Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by JP on ma 08-06-2015 at 15:32:15,23. Microsoft Windows 8.1 6.3.9600 x64 Running in: Safe Mode NETWORK Internet Access Detected Launched: C:\Users\JP\Desktop\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2015-06-08-133105.log 100891 bytes ==== Torpig Check ====================== HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Monitor {7842554E-6BED-11D2-8CDB-B05550C10000} c:\Program Files\WIDCOMM\Bluetooth Software\btncopy.dll HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== File Information Results ====================== ==== Installed Programs ====================== 64 Bit HP CIO Components Installer Acoustica Mixcraft 6 Adobe Flash Player 16 NPAPI Adobe Reader XI (11.0.11) - Nederlands Adobe Refresh Manager AIO_CDA_Software Apple Application Support Apple Mobile Device Support Apple Software Update ASIO4ALL Audacity 2.1.0 AVG PC TuneUp 2015 BlueVoda Website Builder 12.51 Broadcom 802.11 Wireless LAN Adapter Broadcom Bluetooth Software Broadcom Wireless Utility BufferChm C3100 CDBurnerXP ChromecastApp Cloud System Booster Connected Music powered by Universal Music Group version 1.0 ControlNow Agent CyberLink LabelPrint CyberLink Media Suite 10 CyberLink PhotoDirector CyberLink Power2Go 8 CyberLink PowerDirector 10 CyberLink PowerDVD CyberLink YouCam D3DX10 Definition Update for Microsoft Office 2010 (KB3015642) 32-Bit Edition Doxillion Document Converter Dropbox EaseUS Data Recovery Wizard 8.8 eBay Toolbar Energy Star FFmpeg (Windows) for Audacity versie 2.2.2 Free FLAC Player Free YouTube Downloader 4.0.365 Freemake Video Converter versie 4.1.0 Google Chrome Google Toolbar for Internet Explorer Google Update Helper GPL Ghostscript Hewlett-Packard ACLM.NET v1.2.2.3 HP Connected Music (Meridian - installer) HP Connected Remote HP Customer Experience Enhancements HP Customer Participation Program 14.0 HP Imaging Device Functions 14.0 HP My Display HP Photosmart All-In-One Driver Software HP Postscript Converter HP Quick Start HP Registration Service HP Solution Center 14.0 HP Support Assistant HP Support Solutions Framework HP Update iCloud IDT Audio Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel© Trusted Connect Service Client IrfanView (remove only) iSkysoft Video Converter Ultimate(Build 5.1.3.0) iSkysoft Video Studio Express(Build 1.0.1.7) iTunes Java 8 Update 45 Java Auto Updater Junk Mail filter update Kingsoft PC Doctor 3.7.0.47 KMP Service LightScribe Applications LightScribe Diagnostic Utility LightScribe System Software LightScribe Template Designs - Architecture Pack 1 LightScribe Template Designs - Art Pack 1 LightScribe Template Designs - GetCrafty LightScribe Template Designs - Music Pack 1 LightScribe Template Designs - Street Style Pack 1 LightScribe Template Designs - Tattoo Pack 1 LightScribe Template Designs - With The Band LightScribe Template Labeler Malwarebytes Anti-Malware versie 2.1.6.1022 MarketResearch McAfee Security Scan Plus Microsoft Office Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook Connector Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared 64-bit MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft OneDrive Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Movie Maker MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 Mz Ultimate Tweaker v5.9 Nightly 28.0a1 (x86 en-US) OCR Software by I.R.I.S. 14.0 Panda Cloud Cleaner Panda Devices Agent Panda Free Antivirus Panda Security Toolbar Panda Security URL Filtering PC Booster Version 7 PC Wizard 2013.2.12 Photo Common Photo Gallery PhotoPad Image Editor Pivot Pro Plugin Prism Video File Converter PSTScanner QuickTime 7 Realtek Ethernet Controller Driver Realtek PCIE Card Reader Recovery Manager RegHunter SDK Security Update for Microsoft Excel 2010 (KB2965240) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2878284) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2920748) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2965242) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2999412) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2999420) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2553428) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2965237) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition Skype Click to Call SkypeT 7.5 Smart Photo Editor Trial SpyHunter 4 Stellar Phoenix Excel Repair Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD The KMPlayer (remove only) TrayApp Update for Microsoft Access 2010 (KB2837601) 32-Bit Edition Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2881026) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition Update for Microsoft Office 2010 (KB2956141) 32-Bit Edition Update for Microsoft Office 2010 (KB2965291) 32-Bit Edition Update for Microsoft Office 2010 (KB2965301) 32-Bit Edition Update for Microsoft Office 2010 (KB2999439) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956205) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2965295) 32-Bit Edition Update for Microsoft Outlook 2010 (KB3015585) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition Update for Microsoft Visio 2010 (KB2965292) 32-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2881021) 32-Bit Edition VIPRE Business Online Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Mail Windows Live Messenger Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Xiph.Org Open Codecs 0.85.17777 ==== Services(whitelist) ====================== Powered by [url=http://www.antimalwarehelp.be/EDev/]E Dev[/url] R2 - [NanoServiceMain] - Panda Protection Service - c:\program files (x86)\panda security\panda security protection\psanhost.exe R2 - [SBAMSvc] - GFI Cloud - Antivirus - c:\progra~2\logicnow\contro~1\viprebusiness\sbamsvc.exe R3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe S2 - [AnviCsbSvc] - Anvi Cloud System Booster Speed Service - c:\program files (x86)\anvisoft\cloud system booster\csbsvc.exe S2 - [Apple Mobile Device] - Apple Mobile Device - c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe S2 - [c2cautoupdatesvc] - Skype Click to Call Updater - c:\program files (x86)\skype\toolbars\autoupdate\skypec2cautoupdatesvc.exe S2 - [c2cpnrsvc] - Skype Click to Call PNR Service - c:\program files (x86)\skype\toolbars\pnrsvc\skypec2cpnrsvc.exe S2 - [gupdate] - Google Update-service (gupdate) - c:\program files (x86)\google\update\googleupdate.exe S2 - [HPConnectedRemote] - HP Connected Remote Service - c:\program files (x86)\hewlett-packard\hp connected remote\hpconnectedremoteservice.exe S2 - [KMService] - KMService - c:\windows\system32\srvany.exe [x] S2 - [KSafeSvc] - KSafe service - c:\program files (x86)\kingsoft\pcdoctor\ksafesvc.exe S2 - [MBAMService] - MBAMService - c:\program files (x86)\malwarebytes anti-malware\mbamservice.exe S2 - [sppsvc] - Software Protection - c:\windows\system32\sppsvc.exe S2 - [WinDefend] - Windows Defender Service - c:\program files\windows defender\msmpeng.exe S3 - [AdobeARMservice] - Adobe Acrobat Update Service - c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe S3 - [AESTFilters] - Andrea ST Filters Service - c:\program files\idt\wdm\aestsr64.exe S3 - [ALG] - Application Layer Gateway Service - c:\windows\system32\alg.exe S3 - [aspnet_state] - ASP.NET State Service - c:\windows\microsoft.net\framework64\v4.0.30319\aspnet_state.exe S3 - [BcmBtRSupport] - Bluetooth Driver Management Service - c:\windows\system32\btwrsupportservice.exe S3 - [btwdins] - Bluetooth Service - c:\program files\widcomm\bluetooth software\btwdins.exe S3 - [COMSysApp] - COM+ System Application - c:\windows\system32\dllhost.exe S3 - [ControlNow Agent] - ControlNow Agent - c:\program files (x86)\logicnow\controlnow agent\cloudagent.exe S3 - [cphs] - Intel(R) Content Protection HECI Service - c:\windows\syswow64\intelcphecisvc.exe S3 - [DTSRVC] - Portrait Displays Display Tune Service - c:\program files (x86)\common files\portrait displays\shared\dtsrvc.exe S3 - [Fax] - Fax - c:\windows\system32\fxssvc.exe S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe S3 - [gupdatem] - Google Update-service (gupdatem) - c:\program files (x86)\google\update\googleupdate.exe S3 - [gusvc] - Google Software Updater - c:\program files (x86)\google\common\google updater\googleupdaterservice.exe S3 - [HP Support Assistant Service] - HP Support Assistant Service - c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe S3 - [hpqwmiex] - HP Software Framework Service - c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe S3 - [HPSupportSolutionsFrameworkService] - HP Support Solutions Framework Service - c:\program files (x86)\hp\common\hpsupportsolutionsframeworkservice.exe S3 - [IconMan_R] - IconMan_R - c:\program files (x86)\realtek\realtek pcie card reader\riconman.exe S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - c:\windows\system32\ieetwcollector.exe S3 - [Intel(R) Capability Licensing Service Interface] - Intel(R) Capability Licensing Service Interface - c:\program files\intel\icls client\heciserver.exe S3 - [Intel(R) Capability Licensing Service TCP IP Interface] - Intel(R) Capability Licensing Service TCP IP Interface - c:\program files\intel\icls client\socketheciserver.exe S3 - [Intel(R) ME Service] - Intel(R) ME Service - c:\program files (x86)\intel\intel(r) management engine components\fwservice\intelmefwservice.exe S3 - [iPod Service] - iPod-service - c:\program files\ipod\bin\ipodservice.exe S3 - [jhi_service] - Intel(R) Dynamic Application Loader Host Interface Service - c:\program files (x86)\intel\intel(r) management engine components\dal\jhi_service.exe S3 - [LightScribeService] - LightScribeService Direct Disc Labeling Service - c:\program files (x86)\common files\lightscribe\lssrvc.exe S3 - [LMS] - Intel(R) Management and Security Application Local Management Service - c:\program files (x86)\intel\intel(r) management engine components\lms\lms.exe S3 - [McComponentHostService] - McAfee Security Scan Component Host Service - c:\program files\mcafee security scan\3.8.141\mcchsvc.exe S3 - [Microsoft SharePoint Workspace Audit Service] - Microsoft SharePoint Workspace Audit Service - c:\program files (x86)\microsoft office\office14\groove.exe S3 - [MSDTC] - Distributed Transaction Coordinator - c:\windows\system32\msdtc.exe S3 - [ose] - Office Source Engine - c:\program files (x86)\common files\microsoft shared\source engine\ose.exe S3 - [osppsvc] - Office Software Protection Platform - c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe S3 - [panda_url_filtering] - panda_url_filtering Service - c:\programdata\panda security url filtering\panda_url_filteringb.exe S3 - [PandaAgent] - Panda Devices Agent - c:\program files (x86)\panda security\panda devices agent\agentsvc.exe S3 - [PdiService] - Portrait Displays SDK Service - c:\program files (x86)\common files\portrait displays\drivers\pdisrvc.exe S3 - [PerfHost] - Performance Counter DLL Host - c:\windows\syswow64\perfhost.exe S3 - [PSUAService] - Panda Product Service - c:\program files (x86)\panda security\panda security protection\psuaservice.exe S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - c:\windows\system32\locator.exe S3 - [SkypeUpdate] - Skype Updater - c:\program files (x86)\skype\updater\updater.exe S3 - [SNMPTRAP] - SNMP Trap - c:\windows\system32\snmptrap.exe S3 - [SpyHunter 4 Service] - SpyHunter 4 Service - c:\program files\enigma software group\spyhunter\sh4service.exe S3 - [STacSV] - Audio Service - c:\program files\idt\wdm\stacsv64.exe S3 - [TrustedInstaller] - Windows Modules Installer - c:\windows\servicing\trustedinstaller.exe S3 - [TuneUp.UtilitiesSvc] - AVG PC TuneUp Service - c:\program files (x86)\avg\avg pc tuneup\tuneuputilitiesservice64.exe S3 - [vds] - Virtual Disk - c:\windows\system32\vds.exe S3 - [VSS] - Volume Shadow Copy - c:\windows\system32\vssvc.exe S3 - [wbengine] - Block Level Backup Engine Service - c:\windows\system32\wbengine.exe S3 - [WdNisSvc] - Windows Defender Network Inspection Service - c:\program files\windows defender\nissrv.exe S3 - [wltrysvc] - Broadcom Wireless LAN Tray Service - c:\program files\broadcom\broadcom 802.11\wltrysvc.exe c:\program files\broadcom\broadcom 802.11\bcmwltry.exe [x] S3 - [wmiApSrv] - WMI Performance Adapter - c:\windows\system32\wbem\wmiapsrv.exe S3 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - c:\program files\windows media player\wmpnetwk.exe S3 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\TNT2 not found C:\Program Files (x86)\MyPC Backup not found C:\ProgramData\3063715800003a73 deleted ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2015-06-01 12:22:26 7826082B93262AB6460E77B91C61EA30 128512 ----a-w- C:\WINDOWS\splwow64.exe ====== C:\Users\JP\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2015-06-08 12:17:14 F557E36B291BE2B28FCA4D4A68AE2219 114176 ----a-w- C:\WINDOWS\SysWOW64\PCWizard.cpl 2015-06-07 20:13:58 E99049F129B1DE728BE33BA4AF1F353B 97888 ----a-w- C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2015-06-07 17:21:33 5CE602689A05F53A633CE22897799B8C 314 ----a-w- C:\WINDOWS\SysWOW64\BroomData.bit 2015-06-05 20:08:27 16BEB0F1D32611AEC929F8E600CD3EAD 438 ----a-w- C:\WINDOWS\SysWOW64\WSCConfig.xml 2015-06-01 12:24:49 E3925B4D7AE619468031677BC95B0020 164864 ----a-w- C:\WINDOWS\SysWOW64\rascfg.dll 2015-06-01 12:23:28 7F78583D91D0FCA9678778F45328C99F 367104 ----a-w- C:\WINDOWS\SysWOW64\puiobj.dll 2015-06-01 12:23:28 02BE9F037101364A565D224194337B0C 207872 ----a-w- C:\WINDOWS\SysWOW64\rastapi.dll 2015-06-01 12:23:14 BD7E7AC5639FFE7CDDAA5A3F7A05D4A7 2483712 ----a-w- C:\WINDOWS\SysWOW64\msftedit.dll 2015-06-01 12:23:14 33BC1A74FA72C3B0EE04A23FDE1045FC 158720 ----a-w- C:\WINDOWS\SysWOW64\rgb9rast.dll 2015-06-01 12:23:04 CF6502529F3819C984A26BBD83ED3C8E 180224 ----a-w- C:\WINDOWS\SysWOW64\authz.dll 2015-06-01 12:23:00 00ED6F8562702A00D8AEC9F70CA7DDFE 1018880 ----a-w- C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-06-01 12:22:35 1302567D8675E358C60C59601D0334BF 15158784 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-06-01 12:22:33 A9957240537BEE1988B03A6B1E135773 885760 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-06-01 12:22:33 94743D320BA649382829A5FE8C12DDF1 801584 ----a-w- C:\WINDOWS\SysWOW64\mfplat.dll 2015-06-01 12:22:33 54091BD386579A661A012D5E77120B2C 786120 ----a-w- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2015-06-01 12:22:32 F96956BBED66937350B360497AAA4EE2 507392 ----a-w- C:\WINDOWS\SysWOW64\untfs.dll 2015-06-01 12:22:32 6E9C931731AB16217D3A5472B9B442EB 94208 ----a-w- C:\WINDOWS\SysWOW64\QSVRMGMT.DLL 2015-06-01 12:22:32 001E1E3546EA80D1A97E7E2BF6F72969 555520 ----a-w- C:\WINDOWS\SysWOW64\WSDApi.dll 2015-06-01 12:22:30 A81265C9CF12A9CA3F436024C1793936 624640 ----a-w- C:\WINDOWS\SysWOW64\rasapi32.dll 2015-06-01 12:22:30 A2CCF16BF1C4F60914EA2DF0BF484A6E 561664 ----a-w- C:\WINDOWS\SysWOW64\nshwfp.dll 2015-06-01 12:22:30 887DBBE8CF300A6AE9D0B5D8FF7C0915 143360 ----a-w- C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2015-06-01 12:22:30 6F57859B54404D350E525413322F7AA2 169984 ----a-w- C:\WINDOWS\SysWOW64\WinSCard.dll 2015-06-01 12:22:29 B98F9F25D0CCA83E1CA79D1F8BAA1075 465408 ----a-w- C:\WINDOWS\SysWOW64\DevicePairing.dll 2015-06-01 12:22:29 85D880636B8246BD4EF4061F25D84C18 155648 ----a-w- C:\WINDOWS\SysWOW64\QSHVHOST.DLL 2015-06-01 12:22:27 92937F1A41E6EC1D89BC4D89AC99035B 1142272 ----a-w- C:\WINDOWS\SysWOW64\vssapi.dll 2015-06-01 12:22:27 29A35A031EC84D7D9E393A59BEE37888 39424 ----a-w- C:\WINDOWS\SysWOW64\kmddsp.tsp 2015-06-01 12:22:27 205BDB00F4C032AF45A6BFD18EA7886C 498688 ----a-w- C:\WINDOWS\SysWOW64\dnsapi.dll 2015-06-01 12:22:26 7CC0DD976389300196B2DB4E3F77662C 33280 ----a-w- C:\WINDOWS\SysWOW64\rasmxs.dll 2015-06-01 12:22:26 7AB08744F06F0BDC87DC124F4276A08E 15360 ----a-w- C:\WINDOWS\SysWOW64\eventcls.dll 2015-06-01 12:22:26 75692538076B0402E7236A314A027299 55296 ----a-w- C:\WINDOWS\SysWOW64\vsstrace.dll 2015-06-01 12:22:26 210642D9D287AEDED8BB3123580177D4 22528 ----a-w- C:\WINDOWS\SysWOW64\rasser.dll 2015-06-01 12:22:26 05761DCCF02CEE514DC3B8E3A7F38DF5 272384 ----a-w- C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2015-06-01 12:22:26 017E4B714298435849AC02F32A1C6BDA 61440 ----a-w- C:\WINDOWS\SysWOW64\rasdiag.dll 2015-06-01 12:22:10 5027CAF4BFB31E4CD2918B2C2DFFC4CB 1920000 ----a-w- C:\WINDOWS\SysWOW64\mssrch.dll 2015-06-01 12:22:09 E9A91A0A589AED5328E30D8C7E59E5AE 2749952 ----a-w- C:\WINDOWS\SysWOW64\tquery.dll 2015-06-01 12:22:09 B95D112E19CFEC74692F7791ABBB03BE 391680 ----a-w- C:\WINDOWS\SysWOW64\mssph.dll 2015-06-01 12:22:09 8D4CEAEE747097A70342B80EA32E018D 710144 ----a-w- C:\WINDOWS\SysWOW64\SearchIndexer.exe 2015-06-01 12:22:09 50B6B1D4EFCB81298DE7F9415879C51B 699392 ----a-w- C:\WINDOWS\SysWOW64\mssvp.dll 2015-06-01 12:22:09 14B5D6506A366585F8D6B6097530F7F2 272896 ----a-w- C:\WINDOWS\SysWOW64\SearchProtocolHost.exe ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2015-06-07 02:11:14 E796CCF06C15CE6C7AE8E158D3BAAD02 25472 ----a-w- C:\WINDOWS\Sysnative\sh4native.exe 2015-06-05 19:13:01 E19868E59B561FD035C4BCD036C72764 48536 ----a-w- C:\WINDOWS\Sysnative\sbbd.exe 2015-06-04 19:19:42 9909F37A0AC6D4C7B0307D9CCCB89A9E 22752 ----a-w- C:\WINDOWS\Sysnative\PCloudBroom64.exe 2015-06-01 12:24:49 7954A148CD2D6FDBF31FC9229628AA99 185856 ----a-w- C:\WINDOWS\Sysnative\rascfg.dll 2015-06-01 12:23:28 D044FD35EEC3BF683B963DE10A5E00C3 222208 ----a-w- C:\WINDOWS\Sysnative\rastapi.dll 2015-06-01 12:23:28 9DF4C369F556A4FBAE7E1D86F1AA5593 309760 ----a-w- C:\WINDOWS\Sysnative\compstui.dll 2015-06-01 12:23:28 574F2184043FAF24B588BA12B3CC99CC 410336 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml 2015-06-01 12:23:28 4DC765353D890B9813AC809C0EFF488A 477184 ----a-w- C:\WINDOWS\Sysnative\puiobj.dll 2015-06-01 12:23:28 4A5D524C19BEB337797D6448020025B4 1091072 ----a-w- C:\WINDOWS\Sysnative\localspl.dll 2015-06-01 12:23:14 9703EC57F5BBB94F89CA80A5D0C12221 1429504 ----a-w- C:\WINDOWS\Sysnative\diagtrack.dll 2015-06-01 12:23:14 4C0E8295772A78291A0E256882A0D0E2 36864 ----a-w- C:\WINDOWS\Sysnative\UtcResources.dll 2015-06-01 12:23:14 3F8C7B8A4C345D0378AC79746E927158 3097600 ----a-w- C:\WINDOWS\Sysnative\msftedit.dll 2015-06-01 12:23:04 CD7DC91A7F84B4C81A06B511545DE867 275968 ----a-w- C:\WINDOWS\Sysnative\authz.dll 2015-06-01 12:23:02 E36BF37396A26C40E40DFF65F4CD4568 463872 ----a-w- C:\WINDOWS\Sysnative\SystemSettings.Handlers.dll 2015-06-01 12:23:02 DD6861B05CF8BF95A458D3D808AD0693 2171904 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlowUI.dll 2015-06-01 12:23:02 947C7EDC9BB17733CCC530489B6A2FFA 273240 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe 2015-06-01 12:23:02 64EEDEF2642AD68A3F3791D7346E8FEC 672984 ----a-w- C:\WINDOWS\Sysnative\MDMAgent.exe 2015-06-01 12:23:00 3C03E08CBB76B7081173924C52D329EE 1249280 ----a-w- C:\WINDOWS\Sysnative\UIAutomationCore.dll 2015-06-01 12:22:37 2F92532B7C872394AA9DEB5CE43B3FDB 18823168 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2015-06-01 12:22:36 4AABC3D611EEB92FDEDD1C741D63C437 4837376 ----a-w- C:\WINDOWS\Sysnative\SyncEngine.dll 2015-06-01 12:22:33 E66D01726D7B12302CBF3BBF847C9B05 1027584 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2015-06-01 12:22:33 A7F1BC7115123D2F17A4251149984080 962216 ----a-w- C:\WINDOWS\Sysnative\mfplat.dll 2015-06-01 12:22:33 9925BE7849D66AF04F778B41C9D5C7C1 952896 ----a-w- C:\WINDOWS\Sysnative\mfmp4srcsnk.dll 2015-06-01 12:22:33 69C0304BE8E4C58026A0D162AD04BF10 1154048 ----a-w- C:\WINDOWS\Sysnative\SkyDrive.exe 2015-06-01 12:22:33 57322EBB67A59FB64E228F31A84CA43D 1084416 ----a-w- C:\WINDOWS\Sysnative\IKEEXT.DLL 2015-06-01 12:22:33 2E3976C857D7230EC8D2B2276E688255 827392 ----a-w- C:\WINDOWS\Sysnative\spoolsv.exe 2015-06-01 12:22:33 0B07D6E59605DB58B780655192D7387C 128000 ----a-w- C:\WINDOWS\Sysnative\QSVRMGMT.DLL 2015-06-01 12:22:32 E9AE4FAE83FB38A2962F9032B24CEB3C 252416 ----a-w- C:\WINDOWS\Sysnative\dnsrslvr.dll 2015-06-01 12:22:32 E8F017472DAB8350583526184F8FE478 166912 ----a-w- C:\WINDOWS\Sysnative\AppxAllUserStore.dll 2015-06-01 12:22:32 75B6AD9F2BFDFE7E7C7E38F4FDD2FF1E 658432 ----a-w- C:\WINDOWS\Sysnative\WSDApi.dll 2015-06-01 12:22:32 605CC8C83761219B45B1EF271B2A9E0C 420864 ----a-w- C:\WINDOWS\Sysnative\vpnike.dll 2015-06-01 12:22:32 57C10952ED978E2BF24D904B291C8C0C 558080 ----a-w- C:\WINDOWS\Sysnative\untfs.dll 2015-06-01 12:22:32 3F0D403D47A27134F490B0951826FC37 242176 ----a-w- C:\WINDOWS\Sysnative\WinSCard.dll 2015-06-01 12:22:32 2DA3DF504868C941D7EFAE6099B73A65 309760 ----a-w- C:\WINDOWS\Sysnative\WSDMon.dll 2015-06-01 12:22:31 22A5582ACF0CEE97268D7868C69F35CE 845312 ----a-w- C:\WINDOWS\Sysnative\BFE.DLL 2015-06-01 12:22:30 9B1133CA54B4A3E852756EA174682EC8 211968 ----a-w- C:\WINDOWS\Sysnative\QSHVHOST.DLL 2015-06-01 12:22:30 0416FE95E0DC01042B46D9F6B1A1EE61 702464 ----a-w- C:\WINDOWS\Sysnative\rasapi32.dll 2015-06-01 12:22:30 03880AB54F6C9A449B9F8AC8B21472AA 713216 ----a-w- C:\WINDOWS\Sysnative\nshwfp.dll 2015-06-01 12:22:29 F0FD2757C9975EC62C3AFF9DE3415830 514048 ----a-w- C:\WINDOWS\Sysnative\DevicePairing.dll 2015-06-01 12:22:28 CCB7FDAA07F104128D5332CD6EF04D97 48128 ----a-w- C:\WINDOWS\Sysnative\kmddsp.tsp 2015-06-01 12:22:28 2C67494BD2CB71CEE84E3DA4B9DEE979 733696 ----a-w- C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll 2015-06-01 12:22:27 D06E9DE27BBB41F8AE2A0A2D6FC0F598 422400 ----a-w- C:\WINDOWS\Sysnative\FWPUCLNT.DLL 2015-06-01 12:22:27 591FB3A6559C393235F6D8A573E4E1B3 1574400 ----a-w- C:\WINDOWS\Sysnative\vssapi.dll 2015-06-01 12:22:27 3B7F9612439EA47151EC5EAB232C1C3F 1454080 ----a-w- C:\WINDOWS\Sysnative\VSSVC.exe 2015-06-01 12:22:27 0B082D6D7A53D91678E7409DD145E89C 657920 ----a-w- C:\WINDOWS\Sysnative\dnsapi.dll 2015-06-01 12:22:26 D64719E25966885AA991513A66A1A20F 16896 ----a-w- C:\WINDOWS\Sysnative\eventcls.dll 2015-06-01 12:22:26 A5F199F33C2A919AE9A15997FA7A07FD 77824 ----a-w- C:\WINDOWS\Sysnative\rasdiag.dll 2015-06-01 12:22:26 9FAF67CE7452215ACEDDB517A663454F 43008 ----a-w- C:\WINDOWS\Sysnative\rasmxs.dll 2015-06-01 12:22:26 3C4FF4AD2F023865F63017F0E6A9C649 30208 ----a-w- C:\WINDOWS\Sysnative\rasser.dll 2015-06-01 12:22:26 25AE2DD8E6F6BBD922C5F6971F124BBD 74752 ----a-w- C:\WINDOWS\Sysnative\vsstrace.dll 2015-06-01 12:22:11 F2CBC74E403A4251279D0BA9D0ECFBDB 2551808 ----a-w- C:\WINDOWS\Sysnative\mssrch.dll 2015-06-01 12:22:10 279C2DB5C56A3674DCB98165E85237CF 3633664 ----a-w- C:\WINDOWS\Sysnative\tquery.dll 2015-06-01 12:22:09 F52C9F18BE8899CF503D7D40E62C47C3 903168 ----a-w- C:\WINDOWS\Sysnative\SearchIndexer.exe 2015-06-01 12:22:09 98D0A8C3BF81774D76EAAB5977B69AB3 337408 ----a-w- C:\WINDOWS\Sysnative\SearchProtocolHost.exe 2015-06-01 12:22:09 62B3D51F60859F595317D7C3AEC5E5F2 248832 ----a-w- C:\WINDOWS\Sysnative\mssphtb.dll 2015-06-01 12:22:09 42FFA34D6A1ABBC6064E0D8A452039D3 774144 ----a-w- C:\WINDOWS\Sysnative\mssvp.dll 2015-06-01 12:22:09 3B8D14C7D33E3991090C726DD4CF7088 468480 ----a-w- C:\WINDOWS\Sysnative\mssph.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2015-06-08 11:54:46 F29E7E36F8A8A7BAC112327E842FF0B5 61712 ----a-w- C:\WINDOWS\Sysnative\drivers\PSKMAD.sys 2015-06-07 00:14:22 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\WINDOWS\Sysnative\drivers\EsgScanner.sys 2015-06-05 19:18:02 4EA5458FCA8518344686C543749365B1 41032 ----a-w- C:\WINDOWS\Sysnative\drivers\gfiark.sys 2015-06-05 19:18:02 16A23FF8621929ADC5B18DCCD5E206EE 31264 ----a-w- C:\WINDOWS\Sysnative\drivers\gfiutil.sys 2015-06-05 19:13:01 14908F4F9005C29DE8F5587E271390EE 14456 ----a-w- C:\WINDOWS\Sysnative\drivers\gfibto.sys 2015-06-01 12:24:49 B8F36CBC72FC5C8B8A30AD850165EA8E 72192 ----a-w- C:\WINDOWS\Sysnative\drivers\ndproxy.sys 2015-06-01 12:24:49 23006D660C0E54BF1CE8253E15F5E995 80896 ----a-w- C:\WINDOWS\Sysnative\drivers\wanarp.sys 2015-06-01 12:22:41 44603DA5A87FB491EF59C889EBBB4DDB 325464 ----a-w- C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS 2015-06-01 12:22:34 7EC9376D245D734791AD46738712E7D8 473408 ----a-w- C:\WINDOWS\Sysnative\drivers\netio.sys 2015-06-01 12:22:33 F6ECFD6128A16A4851CFE98D4E01B011 551232 ----a-w- C:\WINDOWS\Sysnative\drivers\vhdmp.sys 2015-06-01 12:22:33 1BD3022FD6E450B00DE560265638FD2A 112640 ----a-w- C:\WINDOWS\Sysnative\drivers\rasl2tp.sys 2015-06-01 12:22:32 715ABA3DD164D06457A2A3C92F6EA9D5 136512 ----a-w- C:\WINDOWS\Sysnative\drivers\wfplwfs.sys 2015-06-01 12:22:32 5917AFE4A3F695A54B99C1849C8207FE 59712 ----a-w- C:\WINDOWS\Sysnative\drivers\kbdclass.sys 2015-06-01 12:22:32 49EE0AE9E5B64FFBBD06D55C4984B598 108544 ----a-w- C:\WINDOWS\Sysnative\drivers\i8042prt.sys 2015-06-01 12:22:32 389C998C64319CD97625B0550E52ECFA 58176 ----a-w- C:\WINDOWS\Sysnative\drivers\dam.sys 2015-06-01 12:22:31 ED54A75050211DC77F9B98C41E026858 86336 ----a-w- C:\WINDOWS\Sysnative\drivers\pdc.sys 2015-06-01 12:22:31 AD7F69237480F6CB6294EFD9EE4CD04C 428864 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2015-06-01 12:22:31 7AA01AB1C110916825E6E1389F1B9AF2 39744 ----a-w- C:\WINDOWS\Sysnative\drivers\intelpep.sys 2015-06-01 12:22:31 3C2DF97A21A9BBE6355B0A51F288EFFF 2485056 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2015-06-01 12:22:31 08374E4E5B8914DE6067CBA99F61E930 51008 ----a-w- C:\WINDOWS\Sysnative\drivers\mouclass.sys 2015-06-01 12:22:29 8CD840A062F6BDF41DDE3ACB96164B72 32256 ----a-w- C:\WINDOWS\Sysnative\drivers\kbdhid.sys 2015-06-01 12:22:29 3EE5097945A7F680E320953271EB2D4F 96768 ----a-w- C:\WINDOWS\Sysnative\drivers\agilevpn.sys 2015-06-01 12:22:29 148195AE95D9BC7375A08846439FDAC1 26112 ----a-w- C:\WINDOWS\Sysnative\drivers\sermouse.sys 2015-06-01 12:22:28 DC1D9F692C2AD84C214584C28501C1F7 24576 ----a-w- C:\WINDOWS\Sysnative\drivers\ndistapi.sys 2015-06-01 12:22:28 5FCBAB60598AE119E02B4C27DE6B99EA 30208 ----a-w- C:\WINDOWS\Sysnative\drivers\mouhid.sys 2015-05-12 20:27:08 95B0179BDA907252025DEEA183699FB3 467776 ----a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2015-05-12 20:26:46 272A62B660A48AEF366F8A1836CED19F 57856 ----a-w- C:\WINDOWS\Sysnative\drivers\bthhfenum.sys 2015-05-12 20:22:15 5E5AB950693F2C6D6ACBEE3A74697ED7 561928 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2015-05-12 20:22:09 FE14D249D39368CA62D8DA6BC94AC694 80384 ----a-w- C:\WINDOWS\Sysnative\drivers\ahcache.sys 2015-05-12 20:22:06 C54B6B2170BF628FD42F799A66956D75 239424 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2015-05-12 20:22:06 95E295FD19F80B3AD33629B5AEFEC9C7 154432 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpsd.sys 2015-05-12 20:22:02 C61EAF8E1E4B2F62BA4FDF457440B2C6 316416 ----a-w- C:\WINDOWS\Sysnative\drivers\udfs.sys 2015-05-12 20:10:21 E9CD058C79EA15B4AA93E259FA713B07 136408 ----a-w- C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys 2015-05-12 20:10:11 54D70409DE6932E9EFA117779611E7A9 107736 ----a-w- C:\WINDOWS\Sysnative\drivers\mbamchameleon.sys 2015-05-12 20:10:11 28B597A61C9AC9B59BC0573D70A62CBF 64216 ----a-w- C:\WINDOWS\Sysnative\drivers\mwac.sys 2015-05-12 20:10:11 1E9E32AEC3E1EB1B31B8169F33168B56 25816 ----a-w- C:\WINDOWS\Sysnative\drivers\mbam.sys ====== C:\WINDOWS\Tasks ====== 2015-06-07 20:03:54 9A33690CBE112F821F730472AD85DCBB 1086 ----a-w- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-06-07 20:03:54 213F18186AF4E928302F6C161FBF8591 3822 ----a-w- C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineCore 2015-06-07 20:03:54 1C7FDB99479C730603DCB00959452AF8 4058 ----a-w- C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineUA 2015-06-07 20:03:53 BBA3F7ABD571D9B838639F309A7DCB87 1082 ----a-w- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-06-06 11:43:51 DA5A4E850EC84E248C4CD0A784295481 3596 ----a-w- C:\WINDOWS\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2905197045-733908437-2610734013-1001 2015-06-05 12:24:25 35AB1937467BC48DF17DE731F646EC3A 294 ----a-w- C:\WINDOWS\Tasks\KsafeDelay.job 2015-06-04 18:53:55 54755F297C47BC0C72D003CEE043183B 304 ---ha-w- C:\WINDOWS\Tasks\User_Feed_Synchronization-{A492CC4E-4162-423E-8886-D7FB34115904}.job 2015-05-19 21:53:15 772096B1533565D97B73C65131B7AA23 3694 ----a-w- C:\WINDOWS\Sysnative\Tasks\Adobe Reader and Acrobat Manager ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2015-06-07 00:14:20 -------- d-----w- C:\Program Files\Enigma Software Group 2015-06-06 12:06:16 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2015-06-08 12:17:12 -------- d-----w- C:\PROGRA~2\CPUID 2015-06-07 20:13:59 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2015-06-07 20:13:35 -------- d-----w- C:\PROGRA~2\Java 2015-06-07 17:36:44 -------- d-----w- C:\PROGRA~2\COMMON~1\Wise Installation Wizard 2015-06-05 18:54:03 -------- d-----w- C:\PROGRA~2\LogicNow 2015-05-18 22:02:07 -------- d-----w- C:\PROGRA~2\AVG ======= C: ===== 2015-06-07 00:15:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat ====== C:\Users\JP\AppData\Roaming ====== 2015-06-08 13:13:46 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp 2015-06-08 13:13:46 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp 2015-06-08 13:13:46 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2015-06-08 13:13:46 -------- d-----w- C:\Users\Default User\AppData\Local\Temp 2015-06-08 13:13:45 -------- d-----w- C:\Users\JP\AppData\Local\Temp 2015-06-08 13:13:45 -------- d-----w- C:\Users\Administrator\AppData\Local\Temp 2015-06-07 20:13:06 -------- d-----w- C:\Users\JP\AppData\Locallow\Sun 2015-06-07 00:14:43 -------- d-----w- C:\Users\JP\AppData\Roaming\Enigma Software Group 2015-06-05 19:58:26 -------- d-----w- C:\Users\JP\AppData\Roaming\GFI Software 2015-06-02 20:23:41 -------- d-----w- C:\Users\JP\AppData\Local\PhotoEditor 2015-06-02 20:23:41 -------- d-----w- C:\Users\JP\AppData\Local\Anthropics 2015-05-31 20:26:16 -------- d-----w- C:\Users\JP\AppData\Roaming\Audacity 2015-05-18 22:02:55 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Avg 2015-05-18 22:02:07 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Avg 2015-05-18 22:01:56 -------- d-----w- C:\Users\JP\AppData\Local\Avg 2015-05-18 22:00:35 -------- d-----w- C:\Users\JP\AppData\Roaming\How Inc ====== C:\Users\JP ====== 2015-06-08 12:17:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2015-06-08 12:16:54 A1630F4BDF5C1E008D35C9C0885DA167 5400507 ----a-w- C:\Users\JP\Downloads\pc-wizard_2014.2.13.exe 2015-06-07 20:13:59 -------- d-----w- C:\ProgramData\Sun 2015-06-07 20:13:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-06-07 20:13:41 -------- d-----w- C:\ProgramData\Oracle 2015-06-07 20:12:55 EE001F0D8A06518EB2A133741F265BEC 562272 ----a-w- C:\Users\JP\Downloads\chromeinstall-8u45.exe 2015-06-07 17:37:17 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegHunter 2015-06-07 17:28:55 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (5).exe 2015-06-07 17:28:26 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (4).exe 2015-06-07 17:16:51 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (3).exe 2015-06-07 17:16:34 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (2).exe 2015-06-07 16:57:12 9622C5F454EEC85F2FE409166ACAEB0A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (1).exe 2015-06-07 00:14:41 -------- d-----w- C:\Users\JP\Start Menu 2015-06-07 00:13:39 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer.exe 2015-06-06 12:25:19 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\JP\Downloads\RSITx64 (1).exe 2015-06-06 12:06:01 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\JP\Downloads\RSITx64.exe 2015-06-05 20:15:11 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp 2015-06-05 19:15:47 -------- d-----w- C:\ProgramData\GFI Software 2015-06-05 18:55:26 DF7AF280A92011520CEB4FDA2C4F863A 7708648 ----a-w- C:\Users\JP\Downloads\ControlNowAgentSetup (1).exe 2015-06-05 18:53:50 6C77E2EB552C00767DC2F9C33E14C928 7708648 ----a-w- C:\Users\JP\Downloads\ControlNowAgentSetup.exe 2015-06-05 18:50:00 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard 8.8 2015-06-05 18:49:38 DA59928F5FF04EBE68E81AF872ACDC4F 10758512 ----a-w- C:\Users\JP\Downloads\drw_trial.exe 2015-06-05 13:39:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellar Phoenix Excel Repair 2015-06-05 13:38:24 00E4DEACB7A12E80990788A8E3A626BA 3479688 ----a-w- C:\Users\JP\Downloads\StellarPhoenixExcelRepair.exe 2015-06-03 15:53:27 1DCBEDB23243271883348D1A5934F196 768170 ----a-w- C:\ProgramData\ltwptya.html 2015-06-02 20:29:58 B363C76B4436767024DB96A41761A0FE 841272 ----a-w- C:\Users\JP\Downloads\ppadsetup.exe 2015-06-02 20:23:25 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Photo Editor Trial 2015-06-02 20:22:41 9C53C6E28D241994D4DE66CA8D03D1D2 28007360 ----a-w- C:\Users\JP\Downloads\SmartPhotoEditorTrialSetup64.exe 2015-05-31 20:38:39 F66589EDFACD8B77F03C66F17DF3073E 271872 ----a-w- C:\Users\JP\Desktop\swresample-0.dll 2015-05-31 20:38:39 CF636553B3DDC3F7FC22079473103011 404992 ----a-w- C:\Users\JP\Desktop\swscale-2.dll 2015-05-31 20:38:39 7B4D57EBFA89AE2CE4FC39FAE7DE8820 1332224 ----a-w- C:\Users\JP\Desktop\avdevice-55.dll 2015-05-31 20:38:39 67476FD441F5DA44CE36F907758161FC 5601792 ----a-w- C:\Users\JP\Desktop\avformat-55.dll 2015-05-31 20:38:39 3D2D338E0B2291F13EE0E224EA4BF5D6 121344 ----a-w- C:\Users\JP\Desktop\postproc-52.dll 2015-05-31 20:38:39 0BE66D8FC6745D4641845A5DBC0FB721 2021376 ----a-w- C:\Users\JP\Desktop\avfilter-4.dll 2015-05-31 20:38:39 003BFA857FA3A6D481DEA99F9A09D8D8 409600 ----a-w- C:\Users\JP\Desktop\avutil-52.dll 2015-05-31 20:38:38 CE7F56C23C6D632C5264E8AB3B8D5788 18736128 ----a-w- C:\Users\JP\Desktop\avcodec-55.dll 2015-05-31 20:38:38 947FA0B5E629ACB90964A814021D24AC 1198871 ----a-w- C:\Users\JP\Desktop\unins000.exe 2015-05-31 20:38:38 6FC8E90F3A9456995F55FB3999CB04A5 301056 ----a-w- C:\Users\JP\Desktop\ffmpeg.exe 2015-05-31 20:37:06 811FA859848106F010D39E00583AFFA8 9957947 ----a-w- C:\Users\JP\Downloads\ffmpeg-win-2.2.2.exe 2015-05-31 20:24:22 4EBD0221D6A596E77F4D234B28B16A16 24210616 ----a-w- C:\Users\JP\Downloads\audacity-win-2.1.0 (1).exe 2015-05-31 20:24:12 4EBD0221D6A596E77F4D234B28B16A16 24210616 ----a-w- C:\Users\JP\Downloads\audacity-win-2.1.0.exe ====== C: exe-files == 2015-06-08 12:17:13 D64D1E9E5AAE16E1A648A981192999CC 29696 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\Mark\markx86_324.exe 2015-06-08 12:17:13 BACB957837A2EA83FD39D229726C05E6 20480 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\Data\settings.exe 2015-06-08 12:17:13 52A6DA5EDAD61ABBB0535F8EE3E44C65 21797 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\Data\pcwiz16.exe 2015-06-08 12:17:13 2E6B32958BA4AE8EBAEA020129C34D2B 218112 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\Web\webupdt.exe 2015-06-08 12:17:12 D331BDA7C6D9668DD26F7A07B2FB8D13 73728 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\PC Wizard.exe 2015-06-08 12:17:12 B80D455C1B4897AC67A790D7B49BD186 741377 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\unins000.exe 2015-06-08 12:17:12 216D3D767466CF1F9A41A662A6171DA5 608856 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\systweakasp_c.exe 2015-06-08 12:16:54 A1630F4BDF5C1E008D35C9C0885DA167 5400507 ----a-w- C:\Users\JP\Downloads\pc-wizard_2014.2.13.exe 2015-06-07 20:13:48 EED888394AC81A663F12C6EC43AB2838 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2015-06-07 20:13:48 4586CD8F1C929EF184098A22FE31A857 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2015-06-07 20:13:48 1E2E159D0621A466CFA7CE06E4DA9CAE 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2015-06-07 20:13:44 FF589C55E0CB6A0A1BD9570217BB1A42 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\tnameserv.exe 2015-06-07 20:13:44 FD8978875A992C876AF430B35DF9CFA7 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\pack200.exe 2015-06-07 20:13:44 F16868F20E4701142FAEF8C9FA847D27 30304 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jabswitch.exe 2015-06-07 20:13:44 EF66D96BC42BCE52686A7635AB11D8DD 68192 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\javacpl.exe 2015-06-07 20:13:44 EED888394AC81A663F12C6EC43AB2838 191072 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\javaw.exe 2015-06-07 20:13:44 D3DA34876B7F6D06D26D29CA77BD25A2 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\ktab.exe 2015-06-07 20:13:44 CF683290B3369A1491A5B8B4D19F79B3 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jjs.exe 2015-06-07 20:13:44 C57CA849D13177E1F43CFEF51374F1EE 159328 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\unpack200.exe 2015-06-07 20:13:44 B66ED84383EA6C6218CA47BC49C15615 50784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssvagent.exe 2015-06-07 20:13:44 A1A1BC927541346D840BBB511F557848 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\policytool.exe 2015-06-07 20:13:44 98903A3C01AA820E7FCC19A0A60126C0 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\klist.exe 2015-06-07 20:13:44 88FFC43B0E3BB3E30F70CB7B08D499B4 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\java-rmi.exe 2015-06-07 20:13:44 5DF39BE82C777B7EDAD34E3A7A7EADB7 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\rmid.exe 2015-06-07 20:13:44 4EA6A4DD2EB584C4C2BF39A9A7D0D580 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\keytool.exe 2015-06-07 20:13:44 4586CD8F1C929EF184098A22FE31A857 271968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\javaws.exe 2015-06-07 20:13:44 3C0A1F0D13A8998E9A1825A853FF3B39 15456 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\kinit.exe 2015-06-07 20:13:44 2682BB5D60C30DCB5A2BC414D01D6764 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\rmiregistry.exe 2015-06-07 20:13:44 1F29E31C6B9A487FF32006C4E223BA4F 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\orbd.exe 2015-06-07 20:13:44 1E2E159D0621A466CFA7CE06E4DA9CAE 190560 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\java.exe 2015-06-07 20:13:44 1CCD26E1E9FC582ABAA5D5FD1FA47A6B 76384 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2launcher.exe 2015-06-07 20:13:44 134D4B0A753808F8F8645DCF3FA00173 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\bin\servertool.exe 2015-06-07 20:12:55 EE001F0D8A06518EB2A133741F265BEC 562272 ----a-w- C:\Users\JP\Downloads\chromeinstall-8u45.exe 2015-06-07 20:08:14 B2BC5122F56A99FC7E9B170C4E61C0F3 42077776 ----a-w- C:\Program Files (x86)\Google\Update\Install\{6967F6AE-FE69-4CAE-8EC1-BC4542008A31}\43.0.2357.81_chrome_installer.exe 2015-06-07 20:08:14 B2BC5122F56A99FC7E9B170C4E61C0F3 42077776 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\43.0.2357.81\43.0.2357.81_chrome_installer.exe 2015-06-07 20:03:52 F6EEE6848E933962E12E7B3F25C73C88 88392 ----atw- C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateBroker.exe 2015-06-07 20:03:52 C990A8EAD57DA59FA8156CC02D3B7DA5 931408 ----a-w- C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateSetup.exe 2015-06-07 20:03:52 6732C4A894855042FD3618406B6BBD48 88392 ----atw- C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe 2015-06-07 20:03:52 0894890F30B5F6510DF953BC50B5504F 88392 ----atw- C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateWebPlugin.exe 2015-06-07 20:02:52 BB3045B399D898061B926B447C446E05 127816 ----atw- C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdateComRegisterShell64.exe 2015-06-07 20:02:46 6509A96DAE25340772B51AC020CB1094 304968 ----atw- C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe 2015-06-07 20:02:44 8715A0D10CFFC8DEE923957F07DAA042 244040 ----atw- C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe 2015-06-07 20:02:44 0C03FB91E17987EED93F60007B08DAA0 144200 ----atw- C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleUpdate.exe 2015-06-07 20:02:36 C990A8EAD57DA59FA8156CC02D3B7DA5 931408 ----a-w- C:\Program Files (x86)\Google\Update\Install\{BF046322-8967-4C6E-BAD9-84B70F76A7A8}\GoogleUpdateSetup.exe 2015-06-07 20:02:36 C990A8EAD57DA59FA8156CC02D3B7DA5 931408 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.27.5\GoogleUpdateSetup.exe 2015-06-07 17:36:29 9F04C8F41F522F8CB233B436E2B420B3 919936 ----a-w- C:\Program Files\Enigma Software Group\SpyHunter\Downloads\RegHunter_Web_Setup.exe.exe 2015-06-07 17:28:55 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (5).exe 2015-06-07 17:28:26 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (4).exe 2015-06-07 17:16:51 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (3).exe 2015-06-07 17:16:34 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (2).exe 2015-06-07 16:57:12 9622C5F454EEC85F2FE409166ACAEB0A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer (1).exe 2015-06-07 00:14:43 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\AppData\Roaming\Enigma Software Group\sh_installer.exe 2015-06-07 00:14:26 E796CCF06C15CE6C7AE8E158D3BAAD02 25472 ----a-w- C:\Program Files\Enigma Software Group\SpyHunter\native.exe 2015-06-07 00:14:21 F845E730A534BA17372368372DF01579 8260480 ----a-w- C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe 2015-06-07 00:14:21 492DD2C144612A8F6F9C39F27F009667 1026432 ----a-w- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe 2015-06-07 00:13:39 B9FF555660A02DC4D3EAFF58357BE02A 3109248 ----a-w- C:\Users\JP\Downloads\SpyHunter-Installer.exe 2015-06-06 12:25:19 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\JP\Downloads\RSITx64 (1).exe 2015-06-06 12:06:17 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\JP.exe 2015-06-06 12:06:01 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\JP\Downloads\RSITx64.exe 2015-06-05 19:16:04 BDAA2803D08776473384382206CCA2F1 471544 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\cloudagentrcl.exe 2015-06-05 19:13:00 B59A48633E9A05D93F9DC0309C43F5B6 338824 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\CartSdk64.exe 2015-06-05 19:13:00 AD2961325270F3A34F36BB5622C62292 47496 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\amd64\sbbd.exe 2015-06-05 19:13:00 7D7A100919F0416FAC602F5345005058 44424 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\i386\sbbd.exe 2015-06-05 19:13:00 1A9D1452ABBC7C6DA6F6EC874669B7E9 200560 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\sbrc.exe 2015-06-05 19:12:59 BDAA2803D08776473384382206CCA2F1 471544 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\featureres\cloudagentrcl_2.exe 2015-06-05 18:55:26 DF7AF280A92011520CEB4FDA2C4F863A 7708648 ----a-w- C:\Users\JP\Downloads\ControlNowAgentSetup (1).exe 2015-06-05 18:54:03 E82A25B8F5AC16151A3E371C8CBAF2C6 1444864 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\assetscan.exe 2015-06-05 18:54:03 C5D124B1D8ABBB23B5C37529880E02CC 729600 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\cloudlink\cloudlinkmonitor.exe 2015-06-05 18:54:03 AD9C773E69BFB4FA558B71F715D05F78 71680 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\cloudlink\rrdupdate.exe 2015-06-05 18:54:03 9C5D31EC138A5EAD3D9576E084D05071 8994296 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\cloudagent.exe 2015-06-05 18:54:03 7F5FFD1F6B65E966A98C85C8043941A6 9728 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\wsus2.exe 2015-06-05 18:54:03 5740EC63D089397026FDE620A464AD6C 6656 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\wsus.exe 2015-06-05 18:54:03 44370895428BDFF222070744878E9DD5 207872 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\cloudlink\rrdtool.exe 2015-06-05 18:54:03 35E2022B663B7E4698767886B42F3BFB 717985 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\unins000.exe 2015-06-05 18:53:50 6C77E2EB552C00767DC2F9C33E14C928 7708648 ----a-w- C:\Users\JP\Downloads\ControlNowAgentSetup.exe 2015-06-05 18:49:58 EA9A5ADE1EB7392EB74A4BEF0005A24A 1141288 ----a-w- C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\unins000.exe 2015-06-05 18:49:58 E66CC0B58159E8001D6719DB7D5A0C85 525864 ----a-w- C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\OfficeViewer.exe 2015-06-05 18:49:58 6399F450269A05C6A4DF310FBE6A952B 549928 ----a-w- C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\DRWReport.exe 2015-06-05 18:49:58 24555B8F264F4F384234EF0F55901012 464936 ----a-w- C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\ureport.exe 2015-06-05 18:49:58 0157DDB36C369F76DE20560BC7097407 8208424 ----a-w- C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\DRWUI.exe 2015-06-05 18:49:58 00AF43A5504304564783A55C8D17C4A9 501288 ----a-w- C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\DRW.exe 2015-06-05 18:49:38 DA59928F5FF04EBE68E81AF872ACDC4F 10758512 ----a-w- C:\Users\JP\Downloads\drw_trial.exe 2015-06-05 13:39:11 FFF49D197DDDD4E003F921E1B410B7DF 740541 ----a-w- C:\Users\JP\Desktop\Stellar Phoenix Excel Repair\unins000.exe 2015-06-05 13:39:11 8DE6FC78DCC8CAE5D1DEDAF1CA7A85F3 9251264 ----a-w- C:\Users\JP\Desktop\Stellar Phoenix Excel Repair\ser.exe 2015-06-05 13:38:24 00E4DEACB7A12E80990788A8E3A626BA 3479688 ----a-w- C:\Users\JP\Downloads\StellarPhoenixExcelRepair.exe 2015-06-02 20:30:09 B363C76B4436767024DB96A41761A0FE 841272 ----a-w- C:\Program Files (x86)\NCH Software\PhotoPad\photopadsetup_v2.69.exe 2015-06-02 20:30:08 64BFF9F1885024CE725C797A86EAF525 2358328 ----a-w- C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe 2015-06-02 20:29:58 B363C76B4436767024DB96A41761A0FE 841272 ----a-w- C:\Users\JP\Downloads\ppadsetup.exe 2015-06-02 20:23:24 B18E7C956916474AA08F2734B8A06688 662568 ----a-w- C:\Users\JP\Desktop\Smart Photo Editor Trial\PEUninstallerUi.exe 2015-06-02 20:23:23 DF5ECFDF5675FADD00143C07C76430FC 1816104 ----a-w- C:\Users\JP\Desktop\Smart Photo Editor Trial\ZRawLoader.exe 2015-06-02 20:23:21 956BA8372E6079EB223EA4C9DFB3FF21 1194185 ----a-w- C:\Users\JP\Desktop\Smart Photo Editor Trial\unins000.exe 2015-06-02 20:23:21 5DA2A1554E0B47548001F06DE9A5C42B 16991784 ----a-w- C:\Users\JP\Desktop\Smart Photo Editor Trial\SmartPhotoEditorTrial.exe 2015-06-02 20:22:41 9C53C6E28D241994D4DE66CA8D03D1D2 28007360 ----a-w- C:\Users\JP\Downloads\SmartPhotoEditorTrialSetup64.exe 2015-06-02 15:20:24 BE61EC1A3DAF8C9CBE2E0A737C47320E 28785792 ----a-r- C:\Program Files (x86)\Skype\Phone\Skype.exe === C: other files == 2015-06-08 12:17:13 F60A9B88C6FF07D4990D8653D0025683 29928 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_ia64.sys 2015-06-08 12:17:13 E425C66663C96D5A9F030B0AD4D219A8 26856 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_x32.sys 2015-06-08 12:17:13 5212E0957468D3F94D90FA7A0F06B58F 26856 ----a-w- C:\Program Files (x86)\CPUID\PC Wizard 2013\pcwiz_x64.sys 2015-06-08 11:54:46 F29E7E36F8A8A7BAC112327E842FF0B5 61712 ----a-w- C:\Windows\System32\drivers\PSKMAD.sys 2015-06-07 20:13:44 5DDC15149346900F16B38C65502BACA9 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_45\lib\deploy\ffjcext.zip 2015-06-07 00:15:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat 2015-06-07 00:14:26 F845E730A534BA17372368372DF01579 8260480 ----a-w- C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.com 2015-06-07 00:14:25 7AEC5E76816178BF6C543A155D8208B6 15920 ----a-w- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys 2015-06-07 00:14:22 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Windows\System32\drivers\EsgScanner.sys 2015-06-07 00:14:22 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Program Files\Enigma Software Group\SpyHunter\EsgScanner.sys 2015-06-07 00:06:10 51EEF8F9C1BBF99C55C2D008890A67F0 27205 ----a-w- C:\Users\JP\Downloads\Invoice_20154281106_060315 (2).zip 2015-06-07 00:04:07 9AE5CC8878D8CBCB243BFADE673F45CA 27205 ----a-w- C:\Users\JP\Downloads\Invoice_20154281106_060315 (1).zip 2015-06-07 00:02:07 38CAB8A4475291CD2AB3AA05182B9AE5 27205 ----a-w- C:\Users\JP\Downloads\Invoice_20154281106_060315.zip 2015-06-05 19:18:02 FE4D369172AC1CC19C876BDB5BDC31A3 43368 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\viprebusiness\gfiark32.sys 2015-06-05 19:18:02 4EA5458FCA8518344686C543749365B1 41032 ----a-w- C:\Windows\System32\drivers\gfiark.sys 2015-06-05 19:18:02 4EA5458FCA8518344686C543749365B1 41032 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\viprebusiness\gfiark64.sys 2015-06-05 19:18:02 3EAEB9143A5DBC1082785BBBE8D8CFEA 24040 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\viprebusiness\gfiutl32.sys 2015-06-05 19:18:02 16A23FF8621929ADC5B18DCCD5E206EE 31264 ----a-w- C:\Windows\System32\drivers\gfiutil.sys 2015-06-05 19:18:02 16A23FF8621929ADC5B18DCCD5E206EE 31264 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\viprebusiness\gfiutl64.sys 2015-06-05 19:17:55 FE4D369172AC1CC19C876BDB5BDC31A3 43368 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\viprebusiness\Definitions\gfiark32.sys 2015-06-05 19:17:55 4EA5458FCA8518344686C543749365B1 41032 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\viprebusiness\Definitions\gfiark64.sys 2015-06-05 19:17:55 3EAEB9143A5DBC1082785BBBE8D8CFEA 24040 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\viprebusiness\Definitions\gfiutl32.sys 2015-06-05 19:17:55 16A23FF8621929ADC5B18DCCD5E206EE 31264 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\viprebusiness\Definitions\gfiutl64.sys 2015-06-05 19:13:01 14908F4F9005C29DE8F5587E271390EE 14456 ----a-w- C:\Windows\System32\drivers\gfibto.sys 2015-06-05 19:13:00 483924F92E55A5F9423201EC635E2CED 13560 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\i386\gfibto.sys 2015-06-05 19:13:00 14908F4F9005C29DE8F5587E271390EE 14456 ----a-w- C:\Program Files (x86)\LogicNow\ControlNow Agent\amd64\gfibto.sys 2015-06-01 20:09:27 E318659B5B9C6C0CBE19426ABF2839B4 458 ----a-w- C:\ProgramData\panda_url_filtering\white.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2905197045-733908437-2610734013-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_D485D20C06BDCDEB626207281C5C94F7"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "CloudSystemBooster"="C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe /hide /autorun" "LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "BackgroundContainer"="C:\windows\SysWOW64\Rundll32.exe C:\Users\JP\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll,DllRun" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "CloudSystemBooster"="C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe /hide /autorun" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "mmonitor"="C:\Program Files (x86)\Anvisoft\Cloud System Booster\extentions\Toolbox\Anvi RAM Booster\Anvi_RAM_Booster.exe hide=1" "GoogleChromeAutoLaunch_D485D20C06BDCDEB626207281C5C94F7"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "KSafeTray"="C:\Program files (x86)\Kingsoft\PCDoctor\KSafeTray.exe -autorun" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "PivotSoftware"="C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe -delay=10" "DT HPO"="C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe -HPO" "CLMLServer_For_P2G8"="c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "CLVirtualDrive"="c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe /R" "BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices" "HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "BrowserPlugInHelper"="C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\BrowserPlugInHelper.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "iSkysoft Helper Compact.exe"="C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe" "DelaypluginInstall"="C:\ProgramData\iSkysoft\Video Converter Ultimate\DelayPluginI.exe" "PSUAMain"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe /LaunchSysTray" "KSafeTray"="C:\Program files (x86)\Kingsoft\PCDoctor\KSafeTray.exe -autorun" "iSkysoft Helper Compact.exe"="2014-07-09T17:38:01" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_D485D20C06BDCDEB626207281C5C94F7"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "CloudSystemBooster"="C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe /hide /autorun" "LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden" "BackgroundContainer"="C:\windows\SysWOW64\Rundll32.exe C:\Users\JP\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll,DllRun" "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "CloudSystemBooster"="C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe /hide /autorun" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "mmonitor"="C:\Program Files (x86)\Anvisoft\Cloud System Booster\extentions\Toolbox\Anvi RAM Booster\Anvi_RAM_Booster.exe hide=1" "GoogleChromeAutoLaunch_D485D20C06BDCDEB626207281C5C94F7"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "BeatsOSDApp"="C:\Program Files\IDT\WDM\beats64.exe" "Broadcom Wireless Manager UI"="C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe" "SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe" ==== Startup Folders ====================== 2015-05-10 19:59:44 1182 ----a-w- C:\Users\JP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [04-02-2015 22:29] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-09-2013 15:56] C:\WINDOWS\tasks\KsafeDelay.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\User_Feed_Synchronization-{A492CC4E-4162-423E-8886-D7FB34115904}.job --ah------- C:\WINDOWS\system32\msfeedssync.exe [31-10-2014 05:25] C:\WINDOWS\tasks\{2D8EAB7C-1E04-460E-AC14-BB1920624DCF}.job --ah------- C:\Program Files (x86)\Panda Security\Panda Security Protection\JobLauncher.exe [27-02-2015 01:03] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Reader and Acrobat Manager" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\File validation" ["c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\HPResignFileLoader.exe"] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP SoftPaq Installer" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Tasks.exe] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\WINDOWS\SysNative\tasks\NCH Software\PhotoPadSevenDays" [C:\Program Files (x86)\NCH Software\PhotoPad\PhotoPad.exe] "C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Folders in C:\PROGRA~3 0-6 Months Old ====================== 2015-04-03 21:49:41 -------- d-----w- C:\PROGRA~3\Panda Security 2015-04-03 21:56:33 -------- d-----w- C:\PROGRA~3\Panda Security URL Filtering 2015-04-03 21:56:34 -------- d-----w- C:\PROGRA~3\panda_url_filtering 2015-04-04 16:06:18 -------- d-----w- C:\PROGRA~3\Kingsoft 2015-04-04 16:06:49 -------- d-----w- C:\PROGRA~3\KSafe 2015-05-02 20:41:32 -------- d-----w- C:\PROGRA~3\WinZip 2015-06-05 19:15:47 -------- d-----w- C:\PROGRA~3\GFI Software 2015-06-07 20:13:41 -------- d-----w- C:\PROGRA~3\Oracle 2015-06-07 20:13:59 -------- d-----w- C:\PROGRA~3\Sun ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{845257EF-A892-484e-8EB0-47F563D75939}"="C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRFirefoxExt" [15-05-2014 18:09] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "{845257EF-A892-484e-8EB0-47F563D75939}"="C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRFirefoxExt" [15-05-2014 18:09] ==== Firefox Extensions ====================== ProfilePath: C:\Users\JP\AppData\Roaming\Mozilla\Firefox\Profiles\id397kht.default-1383233796378 - Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox - iSkysoft Video Converter Ultimate - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com - iSkysoft Video Converter Ultimate - C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRFirefoxExt - Adblock Plus Pop-up Addon - %ProfilePath%\extensions\adblockpopups@jessehakanen.net.xpi - eBay Sidebar pour Firefox - %ProfilePath%\extensions\{62760FD6-B943-48C9-AB09-F99C6FE96088}.xpi ==== Firefox Plugins ====================== ==== Chromium Look ====================== Google Chrome Version: 43.0.2357.81 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bopakagnckmlgajfccecajhnimjiiedh - No path found[] fdhbkaahephniejapepaiggngjnedpci - No path found[] jbolfgndggfhhpbnkgnpjkfhinclbigj - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[24-10-2013 11:37] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01-05-2015 11:17] nomnoaehhnmbolpapbjeopogjfefdpnl - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com.crx[22-05-2014 14:33] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions fcfenmboojpjinhpgggodefccipikbpd - No path found[] Comodo Web Inspector - JP\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn Comodo Share Page Service - JP\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\mcmdgbiocnkpnaccjkailibfgepaccgf Bookmark Manager - JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik Freemake Video Converter - JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj Skype Click to Call - JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Google Wallet - JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda iSkysoft Video Converter Ultimate - JP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nomnoaehhnmbolpapbjeopogjfefdpnl ==== Chromium Startpages ====================== C:\Users\JP\AppData\Local\Comodo\Dragon\User Data\Default\Preferences "homepage": "http://www.search.ask.com/?o=APN10257&gct=hp", "homepage": "http://www.search.ask.com/?o=APN10257&gct=hp", C:\Users\JP\AppData\Local\Google\Chrome\User Data\Default\Preferences ic"}],"network_stats":{"srtt":18967},"supports_spdy":true},"www.googletagmanager.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":19356}},"www.googletagservices.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"www.googletagservices.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}],"network_stats":{"srtt":17028}},"www.gstatic.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"network_stats":{"srtt":18960}},"www.gstatic.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":21671}},"www.snapengage.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"www.stratoblogster.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"www.testedich.de:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"www.youtube-nocookie.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"www.youtube.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"network_stats":{"srtt":16769}},"www.youtube.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":16484}},"youtu.be:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"youtu.be:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"yt3.ggpht.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"network_stats":{"srtt":18434}}},"supports_quic":{"address":"192.168.178.36","used_quic":true},"version":3}},"ntp":{"app_page_names":["Apps"]},"partition":{"per_host_zoom_levels":{"2166136261":{"www.ebay.com":1.2239010857415449,"www.facebook.com":-0.5778829311823857,"www.jpstingray.com":2.223901085741545}}},"plugins":{"migrated_to_pepper_flash":true,"plugins_list":[],"removed_old_component_pepper_flash_settings":true},"printing":{"print_preview_sticky_settings":{"appState":"{\"version\":2,\"isGcpPromoDismissed\":false,\"selectedDestinationId\":\"HP LaserJet 1018\",\"selectedDestinationOrigin\":\"local\",\"selectedDestinationAccount\":\"\",\"selectedDestinationCapabilities\":{\"printer\":{\"collate\":{\"default\":false},\"color\":{\"option\":[{\"is_default\":true,\"type\":\"STANDARD_MONOCHROME\",\"vendor_id\":\"1\"}]},\"copies\":{},\"dpi\":{\"option\":[{\"horizontal_dpi\":600,\"is_default\":true,\"vertical_dpi\":600}]},\"duplex\":{\"option\":[{\"is_default\":true,\"type\":\"NO_DUPLEX\"},{\"type\":\"LONG_EDGE\"},{\"type\":\"SHORT_EDGE\"}]},\"media_size\":{\"option\":[{\"custom_display_name\":\"Letter\",\"height_microns\":279400,\"name\":\"NA_LETTER\",\"vendor_id\":\"1\",\"width_microns\":215900},{\"custom_display_name\":\"Legal\",\"height_microns\":355600,\"name\":\"NA_LEGAL\",\"vendor_id\":\"5\",\"width_microns\":215900},{\"custom_display_name\":\"Executive\",\"height_microns\":266700,\"name\":\"NA_EXECUTIVE\",\"vendor_id\":\"7\",\"width_microns\":184200},{\"custom_display_name\":\"A4\",\"height_microns\":297000,\"is_default\":true,\"name\":\"ISO_A4\",\"vendor_id\":\"9\",\"width_microns\":210000},{\"custom_display_name\":\"A5\",\"height_microns\":210000,\"name\":\"ISO_A5\",\"vendor_id\":\"11\",\"width_microns\":148000},{\"custom_display_name\":\"Envelope #10\",\"height_microns\":241300,\"name\":\"NA_NUMBER_10\",\"vendor_id\":\"20\",\"width_microns\":104600},{\"custom_display_name\":\"Envelope DL\",\"height_microns\":220000,\"name\":\"ISO_DL\",\"vendor_id\":\"27\",\"width_microns\":110000},{\"custom_display_name\":\"Envelope C5\",\"height_microns\":229000,\"name\":\"ISO_C5\",\"vendor_id\":\"28\",\"width_microns\":162000},{\"custom_display_name\":\"Envelope B5\",\"height_microns\":250000,\"name\":\"ISO_B5\",\"vendor_id\":\"34\",\"width_microns\":176000},{\"custom_display_name\":\"Envelope Monarch\",\"height_microns\":190500,\"name\":\"NA_MONARCH\",\"vendor_id\":\"37\",\"width_microns\":98300},{\"custom_display_name\":\"B5 (JIS)\",\"height_microns\":257000,\"name\":\"JIS_B5\",\"vendor_id\":\"13\",\"width_microns\":182000},{\"custom_display_name\":\"A6\",\"height_microns\":148000,\"name\":\"ISO_A6\",\"vendor_id\":\"262\",\"width_microns\":105000},{\"custom_display_name\":\"Double Post Card\",\"height_microns\":200000,\"name\":\"JPN_OUFUKU\",\"vendor_id\":\"261\",\"width_microns\":148000},{\"custom_display_name\":\"Post Card\",\"height_microns\":148000,\"name\":\"JPN_HAGAKI\",\"vendor_id\":\"260\",\"width_microns\":100000},{\"custom_display_name\":\"8.5x13\",\"height_microns\":330200,\"name\":\"JIS_EXEC\",\"vendor_id\":\"258\",\"width_microns\":215900},{\"custom_display_name\":\"16K\",\"height_microns\":273100,\"name\":\"ROC_16K\",\"vendor_id\":\"257\",\"width_microns\":196900}]},\"page_orientation\":{\"option\":[{\"is_default\":true,\"type\":\"PORTRAIT\"},{\"type\":\"LANDSCAPE\"},{\"type\":\"AUTO\"}]},\"supported_content_type\":[{\"content_type\":\"application/pdf\"}]},\"version\":\"1.0\"},\"selectedDestinationName\":\"HP LaserJet 1018\",\"mediaSize\":{\"custom_display_name\":\"A4\",\"height_microns\":297000,\"is_default\":true,\"name\":\"ISO_A4\",\"vendor_id\":\"9\",\"width_microns\":210000}}"}},"profile":{"avatar_bubble_tutorial_shown":2,"avatar_index":0,"content_settings":{"exceptions":{"app_banner":{},"auto_select_certificate":{},"automatic_downloads":{},"cookies":{},"fullscreen":{},"geolocation":{},"images":{},"javascript":{},"media_stream":{},"media_stream_camera":{},"media_stream_mic":{},"metro_switch_to_desktop":{},"midi_sysex":{},"mixed_script":{},"mouselock":{},"notifications":{},"plugins":{"[*.]www.jpstingrayguitars.com,*":{"setting":1}},"popups":{},"ppapi_broker":{},"protocol_handlers":{},"push_messaging":{},"ssl_cert_decisions":{}},"pattern_pairs":{"[*.]www.jpstingrayguitars.com,*":{"plugins":1}},"pref_version":1},"created_by_version":"41.0.2272.101","exit_type":"Crashed","exited_cleanly":true,"gaia_info_picture_url":"https://lh4.googleusercontent.com/-ku2j1eOW92I/AAAAAAAAAAI/AAAAAAAAADM/Ys58wSk3lIg/s256-c/photo.jpg","gaia_info_update_time":"13077922664118212","icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"JP","per_host_zoom_levels":{}},"protection":{"macs":{}},"savefile":{"default_directory":"C:\\Users\\JP\\Desktop","type":1},"selectfile":{"last_directory":"C:\\rsit"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13073869453796374"},"spellcheck":{"dictionary":"en-US"},"translate_accepted_count":{"en":0},"translate_blocked_languages":["nl"],"translate_denied_count":{"en":2},"translate_last_denied_time":1429396234228.679,"translate_too_often_denied":true,"translate_whitelists":{}} ==== C:\zoek_backup content ====================== C:\zoek_backup (files=868 folders=229 78190504 bytes) ==== EOF on ma 08-06-2015 at 15:42:49,98 ======================