Zoek.exe v5.0.0.0 Updated 15-November-2014 Tool run by pascale on za 15/11/2014 at 20:37:26,47. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\pascale\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 15/11/2014 20:39:58 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Users\pascale\AppData\Roaming\QuickScan deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe C:\Program Files (x86)\FWdriver_v\POSHXMain.exe C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe C:\Program Files (x86)\FWdriver_v\POSHX.exe C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe C:\Program Files\BullGuard Ltd\BullGuard\files32\spamfilter\LittleHook.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Users\pascale\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Users\pascale\AppData\Roaming\DVDVideoSoft deleted C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\windows\SysNative\GroupPolicy\Machine deleted C:\windows\SysNative\GroupPolicy\User deleted C:\windows\SysNative\GroupPolicy\gpt.ini deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 4005 MB CPU Info: Intel(R) Core(TM) i3-4010U CPU @ 1.70GHz CPU Speed: 1716,7 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics Family | Intel(R) HD Graphics Family | Intel(R) HD Graphics Family Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Intel(R) Wireless-N 7260 | Realtek PCIe GBE Family Controller CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SU-228CB Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 404,0GB | D: 60,0GB Hard Disks - Free: C: 337,6GB | D: 45,1GB Manufacturer *: Phoenix Technologies Ltd. BIOS Info: AT/AT COMPATIBLE | | MEDION - 2 Time Zone: West-Europa (standaardtijd) Motherboard *: Medion S621xT Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: BullGuard Antivirus On-access scanning disabled (Outdated) Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: BullGuard Antispyware disabled (Outdated) Firewall: BullGuard Firewall disabled Default Browser: Google Chrome 38.0.2125.111 Internet Explorer Version: 11.0.9600.17416 Google Chrome version: 38.0.2125.111 Sun Java version: 1.8.0_25 (32-bit) Sun Java version: 1.8.0_25 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\pascale\AppData\Local\Temp ==== 2014-11-13 19:45:16 DD7F24DACD85EEDD221A55313E97DA10 5826632 ----a-w- C:\Users\pascale\AppData\Local\Temp\optprosetup.exe 2014-11-08 08:47:13 5C73E64374D9BA37AC5569D1F7DE5C9B 665682 ----a-w- C:\Users\pascale\AppData\Local\Temp\sqlite3.dll 2014-11-08 08:33:34 7AAB90847C56E6F7E922BB29D5B3EA8A 601088 ----a-w- C:\Users\pascale\AppData\Local\Temp\Quarantine.exe ====== Java Cache ===== 2014-11-15 18:47:06 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\pascale\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-6bf1fd4d 2014-11-15 18:47:03 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\pascale\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-7c4145af 2014-11-15 18:47:03 791E6A3D1D4CD9237EF0440DDA025A89 424 ----a-w- C:\Users\pascale\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap 2014-11-15 18:47:01 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\pascale\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-16a1e60d 2014-11-15 18:47:03 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Users\pascale\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-29cda566 ====== C:\Windows\SysWOW64 ===== 2014-11-15 18:46:04 A042349B7208BF8BED858B1E9B48B06D 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-11-12 19:51:01 5F333FDBF392850373C89BDA31EBEC1B 1346048 ----a-w- C:\Windows\SysWOW64\user32.dll 2014-11-12 19:50:45 3B45EA6108E48406828D4E015FF41DD0 12800 ----a-w- C:\Windows\SysWOW64\winshfhc.dll 2014-11-12 19:49:55 46FBD043A1688EFD6AC1395EE886AD33 3607040 ----a-w- C:\Windows\SysWOW64\msi.dll 2014-11-12 19:49:48 B09332CC976AC43EFF595B6F01AA275C 2459136 ----a-w- C:\Windows\SysWOW64\authui.dll 2014-11-12 19:49:46 48C20EB77757F22840FF4CED98D8DEB1 325120 ----a-w- C:\Windows\SysWOW64\msihnd.dll 2014-11-12 13:11:18 BC426A818B7F3DB5F509BC1B62FF1501 357376 ----a-w- C:\Windows\SysWOW64\schannel.dll 2014-11-12 13:11:17 B2AC9E081A847ACBD5B62BE25AF39DA1 88800 ----a-w- C:\Windows\SysWOW64\ncryptsslp.dll 2014-11-12 13:10:01 07330241FD9D9A03811DDBDC4F9FD18F 19781632 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-11-12 12:47:03 40B2789423E5987A65C29D61300F59A1 140280 ----a-w- C:\Windows\SysWOW64\BgGamingMonitor.dll 2014-11-12 12:46:57 8CA158DCFB0967C764231920CFC03453 64336 ----a-w- C:\Windows\SysWOW64\BGLsp.dll 2014-11-12 12:46:52 154532E0EC2317E6924A9D27F894FF2F 12819456 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-11-12 12:46:29 3CA90FDAB95FB2B0D91249BEDE3DE0D9 4298240 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-11-12 12:46:24 03D7DF4711B851EF286562F97429211D 1892864 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-11-12 12:46:19 027A2CF002AD94399B51C07E855E3B2B 1310208 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-11-12 12:46:16 F169B03C4B9996708DB20FF0C875B4FF 880128 ----a-w- C:\Windows\SysWOW64\inetcomm.dll 2014-11-12 12:46:15 98D83B6B4FBA32C39585D1E07121BEA0 2277376 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-11-12 12:46:13 8A88AD059EDC1014D5D6A472A6D1D66C 661504 ----a-w- C:\Windows\SysWOW64\jscript.dll 2014-11-12 12:46:09 8FC2FB51EB90E6AA582BDBA39C1935FD 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2014-11-12 12:46:08 A6145F4F8C69C3B46653B1C5E75A7BD6 688640 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-11-12 12:46:07 EF7A48E5955736BEECF0B0ABB478E90E 478208 ----a-w- C:\Windows\SysWOW64\ieui.dll 2014-11-12 12:46:05 E855B15E1BE0B58F84843D31F4CC4795 501248 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2014-11-12 12:46:01 108D84EE2359C595CCEA32820A2D5405 2051072 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-11-12 12:46:00 1BE74145FDF58734CFE968063533FBEC 708096 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-11-12 12:45:58 7BCC24D058205664BD700D272B169AEC 418304 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2014-11-12 12:45:58 7B0D22C64F9B6A8CD79EFADD29700693 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-11-12 12:45:54 9F6204775EB03156B430FD095E3D0B5C 325632 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2014-11-12 12:45:54 151E64E5D34DFB95D57B5B97C50DE64D 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll 2014-11-12 12:45:41 BE5EDCACB9E83C3695F650094367740C 99328 ----a-w- C:\Windows\SysWOW64\hlink.dll 2014-11-12 12:45:40 8DFBD587DBEBBC8EB50AD169DE88C449 340992 ----a-w- C:\Windows\SysWOW64\html.iec 2014-11-12 12:45:39 ED5A4451A1A2777C6C5DB4238FD09078 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-11-12 12:45:39 DCFF6E5356CFF5B50BBA0FAAE01A0412 90624 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2014-11-12 12:45:39 8A109878FA68DD1A4C91D8D499797E22 128000 ----a-w- C:\Windows\SysWOW64\iepeers.dll 2014-11-12 12:45:39 236AD481F1632F4CE7E9835FFD4AF41D 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll 2014-11-12 12:45:39 1D391C687102569FD1EA154F0C1A4CE8 91136 ----a-w- C:\Windows\SysWOW64\inseng.dll 2014-11-12 12:45:38 615D259116D1B331911CE28C8CD1CCF3 73216 ----a-w- C:\Windows\SysWOW64\tdc.ocx 2014-11-12 12:45:38 45CDC0E37774D30BEE8C5F62CE30D599 1042944 ----a-w- C:\Windows\SysWOW64\actxprxy.dll 2014-11-12 12:45:37 0FEEFF4B96CA5972121F59525142A14E 52736 ----a-w- C:\Windows\SysWOW64\msfeedsbs.dll 2014-11-12 12:45:37 02FF387F6228169EDDCB41F5E4B1A4E4 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2014-11-12 12:45:36 FC51834D5057B9D7847666AE88BC981C 130048 ----a-w- C:\Windows\SysWOW64\occache.dll 2014-11-12 12:45:36 F1313045CDCBBC4C90C34AEF67CEE088 112128 ----a-w- C:\Windows\SysWOW64\IEAdvpack.dll 2014-11-12 12:45:36 971D57DFB6F3FBC98EB74D1AF8E3C13B 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-11-12 12:45:36 159199095C9959BE75E61C0FF947708F 152064 ----a-w- C:\Windows\SysWOW64\iexpress.exe 2014-11-12 12:45:35 FCAF49AE2E10EF3823262D10E7F2D0DE 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-11-12 12:45:34 8D1E12756ED6F1FDB026AD3CF264F90C 40448 ----a-w- C:\Windows\SysWOW64\imgutil.dll 2014-11-12 12:45:34 59607FB7C6B84860CE2D1C5F7C57E052 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2014-11-12 12:45:34 53E15B8DBD615567CA8895D65746C8D3 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2014-11-12 12:45:34 316280CC22CBB15271A91D83CDFB73C3 27136 ----a-w- C:\Windows\SysWOW64\licmgr10.dll 2014-11-12 12:45:33 EF7B7299A1D6604AD3CA2CE1BEF8C8F3 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2014-11-12 12:45:33 A66A88FFE53BBB9DDAACE0110A8232EC 137728 ----a-w- C:\Windows\SysWOW64\wextract.exe 2014-11-12 12:45:33 3C544C566EE7091AC52D4D9156C62687 235520 ----a-w- C:\Windows\SysWOW64\url.dll 2014-11-12 12:45:33 26F4BDB6EA83011885E217A51A4A3E68 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2014-11-12 12:45:33 0812A503FF349D1DCEEB820B2E4FEE15 57344 ----a-w- C:\Windows\SysWOW64\pngfilt.dll 2014-11-12 12:45:31 3FA76B67F25D84B3C2A4E8A8C0919E6E 12800 ----a-w- C:\Windows\SysWOW64\mshta.exe 2014-11-12 12:45:31 1BD4CD20A25B4A3A5F7BAAC25E9D9202 11264 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe 2014-11-12 12:44:27 791BDC9FD3C95F92C7DB2162132C8645 324096 ----a-w- C:\Windows\SysWOW64\certcli.dll 2014-11-12 12:44:26 A22688490DCC2DA19441CA09EF7299BF 736768 ----a-w- C:\Windows\SysWOW64\adtschema.dll 2014-11-12 12:44:23 DDAAC7C966436938526D4CF4C6042A5C 154112 ----a-w- C:\Windows\SysWOW64\msaudite.dll 2014-11-12 12:43:50 75D0FAD0165770819770628239BF57DB 602768 ----a-w- C:\Windows\SysWOW64\oleaut32.dll 2014-11-12 12:43:43 F344D6066EA270AABABA83E2A6B6428F 723968 ----a-w- C:\Windows\SysWOW64\wuapi.dll 2014-11-12 12:43:42 DC523277A7EC2336A654960E08EB5BDC 81920 ----a-w- C:\Windows\SysWOW64\wudriver.dll 2014-11-12 12:43:42 529122F3ADC548F0CCBB6164D86FA116 124928 ----a-w- C:\Windows\SysWOW64\wuwebv.dll 2014-11-12 12:43:40 C17F3F1EE09758CF9D234B22B80A1006 25600 ----a-w- C:\Windows\SysWOW64\wups.dll 2014-11-12 12:43:40 514AEA6CF4B70FAA30A2BC4B4CC10A39 29696 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2014-11-12 12:43:17 3BF6BEBD0A5666BDB426A734A4578D9B 1346048 ----a-w- C:\Windows\SysWOW64\msxml3.dll 2014-11-12 12:43:08 FACBA112943A89FBB8AC25085521924F 344536 ----a-w- C:\Windows\SysWOW64\AUDIOKSE.dll 2014-11-12 12:43:08 22B2920A0857BDD61B1331C30AD76F30 424544 ----a-w- C:\Windows\SysWOW64\AudioEng.dll 2014-11-12 12:43:08 0CBA301F325F922FAFB3B83AD3337BB2 370424 ----a-w- C:\Windows\SysWOW64\AudioSes.dll 2014-11-12 12:43:05 D1A07DE4DC408E5AA5CFBAE261919BDC 72192 ----a-w- C:\Windows\SysWOW64\packager.dll 2014-11-12 12:42:56 CA23E168518460519DC8D49EC6AD9550 18723112 ----a-w- C:\Windows\SysWOW64\shell32.dll 2014-11-12 12:42:48 1FB4389CA807D59B105B0827FCC8F768 11820544 ----a-w- C:\Windows\SysWOW64\twinui.dll 2014-11-12 12:42:46 1793FC07D568C930C04F9FF40FFF9A69 799744 ----a-w- C:\Windows\SysWOW64\MFMediaEngine.dll 2014-11-12 12:42:46 0EEE3F2278E447498B2CDBDF34C63C91 670384 ----a-w- C:\Windows\SysWOW64\mfmp4srcsnk.dll 2014-11-12 12:42:44 C1AD30D5E28B4291D4A16BC6944ABC0C 2030592 ----a-w- C:\Windows\SysWOW64\WsmSvc.dll 2014-11-12 12:42:44 A208DEE0CD61E24817C26D5A05503DA7 334336 ----a-w- C:\Windows\SysWOW64\puiobj.dll 2014-11-12 12:42:38 17FC09725FEE2546B96A938288509719 485376 ----a-w- C:\Windows\SysWOW64\untfs.dll 2014-11-12 12:42:34 46C1902654FF54C835E4C4E8C14B7F2A 239104 ----a-w- C:\Windows\SysWOW64\FXSAPI.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-11-15 18:43:06 E45B0D12449053BE0DA9147394C734BA 512 ----a-w- C:\Windows\Sysnative\F39D4DE6-98B8-4E05-91BD-549E8A8248BD 2014-11-12 19:51:02 F0A117D19873FCDF801F082F33BFBB6C 1519488 ----a-w- C:\Windows\Sysnative\user32.dll 2014-11-12 19:50:45 668417ED63F9FBE7DD8D7A54B04279DA 14336 ----a-w- C:\Windows\Sysnative\winshfhc.dll 2014-11-12 19:49:54 EF745B98D81B8C462DB99FC8B5C4322A 3320320 ----a-w- C:\Windows\Sysnative\msi.dll 2014-11-12 19:49:49 D5B41A0C38408814A3E9BAC8C82B2E5B 2773504 ----a-w- C:\Windows\Sysnative\authui.dll 2014-11-12 19:49:47 D0C15BC83B3D0AF4F9B1D70216D91794 428032 ----a-w- C:\Windows\Sysnative\msihnd.dll 2014-11-12 19:49:46 D1A2E993DB1867C79177CCC9DB6337D0 116032 ----a-w- C:\Windows\Sysnative\consent.exe 2014-11-12 19:49:46 034ED41F13D9C1845C1E081F05B640DB 110080 ----a-w- C:\Windows\Sysnative\appinfo.dll 2014-11-12 19:49:45 9E20A052D83A81AEC35B2EA29F32637A 391168 ----a-w- C:\Windows\Sysnative\devinv.dll 2014-11-12 19:49:44 F00E643D9244F31ECF5DE8A98C2C5FC6 98816 ----a-w- C:\Windows\Sysnative\aepic.dll 2014-11-12 19:49:44 D18149850795E7203610CEE9491515F1 304128 ----a-w- C:\Windows\Sysnative\generaltel.dll 2014-11-12 19:49:44 91BB0DDA472733457072DA61178FA48E 228864 ----a-w- C:\Windows\Sysnative\aepdu.dll 2014-11-12 19:49:44 22ED46DE0E684749DA1BD703526FAA26 537088 ----a-w- C:\Windows\Sysnative\aeinv.dll 2014-11-12 13:11:18 F0CE4A653EEBA09509EAF93AE2226FA9 426496 ----a-w- C:\Windows\Sysnative\schannel.dll 2014-11-12 13:11:17 6DE50D5592C6EE18C87B0C2EEEDC1621 185856 ----a-w- C:\Windows\Sysnative\dpapisrv.dll 2014-11-12 13:11:17 622928F5A8045F8122F10561D6C35ED0 104336 ----a-w- C:\Windows\Sysnative\ncryptsslp.dll 2014-11-12 13:10:08 6432F143CDC9D73BD2BF832CAB2EDC01 25110016 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-11-12 12:47:08 BED4D30B7FF094E368333CE2D1CE3195 14390272 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-11-12 12:47:03 1722ADEE84428A882B2EF970A05C665A 153712 ----a-w- C:\Windows\Sysnative\BgGamingMonitor.dll 2014-11-12 12:46:57 76C2D101439A031D8146C04035E66AB9 76624 ----a-w- C:\Windows\Sysnative\BGLsp.dll 2014-11-12 12:46:36 079FEE6FC11A74E4309B6A10931C1CB2 6040064 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-11-12 12:46:25 BF1FC65A307B31939ADF7F976FDE033C 2365440 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-11-12 12:46:20 559E084EEBE44864493B2903433F19B3 1550336 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-11-12 12:46:19 22CBDB8810CBED0B4F5E4BE69D7E2AE8 2884096 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-11-12 12:46:18 46B5DD7C4B1851F59E48302185E076DF 1032704 ----a-w- C:\Windows\Sysnative\inetcomm.dll 2014-11-12 12:46:17 62D54F4673A6208C8CC147758122B3C3 2865152 ----a-w- C:\Windows\Sysnative\actxprxy.dll 2014-11-12 12:46:13 DE58DE2C6C8439B7174D6D3568AA4A80 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2014-11-12 12:46:12 587DEBB59F5F14C9610966FB14A33607 633856 ----a-w- C:\Windows\Sysnative\ieui.dll 2014-11-12 12:46:12 0D03DAD6BB183156C70F863D0F2FA55A 812544 ----a-w- C:\Windows\Sysnative\jscript.dll 2014-11-12 12:46:10 200CEA827BDC503F00C0AED0EA227D49 800768 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-11-12 12:46:06 258C3082AD82C1AAD335DA3FE2D3EB25 580096 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-11-12 12:45:59 F7522B00C823794F86ABD5BE1F3D6B09 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-11-12 12:45:59 175C139D51F99099D1BDA17794B02191 490496 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2014-11-12 12:45:57 BC3B7CCE855F9A8E7BC96F7062229A02 799232 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-11-12 12:45:57 62E2FCF45F349DE6CAFB3AA7E1D81DA4 2124288 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-11-12 12:45:55 A7F53772ECAE2F44B455D14F71179940 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2014-11-12 12:45:55 853BB696932E4C48EE7034BFF1209A5A 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll 2014-11-12 12:45:41 9CD8D475F462F82E6FD8BFCA7186ACD4 372736 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2014-11-12 12:45:40 FD7C8FAC461BED1FEEB808E477D884D4 716800 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-11-12 12:45:40 F0A53129AE95A895EC8C4DC36E1797A2 108544 ----a-w- C:\Windows\Sysnative\hlink.dll 2014-11-12 12:45:40 8AE1AC97407CD82D8389390C21430579 111616 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2014-11-12 12:45:40 1C3C54FA2D620DF3093F356A56EC5957 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2014-11-12 12:45:39 E40D3696BE4852956669C285038B37A6 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2014-11-12 12:45:39 AF28C90094C4C50F083599C10D2DC072 145408 ----a-w- C:\Windows\Sysnative\iepeers.dll 2014-11-12 12:45:38 C9AB2198141844D3DF96B4552CE9D5AB 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2014-11-12 12:45:38 A348DEFC16B6FBC88B7D61C3B861BCB1 107520 ----a-w- C:\Windows\Sysnative\inseng.dll 2014-11-12 12:45:38 2E475D2FCE0125FA0C486DB9D59E739B 417280 ----a-w- C:\Windows\Sysnative\html.iec 2014-11-12 12:45:38 00FB2FB8C27C834CF575BC415B80F995 87552 ----a-w- C:\Windows\Sysnative\tdc.ocx 2014-11-12 12:45:37 85E97591864F3125C5B08FB44E0E8078 60416 ----a-w- C:\Windows\Sysnative\msfeedsbs.dll 2014-11-12 12:45:37 2CEACC509889A095828F27115257408D 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-11-12 12:45:36 F79E5258AF040A8AD83C7C1273A071C3 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2014-11-12 12:45:36 70576D76A11DD5AE54E719297A315F90 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2014-11-12 12:45:35 DD8FD33C108F14681A410067AB21DDF3 152064 ----a-w- C:\Windows\Sysnative\occache.dll 2014-11-12 12:45:35 3721721151DB49457B0FD35E0C04594C 199680 ----a-w- C:\Windows\Sysnative\msrating.dll 2014-11-12 12:45:34 D66D11191B48007179B0A77DC0717267 33280 ----a-w- C:\Windows\Sysnative\licmgr10.dll 2014-11-12 12:45:34 6096209CB47D61499C3608B9C25B073C 64512 ----a-w- C:\Windows\Sysnative\pngfilt.dll 2014-11-12 12:45:34 161BC2E883A8D8759A4DCF2A85AF9128 51200 ----a-w- C:\Windows\Sysnative\imgutil.dll 2014-11-12 12:45:33 6A7F8D139610E5F3F158182778EF9275 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll 2014-11-12 12:45:32 F54E1190251EB245183BF16D6C315613 237568 ----a-w- C:\Windows\Sysnative\url.dll 2014-11-12 12:45:32 CDC8A85EB301A8CBE55A81A1D55AF5E5 132096 ----a-w- C:\Windows\Sysnative\IEAdvpack.dll 2014-11-12 12:45:32 4B9C652BD0FD95A9E6123913C35519D6 143872 ----a-w- C:\Windows\Sysnative\wextract.exe 2014-11-12 12:45:31 E99E2E88BFE584184AE92B1F8995CE93 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll 2014-11-12 12:45:31 CA2F3153EF3BCB0BD3A8984C933DF604 167424 ----a-w- C:\Windows\Sysnative\iexpress.exe 2014-11-12 12:45:31 A3871DED5ED88F59C0D1396761708F81 13824 ----a-w- C:\Windows\Sysnative\mshta.exe 2014-11-12 12:45:31 66585D645C4E23A0FD5124BD714AE020 12800 ----a-w- C:\Windows\Sysnative\msfeedssync.exe 2014-11-12 12:44:28 1D25CC0A9C480C5D56A5A6CF2B5DEB99 3547648 ----a-w- C:\Windows\Sysnative\rdpcorets.dll 2014-11-12 12:44:27 949E590B76018E4523FC71CE510ED9ED 1441792 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2014-11-12 12:44:27 91E59FCB3B32DD84E5DCDA2EA1583807 736768 ----a-w- C:\Windows\Sysnative\adtschema.dll 2014-11-12 12:44:27 488CEA4F1B4D2446FFB7A94E3CB385FE 445440 ----a-w- C:\Windows\Sysnative\certcli.dll 2014-11-12 12:44:26 3D2D2EA099D98FE6B94C7D8C7992C08C 40448 ----a-w- C:\Windows\Sysnative\rfxvmt.dll 2014-11-12 12:44:22 D7B23B3154508256C9F434EF9B65B91D 131584 ----a-w- C:\Windows\Sysnative\rdpudd.dll 2014-11-12 12:44:22 A8484FB640E044858BA19FB4F13DD4CE 154112 ----a-w- C:\Windows\Sysnative\msaudite.dll 2014-11-12 12:43:51 9A108C0A3092110F4651B3AFB9CC7B3D 789184 ----a-w- C:\Windows\Sysnative\oleaut32.dll 2014-11-12 12:43:44 DCD090318EC800CF6275C6835900B0C6 3557376 ----a-w- C:\Windows\Sysnative\wuaueng.dll 2014-11-12 12:43:43 BCC10D47920E83EAC8F2E7E2D414692E 894976 ----a-w- C:\Windows\Sysnative\wuapi.dll 2014-11-12 12:43:42 E67B019D23320AA0C5F1E6DE5D30546A 407552 ----a-w- C:\Windows\Sysnative\WUSettingsProvider.dll 2014-11-12 12:43:42 5D67074419BBFDCA587C2E2A93743E8A 140288 ----a-w- C:\Windows\Sysnative\wuwebv.dll 2014-11-12 12:43:42 2585412FC573F298FCBFD6759F8C4C0F 1714176 ----a-w- C:\Windows\Sysnative\wucltux.dll 2014-11-12 12:43:41 EA2DF5520D3623F353F43809A2F88086 55776 ----a-w- C:\Windows\Sysnative\wuauclt.exe 2014-11-12 12:43:41 CCE7F88AD038494253B485EC1B144EB3 60416 ----a-w- C:\Windows\Sysnative\wups.dll 2014-11-12 12:43:41 2E66E7D4F1E39F7048A231AA60FD2532 95744 ----a-w- C:\Windows\Sysnative\wudriver.dll 2014-11-12 12:43:40 70AC0FA699C9420CB282CCF72993C2E1 51712 ----a-w- C:\Windows\Sysnative\wups2.dll 2014-11-12 12:43:40 4D94560FD4982BB52C1FE64AE38E1A9F 35840 ----a-w- C:\Windows\Sysnative\wuapp.exe 2014-11-12 12:43:40 4A112AD7D9C7289FE9945D05E97019D0 17408 ----a-w- C:\Windows\Sysnative\wuaext.dll 2014-11-12 12:43:17 93645AEBE163230A2ED5050C14AE6603 2149376 ----a-w- C:\Windows\Sysnative\msxml3.dll 2014-11-12 12:43:08 DFDFDE2EA4B5CD0606BA6E56ECEE502D 272248 ----a-w- C:\Windows\Sysnative\audiodg.exe 2014-11-12 12:43:08 C0484CA5C7F87E38909746B63C7FC868 911360 ----a-w- C:\Windows\Sysnative\audiosrv.dll 2014-11-12 12:43:08 BB93DAAAE9006598935192B9CB65E475 108432 ----a-w- C:\Windows\Sysnative\EncDump.dll 2014-11-12 12:43:08 9F87516BF76C40B41D831F7D729A6044 482872 ----a-w- C:\Windows\Sysnative\AudioEng.dll 2014-11-12 12:43:08 9C88C9397B44B76E5C9A44B8E2CE53A1 500016 ----a-w- C:\Windows\Sysnative\AudioSes.dll 2014-11-12 12:43:08 8085F95BB18A171E7221D2831BC08BC2 394120 ----a-w- C:\Windows\Sysnative\AUDIOKSE.dll 2014-11-12 12:43:08 7F70B1044272982AAEA7C16E83424770 226304 ----a-w- C:\Windows\Sysnative\AudioEndpointBuilder.dll 2014-11-12 12:43:07 B31C4917EC5EADE24A90DDAF37EA00E0 4182016 ----a-w- C:\Windows\Sysnative\win32k.sys 2014-11-12 12:43:05 84549E8C8BF76B293A7E625A98D4BCF9 81408 ----a-w- C:\Windows\Sysnative\packager.dll 2014-11-12 12:43:00 1D303CE5BCBD5B80BBA08321F28A3F86 21197152 ----a-w- C:\Windows\Sysnative\shell32.dll 2014-11-12 12:42:57 BCE66E78D388875B87286CA091E7075F 7484224 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2014-11-12 12:42:53 C4306ADC38939CAC60EA38AAD9F170C0 13424128 ----a-w- C:\Windows\Sysnative\twinui.dll 2014-11-12 12:42:53 1907823D5ACFD75D1D8C0D4318299726 2714112 ----a-w- C:\Windows\Sysnative\SettingsHandlers.dll 2014-11-12 12:42:51 CA729FCE295895515A09BD6FF7903DC8 836176 ----a-w- C:\Windows\Sysnative\mfmp4srcsnk.dll 2014-11-12 12:42:51 C88B63FE96DB4BCED65DD442BC8E77F5 1053184 ----a-w- C:\Windows\Sysnative\localspl.dll 2014-11-12 12:42:51 A208498C5CD750A1743C1AC8162A810F 941568 ----a-w- C:\Windows\Sysnative\MFMediaEngine.dll 2014-11-12 12:42:46 50E96089F9BE352621997143A56C8E76 822272 ----a-w- C:\Windows\Sysnative\win32spl.dll 2014-11-12 12:42:45 9CE162EB9057CF079736F4DD00FC0D6C 2480128 ----a-w- C:\Windows\Sysnative\WsmSvc.dll 2014-11-12 12:42:44 5416C603B6C85CF0698E8A2A1D28BAA2 448512 ----a-w- C:\Windows\Sysnative\puiobj.dll 2014-11-12 12:42:39 8758F5DEBD2B950B2D56ED11F9E0B38F 545792 ----a-w- C:\Windows\Sysnative\untfs.dll 2014-11-12 12:42:36 6C118AEDD15FDBEAECC0E85C64B5B86B 615424 ----a-w- C:\Windows\Sysnative\FXSCOMEX.dll 2014-11-12 12:42:34 9C55CE9707B3CA29A6505BCDCC546390 275968 ----a-w- C:\Windows\Sysnative\FXSAPI.dll 2014-11-12 12:42:33 A92EF73B02686B7E6F070B486512DB88 389176 ----a-w- C:\Windows\Sysnative\ApnDatabase.xml ====== C:\Windows\Sysnative\drivers ===== 2014-11-15 17:59:06 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys 2014-11-15 17:58:33 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys 2014-11-15 17:58:33 D1F2D4DF0A5D3B700794E26356A55B44 64216 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys 2014-11-15 17:58:33 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys 2014-11-12 19:51:00 DE8D12B4C3F55FA2C5E9774314F6C58A 258368 ----a-w- C:\Windows\Sysnative\drivers\WdFilter.sys 2014-11-12 19:50:56 4AD874CDC812EC156265E451B6B09DAB 114496 ----a-w- C:\Windows\Sysnative\drivers\WdNisDrv.sys 2014-11-12 19:50:52 0359607177E5E9F6041136CC0A5CB0B6 35320 ----a-w- C:\Windows\Sysnative\drivers\WdBoot.sys 2014-11-12 12:44:27 6D2EE96150E35B9EA49F2B481DE0369A 177472 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2014-11-12 12:44:27 4E1207CE16E615B0B7A70DC889F4500E 563976 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2014-11-12 12:44:26 9F08A6608F98B5407E7DDBCF306573EF 27456 ----a-w- C:\Windows\Sysnative\drivers\rdpvideominiport.sys 2014-11-12 12:42:52 CCB3A2BB60FE5073F2DEA63FE83CF8FE 2497344 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2014-11-12 12:42:45 E3FCE2A6B3533D99A3B498504DF9CC47 474432 ----a-w- C:\Windows\Sysnative\drivers\netio.sys 2014-11-12 12:42:43 66732C13628BDB1AB0D6FD46027327C2 148800 ----a-w- C:\Windows\Sysnative\drivers\USBSTOR.SYS 2014-11-12 12:42:39 7F23E38C5B6448F91439E4066645191E 428864 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2014-10-27 11:45:03 738C34637DE488DA7CCC8D4CCA7CC289 260336 ----a-w- C:\Windows\Sysnative\drivers\NSKernel.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-11-15 19:00:31 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2014-11-15 18:46:05 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2014-11-15 18:45:40 -------- d-----w- C:\PROGRA~2\Java ======= C: ===== ====== C:\Users\pascale\AppData\Roaming ====== 2014-11-15 18:44:57 -------- d-----w- C:\Users\pascale\AppData\Locallow\Sun 2014-11-13 19:42:16 -------- d-----w- C:\Users\pascale\AppData\Local\Programs ====== C:\Users\pascale ====== 2014-11-15 19:00:23 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\pascale\Downloads\RSITx64.exe 2014-11-15 18:46:06 -------- d-----w- C:\ProgramData\Sun 2014-11-15 18:46:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-11-15 18:45:43 -------- d-----w- C:\ProgramData\Oracle 2014-11-15 18:02:57 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\Users\pascale\Downloads\chromeinstall-8u25.exe 2014-11-15 17:57:45 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\pascale\Downloads\mbam-setup-2.0.3.1025.exe 2014-11-15 17:09:51 6504113C2218667814D4F54847BA046A 2140160 ----a-w- C:\Users\pascale\Downloads\adwcleaner_4.101.exe 2014-11-13 19:41:51 1FD94FA647FAC55F255684D5D1ABDBEE 32971072 ----a-w- C:\Users\pascale\Downloads\FreeYouTubeDownload (1).exe ====== C: exe-files == 2014-11-15 19:00:41 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\pascale.exe 2014-11-15 19:00:23 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\pascale\Downloads\RSITx64.exe 2014-11-15 18:46:00 AA3520FB0133A56BEE1DB34D74DBEF64 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2014-11-15 18:46:00 75D477E868CA51EC1B09D730570F322B 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2014-11-15 18:46:00 691D49FB44EDE9788288CABE4F7E0DAF 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2014-11-15 18:45:51 E3E6B18458FFB07CB24D7A0BA77C9FDF 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\pack200.exe 2014-11-15 18:45:51 DC197DCE6325CBAC905DE0D0E3BA3E8E 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmid.exe 2014-11-15 18:45:51 7AB1F1B3FB6C3DACA34EA2F988CDF5AC 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\orbd.exe 2014-11-15 18:45:51 75EE99C7F0038C746D82C76221ECA4EF 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\policytool.exe 2014-11-15 18:45:51 67F763B09F4BC8689E6FA9761E068D74 159656 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\unpack200.exe 2014-11-15 18:45:51 57E1F756FAA787623DFCD2C1B2AACC68 51112 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssvagent.exe 2014-11-15 18:45:51 33D2AF53E209DA3E2BA939EB89801DC0 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\rmiregistry.exe 2014-11-15 18:45:51 29E65AC6AFD8A0A9CAA361FF6F7B4886 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\servertool.exe 2014-11-15 18:45:51 28FC00F89631B0F6E1E9CA386FADD566 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\tnameserv.exe 2014-11-15 18:45:50 BB8C890E3E6372F2720709262BD42BF4 30632 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jabswitch.exe 2014-11-15 18:45:50 B719E0F43166037DF46B5CFBE60A5118 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jjs.exe 2014-11-15 18:45:50 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\java.exe 2014-11-15 18:45:50 A458E2535E46151690E53E2A03FAA711 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\keytool.exe 2014-11-15 18:45:50 9BFAEF308D50779F6B255CB7BA7DCA5A 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\kinit.exe 2014-11-15 18:45:50 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaw.exe 2014-11-15 18:45:50 74713E9C1B01B152DDD3A1A3519A3647 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\java-rmi.exe 2014-11-15 18:45:50 70E67429D2C011FD0419AF899A8D0D70 68520 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\javacpl.exe 2014-11-15 18:45:50 691D49FB44EDE9788288CABE4F7E0DAF 272296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\javaws.exe 2014-11-15 18:45:50 4367C05B0CF5553E71B34F51003D0615 76200 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2launcher.exe 2014-11-15 18:45:50 4109C4DB4BD48F5BF8115C7523A6B6F8 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\klist.exe 2014-11-15 18:45:50 26C7F32186B1F0364CD06EA69227A79D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\bin\ktab.exe 2014-11-15 18:44:09 665D71558F3F0435A78DC3DD03E23F03 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1292066396-352375804-4169544752-1001\$I18XIL9.exe 2014-11-15 18:02:57 3A582BF6FD39DC6A52AAF316126B40BA 638888 ----a-w- C:\Users\pascale\Downloads\chromeinstall-8u25.exe 2014-11-15 17:57:45 33398D340008A0577507FCA7FD443622 19828376 ----a-w- C:\Users\pascale\Downloads\mbam-setup-2.0.3.1025.exe 2014-11-15 17:09:51 6504113C2218667814D4F54847BA046A 2140160 ----a-w- C:\Users\pascale\Downloads\adwcleaner_4.101.exe 2014-11-13 19:45:16 DD7F24DACD85EEDD221A55313E97DA10 5826632 ----a-w- C:\Users\pascale\AppData\Local\Temp\optprosetup.exe 2014-11-13 19:41:51 1FD94FA647FAC55F255684D5D1ABDBEE 32971072 ----a-w- C:\Users\pascale\Downloads\FreeYouTubeDownload (1).exe 2014-11-13 19:34:05 1FD94FA647FAC55F255684D5D1ABDBEE 32971072 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-1292066396-352375804-4169544752-1001\$R18XIL9.exe 2014-11-12 19:49:46 D1A2E993DB1867C79177CCC9DB6337D0 116032 ----a-w- C:\Windows\System32\consent.exe 2014-11-12 12:47:03 7856E74A3A571546F25C7B26514C0170 86864 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BgDelayStartup.exe 2014-11-12 12:47:03 515DEE2860EFD5ECF4748630969C5735 82768 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\Files32\BgDelayStartup.exe 2014-11-12 12:47:02 A6DB1F5D3D64B0E85EFDCF270733B068 359760 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\InspectorScan.exe 2014-11-12 12:46:59 D7BC1AE5B3DBA44038DD7866BA265C5A 228688 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\LittleHook.exe 2014-11-12 12:46:58 FE156055D69FE94E09E64D0CBD9B173E 306512 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BackupRun.exe 2014-11-12 12:46:58 2BB82C10908DE35F454314EC3DBB862B 381776 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BackupShellTransfer.exe 2014-11-12 12:46:57 E37CBE3B46B56E2331848796BE5DF518 235856 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\Files32\BsMailProxy\BgCertUtil32.exe 2014-11-12 12:46:57 34F87DB506E7E485BADE66AC5511F439 592208 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe 2014-11-12 12:46:57 290189128E1694CF3EB27E2928239B5F 280912 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe 2014-11-12 12:46:56 C825E42C1D520CBF9A1C714C5E80030C 248144 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BgSecErase.exe 2014-11-12 12:46:55 CAEF8AA238E6C503D43EC653AFF6FA81 476496 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BgScan.exe 2014-11-12 12:46:55 61579DC69BDB506B851B1D8B39AB3D00 130896 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\UpdatePatcher.exe 2014-11-12 12:46:55 2450314ED6CD377767FA378774D0269F 2933072 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate2.exe 2014-11-12 12:46:55 0ECE0518A6F439F043CEF0286A5DFA47 1167184 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\ManualUpdate.exe 2014-11-12 12:46:53 BBEC295070D8F6D45F84D10C2316407C 158032 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BgProbe.exe 2014-11-12 12:46:53 96D1E0D9E6E69A41FB78D53B9103D317 148816 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\Files32\BgProbe.exe 2014-11-12 12:46:53 7EDF69309275B7BBA41E0CA89706622F 1351504 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe 2014-11-12 12:46:53 745C84553B6544AC03CDD8DB84803029 154448 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BgNag.exe 2014-11-12 12:46:53 6663F49805E672A51D0E6CF1DE1CC855 71504 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BgLauncher.exe 2014-11-12 12:46:53 40ADCFFED0BDB1E5B94931DFD3E5F6D2 77648 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BgRegister.exe 2014-11-12 12:45:40 FD7C8FAC461BED1FEEB808E477D884D4 716800 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-11-12 12:45:40 1C3C54FA2D620DF3093F356A56EC5957 144384 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-11-12 12:45:39 ED5A4451A1A2777C6C5DB4238FD09078 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-11-12 12:45:39 E40D3696BE4852956669C285038B37A6 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-11-12 12:45:36 5AC6DB399DE418E3955F0CA4567BDD37 813712 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-11-12 12:45:36 159199095C9959BE75E61C0FF947708F 152064 ----a-w- C:\Windows\SysWOW64\iexpress.exe 2014-11-12 12:45:35 5F1B1148C830C0F149A476A58CE0D09D 815248 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-11-12 12:45:34 8D7C6EE90630126F79275BAC5FE16E51 468992 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2014-11-12 12:45:33 A66A88FFE53BBB9DDAACE0110A8232EC 137728 ----a-w- C:\Windows\SysWOW64\wextract.exe 2014-11-12 12:45:33 8CFC152DF5D4FCFD621EF3E231999D03 484352 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-11-12 12:45:32 CFB15ED916904B30D32DFDE29B67CDCC 25600 ----a-w- C:\Program Files (x86)\Internet Explorer\ExtExport.exe 2014-11-12 12:45:32 CC5C5634FA72689449B4BF7960AC1AD5 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-11-12 12:45:32 6A16741182E4C1E83636053C81CE344E 221184 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2014-11-12 12:45:32 4B9C652BD0FD95A9E6123913C35519D6 143872 ----a-w- C:\Windows\System32\wextract.exe 2014-11-12 12:45:31 CA2F3153EF3BCB0BD3A8984C933DF604 167424 ----a-w- C:\Windows\System32\iexpress.exe 2014-11-12 12:45:31 A3871DED5ED88F59C0D1396761708F81 13824 ----a-w- C:\Windows\System32\mshta.exe 2014-11-12 12:45:31 66585D645C4E23A0FD5124BD714AE020 12800 ----a-w- C:\Windows\System32\msfeedssync.exe 2014-11-12 12:45:31 3FA76B67F25D84B3C2A4E8A8C0919E6E 12800 ----a-w- C:\Windows\SysWOW64\mshta.exe 2014-11-12 12:45:31 1BD4CD20A25B4A3A5F7BAAC25E9D9202 11264 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe 2014-11-12 12:43:41 EA2DF5520D3623F353F43809A2F88086 55776 ----a-w- C:\Windows\System32\wuauclt.exe 2014-11-12 12:43:40 514AEA6CF4B70FAA30A2BC4B4CC10A39 29696 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2014-11-12 12:43:40 4D94560FD4982BB52C1FE64AE38E1A9F 35840 ----a-w- C:\Windows\System32\wuapp.exe 2014-11-12 12:43:08 DFDFDE2EA4B5CD0606BA6E56ECEE502D 272248 ----a-w- C:\Windows\System32\audiodg.exe 2014-11-12 12:42:57 BCE66E78D388875B87286CA091E7075F 7484224 ----a-w- C:\Windows\System32\ntoskrnl.exe 2014-11-12 12:42:42 00027BEFE4F0106DEC51901872EEDB85 86784 ----a-w- C:\Windows\ImmersiveControlPanel\SystemSettings.exe 2014-11-12 12:35:05 E20CC35E7A0C10A9E18472CFAA47C3E5 384848 ----a-w- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe === C: other files == 2014-11-15 18:45:52 CE44A9D4918DCDC7CCCF5503BF4D7A3D 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_25\lib\deploy\ffjcext.zip 2014-11-15 17:59:06 26C43960C99EE861A5D0EDC4DCF3B1C3 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-11-15 17:58:33 D3311B31C470E7681B14D9B014CBF9ED 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-11-15 17:58:33 D1F2D4DF0A5D3B700794E26356A55B44 64216 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-11-15 17:58:33 5C3669B71657F22E67A1D4BD49D2CBE7 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-11-12 19:51:00 DE8D12B4C3F55FA2C5E9774314F6C58A 258368 ----a-w- C:\Windows\System32\drivers\WdFilter.sys 2014-11-12 19:50:56 4AD874CDC812EC156265E451B6B09DAB 114496 ----a-w- C:\Windows\System32\drivers\WdNisDrv.sys 2014-11-12 19:50:52 0359607177E5E9F6041136CC0A5CB0B6 35320 ----a-w- C:\Windows\System32\drivers\WdBoot.sys 2014-11-12 12:44:27 6D2EE96150E35B9EA49F2B481DE0369A 177472 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2014-11-12 12:44:27 4E1207CE16E615B0B7A70DC889F4500E 563976 ----a-w- C:\Windows\System32\drivers\cng.sys 2014-11-12 12:44:26 9F08A6608F98B5407E7DDBCF306573EF 27456 ----a-w- C:\Windows\System32\drivers\rdpvideominiport.sys 2014-11-12 12:43:07 B31C4917EC5EADE24A90DDAF37EA00E0 4182016 ----a-w- C:\Windows\System32\win32k.sys 2014-11-12 12:42:52 CCB3A2BB60FE5073F2DEA63FE83CF8FE 2497344 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2014-11-12 12:42:45 E3FCE2A6B3533D99A3B498504DF9CC47 474432 ----a-w- C:\Windows\System32\drivers\netio.sys 2014-11-12 12:42:43 66732C13628BDB1AB0D6FD46027327C2 148800 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS 2014-11-12 12:42:39 7F23E38C5B6448F91439E4066645191E 428864 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2014-11-11 19:37:34 3C3684D39E9E3C23DA3B437C1D3CC1D2 439205751 ----a-w- C:\Users\pascale\Downloads\wetransfer-45c6e4.zip ==== Startup Registry Enabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CLMLServer_For_P2G8"="C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" "CLVirtualDrive"="C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R" "RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "YouCam Service"="C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe /s" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4" "BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp" "POSHX"="C:\Program Files (x86)\FWdriver_v\POSHX.exe /start" "BullGuard"="C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe -boot" "BullGuardUpdate2"="c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21/02/2014 20:51] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21/02/2014 20:51] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Dolby Selector" [C:\Program Files\Dolby Digital Plus\ddp.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\Synaptics TouchPad Enhancements" ["C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{638FE015-378A-4932-8071-1CEDB90CFA09}" [C:\Windows\system32\msfeedssync.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "antiphishing@bullguard"="C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\FF\antiphishing@bullguard" [02/08/2014 08:03] ==== Chromium Look ====================== Google Docs - pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Follow - pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkakfimgbmogkpmjokgnbbanmmemcdij Holmes - pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\gokficnebmomagijbakglkcmhdbchbhn Benchwarmer Dribbble for Chrome Tabs - pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhdjhhpjicomphhjpehdhjenbaamdpnn Google Wallet - pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Preferences "startup_urls": [ "https://www.google.be/" ], ==== Chromium Fix ====================== C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adblock-chrome.en.softonic.com_0.localstorage deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adblock-chrome.en.softonic.com_0.localstorage-journal deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkakfimgbmogkpmjokgnbbanmmemcdij deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gkakfimgbmogkpmjokgnbbanmmemcdij_0.localstorage deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gkakfimgbmogkpmjokgnbbanmmemcdij_0.localstorage-journal deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\gokficnebmomagijbakglkcmhdbchbhn deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gokficnebmomagijbakglkcmhdbchbhn_0.localstorage deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gokficnebmomagijbakglkcmhdbchbhn_0.localstorage-journal deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhdjhhpjicomphhjpehdhjenbaamdpnn deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lhdjhhpjicomphhjpehdhjenbaamdpnn_0.localstorage deleted successfully C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lhdjhhpjicomphhjpehdhjenbaamdpnn_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{F9C9773B-7BAC-4A66-BF65-2F19CDCD53F9}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" {F9C9773B-7BAC-4A66-BF65-2F19CDCD53F9} Bing Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB" ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" O4 - HKLM\..\Run: [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra button: Report to BullGuard - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\IE\BGAntiphishingIE.dll O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra button: Marktplaats.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - adfarm.mediaplex.com/ad/ck/5026-153897-5908-1?mpre=http%3A%2F%2Fwww.marktplaats.nl (file missing) (HKCU) O9 - Extra 'Tools' menuitem: Marktplaats.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - adfarm.mediaplex.com/ad/ck/5026-153897-5908-1?mpre=http%3A%2F%2Fwww.marktplaats.nl (file missing) (HKCU) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe O23 - Service: BullGuard Behavioural Detection (BsBhvScan) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe O23 - Service: BullGuard scanning service (BsScanner) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe O23 - Service: BullGuard update service (BsUpdate) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: CyberLink PowerDVD 10 MS Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe O23 - Service: CyberLink PowerDVD 10 MS Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: POSHXService - Unknown owner - C:\Program Files (x86)\FWdriver_v\POSHXMain.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\pascale\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\pascale\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\pascale\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\pascale\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\pascale\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=51 folders=31 103880138 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\pascale\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\pascale\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on za 15/11/2014 at 21:33:01,61 ======================