Zoek.exe v5.0.0.1 Updated 19-September-2016 Tool run by Acer on zo 16-10-2016 at 9:06:33,21. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Acer\Downloads\zoek (2).exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2016-07-22-091058.log 84969 bytes C:\zoek-results2016-07-22-121228.log 7337 bytes C:\zoek-results2016-10-15-134113.log 2209474 bytes ==== Empty Folders Check ====================== C:\Users\Acer\AppData\Local\ActiveSync deleted successfully C:\Users\Acer\AppData\Local\NetworkTiles deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\WINDOWS\SysWOW64\svchost.exe C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe C:\Program Files\Acer\Acer Updater\UpdaterService.exe C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe C:\Users\Acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Users\Acer\Downloads\zoek (2).exe C:\WINDOWS\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Wondershare Helper Compact.exe"=- [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "sp@avast.com"=- [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "sp@avast.com"=- ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\Wondershare not found C:\Program Files (x86)\Wondershare not found C:\Program Files (x86)\DVDVideoSoft deleted "C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk" deleted "C:\Users\Public\Desktop\Wondershare TunesGo.lnk" deleted "C:\Users\Public\Desktop\Wondershare Video Converter Ultimate.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free YouTube To MP3 Converter.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Uninstall.lnk" deleted "C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk" deleted "C:\Users\Public\Desktop\Wondershare TunesGo.lnk" deleted "C:\Users\Public\Desktop\Wondershare Video Converter Ultimate.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free YouTube To MP3 Converter.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Uninstall.lnk" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\dlmgr.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\libcurl.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\libeay32MD.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\msvcp120.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\msvcr120.dll" not deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\ssleay32MD.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\tier0.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\updhelperlib.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\wbrhelper.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\dlmgr.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\libcurl.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\libeay32MD.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\msvcp120.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\msvcr120.dll" not deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\ssleay32MD.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\tier0.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\updhelperlib.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\wbrhelper.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft" not deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft" not deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib" not deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib" not deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 3957 MB CPU Info: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz CPU Speed: 2155,2 MHz Sound Card: Luidsprekers (Realtek High Defi | Realtek Digital Output (Realtek | Display Adapters: AMD Mobility Radeon HD 5000 Series | AMD Mobility Radeon HD 5000 Series Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: Microsoft Hosted Network Virtual Adapter | Microsoft Wi-Fi Direct Virtual Adapter | Qualcomm Atheros AR5B93 Wireless Network Adapter | Broadcom NetLink (TM) Gigabit Ethernet CD / DVD Drives: 1x (E: | ) E: HL-DT-STDVDRAM GT32N Ports: COM3 LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 290,1GB | D: 290,4GB Hard Disks - Free: C: 172,9GB | D: 15,7GB Manufacturer *: Phoenix Technologies LTD BIOS Info: AT/AT COMPATIBLE | 07/29/10 | ACRSYS - 6040000 Time Zone: West-Europa (standaardtijd) Motherboard *: Acer Aspire 7740 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Default Browser: Google Chrome 53.0.2785.143 Internet Explorer Version: 11.633.10586.0 Google Chrome version: 53.0.2785.143 Adobe Reader version: 15.20.20039.203716 Sun Java version: 1.8.0_101 (32-bit) Sun Java version: 1.8.0_101 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Acer\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2016-10-14 13:46:03 F0B15C63D1C5D68948CED1E38D9D7C26 19349504 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2016-10-14 13:45:54 E899F64FBD7FD2226E18548879F3EFF9 12587008 ----a-w- C:\WINDOWS\SysWOW64\wmp.dll 2016-10-14 13:45:52 EB1C5DC0A5111AE1F2C15BA283DEF71E 18675200 ----a-w- C:\WINDOWS\SysWOW64\edgehtml.dll 2016-10-14 13:45:50 22951FAE924A398DA4026AD3F239C9D4 501760 ----a-w- C:\WINDOWS\SysWOW64\vbscript.dll 2016-10-14 13:45:47 53A0998113D55CEEB462DEF50DD1DE3A 687616 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2016-10-14 13:45:45 7268B051F8CBC2CC8E2F2644132C328E 5660160 ----a-w- C:\WINDOWS\SysWOW64\Chakra.dll 2016-10-14 13:45:44 AE1DC94F4142697F38588805D6990C4B 9920512 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2016-10-14 13:45:42 192496CD5BD5BA64E6E583E5F3E45005 4405248 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2016-10-14 13:45:38 EABA0B5C052A9D716E55E4204BDDAC33 12134400 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2016-10-14 13:45:34 78C4DE3B58EC5E920A9EF39064194DE4 2937896 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2016-10-14 13:45:33 3B27FE6279FE14A0308BD1CCB83CF806 1500672 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2016-10-14 13:45:32 5913C8949ECD4BFBD54E87FFF4FBC8DE 987488 ----a-w- C:\WINDOWS\SysWOW64\LicenseManager.dll 2016-10-14 13:45:31 D0107A533A6A082B88352D819516AA05 2552832 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2016-10-14 13:45:30 F5F516E1EDC4F6625DAB74BAC759F89C 538744 ----a-w- C:\WINDOWS\SysWOW64\wer.dll 2016-10-14 13:45:30 A6ADB6BDA9EBD24F049ACB4F03EDD73D 546456 ----a-w- C:\WINDOWS\SysWOW64\fontdrvhost.exe 2016-10-14 13:45:30 91834FD9B24FA4CFE3807F53AEB3E326 3664384 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2016-10-14 13:45:29 FDBA1B03254394879396C35B6EC3B043 1987584 ----a-w- C:\WINDOWS\SysWOW64\DWrite.dll 2016-10-14 13:45:28 B3911E64E160A48BFD9920C7C229F1D3 129536 ----a-w- C:\WINDOWS\SysWOW64\AboveLockAppHost.dll 2016-10-14 13:45:26 3FAC21D134DB489EB3CEE54E6A401F0C 2362880 ----a-w- C:\WINDOWS\SysWOW64\MSVidCtl.dll 2016-10-14 13:45:26 0036AC9899F54FB16BE379959F60E596 256704 ----a-w- C:\WINDOWS\SysWOW64\LockAppHost.exe 2016-10-14 13:45:23 9DB26C46FD35F84EE5589712A4313196 1467904 ----a-w- C:\WINDOWS\SysWOW64\GdiPlus.dll 2016-10-14 13:45:21 E45E3B0B271ECDC9F297759928D89FCA 885248 ----a-w- C:\WINDOWS\SysWOW64\inetcomm.dll 2016-10-14 13:45:20 CB71C0B4FEDE11C88F28F8AFEB4B4EFD 253080 ----a-w- C:\WINDOWS\SysWOW64\wmpeffects.dll 2016-10-14 13:45:20 241EF3756224E88E690D9477CFB6592E 717152 ----a-w- C:\WINDOWS\SysWOW64\drvstore.dll 2016-10-14 13:45:16 5D361E20021117B8F8232B30C3BD0208 368128 ----a-w- C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll 2016-10-14 13:45:16 08977EBCD152386722607C4D691EC1D3 217600 ----a-w- C:\WINDOWS\SysWOW64\DafPrintProvider.dll 2016-10-14 13:44:56 48978ABCE8C4EE0272D339651F54CC6C 88576 ----a-w- C:\WINDOWS\SysWOW64\adsmsext.dll 2016-10-14 13:44:55 18739B49F6A22C72223F1FE0B421812C 361472 ----a-w- C:\WINDOWS\SysWOW64\puiobj.dll 2016-10-14 13:44:53 B9E877E7F1E2DEC1FEE44A935BD12DF7 86016 ----a-w- C:\WINDOWS\SysWOW64\davclnt.dll 2016-10-14 13:44:53 A89F50D8137253D9D925AA3BBF81B82A 1626112 ----a-w- C:\WINDOWS\SysWOW64\dwmcore.dll 2016-10-14 13:44:53 87FA4EFB70B8F7A819084783B829B41B 49152 ----a-w- C:\WINDOWS\SysWOW64\offreg.dll 2016-10-14 13:44:50 DF9A39F4E4AD887E068DB101940751DD 199680 ----a-w- C:\WINDOWS\SysWOW64\WebClnt.dll 2016-10-14 13:44:49 C469ADFA7B62467E263EEA4F93F7D53F 174592 ----a-w- C:\WINDOWS\SysWOW64\wmpdxm.dll 2016-10-14 13:44:46 64E8752B7B702A2667B9F33D2097E544 102912 ----a-w- C:\WINDOWS\SysWOW64\wmpshell.dll 2016-10-14 13:44:46 066F1637D6EFB60467EED11A8E0CDFD0 175104 ----a-w- C:\WINDOWS\SysWOW64\puiapi.dll 2016-10-14 13:44:37 F5C71180D3B40E52FC6342FF392FB8C7 90112 ----a-w- C:\WINDOWS\SysWOW64\DevDispItemProvider.dll 2016-10-14 13:44:31 1A975C7701C39E9A0BDD722F840BF9EB 1526272 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2016-10-14 13:46:09 BAB6874C627235A8A6DB610B3A20ABFE 24611328 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2016-10-14 13:46:07 9BD6ECDE27F9F52E5415403EB3A528B4 22379520 ----a-w- C:\WINDOWS\Sysnative\edgehtml.dll 2016-10-14 13:46:03 83E642AD6D6B22ACFF3878FDE94E230E 85696 ----a-w- C:\WINDOWS\Sysnative\CompatTelRunner.exe 2016-10-14 13:46:03 4BCE31A0CFF319AB8C56D53FC4AA92A8 1644736 ----a-w- C:\WINDOWS\Sysnative\appraiser.dll 2016-10-14 13:46:03 1C3FF4A60401CA45A9F4D90613C60E14 144576 ----a-w- C:\WINDOWS\Sysnative\acmigration.dll 2016-10-14 13:45:59 9EE9EA0A173E3454C4FA3403B2E61BA6 6312448 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Search.dll 2016-10-14 13:45:57 C013D531AB8B8E5A5E5368668E0D0395 2610176 ----a-w- C:\WINDOWS\Sysnative\NetworkMobileSettings.dll 2016-10-14 13:45:56 979F3B4548A6C2D9E47E0166DA0A57B5 14255104 ----a-w- C:\WINDOWS\Sysnative\wmp.dll 2016-10-14 13:45:50 264E4628E7AC869318A0C0F8389D4B92 11545088 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2016-10-14 13:45:47 512D4FC3CEFE266DCF8916A635AE79BE 7836672 ----a-w- C:\WINDOWS\Sysnative\Chakra.dll 2016-10-14 13:45:47 2C8E302D218ACD550834720FEBF238AD 1242304 ----a-w- C:\WINDOWS\Sysnative\aeinv.dll 2016-10-14 13:45:46 D58F44F1396F81CC12C6470BB3FD6E3B 1637216 ----a-w- C:\WINDOWS\Sysnative\diagtrack.dll 2016-10-14 13:45:45 E65AD3789CB1F9003E7011743D98EE33 591040 ----a-w- C:\WINDOWS\Sysnative\devinv.dll 2016-10-14 13:45:44 AE742088C858602AD47B6F388965B9D9 2437120 ----a-w- C:\WINDOWS\Sysnative\DWrite.dll 2016-10-14 13:45:43 78CE6EE8AA219B0000D1AC4B532A76CF 602304 ----a-w- C:\WINDOWS\Sysnative\generaltel.dll 2016-10-14 13:45:42 3D4E1F0C1E4B007DC837F0F6D001CCD9 4895232 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2016-10-14 13:45:41 FFF49D397DC82F804BD36A13B974A174 1661952 ----a-w- C:\WINDOWS\Sysnative\FntCache.dll 2016-10-14 13:45:40 8298ED50B4314DF1C06A57A9172EB6DC 13392384 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2016-10-14 13:45:40 7D69693237DC680F4A69149EE45A7CDB 1297760 ----a-w- C:\WINDOWS\Sysnative\LicenseManager.dll 2016-10-14 13:45:40 0A369C2B689E5771D006BC505ABD169D 602624 ----a-w- C:\WINDOWS\Sysnative\vbscript.dll 2016-10-14 13:45:39 5C725A099AF4F03B02E8CE9CEF7FEC78 329920 ----a-w- C:\WINDOWS\Sysnative\invagent.dll 2016-10-14 13:45:39 115D91AE4AF313B029763C3B6EB1E26C 3549696 ----a-w- C:\WINDOWS\Sysnative\MSVidCtl.dll 2016-10-14 13:45:37 BE6CECA5BB4FD70B589D07A110B3825E 59392 ----a-w- C:\WINDOWS\Sysnative\MusNotificationUx.exe 2016-10-14 13:45:37 B64B82FB436EA1E294C4DF70AB2C5092 190464 ----a-w- C:\WINDOWS\Sysnative\MusNotification.exe 2016-10-14 13:45:36 D8D29B2C9BA2FE1FC14573A895C4E874 784384 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2016-10-14 13:45:36 957064366172D702D88B5FD7501FC7F3 7468384 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2016-10-14 13:45:36 73776D16A7A784D4A9BC4B4631869715 3693064 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2016-10-14 13:45:34 ACF0072F2DBB7C62B1C1AF1E4B0BCF94 290496 ----a-w- C:\WINDOWS\Sysnative\DeviceCensus.exe 2016-10-14 13:45:34 6D21BCAA53E849FF9D4D1847F056FE34 1728000 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2016-10-14 13:45:34 4D2F66A8775AB4A35A2C4093852D706B 224256 ----a-w- C:\WINDOWS\Sysnative\aepic.dll 2016-10-14 13:45:33 72CF4C4414191F5EBBAD97D5C226EAA2 3589120 ----a-w- C:\WINDOWS\Sysnative\win32kfull.sys 2016-10-14 13:45:32 E4A42B932F1715729A91BB5A2DF0AD44 636296 ----a-w- C:\WINDOWS\Sysnative\fontdrvhost.exe 2016-10-14 13:45:32 8094D1566E68821516C6D79B79CA5B40 3077120 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2016-10-14 13:45:31 0993B949A4E4F298CDA673FE7FF792C5 640976 ----a-w- C:\WINDOWS\Sysnative\wer.dll 2016-10-14 13:45:29 50D9090BEF853D37A719E4CBA9368035 166912 ----a-w- C:\WINDOWS\Sysnative\AboveLockAppHost.dll 2016-10-14 13:45:28 DE39B70991B32F1ED1607A32B45CE516 304752 ----a-w- C:\WINDOWS\Sysnative\LockAppHost.exe 2016-10-14 13:45:28 8B299B48AA37A0B42C8133BE7E062571 370688 ----a-w- C:\WINDOWS\Sysnative\diagtrack_win.dll 2016-10-14 13:45:28 45ED824CD8D63EB86C5EEA845D48B734 1337184 ----a-w- C:\WINDOWS\Sysnative\wpx.dll 2016-10-14 13:45:28 159F67CA72A8E2097991EA6A1C42B777 1317640 ----a-w- C:\WINDOWS\Sysnative\winload.efi 2016-10-14 13:45:27 A952032CCA99FD4ED38FA086C2977C63 1718272 ----a-w- C:\WINDOWS\Sysnative\GdiPlus.dll 2016-10-14 13:45:27 6B96A3194CCF988FE2DA96710C0B20E6 1142560 ----a-w- C:\WINDOWS\Sysnative\winload.exe 2016-10-14 13:45:27 0629FC9D68B214C542D89F8EC978360A 1390080 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2016-10-14 13:45:26 C77FB6A020D3F1DB98B95ACA41226842 1159168 ----a-w- C:\WINDOWS\Sysnative\ApplicationFrame.dll 2016-10-14 13:45:26 B0BFC96CA6D21E5A3B82928A4759C8BE 1040896 ----a-w- C:\WINDOWS\Sysnative\inetcomm.dll 2016-10-14 13:45:24 CA8C3E62F967C01E5760853512D1D698 22561256 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2016-10-14 13:45:23 AE75BFE3E3EF2FEEDFD2B988CBD4A7CF 228864 ----a-w- C:\WINDOWS\Sysnative\wsqmcons.exe 2016-10-14 13:45:23 69BE18ACCA6AEDB851AD790B0D2B948C 305808 ----a-w- C:\WINDOWS\Sysnative\wmpeffects.dll 2016-10-14 13:45:22 E7762046828ECC394E665F3C524699A3 458240 ----a-w- C:\WINDOWS\Sysnative\Windows.Devices.Enumeration.dll 2016-10-14 13:45:22 43EBA3496C60EAB3CBD7C742FB50DE5C 871776 ----a-w- C:\WINDOWS\Sysnative\drvstore.dll 2016-10-14 13:45:22 1A9E56DABCB50BDAF30ACE776A84C86E 287232 ----a-w- C:\WINDOWS\Sysnative\DafPrintProvider.dll 2016-10-14 13:45:21 BA03E92F5BD00553DA5E18BB39540F64 841728 ----a-w- C:\WINDOWS\Sysnative\win32spl.dll 2016-10-14 13:45:21 15EE3526691FCAA9CEFEC5364028679F 46080 ----a-w- C:\WINDOWS\Sysnative\musdialoghandlers.dll 2016-10-14 13:45:20 E6499DA66C7176DB96F812FAC0DA997B 268288 ----a-w- C:\WINDOWS\Sysnative\updatehandlers.dll 2016-10-14 13:45:17 A1BF2D86BE7484D4A8E194D8665B8E28 87040 ----a-w- C:\WINDOWS\Sysnative\MDMAppInstaller.exe 2016-10-14 13:45:17 0CADF20D9CBB7EEB26ACA0B5FDF01FB1 445440 ----a-w- C:\WINDOWS\Sysnative\das.dll 2016-10-14 13:45:16 C96BEEBEB236EEFDBFFE655DA472FF9C 470528 ----a-w- C:\WINDOWS\Sysnative\puiobj.dll 2016-10-14 13:45:14 3C7F744BB895B30EEC2D13CB35E8A541 875480 ----a-w- C:\WINDOWS\Sysnative\winresume.exe 2016-10-14 13:45:13 78D3E5776C5A07CA99E31530AAD613D2 1030408 ----a-w- C:\WINDOWS\Sysnative\winresume.efi 2016-10-14 13:45:07 4C38FCAC3F7A43D77D59877F2AA656D7 228864 ----a-w- C:\WINDOWS\Sysnative\WebClnt.dll 2016-10-14 13:45:06 AC05D4F5F18493EC9A8B0AF83FB8D5B8 3585536 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsThresholdAdminFlowUI.dll 2016-10-14 13:45:03 45D68FD612D37FB853CD0CF3E62D4C1D 102912 ----a-w- C:\WINDOWS\Sysnative\adsmsext.dll 2016-10-14 13:45:01 CE509404863F2AD98529B7A7D6696C23 103936 ----a-w- C:\WINDOWS\Sysnative\davclnt.dll 2016-10-14 13:44:56 32B895155257940B71BDBA995852C4B9 417792 ----a-w- C:\WINDOWS\Sysnative\bcdedit.exe 2016-10-14 13:44:55 8225191409F2E4538DC118FE67F7C148 236032 ----a-w- C:\WINDOWS\Sysnative\wmpdxm.dll 2016-10-14 13:44:55 057B856DAF94CB8F1193FA06A89829D5 64512 ----a-w- C:\WINDOWS\Sysnative\offreg.dll 2016-10-14 13:44:53 6568C2D5F21ECB82879E0D45BBA2C526 1946112 ----a-w- C:\WINDOWS\Sysnative\dwmcore.dll 2016-10-14 13:44:52 58AEAC982C2A9BD5DD21912068550F0E 128000 ----a-w- C:\WINDOWS\Sysnative\wmpshell.dll 2016-10-14 13:44:46 F4E471FF482ED00400420E1CC665B03F 201728 ----a-w- C:\WINDOWS\Sysnative\puiapi.dll 2016-10-14 13:44:37 CEB75E67377EAE286D1F15E3B45C51D6 103936 ----a-w- C:\WINDOWS\Sysnative\DevDispItemProvider.dll 2016-10-14 13:44:37 47D206F23505D534C2350EA12975E189 127488 ----a-w- C:\WINDOWS\Sysnative\pnpclean.dll 2016-10-14 13:44:34 FDD803632AD069060A06F89A018FCA3C 764928 ----a-w- C:\WINDOWS\Sysnative\Chakradiag.dll 2016-10-14 13:44:34 7BE1E8A4E02AB9B23D3261914F8714EC 1752576 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2016-10-14 13:44:28 E21E74D118E16FF9BA42A6F87F34E9B0 446124 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml ====== C:\WINDOWS\Sysnative\drivers ===== 2016-10-14 13:45:29 A4FC5B8A300394F7E219B173E2BF3A46 148992 ----a-w- C:\WINDOWS\Sysnative\drivers\dfsc.sys 2016-10-14 13:45:25 39B52DF786378EA1F72BE193D483941F 422240 ----a-w- C:\WINDOWS\Sysnative\drivers\rdbss.sys 2016-10-14 13:45:22 1BCBC80D05B8DA0BB64837D83C2DF85C 1988448 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2016-10-14 13:45:21 8486E476653BC9BAD73B567B521327CB 393056 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2016-10-14 13:45:21 066255E8080E99F4FA9397836FB3E48B 576856 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2016-10-14 13:45:20 75823700D2AEC87AF63E4A066C738FEA 129376 ----a-w- C:\WINDOWS\Sysnative\drivers\tm.sys 2016-10-14 13:45:15 7C44AE95C76EB2EA549F1202A3F8089D 604920 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2016-10-14 13:44:49 4B08308D8A2B21E96D77ABA478CB081E 144384 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxdav.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2016-09-24 05:14:52 -------- d---a-w- C:\PROGRA~2\COMMON~1\Skype ======= C: ===== ====== C:\Users\Acer\AppData\Roaming ====== 2016-10-15 12:30:43 -------- d-----w- C:\Users\Acer\AppData\Local\Temp ====== C:\Users\Acer ====== 2016-10-14 13:29:21 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Acer\Downloads\RSITx64 (1).exe 2016-09-19 08:34:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes ====== C: exe-files == 2016-10-14 13:45:19 69B567836F27A331E30B81EF1933F278 816312 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2016-10-14 13:45:18 8A36CA50E996DBB3104278AA98F8BA9A 820416 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2016-10-14 13:44:56 A0505A188CDCD755EF52096E7B2B8247 494080 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2016-10-14 13:44:56 9FFC17B08C48AFE314D469A8C2FB06B0 477184 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2016-10-14 13:44:50 E758499B428B80B08B067ABEC2652A3F 1841152 ----a-w- C:\Program Files\Windows Media Player\setup_wm.exe 2016-10-14 13:44:50 6C12364FD600FDEBC7CC23F329530A3B 91136 ----a-w- C:\Program Files\Windows Media Player\wmlaunch.exe 2016-10-14 13:44:47 9DD9113A3BCE0882DE61217B2417BD22 1807360 ----a-w- C:\Program Files (x86)\Windows Media Player\setup_wm.exe 2016-10-14 13:44:47 8B7C8B14E9868CF9CEA3FB34225670EF 73216 ----a-w- C:\Program Files (x86)\Windows Media Player\wmlaunch.exe 2016-10-14 10:57:05 565E9617713095392FE8BAA91AB9A238 1246584 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\53.0.2785.143\53.0.2785.143_53.0.2785.116_chrome_updater.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-2668737801-3381503766-2512015713-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_7360584B616087257445E78FC1FAACF2"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "Google Update"="C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe /c" "OneDrive"="C:\Users\Acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "Spotify Web Helper"="C:\Users\Acer\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "NokiaSuite.exe"="C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BackupManagerTray"="C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe -h -k" "Norton Online Backup"="C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" "SuiteTray"="C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" "EgisUpdate"="C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe -d" "EgisTecPMMUpdate"="C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" "LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe" "ArcadeDeluxeAgent"="C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" "Reader Library Launcher"="C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "EaseUS TB Tray Agent"="C:\Program Files (x86)\EaseUS\TrayPopup\TrayTipAgent.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "Wondershare Helper Compact.exe"="C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleChromeAutoLaunch_7360584B616087257445E78FC1FAACF2"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "Google Update"="C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe /c" "OneDrive"="C:\Users\Acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "Spotify Web Helper"="C:\Users\Acer\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "NokiaSuite.exe"="C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "mwlDaemon"="C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe" "PLFSetI"="C:\Windows\PLFSetI.exe" "Acer ePower Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe" "AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [12-11-2015 08:29] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29-08-2015 12:31] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [29-08-2015 12:31] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000Core.job --a-------- C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe [28-08-2015 07:40] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\WINDOWS\SysNative\tasks\Google Updater and Installer" [C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000Core" [C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-2668737801-3381503766-2512015713-1000UA" [C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\HP-Online updateprogramma" [C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe] "C:\WINDOWS\SysNative\tasks\HPCustParticipation HP DeskJet 3630 series" ["C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPCustPartic.exe"] "C:\WINDOWS\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\WINDOWS\SysNative\tasks\OneDrive Standalone Update Task" [C:\Users\Acer\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe] "C:\WINDOWS\SysNative\tasks\SafeZone scheduled Autoupdate 1467746359" [C:\Program Files\AVAST Software\SZBrowser\launcher.exe] "C:\WINDOWS\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\WINDOWS\SysNative\tasks\Tweaking.com - Windows Repair Tray Icon" [C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{17853842-4EF4-4E26-A18A-81DD6D90D839}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\{544C7FA0-F6C1-4F12-99DC-6C287F11A31D}" ["c:\users\acer\appdata\local\google\chrome\application\chrome.exe"] "C:\WINDOWS\SysNative\tasks\{7A8A6320-4F30-456B-9C69-02D1912D95E6}" ["c:\users\acer\appdata\local\google\chrome\application\chrome.exe"] "C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe] "C:\WINDOWS\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe] "C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [23-08-2016 13:50] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [23-08-2016 13:50] ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions daanglpcpkjjlkhcbladppjphglbigam - No path found[] eofcbnmajmjmplflapaojjnihcjkigck - No path found[] gomekmidlodglbbmalcneegieacbdmki - No path found[] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[25-05-2016 10:31] Avast SafePrice - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck Chrome Web Store Payments - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Chrome Media Router - Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 HKLM\SearchScopes\{8CDE19E6-71C2-4B46-89B7-35F6A18C571A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} HKCU\SearchScopes\{8CDE19E6-71C2-4B46-89B7-35F6A18C571A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== Reset Google Chrome ====================== Nothing found to reset ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" O4 - HKLM\..\Run: [Reader Library Launcher] C:\Program Files (x86)\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [EaseUS TB Tray Agent] "C:\Program Files (x86)\EaseUS\TrayPopup\TrayTipAgent.exe" O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_7360584B616087257445E78FC1FAACF2] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\Acer\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [OneDrive] "C:\Users\Acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Acer\AppData\Roaming\Spotify\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE" O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab O16 - DPF: {82E5DF24-51E8-47CD-864A-F4BD5005AA73} (iCloud Web App Plugin) - https://www.icloud.com/system/iCloud.cab O16 - DPF: {9E858349-A287-4D37-8C27-034330E160F9} (MijnAlbum Album Upload Software Control Control) - http://www.mijnalbum.nl/v3/skinsrc/core/system/aus8.0.35/Uploader8.cab O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: WSWSVCUchrome - {1CA93FF0-A218-44F1 - (no file) O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Unknown owner - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (file missing) O23 - Service: EaseUS Agent Service (EaseUS Agent) - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing) O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NTI, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Wondershare Application Framework Service (WsAppService) - Unknown owner - C:\Program Files (x86)\Wondershare\WAF\2.2.3.2\WsAppService.exe (file missing) O23 - Service: Wondershare Driver Install Service (WsDrvInst) - Unknown owner - C:\Program Files (x86)\Wondershare\TunesGo Retro\DriverInstall.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Acer\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Acer\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\DefaultAppPool\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\TEMP\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\TEMP.Acer-PC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Acer\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Acer\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Default User\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=5006 folders=387 837132242 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Acer\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\msvcr120.dll" not found "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\msvcr120.dll" not found "C:\Program Files (x86)\Common Files\DVDVideoSoft" not found "C:\Program Files (x86)\Common Files\DVDVideoSoft" not found ==== EOF on zo 16-10-2016 at 10:07:57,95 ======================