.exe 2014-06-03 01:25:36 656D9B6383631B4CB047CA3B19933358 373024 ----a-w- C:\Program Files (x86)\Glary Utilities 5\EncryptExe.exe 2014-06-03 01:25:34 8AFDCB14AF47DA37E6D43CA2B5AE3907 325920 ----a-w- C:\Program Files (x86)\Glary Utilities 5\dupefinder.exe 2014-06-03 01:25:34 1D8872F5305FB712ED81C5E93D016BC4 148256 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DriverBackup.exe 2014-06-03 01:25:32 A81329AA0257A67EC2239717469CF65C 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DiskCleaner.exe 2014-06-03 01:25:32 661EFF20313793A02204B989021FA15E 380704 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DiskDefrag.exe 2014-06-03 01:25:28 F3B8BD36FE172375C315039DEA915C87 337696 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DiskAnalysis.exe 2014-06-03 01:25:28 C6D3DC0E33E40D9E35EC49F6537200EB 958752 ----a-w- C:\Program Files (x86)\Glary Utilities 5\CrashReport.exe 2014-06-03 01:25:20 192574A102276570E32275D7F22ED924 137504 ----a-w- C:\Program Files (x86)\Glary Utilities 5\cmm.exe 2014-06-03 01:25:18 0ADF256ABB24D828160CF0B12E6827FF 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\CheckUpdate.exe 2014-06-03 01:25:16 DBF855B16B5B29511DCCF996E0B3EF7A 36640 ----a-w- C:\Program Files (x86)\Glary Utilities 5\CheckDisk.exe 2014-06-03 01:25:16 CD0771A7ED45067AE1371BD6A4EA177C 68384 ----a-w- C:\Program Files (x86)\Glary Utilities 5\CheckDiskProgress.exe 2014-06-03 01:25:08 220E9C69FBF13A70F76A4321DB2DFB10 498464 ----a-w- C:\Program Files (x86)\Glary Utilities 5\AutoUpdate.exe 2014-06-03 01:05:38 C3AC43B2018114A617E946AA8FDF3CAC 930272 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DPInst64.exe 2014-06-03 01:05:38 3F442906B29B552F1C9FEC1E221D90B7 795104 ----a-w- C:\Program Files (x86)\Glary Utilities 5\DPInst32.exe 2014-05-31 12:45:01 595162E0D11436B3664AA48416283821 342528 ----a-w- C:\Program Files\Adobe\Adobe Bridge CC (64 Bit)\Patch.exe 2014-05-31 12:04:02 DF9677CA3961FF5F3E98211B50768EA1 421784 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\UWA\AAMLauncher.exe 2014-05-31 12:04:02 B0B6FC3F7B7118857217193D17BB5DAD 815992 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\UWA\AAM Updates Notifier.exe 2014-05-31 12:04:02 6E55D39C84D41317E5189F3AB574A2EF 472984 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\UWA\updaterstartuputility.exe 2014-05-31 12:04:02 207A3B2028E88E8A412272481D3D194D 2623896 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\UWA\Adobe Application Manager (Updater).exe 2014-05-31 12:04:00 BD7243C78050F64365047B52A7ED1EBD 2158944 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\P7\adobe_licutil.exe 2014-05-31 12:04:00 9E53C578D83A0B1182DB21E05B7AD757 320376 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\P7\AAM Registration Notifier.exe 2014-05-31 12:03:58 EA36BBF0DC11F8558D944B3BBA00A054 1749048 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\P6\adobe_licutil.exe 2014-05-31 12:03:58 80A8E781CD70340629BEE92480A333E4 298136 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\P6\AAM Registration Notifier.exe 2014-05-31 12:03:56 D464E4223C903840D34576502FD3BB45 268232 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\LWA\AAM Registration Notifier.exe 2014-05-31 12:03:56 1197275F64E8387E2EEE7B65C8399EFB 357296 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\LWA\adobe_licutil.exe 2014-05-31 12:03:55 F601C0E160672B9CD1F2955DCE182B1C 119240 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DWA\TokenGenerator64.exe 2014-05-31 12:03:55 C52319AC5D76942019BA78C65A7AE131 80744 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\DE6\resources\libraries\TokenResolverx64.exe 2014-05-31 12:03:55 520E150FDD53D0B0E2E6932FDD398459 359784 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\DE6\resources\libraries\CustomHook_Helperx64.exe 2014-05-31 12:03:55 47B05CBA47FC0EA5963E1FDFF14E23DD 382904 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DWA\Setup.exe 2014-05-31 12:03:54 DC73C771540178BDEE5902C77845B1E8 83120 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\DE5\resources\libraries\TokenResolverx64.exe 2014-05-31 12:03:54 A10482A0EBD0845301B086FF905F8401 2197352 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\DE6\resources\libraries\Adobe_Helperx64.exe 2014-05-31 12:03:54 65F47F57113863C6AA3CEAE4E90FC55C 1613160 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\DE6\resources\libraries\Adobe_Helperx32.exe 2014-05-31 12:03:54 483DBDE3F0B010CCE393A67E9F82207C 344752 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\DE5\resources\libraries\CustomHook_Helperx64.exe 2014-05-31 12:03:54 3EA805E93697E701DD070ED38B0D341C 2200240 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\DE5\resources\libraries\Adobe_Helperx64.exe 2014-05-31 12:03:53 B2452C2719C5D04A8D4EC373E08D4C4D 584552 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\Setup.exe 2014-05-31 12:03:53 AAD652E12A86289EDC18EC3A243761D1 28520 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\PlatformUtil.exe 2014-05-31 12:03:53 56BD523EB2EDC7CB3C9CCA03ECCD2ACE 1616048 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\DECore\DE5\resources\libraries\Adobe_Helperx32.exe 2014-05-31 12:03:52 FD5E726D1A9CF15EA2D3AB12D4E9DB97 119656 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\D6\Setup.exe 2014-05-31 12:03:52 8F986251073BF208E23DD9A418825375 241528 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\D6\TokenGenerator64.exe 2014-05-31 12:03:51 38247D7FFD43ED129E3147667FF97C45 2289016 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\core\PDapp.exe 2014-05-31 12:03:50 50019BEC6241C120192DFB5F3FCDF710 367992 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\core\AAMLauncherUtil.exe 2014-05-31 12:03:49 E258C46DB79BA755CB11F053D2AD508A 344984 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\CCM\Utilities\AAMHelper.exe 2014-05-31 12:03:49 62514A3250C97CA41245C529B2943FD9 2101632 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\CCM\Utilities\AdobeApplicationManager.exe 2014-05-31 12:03:49 18D88A9C3C67D2F79982EC71C2D9023E 529304 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\Res\CCM\Utilities\AdobeApplicationManager(URIHandler).exe 2014-05-31 12:03:48 D3E95FA9209C739420BE95277D961EF5 1558745 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\unins000.exe 2014-05-31 12:03:48 4C6A5C659B9B3A400AE2D4A128A574B9 1129984 ----a-w- C:\Program Files (x86)\Adobe\Update Management Tool\umt.exe 2014-05-31 11:49:53 57B3F02901DAFB5A10E4C619B8F139EE 93696 ----a-w- C:\Users\nicofused\Desktop\Stuff To Check\Photoshop\1602CC14.2.1\ADOBE_CC_KEYGEN_WIN_MACOSX-XFORCE\X-force\Crack-Windows\xf-adobecc.exe 2014-05-31 09:46:11 33078E18720062531E37EC0DBF3C8D4A 68240 ----a-w- C:\Program Files (x86)\Adobe\DNG Codec\Uninstall.exe 2014-05-31 09:45:56 AF2EA42C7A3C8459930B14715D8A1D73 18013032 ----a-w- C:\Users\nicofused\Downloads\DNGCodec_2_0_Installer.exe 2014-05-31 09:38:49 36A0856A484A16E55494998C8D4F01C8 135538504 ----a-w- C:\Users\nicofused\Downloads\DNGConverter_8_2.exe 2014-05-31 08:48:10 5CBE5F5DECE0639AE54A2ECBA5F970AE 2624000 ----a-w- C:\Program Files (x86)\Sony\Image Data Converter\Image Data Converter Ver. 4.0\ImageDataConverter.exe 2014-05-31 08:48:09 39B64EB165A75F2DBDDD3161491DA12D 456584 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{87998E4E-6D9C-411B-AAE9-B8523FFE357D}\setup.exe 2014-05-31 08:46:52 2AF0CF0B6B18DF9CC6D3909E8EA04E9D 23653912 ----a-w- C:\Users\nicofused\Downloads\IDC423_1404a.exe 2014-05-30 22:47:56 CF00A950234B5B64BECBC65567E0A283 383624 ----a-w- C:\ProgramData\NVIDIA\Updatus\Download\5B73\updatus.18533054_RUNASUSER.exe === C: other files == 2014-06-05 17:17:40 73EE1A4FDC367A58CC90B94EC84E8711 15350457 ----a-w- C:\Users\nicofused\Downloads\KatKiss-4.4.3_027-sl101-compat-V4.zip 2014-06-05 09:58:20 369D7E0E01117A1A4A23C9C6A04EED06 17600 ----a-w- C:\Windows\System32\drivers\BootDefragDriver.sys 2014-06-05 09:35:28 A0C2001BFE61DA1B23B6E51994964F57 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-623152935-1559822560-3994372864-1001\$IE2PCXM.zip 2014-06-05 09:35:25 B897748A40980EC32998A33F42338B5E 607993 ----a-w- C:\Users\nicofused\Desktop\SL101 Root & ROM\OneclickrecoveryV0.4.2\OneclickrecoveryV0.4.2\Superuser-3.0.7-efghi-signed.zip 2014-06-05 09:35:25 95627E02BD83DECD7ED5A0B36524DFAC 11620 ----a-w- C:\Users\nicofused\Desktop\SL101 Root & ROM\OneclickrecoveryV0.4.2\OneclickrecoveryV0.4.2\EasyRecoveryV0.42.bat 2014-06-03 01:05:44 F8ADE2053957E8E5F2ED2A1203C79589 16064 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\win7_x86\BootDefragDriver.sys 2014-06-03 01:05:44 D59C80D299743D3FC2FB35E96214E36E 17600 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x64\BootDefragDriver.sys 2014-06-03 01:05:44 C4B439F8332B540FD10399920320888B 16064 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wnet_x86\BootDefragDriver.sys 2014-06-03 01:05:44 BC7761423CA17275941580B4D388EC9B 17600 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wnet_x64\BootDefragDriver.sys 2014-06-03 01:05:44 9F3935A68A7F73FC56413D298B219544 16064 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wlh_x86\BootDefragDriver.sys 2014-06-03 01:05:44 3B77514728BA0BFE4143FC3A2780B289 14784 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wxp_x86\BootDefragDriver.sys 2014-06-03 01:05:44 369D7E0E01117A1A4A23C9C6A04EED06 17600 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\win7_x64\BootDefragDriver.sys 2014-06-03 01:05:44 0A7F269E6D58A8814105150B4F7F5021 17600 ----a-w- C:\Program Files (x86)\Glary Utilities 5\Native\wlh_x64\BootDefragDriver.sys 2014-05-31 12:05:50 72600117905220996F4DA4F6CE147B5A 79808188 ----a-w- C:\Program Files\Adobe\Adobe\AdobePatchFiles\{BE4D77AE-D7FC-4E5B-922E-95ECE7C6A9E8}.zip 2014-05-31 12:05:12 622741D5E47DE1018475C59CA588486F 524565 ----a-w- C:\Program Files\Adobe\Adobe\AdobePatchFiles\{8A36A55E-9181-4C7E-B282-B3445A5225CC}.zip 2014-05-31 12:05:11 C1A669F8C751AC791B2C589AB51F30AF 2078591 ----a-w- C:\Program Files (x86)\Adobe\Adobe\AdobePatchFiles\{1B198401-78DE-4612-A400-9C8AC6F2A622}.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-623152935-1559822560-3994372864-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-623152935-1559822560-3994372864-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "GUDelayStartup"="C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe -delayrun" "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-21-623152935-1559822560-3994372864-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SonicMasterTray"="C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe" "WD Drive Unlocker"="C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe" "ATKOSD2"="C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" "ATKMEDIA"="C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" "HControlUser"="C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "SDTray"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" "AdobeCEPServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe -launchedbylogin" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "GUDelayStartup"="C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe -delayrun" "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\windows\\syswow64\\nvinit.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SF3 " "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "IntelPAN"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PAN Tray" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe " [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ACMON] "command"="C:\\Program Files (x86)\\ASUS\\Splendid\\ACMON.exe" "hkey"="HKLM" "item"="ACMON" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Screen Saver Protector] "command"="C:\\Windows\\AsScrPro.exe" "hkey"="HKLM" "item"="ASUS Screen Saver Protector" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer] "command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\"" "hkey"="HKLM" "item"="CLMLServer" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl] "command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s" "hkey"="HKLM" "item"="RtHDVCpl" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" ==== Startup Folders ====================== ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/05/2014 10:44] C:\Windows\tasks\GlaryInitialize 5.job --a------ C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [03/06/2014 03:25] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13/01/2013 23:46] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13/01/2013 23:46] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\ASUS Live Update" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\ASUS\P4G\BatteryLife.exe] "C:\Windows\SysNative\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe] "C:\Windows\SysNative\tasks\ATKOSD2" [C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe] "C:\Windows\SysNative\tasks\GlaryInitialize 5" [C:\Program Files (x86)\Glary Utilities 5\Initialize.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] "C:\Windows\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates" ["C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"] ==== Firefox Extensions ====================== ProfilePath: C:\Users\NICOFU~1\AppData\Roaming\Mozilla\Firefox\Profiles\vpbpra6c.default-1357235101793 - Default Full Zoom Level - C:\Users\nicofused\AppData\Roaming\Mozilla\Firefox\Profiles\vpbpra6c.default-1357235101793\extensions\{D9A7CBEC-DE1A-444f-A092-844461596C4D} - EverSync - Sync bookmarks backup your favorites. - C:\Users\nicofused\AppData\Roaming\Mozilla\Firefox\Profiles\vpbpra6c.default-1357235101793\extensions\fvdmedia@gmail.com - EverSync - Sync bookmarks backup your favorites. - %ProfilePath%\extensions\fvdmedia@gmail.com - Woordenboek Nederlands - %ProfilePath%\extensions\nl-NL@dictionaries.addons.mozilla.org - Default Full Zoom Level - %ProfilePath%\extensions\{D9A7CBEC-DE1A-444f-A092-844461596C4D} - Automatic Save Folder - %ProfilePath%\extensions\asf@mangaheart.org.xpi - Duplicate This Tab - %ProfilePath%\extensions\duplicate-this-tab@mozilla.org.xpi - Wiktionary and Google Translate - %ProfilePath%\extensions\googledictionary@toptip.ca.xpi - Idderall - %ProfilePath%\extensions\jid1-u6nQDbYs4ZJDAy@jetpack.xpi - Yet Another Smooth Scrolling - %ProfilePath%\extensions\yetanothersmoothscrolling@kataho.xpi - CouchPotato - %ProfilePath%\extensions\{1EB88DA7-4F70-4E70-923F-810E4F0C9FDF}.xpi - New Tab Homepage - %ProfilePath%\extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi - Yodito: Read Later Notes amp; Gmail TO-DOs - %ProfilePath%\extensions\{9435dd66-74e6-491d-a3fb-cc2801c28e5a}.xpi - StumbleUpon - %ProfilePath%\extensions\{AE93811A-5C9A-4d34-8462-F7B864FC4696}.xpi - Password Exporter - %ProfilePath%\extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi - SoundCloud Downloader - Technowise - %ProfilePath%\extensions\{c8d3bc80-0810-4d21-a2c2-be5f2b2832ac}.xpi - Greasemonkey - %ProfilePath%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\nicofused\AppData\Roaming\Mozilla\Firefox\Profiles\vpbpra6c.default-1357235101793 22886D41ED1F3EEC251FE9D73AB0FE5D - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U55 1E0249742DCFFDA9D6A81AF0D173FAA9 - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.550.13 D676C627D5A5CB7667D354739FB0B15A - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin C4E15114D04067DEB4B7B871B2880329 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll - Silverlight Plug-In B3145CA8E057AB8B34DD74621975CAA2 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrlui.dll - Microsoft® Silverlight ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions eokggikdogbdifnoohmoibpipljidahp - C:\Users\nicofused\AppData\Roaming\PC-Gizmos\\Chrome_Extension.crx[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.be/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://google.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{95433FE0-45D5-4705-9EA6-F8E24670EDB3}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {95433FE0-45D5-4705-9EA6-F8E24670EDB3} Google Url="https://www.google.com/search?q={searchTerms}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\eokggikdogbdifnoohmoibpipljidahp deleted successfully ==== HijackThis Entries ====================== C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe O4 - HKLM\..\Run: [WD Drive Unlocker] "C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe" O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" O4 - HKLM\..\Run: [AdobeCEPServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" -launchedbylogin O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [GUDelayStartup] "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-623152935-1559822560-3994372864-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-623152935-1559822560-3994372864-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Startup: Intel® Turbo Boost Technologie monitor 2.6.lnk = C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~3\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office15\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra button: PokerStars.be - {878AC5FC-BE78-4bae-896C-7F75B790A71E} - C:\Program Files (x86)\PokerStars.BE\PokerStarsUpdate.exe O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file) O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing) O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: Polar Daemon - Unknown owner - C:\Program Files (x86)\Polar\Daemon\polard.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.6 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\nicofused\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\nicofused\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\nicofused\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\nicofused\AppData\Local\Mozilla\Firefox\Profiles\vpbpra6c.default-1357235101793\Cache emptied successfully ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=4910 folders=112 773416904 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\nicofused\AppData\Local\Temp will be emptied at reboot C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\NICOFU~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\nicofused\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted ==== EOF on vr 06/06/2014 at 17:24:20,68 ======================