Zoek.exe v5.0.0.0 Updated 17-February-2014 Tool run by Lode on di 18/02/2014 at 22:40:35,04. Microsoft Windows 8.1 Pro 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Lode\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 18/02/2014 22:41:54 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AGEIA Technologies deleted successfully C:\Program Files\log deleted successfully C:\PROGRA~3\ALM deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\Users\Lode\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Running Processes ====================== C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Hotkey\PowerBiosServer.exe C:\WINDOWS\SysWOW64\rpcnet.exe C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Roxio Creator NXT 2\Roxio Burn\RoxioBurnLauncher.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe C:\Program Files (x86)\Hotkey\Hotkey.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Users\Lode\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- ==== Deleting Files \ Folders ====================== C:\Users\Lode\AppData\Roaming\Mozilla\Firefox\Profiles\di0b1mdk.default\extensions\staged not found C:\Users\Lode\AppData\Roaming\Mozilla\Firefox\Profiles\di0b1mdk.default\extensions\artur.dubovoy@gmail.com deleted C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 deleted C:\Users\Lode\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 deleted C:\WINDOWS\Syswow64\SET102F.tmp deleted C:\WINDOWS\Syswow64\SETF916.tmp deleted "C:\WINDOWS\Syswow64\SET944.tmp" deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 24467 MB CPU Info: Intel(R) Core(TM) i7-3740QM CPU @ 2.70GHz CPU Speed: 2759,3 MHz Sound Card: Luidsprekers (Realtek High Defi | Realtek Digital Output (Realtek | Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | NVIDIA GeForce GTX 660M Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Bluetooth-apparaat (Personal Area Network) | Intel(R) Centrino(R) Advanced-N 6235 | Realtek PCIe GBE Family-controller CD / DVD Drives: 1x (D: | ) D: TSSTcorpCDDVDW SN-208AB Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 465,7GB | E: 1863,0GB Hard Disks - Free: C: 386,4GB | E: 1183,6GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 10/26/12 | ALASKA - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: CLEVO CO. W35_37ET Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: Kaspersky Anti-Virus On-access scanning disabled (Outdated) Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Kaspersky Anti-Virus disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Firefox 27.0.1 Internet Explorer Version: 11.0.9600.16518 Mozilla Firefox version: 27.0.1 (x86 nl) Google Chrome version: 32.0.1700.107 Adobe Reader version: 11.0.06.70 Sun Java version: 1.7.0_51 (32-bit) Flash Player version: 12.0.0.44 Shockwave Player version: 12.0.7r148 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Lode\AppData\Local\Temp ==== 2014-02-17 10:36:10 E3A25C80E2375B2D42C3D4729769BDF3 10240 ----a-w- C:\Users\Lode\AppData\Local\Temp\SDIAG_ee627594-c10d-4865-b351-b54a5ca9ee0e\NetworkDiagnosticSnapIn.dll 2014-02-15 11:09:01 95850C60993CC05B978D6313C858C46F 272664 ----a-w- C:\Users\Lode\AppData\Local\Temp\Step2.exe 2014-02-15 11:06:32 DE2594D67FE8B09756FC62024CFD7C79 12136960 ----a-w- C:\Users\Lode\AppData\Local\Temp\Step1.msi ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2014-02-18 17:21:18 8E0BB968FF41D80E5F2C747C04DB79AE 248672 ----a-w- C:\WINDOWS\SysWOW64\d3dx11_43.dll 2014-02-18 17:21:18 20C835843FCEC4DEDFCD7BFFA3B91641 470880 ----a-w- C:\WINDOWS\SysWOW64\d3dx10_43.dll 2014-02-18 17:21:17 86E39E9161C3D930D93822F1563C280D 1998168 ----a-w- C:\WINDOWS\SysWOW64\D3DX9_43.dll 2014-02-18 17:20:50 240336B677D7AA89059EE1FCAB04DA2A 1048152 ----a-w- C:\WINDOWS\SysWOW64\nvspcap.dll 2014-02-18 17:18:08 D54F4C9F00DBB4740A6782372E8B09DE 33056 ----a-w- C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2014-02-18 17:18:08 7DC5F85DE8E0F2CC0812400CEBBE9284 15740232 ----a-w- C:\WINDOWS\SysWOW64\nvwgf2um.dll 2014-02-18 17:18:07 EB43435428983B765F84E7AEFD8F53D3 863520 ----a-w- C:\WINDOWS\SysWOW64\NvIFR.dll 2014-02-18 17:18:07 DDED1206C0F67CCA99E451C445229BA1 408352 ----a-w- C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2014-02-18 17:18:07 AF56825148F85742F3867BE7B1D36AB3 2956576 ----a-w- C:\WINDOWS\SysWOW64\nvcuvid.dll 2014-02-18 17:18:07 A09D95925DB75AF8E0EB9CCF9C64E1EA 17560352 ----a-w- C:\WINDOWS\SysWOW64\nvcompiler.dll 2014-02-18 17:18:07 9FC52654FE92A915556170B6143D9495 2410784 ----a-w- C:\WINDOWS\SysWOW64\nvcuvenc.dll 2014-02-18 17:18:07 7B19364BFEC1F325945FBDDF7664645F 14669032 ----a-w- C:\WINDOWS\SysWOW64\nvd3dum.dll 2014-02-18 17:18:07 78E17F87A9C027B60F638A3EAEE11924 23683360 ----a-w- C:\WINDOWS\SysWOW64\nvoglv32.dll 2014-02-18 17:18:07 774C51EE5FC8DB1E7CEB84212AE3F3C6 305600 ----a-w- C:\WINDOWS\SysWOW64\nvoglshim32.dll 2014-02-18 17:18:07 674AF82E1093CF739DE110B0F6E67DA6 2713728 ----a-w- C:\WINDOWS\SysWOW64\nvapi.dll 2014-02-18 17:18:07 6625501E3A3B35737B31B281A151585B 9728064 ----a-w- C:\WINDOWS\SysWOW64\nvcuda.dll 2014-02-18 17:18:07 5477F6C607976A15E2E70599C647612C 844576 ----a-w- C:\WINDOWS\SysWOW64\NvFBC.dll 2014-02-18 17:18:07 4748606583AC023E87FD50656802CF73 333600 ----a-w- C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2014-02-18 17:18:07 3482778F0F0ED7497602BF490A813886 9690424 ----a-w- C:\WINDOWS\SysWOW64\nvopencl.dll 2014-02-16 12:06:46 7FA3046AC2751A408899EFD331FE1980 479744 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2014-02-16 12:06:45 6A7D239E3A3B90818B9BFE7B7CCD4BFC 584192 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2014-02-16 12:06:39 9EA661DB9B393F46046D6181A3DDC4AD 2804528 ----a-w- C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2014-02-16 12:06:37 BEFC9EE0724E53E004A6316C20931F99 2142936 ----a-w- C:\WINDOWS\SysWOW64\mfcore.dll 2014-02-16 12:06:36 A6A82DE8976069DBA0256AE5327110B5 1371312 ----a-w- C:\WINDOWS\SysWOW64\combase.dll 2014-02-16 12:06:35 2E6C68B92DFB0A95771F6DD7A4179FFE 13925888 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2014-02-16 12:06:33 E0C156E4380CE5C64CFBF2650895038D 18642504 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2014-02-16 12:06:33 72B3380DA5EA53028501F3B94E421FBB 2295808 ----a-w- C:\WINDOWS\SysWOW64\authui.dll 2014-02-16 12:06:32 D11A05032C28EE7588C135ECF7B49E81 1204968 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll 2014-02-16 12:06:30 15DF7EF29273464E6112E7A131537BCD 669344 ----a-w- C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-02-16 12:06:29 92124EF7B1BF5492EFCA17B3A208E4F4 663680 ----a-w- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2014-02-16 12:06:28 FF73CDC3F09904D82B0CCC1CA750CD02 218112 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.dll 2014-02-16 12:06:28 C85EA737B20BEDC46CBA748DCE115184 433664 ----a-w- C:\WINDOWS\SysWOW64\mfds.dll 2014-02-16 12:06:27 CF4C3815E577C7DC32BB8DB90F0B34C1 552624 ----a-w- C:\WINDOWS\SysWOW64\oleaut32.dll 2014-02-16 12:06:26 4E556E5490191ED9B771576D9221A461 273920 ----a-w- C:\WINDOWS\SysWOW64\msieftp.dll 2014-02-16 12:06:26 48B8013201B1846F893A83606248A8CC 336384 ----a-w- C:\WINDOWS\SysWOW64\XpsGdiConverter.dll 2014-02-16 12:06:26 06730D9C233B01E2F99C1BE2461629F7 980480 ----a-w- C:\WINDOWS\SysWOW64\mispace.dll 2014-02-16 12:06:25 ECD4A3F754224C954D3D19B6ECBFE5AA 513536 ----a-w- C:\WINDOWS\SysWOW64\rastls.dll 2014-02-13 17:07:19 F0769848C6438AF1FF45E495219222B7 444928 ----a-w- C:\WINDOWS\SysWOW64\msdrm.dll 2014-02-13 17:06:59 9A21A14A25A7BC3D0EC1ED56CC75B4B7 17408 ----a-w- C:\WINDOWS\SysWOW64\pcaui.exe 2014-02-13 17:06:58 94443607F11CA635408A89F598C16DDD 835584 ----a-w- C:\WINDOWS\SysWOW64\KernelBase.dll 2014-02-13 17:06:56 E31D12A9F5F358D60B8B34A1949DCE45 11702272 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2014-02-13 17:06:55 419E037A7BAE52E665F89FB22FCC5D87 4961792 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2014-02-13 17:06:54 D5B5184F8C258D2C3AC70E3799C7A4BF 830976 ----a-w- C:\WINDOWS\SysWOW64\SearchFolder.dll 2014-02-13 17:06:54 46C6D8A6B4DEBBB55B6DA6B92C100599 1202888 ----a-w- C:\WINDOWS\SysWOW64\propsys.dll 2014-02-13 17:06:54 2100B28C34C4FCE916A4A61F58E31198 9701 ----a-w- C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms 2014-02-13 17:06:43 7D30E75C5C0FEAA40B79775C92C6AF23 628736 ----a-w- C:\WINDOWS\SysWOW64\MrmCoreR.dll 2014-02-13 17:06:43 5D2A65C08953962327A21A51B5FC2089 1020928 ----a-w- C:\WINDOWS\SysWOW64\actxprxy.dll 2014-02-13 17:06:42 5A37BBFA3A43556806DE5DDAD682766B 105984 ----a-w- C:\WINDOWS\SysWOW64\SkyDriveShell.dll 2014-02-13 15:21:58 C9C0B562C7AA50A672766AAC8112DF05 3936256 ----a-w- C:\WINDOWS\SysWOW64\d2d1.dll 2014-02-13 15:21:57 2754B116D797255B6A2F2F5DB1760238 2071552 ----a-w- C:\WINDOWS\SysWOW64\d3d10warp.dll 2014-02-13 15:21:55 5254A52E0F354BC7955E309C4166CE0A 1317376 ----a-w- C:\WINDOWS\SysWOW64\msxml3.dll 2014-02-13 15:21:53 5D9DC6332A4FC66388B09BBE7CF53750 1156096 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2014-02-13 15:21:53 34CBED7698D557DDB43F8732FBC2ACB9 2168320 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2014-02-13 15:21:53 260D6B421E5551E8BA75D16B5CA90D9A 51200 ----a-w- C:\WINDOWS\SysWOW64\ieetwproxystub.dll 2014-02-13 15:21:52 C9D1131E2163CE932DF3EAAF0EEA3673 524288 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2014-02-13 15:21:52 C863E5A2417DF0F2A31ED32C3B2CB23F 17103872 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2014-02-13 15:21:52 0E7B7C9F483300F9FF97C6A1E4BC4F57 32768 ----a-w- C:\WINDOWS\SysWOW64\iernonce.dll 2014-02-13 15:21:51 408805B8083896DC95E6340F4016BEBD 61952 ----a-w- C:\WINDOWS\SysWOW64\iesetup.dll 2014-02-13 15:21:50 40E68599FE3A10F816217D3789FCE74E 1964032 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2014-02-13 15:21:50 0F739443669F3A48F1B2325995117BFE 553472 ----a-w- C:\WINDOWS\SysWOW64\jscript9diag.dll 2014-02-13 15:21:49 6A06EB11F1E5BDAA795DAE7838F9FE20 43008 ----a-w- C:\WINDOWS\SysWOW64\jsproxy.dll 2014-02-13 15:21:48 B5B3334F177CED627C2D7FE38235B6B1 2724864 ----a-w- C:\WINDOWS\SysWOW64\mshtml.tlb 2014-02-13 15:21:48 79FA7D8B488F90EDE325963379A6F738 11266048 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2014-02-13 15:21:46 B8F28AAC003060E3B125D2447CFC19E2 164864 ----a-w- C:\WINDOWS\SysWOW64\msrating.dll 2014-02-13 15:21:46 99280392987A1A96C756A9F38C4CE396 4244480 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2014-02-13 15:21:46 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\WINDOWS\SysWOW64\ieUnatt.exe 2014-02-13 15:21:46 5DD49C02D059C1E6E47A8FB4A076C9B1 703488 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-02-13 15:21:45 9C89246184979A070B0C6CCF61C68136 1820160 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2014-02-13 15:21:35 77854ABDFA570601755D9D63F1F890DA 454656 ----a-w- C:\WINDOWS\SysWOW64\vbscript.dll 2014-02-10 09:34:27 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\SysWOW64\javaws.exe ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2014-02-18 17:21:18 AD7FA9485059F4DC53C98B49CAB13F0B 511328 ----a-w- C:\WINDOWS\Sysnative\d3dx10_43.dll 2014-02-18 17:21:18 9D6429F410597750B2DC2579B2347303 276832 ----a-w- C:\WINDOWS\Sysnative\d3dx11_43.dll 2014-02-18 17:21:17 7160FC226391C0B50C85571FA1A546E5 2401112 ----a-w- C:\WINDOWS\Sysnative\D3DX9_43.dll 2014-02-18 17:20:50 52A94BCDEE1D8FA54B956A07408B7610 1179576 ----a-w- C:\WINDOWS\Sysnative\nvspcap64.dll 2014-02-18 17:18:08 EBE0979F0988BA79945275A5C06E3EA8 18257576 ----a-w- C:\WINDOWS\Sysnative\nvwgf2umx.dll 2014-02-18 17:18:08 30C7FCBDA8844D1AD17F5813E0D71533 35104 ----a-w- C:\WINDOWS\Sysnative\nvaudcap64v.dll 2014-02-18 17:18:07 FA777A854BA2C8DFA5FE48CF6190FB7B 875296 ----a-w- C:\WINDOWS\Sysnative\NvFBC64.dll 2014-02-18 17:18:07 F75741DA002D660107AFBADD1DC6257E 353504 ----a-w- C:\WINDOWS\Sysnative\nvoglshim64.dll 2014-02-18 17:18:07 EE45DE08249907C6A60E6A26FC1C19DD 2782496 ----a-w- C:\WINDOWS\Sysnative\nvcuvenc.dll 2014-02-18 17:18:07 E16A03F0F19D9FFC141EC8BEAF8D1BB5 1885472 ----a-w- C:\WINDOWS\Sysnative\nvdispco6433489.dll 2014-02-18 17:18:07 CA10CBA8E3C1A61E3326CCE324A36FC2 31432480 ----a-w- C:\WINDOWS\Sysnative\nvoglv64.dll 2014-02-18 17:18:07 C959A65F734FD6BF549A2B40A97D0032 11636176 ----a-w- C:\WINDOWS\Sysnative\nvcuda.dll 2014-02-18 17:18:07 859816390C1E2ED105D6E1E0BEFA4E8B 25256224 ----a-w- C:\WINDOWS\Sysnative\nvcompiler.dll 2014-02-18 17:18:07 66DB72CC7E8D2DE53EF28204B07531A2 3142432 ----a-w- C:\WINDOWS\Sysnative\nvcuvid.dll 2014-02-18 17:18:07 5D09FA65DB21CCA31D30AFB51F9A63AF 11589272 ----a-w- C:\WINDOWS\Sysnative\nvopencl.dll 2014-02-18 17:18:07 5C06001B0688F59BD6BAB0BBCCA871C0 892192 ----a-w- C:\WINDOWS\Sysnative\NvIFR64.dll 2014-02-18 17:18:07 53B1A6B1A88AE290BFCA62EA97D98B45 378656 ----a-w- C:\WINDOWS\Sysnative\NvIFROpenGL.dll 2014-02-18 17:18:07 4B404C2D94834A458314E27414240386 17715784 ----a-w- C:\WINDOWS\Sysnative\nvd3dumx.dll 2014-02-18 17:18:07 2913EC6B84DC8698ACCE19F9B1976936 483104 ----a-w- C:\WINDOWS\Sysnative\nvEncodeAPI64.dll 2014-02-18 17:18:07 1BAAA2BAE54265A8B3D1EF1341CB28F7 1515296 ----a-w- C:\WINDOWS\Sysnative\nvdispgenco6433489.dll 2014-02-16 12:06:46 0E0796E3413D38A396B1C1591CE2B72E 4191232 ----a-w- C:\WINDOWS\Sysnative\win32k.sys 2014-02-16 12:06:45 F242938F69AA25B8ECD0D9E342799802 637952 ----a-w- C:\WINDOWS\Sysnative\SettingSyncHost.exe 2014-02-16 12:06:44 5F9799975EAB95431BF78428B26B4FF6 21196664 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2014-02-16 12:06:44 2EAF0A1F9E4DF34862CC5A2B5437E450 744448 ----a-w- C:\WINDOWS\Sysnative\SettingSyncCore.dll 2014-02-16 12:06:40 32370AF583EC8B24D790E1B9201D6811 3210528 ----a-w- C:\WINDOWS\Sysnative\msmpeg2vdec.dll 2014-02-16 12:06:39 013BB1B12833CD646175312307768F93 18577920 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2014-02-16 12:06:37 3E7B2C9026986C821E507A3319EA1D80 1928144 ----a-w- C:\WINDOWS\Sysnative\combase.dll 2014-02-16 12:06:36 CA336E6ABF539A6D14DA3C49DDD24696 2131120 ----a-w- C:\WINDOWS\Sysnative\mfcore.dll 2014-02-16 12:06:35 9FF95D589B5626852CECA2444C5C5A58 2617344 ----a-w- C:\WINDOWS\Sysnative\authui.dll 2014-02-16 12:06:34 D33E2A482C47ABFDD80185DD9C8C06F1 1399176 ----a-w- C:\WINDOWS\Sysnative\winmde.dll 2014-02-16 12:06:34 728D3349FAB251B0265EFA55C67DCA2D 1503232 ----a-w- C:\WINDOWS\Sysnative\wlansvc.dll 2014-02-16 12:06:33 1A1B60D269F745C021F69564B5906AD0 1374384 ----a-w- C:\WINDOWS\Sysnative\wmpmde.dll 2014-02-16 12:06:32 EF276593AD1BDF5A99032F62D6272848 834048 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2014-02-16 12:06:32 D65B1C952AEB864C2BAC7A770B17ECCE 282112 ----a-w- C:\WINDOWS\Sysnative\SystemEventsBrokerServer.dll 2014-02-16 12:06:31 FCB3BD54917D36FE79DFDF0ED7ACBEBB 764856 ----a-w- C:\WINDOWS\Sysnative\mfmpeg2srcsnk.dll 2014-02-16 12:06:31 A6207A88B596F726DE558425F3B7E592 263168 ----a-w- C:\WINDOWS\Sysnative\bisrv.dll 2014-02-16 12:06:31 39435F4007F1CEDEF04356892B18D174 202240 ----a-w- C:\WINDOWS\Sysnative\ubpm.dll 2014-02-16 12:06:30 B9FC41CEC711DC0E1BFE927EEDC49176 745336 ----a-w- C:\WINDOWS\Sysnative\oleaut32.dll 2014-02-16 12:06:30 78AB9F5DC27E317F0B34C45D54ABB6B2 32088 ----a-w- C:\WINDOWS\Sysnative\ploptin.dll 2014-02-16 12:06:30 660891FFB1B22FF39AADB3F45CE15D45 470016 ----a-w- C:\WINDOWS\Sysnative\mfds.dll 2014-02-16 12:06:30 40B228D05DB02F4A5F2452600999F53F 809872 ----a-w- C:\WINDOWS\Sysnative\mfmp4srcsnk.dll 2014-02-16 12:06:29 E18E9C9EBCFCA456B74BB6A80B1DB226 1415680 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2014-02-16 12:06:29 B818F6F3CA67E4BD278EDE5600BDD65E 461824 ----a-w- C:\WINDOWS\Sysnative\XpsGdiConverter.dll 2014-02-16 12:06:29 54A9F4AC86F2A4E7C3ADE47CAE5DE8E0 136704 ----a-w- C:\WINDOWS\Sysnative\psmsrv.dll 2014-02-16 12:06:28 34F8F7A0B782798F6A9511157BCC3E32 273408 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.dll 2014-02-16 12:06:27 FF9F658A51CAD74C25AF83038DBD735D 306688 ----a-w- C:\WINDOWS\Sysnative\msieftp.dll 2014-02-16 12:06:27 BDE4ABD3AB4171CECADFD38F392E656C 1227264 ----a-w- C:\WINDOWS\Sysnative\mispace.dll 2014-02-16 12:06:27 91433B44B1EF301E7DD696EB5281BC20 589824 ----a-w- C:\WINDOWS\Sysnative\rastls.dll 2014-02-16 12:06:26 CD45E3FE736150D45EFDC9145DA53757 24064 ----a-w- C:\WINDOWS\Sysnative\bi.dll 2014-02-16 12:06:25 AD95F86C8D1843BE653F89FDE213F9E7 207872 ----a-w- C:\WINDOWS\Sysnative\deviceregistration.dll 2014-02-16 12:06:24 4B916278E1487A5CD5F8F9A521980026 385614 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml 2014-02-13 17:07:19 BE94090FCBB95B6F22E952D27BD2610E 570880 ----a-w- C:\WINDOWS\Sysnative\msdrm.dll 2014-02-13 17:07:00 6F531F98B8601A9E7A93F8FEC393E2D1 18944 ----a-w- C:\WINDOWS\Sysnative\pcaui.exe 2014-02-13 17:06:58 D13EE1D0B33D2B19C048EFA53DD41A2B 1113040 ----a-w- C:\WINDOWS\Sysnative\KernelBase.dll 2014-02-13 17:06:57 570444FD34EE07261E22536122ECD720 7416832 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Search.dll 2014-02-13 17:06:56 5BD47B7C7DF76203FD639F2568A8C7B7 13209088 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2014-02-13 17:06:54 A9154084EBC2A190943548AE4275A0E9 1105408 ----a-w- C:\WINDOWS\Sysnative\SearchFolder.dll 2014-02-13 17:06:54 30D839DEBD6B0E89D13B9259C39B3FFA 1462216 ----a-w- C:\WINDOWS\Sysnative\propsys.dll 2014-02-13 17:06:54 2100B28C34C4FCE916A4A61F58E31198 9701 ----a-w- C:\WINDOWS\Sysnative\connectedsearch-results.searchconnector-ms 2014-02-13 17:06:43 F67102E9791A5B80070B30ADF1159A3C 4217344 ----a-w- C:\WINDOWS\Sysnative\SyncEngine.dll 2014-02-13 17:06:43 F2629AF810E939672173CB17ECAC1667 919040 ----a-w- C:\WINDOWS\Sysnative\MrmCoreR.dll 2014-02-13 17:06:43 5C6F6CC5C1395A8B5864713CD3F7F329 720384 ----a-w- C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll 2014-02-13 17:06:43 5A9895295C7C6174C73496BD06B2E288 870912 ----a-w- C:\WINDOWS\Sysnative\SkyDrive.exe 2014-02-13 17:06:43 1968E2E5143D2EB964F836BA19A51104 2804224 ----a-w- C:\WINDOWS\Sysnative\actxprxy.dll 2014-02-13 17:06:42 BBB9A31169B4969169ADE608231E2985 115712 ----a-w- C:\WINDOWS\Sysnative\winbici.dll 2014-02-13 17:06:42 41BD327A7518C4102969FCEE8F3D5030 121344 ----a-w- C:\WINDOWS\Sysnative\SkyDriveShell.dll 2014-02-13 15:21:58 053472337FDD116BD010C88DB0C34DF1 4604416 ----a-w- C:\WINDOWS\Sysnative\d2d1.dll 2014-02-13 15:21:57 389C4E97E3A498159B625A7A13EA4560 2397184 ----a-w- C:\WINDOWS\Sysnative\d3d10warp.dll 2014-02-13 15:21:56 AC7C39F7A866BF81103042244CE85827 2152448 ----a-w- C:\WINDOWS\Sysnative\msxml3.dll 2014-02-13 15:21:54 6300AD525D639CECBB3D144B6D7B30F9 2765824 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2014-02-13 15:21:53 E77092C38028EB0A5C461B3436E0A6D5 4096 ----a-w- C:\WINDOWS\Sysnative\ieetwcollectorres.dll 2014-02-13 15:21:52 FCFAEDF0AA1A78A1875FDB798598408B 48640 ----a-w- C:\WINDOWS\Sysnative\ieetwproxystub.dll 2014-02-13 15:21:51 FD08F8BA2437A85F500EFFE3FD3158A6 33792 ----a-w- C:\WINDOWS\Sysnative\iernonce.dll 2014-02-13 15:21:51 94C59DD02BC7EA0E421055B9946CA861 2724864 ----a-w- C:\WINDOWS\Sysnative\mshtml.tlb 2014-02-13 15:21:50 22874047B810B5B174C68ACD7C0B6510 1393664 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2014-02-13 15:21:49 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\WINDOWS\Sysnative\ieetwcollector.exe 2014-02-13 15:21:49 CDE728C8FB1D6E132CED44835FA44C87 627200 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2014-02-13 15:21:47 C1E2C16D58D76323800C3EE5E2C5095A 66048 ----a-w- C:\WINDOWS\Sysnative\iesetup.dll 2014-02-13 15:21:47 83296DE8CFFEADA636DCC1AB2E3BF643 2041856 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2014-02-13 15:21:46 27516B54E116D5EF8B0129B5C829A87C 218624 ----a-w- C:\WINDOWS\Sysnative\ie4uinit.exe 2014-02-13 15:21:44 DB02F4D37E5F7F07A0D0F9FAA68249EE 13051392 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2014-02-13 15:21:44 3906C9640406FC0FC00A324947C74893 708608 ----a-w- C:\WINDOWS\Sysnative\jscript9diag.dll 2014-02-13 15:21:44 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\WINDOWS\Sysnative\ieUnatt.exe 2014-02-13 15:21:43 F348B2D0983C91392632B4291C517AA4 817664 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2014-02-13 15:21:43 5922EEA922D3AD686342F866CAEE851F 5768704 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2014-02-13 15:21:43 1D1D7F52EC84294859642A4309FE648E 195584 ----a-w- C:\WINDOWS\Sysnative\msrating.dll 2014-02-13 15:21:42 D016F5092E4FFC41147E8555A71D2DDE 23170048 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2014-02-13 15:21:42 99ED8FBAFD325550D07A32664D9E3CC8 53760 ----a-w- C:\WINDOWS\Sysnative\jsproxy.dll 2014-02-13 15:21:42 263B6E451526A90FF8B1CEC759F22956 2334208 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2014-02-13 15:21:35 22B4875CBDFA96BEF911F5A79FFA56EA 548864 ----a-w- C:\WINDOWS\Sysnative\vbscript.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2014-02-18 17:18:08 FACB0871B4480935F47234362F2FAE26 32544 ----a-w- C:\WINDOWS\Sysnative\drivers\nvpciflt.sys 2014-02-18 17:18:08 939C0FAE9CC0CDD69E6508BDE4C11FE5 39200 ----a-w- C:\WINDOWS\Sysnative\drivers\nvvad64v.sys 2014-02-18 17:18:07 52B33E12FF8C9E219CAEC1BB4A5F5E4C 12324640 ----a-w- C:\WINDOWS\Sysnative\drivers\nvlddmkm.sys 2014-02-16 12:06:36 3D9A5AC880D7AA2305812D665D24ED23 2551128 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2014-02-16 12:06:32 ED39D676080A1AEA755F1DEC1A8DF1A4 1119064 ----a-w- C:\WINDOWS\Sysnative\drivers\ndis.sys 2014-02-16 12:06:31 79B6F3DF7CDFD12159871FF71464F0CE 403456 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys 2014-02-16 12:06:28 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\WINDOWS\Sysnative\drivers\ipnat.sys 2014-02-16 12:06:28 4628B415A84EA9D4D396A56F1D0CB6C6 142680 ----a-w- C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS 2014-02-16 12:06:26 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\WINDOWS\Sysnative\drivers\BtaMPM.sys 2014-02-15 11:10:26 C0E45816A95CFDC8DBC56D77B064B193 316312 ----a-w- C:\WINDOWS\Sysnative\drivers\RapportKE64.sys 2014-02-15 11:10:26 8A4AF5E572967033346B0EF0E38993F1 273592 ----a-w- C:\WINDOWS\Sysnative\drivers\RapportHades64.sys 2014-02-15 11:04:43 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_WUDFUsbccidDriver_01_11_00.Wdf 2014-01-23 21:31:58 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2014-02-18 17:13:42 -------- d-----w- C:\Program Files\trend micro 2014-01-23 22:19:37 -------- d-----w- C:\Program Files\iTunes 2014-01-23 22:19:37 -------- d-----w- C:\Program Files\iPod ======= C:\PROGRA~2 ===== 2014-02-15 11:09:41 -------- d-----w- C:\PROGRA~2\Trusteer 2014-02-15 11:07:52 -------- d-----w- C:\PROGRA~2\COMMON~1\Isabel CSP 2014-02-15 11:07:52 -------- d-----w- C:\PROGRA~2\COMMON~1\Isabel 2014-01-23 22:19:37 -------- d-----w- C:\PROGRA~2\iTunes ======= C: ===== ====== C:\Users\Lode\AppData\Roaming ====== 2014-02-18 17:26:17 -------- d-----w- C:\Users\Lode\AppData\Local\NVIDIA Corporation 2014-02-18 17:20:49 -------- d-----w- C:\Users\Lode\AppData\Local\NVIDIA 2014-02-17 10:55:49 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google 2014-02-17 10:36:34 -------- d-----w- C:\Users\Lode\AppData\Local\Diagnostics 2014-02-15 11:20:37 -------- d-----w- C:\Users\Lode\AppData\Roaming\Isabel Services 2014-02-15 11:09:43 -------- d-----w- C:\Users\Lode\AppData\Local\Trusteer 2014-02-06 21:42:44 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft 2014-02-05 12:19:08 -------- d-----w- C:\Users\Lode\AppData\Roaming\SolidDocuments 2014-01-29 08:02:37 -------- d-----w- C:\Users\Lode\AppData\Roaming\Roxio Burn ====== C:\Users\Lode ====== 2014-02-18 21:12:18 DECB0028AC6CFD9E6C23CABAEBF98EE6 617733 ----a-w- C:\Users\Lode\Joomla.docx 2014-02-18 21:10:26 567F3BB91B5BDE5B03A5BE0FC9081FFF 971251 ----a-w- C:\Users\Lode\Joomla.pdf 2014-02-18 17:20:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-02-18 17:11:30 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Lode\Desktop\RSITx64.exe 2014-02-15 11:09:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Eindpuntbeveiliging 2014-02-15 11:09:04 -------- d-----w- C:\ProgramData\Trusteer 2014-02-15 11:07:52 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KBC-Online for Business 2014-02-15 11:06:41 -------- d-----w- C:\ProgramData\Isabel Services 2014-02-12 19:27:02 -------- d-----w- C:\Users\Lode\Afbeeldingen website 2014-02-10 09:34:25 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-01-23 22:19:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes ====== C: exe-files == 2014-02-18 17:26:34 7708BA8CD4C4433B720861D0E47883A4 367808 ----a-w- C:\Users\Lode\AppData\Local\NVIDIA\NvBackend\Packages\00005835\updatus.17883593_RUNASUSER.exe 2014-02-18 17:26:27 EB63BEF2EFC3884C288AE5F1454A2D32 3278528 ----a-w- C:\Users\Lode\AppData\Local\NVIDIA\NvBackend\Packages\00005825\DAO.17882696.exe 2014-02-18 17:26:24 AE27CA4454D2B0DC278A369D0399ED21 302184 ----a-w- C:\Users\Lode\AppData\Local\NVIDIA\NvBackend\Packages\00005711\drsupdate.17681648_RUNASUSER.exe 2014-02-18 17:20:50 011E9C480CAAA228D2712116F2653B99 1823008 ----a-w- C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe 2014-02-18 17:20:48 C022B05EBD190802B540FFE1DA7AD0DA 127264 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\LED Visualizer\NvLedVisualizer.exe 2014-02-18 17:20:48 BE6FCD1CCBE6D63B106B3DD25F308890 87328 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\LED Visualizer\NvLedServiceHost.exe 2014-02-18 17:20:45 FB362290F6601E04A16AB972417FE89A 638752 ----a-w- C:\Program Files\NVIDIA Corporation\NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe 2014-02-18 17:20:45 C2576A06D7BA0ED0CB6F6A62D311A0EF 4277536 ----a-w- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe 2014-02-18 17:20:45 4F0E2990DB12849D428DE7B0AC5D92B9 16941856 ----a-w- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe 2014-02-18 17:20:25 2A36A4B4462540D8CF8F522C73C37E25 1015584 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe 2014-02-18 17:20:24 39F106593F6D20498C21F0E695D8E116 596768 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\7z.exe 2014-02-18 17:20:19 EE73B56ED71EB6383F25FA5468923BB2 2234144 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe 2014-02-18 17:20:19 5F1370051C50BA8FE24553388FF82590 197408 ----a-w- C:\Program Files\NVIDIA Corporation\Update Core\WLMerger.exe 2014-02-18 17:20:05 D2FE0376285A783693469422678E878B 1593632 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe 2014-02-18 17:19:40 CEF4BE9ABE7F6346DC425CD0221AD260 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{F2E16043-C786-4BED-8C39-1F80B51A8BAF}\nvSmartMaxapp64.exe 2014-02-18 17:19:40 BDA6857D08E2E74FB9C19AEB2EA9C079 63264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{F2E16043-C786-4BED-8C39-1F80B51A8BAF}\nvSmartMaxapp.exe 2014-02-18 17:19:40 734D6058A77CE70EE554F3DC3861C3EB 1203488 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{F2E16043-C786-4BED-8C39-1F80B51A8BAF}\nvxdsync.exe 2014-02-18 17:19:40 63CFF01EC86EC446B29D5CA958720E0B 412960 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{F2E16043-C786-4BED-8C39-1F80B51A8BAF}\setup.exe 2014-02-18 17:19:40 33FF7ECD3BA2A9259FBFB7E8937505BA 2448160 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{F2E16043-C786-4BED-8C39-1F80B51A8BAF}\NvTray.exe 2014-02-18 17:19:40 2B47EDD27365F9F5D8E87648BECF52C4 923936 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{F2E16043-C786-4BED-8C39-1F80B51A8BAF}\nvvsvc.exe 2014-02-18 17:19:39 0E2120E0C294CFA5894C9941EC76E921 6867232 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.ControlPanel.{F2E16043-C786-4BED-8C39-1F80B51A8BAF}\nvcplui.exe 2014-02-18 17:19:31 63CFF01EC86EC446B29D5CA958720E0B 412960 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{2787DA13-3B83-4AF7-8422-948C27B36401}\setup.exe 2014-02-18 17:18:14 F6C8952A33B0052DEE6330AC5B96BF00 540448 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{ABBBBBBD-6B6F-4DFD-B0D1-33F48F11AD8F}\DXSETUP.exe 2014-02-18 17:18:14 92F7D33128AF3F00C6AE74C15EC90DF0 1499936 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{ABBBBBBD-6B6F-4DFD-B0D1-33F48F11AD8F}\nvspcaps.exe 2014-02-18 17:18:14 011E9C480CAAA228D2712116F2653B99 1823008 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShadowPlay.{ABBBBBBD-6B6F-4DFD-B0D1-33F48F11AD8F}\nvspcaps64.exe 2014-02-18 17:18:12 FB362290F6601E04A16AB972417FE89A 638752 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{0D0B05A4-1A3D-4E67-940E-F77B1292A7E4}\SteamLauncher\NVIDIA.SteamLauncher.exe 2014-02-18 17:18:12 DA09A1DAEBD38226C0CB22BA8D967F63 15904544 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{0D0B05A4-1A3D-4E67-940E-F77B1292A7E4}\x86\server\nvstreamsvc.exe 2014-02-18 17:18:12 C2576A06D7BA0ED0CB6F6A62D311A0EF 4277536 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{0D0B05A4-1A3D-4E67-940E-F77B1292A7E4}\amd64\server\nvstreamer.exe 2014-02-18 17:18:12 C022B05EBD190802B540FFE1DA7AD0DA 127264 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.LEDVisualizer.{951AD354-9A84-48E0-A8B1-F2C6EA789FE3}\NvLedVisualizer.exe 2014-02-18 17:18:12 BE6FCD1CCBE6D63B106B3DD25F308890 87328 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.LEDVisualizer.{951AD354-9A84-48E0-A8B1-F2C6EA789FE3}\NvLedServiceHost.exe 2014-02-18 17:18:12 80F7E00C80C66949779C5E3967F6E795 3323680 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{0D0B05A4-1A3D-4E67-940E-F77B1292A7E4}\x86\server\nvstreamer.exe 2014-02-18 17:18:12 4F0E2990DB12849D428DE7B0AC5D92B9 16941856 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\GFExperience.NvStreamSrv.{0D0B05A4-1A3D-4E67-940E-F77B1292A7E4}\amd64\server\nvstreamsvc.exe 2014-02-18 17:18:09 2A36A4B4462540D8CF8F522C73C37E25 1015584 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{C734AB5F-10FC-4AD4-A9C1-C5C7031DC381}\GFExperience.exe 2014-02-18 17:18:08 EE73B56ED71EB6383F25FA5468923BB2 2234144 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Update.Core.{85140E0A-5E04-4F82-BC4D-E5F517B56F58}\NvBackend.exe 2014-02-18 17:18:08 D2FE0376285A783693469422678E878B 1593632 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Network.Service.{104408F7-DD6D-456A-B0E5-C4A74B747BB8}\NVNetworkService.exe 2014-02-18 17:18:08 5F1370051C50BA8FE24553388FF82590 197408 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Update.Core.{85140E0A-5E04-4F82-BC4D-E5F517B56F58}\WLMerger.exe 2014-02-18 17:18:08 39F106593F6D20498C21F0E695D8E116 596768 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{C734AB5F-10FC-4AD4-A9C1-C5C7031DC381}\7z.exe 2014-02-18 17:18:07 BB784DA9F5158763109ADCC4750BFB75 441120 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{8D6E8D81-D752-4CAF-83D0-91687496F417}\dbInstaller.exe 2014-02-18 17:18:07 BB784DA9F5158763109ADCC4750BFB75 441120 ----a-w- C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe 2014-02-18 17:18:07 7A12A9647C960035EEDD0AD61103D1B6 74318784 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{8D6E8D81-D752-4CAF-83D0-91687496F417}\NvCplSetupInt.exe 2014-02-18 17:17:29 FC98D37EF375B83BB1506B1FE26C039D 413472 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{64BAF9C1-E52F-43A3-86B9-5DC8ED8CCE74}\setup.exe 2014-02-18 17:17:18 FC98D37EF375B83BB1506B1FE26C039D 413472 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\setup.exe 2014-02-18 17:17:18 DA09A1DAEBD38226C0CB22BA8D967F63 15904544 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\x86\server\nvstreamsvc.exe 2014-02-18 17:17:18 D8034ECA85CC95AAC3E884F33A7421E3 2728736 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\Display.NView\nwiz.exe 2014-02-18 17:17:18 99842AD5AF3AADC7D30BD18E3D228F54 479520 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\Display.NView\nvTaskBar.exe 2014-02-18 17:17:18 5F1370051C50BA8FE24553388FF82590 197408 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\Update.Core\WLMerger.exe 2014-02-18 17:17:17 FB362290F6601E04A16AB972417FE89A 638752 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe 2014-02-18 17:17:17 D2FE0376285A783693469422678E878B 1593632 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\Network.Service\NVNetworkService.exe 2014-02-18 17:17:17 C2576A06D7BA0ED0CB6F6A62D311A0EF 4277536 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\amd64\server\nvstreamer.exe 2014-02-18 17:17:17 C022B05EBD190802B540FFE1DA7AD0DA 127264 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\LEDVisualizer\NvLedVisualizer.exe 2014-02-18 17:17:17 BE6FCD1CCBE6D63B106B3DD25F308890 87328 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\LEDVisualizer\NvLedServiceHost.exe 2014-02-18 17:17:17 92F7D33128AF3F00C6AE74C15EC90DF0 1499936 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\ShadowPlay\nvspcaps.exe 2014-02-18 17:17:17 80F7E00C80C66949779C5E3967F6E795 3323680 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\x86\server\nvstreamer.exe 2014-02-18 17:17:17 4F0E2990DB12849D428DE7B0AC5D92B9 16941856 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\GFExperience.NvStreamSrv\amd64\server\nvstreamsvc.exe 2014-02-18 17:17:17 011E9C480CAAA228D2712116F2653B99 1823008 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\ShadowPlay\nvspcaps64.exe 2014-02-18 17:17:12 F6C8952A33B0052DEE6330AC5B96BF00 540448 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\ShadowPlay\DXSETUP.exe 2014-02-18 17:17:12 EE73B56ED71EB6383F25FA5468923BB2 2234144 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\Update.Core\NvBackend.exe 2014-02-18 17:17:12 E724C530E08C1AC2ABC6D14FBFA1C3CD 744736 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\Display.NView\nvAppBar.exe 2014-02-18 17:17:12 BB784DA9F5158763109ADCC4750BFB75 441120 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\Display.Driver\dbInstaller.exe 2014-02-18 17:17:12 7A12A9647C960035EEDD0AD61103D1B6 74318784 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\Display.Driver\NvCplSetupInt.exe 2014-02-18 17:17:12 53406E9988306CBD4537677C5336ABA4 889416 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\MS.NET\dotNetFx40_Full_setup.exe 2014-02-18 17:17:12 39F106593F6D20498C21F0E695D8E116 596768 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\GFExperience\7z.exe 2014-02-18 17:17:12 2A36A4B4462540D8CF8F522C73C37E25 1015584 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\GFExperience\GFExperience.exe 2014-02-18 17:17:11 AAF0FA0DC0AD5B536B7826026355F355 18687232 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\NV3DVision\3DVision_334.89.exe 2014-02-18 17:13:43 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Lode.exe 2014-02-18 17:11:30 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Lode\Desktop\RSITx64.exe 2014-02-17 10:55:53 FF3FD6B78A82624C7B319EEA7F7EB8F6 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleUpdateOnDemand.exe 2014-02-17 10:55:53 6D24CD9918A11CD8AB9AE678CB2CC3C7 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleUpdateBroker.exe 2014-02-17 10:55:51 BA5C08130D2EFBD4E546912646DC4461 847640 ----a-w- C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleUpdateSetup.exe 2014-02-17 10:55:50 EA8B5B41163A06FFA8930F5316473035 273800 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe 2014-02-17 10:55:50 C98ACDE22458C8F46FD0503CB9E2D01F 223112 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe 2014-02-17 10:55:50 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleUpdate.exe 2014-02-17 10:55:43 BA5C08130D2EFBD4E546912646DC4461 847640 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.5\GoogleUpdateSetup.exe 2014-02-16 12:06:46 7FA3046AC2751A408899EFD331FE1980 479744 ----a-w- C:\Windows\SysWOW64\SettingSyncHost.exe 2014-02-16 12:06:45 F242938F69AA25B8ECD0D9E342799802 637952 ----a-w- C:\Windows\System32\SettingSyncHost.exe 2014-02-15 11:55:10 887B3248F8EA7B6926614C1F4CE0DAC4 131584 ----a-w- C:\Users\Lode\AppData\Local\Packages\AD2F1837.HPPrinterControl_v10z8vjag6ke6\AC\Microsoft\CLR_v4.0_32\NativeImages\HP.PrinterControl\30fff38692f511bc0658b0b525c37079\HP.PrinterControl.ni.exe 2014-02-15 11:09:01 95850C60993CC05B978D6313C858C46F 272664 ----a-w- C:\Users\Lode\AppData\Local\Temp\Step2.exe 2014-02-15 11:06:24 3CAA77307A96AE7325DB5EDEAF1BDD02 135968 ----a-w- C:\Users\Lode\AppData\Local\Microsoft\Windows\INetCache\IE\VDGTX5MH\O4BT.Installer.Kbc.exe 2014-02-13 17:07:00 6F531F98B8601A9E7A93F8FEC393E2D1 18944 ----a-w- C:\Windows\System32\pcaui.exe 2014-02-13 17:06:59 9A21A14A25A7BC3D0EC1ED56CC75B4B7 17408 ----a-w- C:\Windows\SysWOW64\pcaui.exe 2014-02-13 17:06:43 5A9895295C7C6174C73496BD06B2E288 870912 ----a-w- C:\Windows\System32\SkyDrive.exe 2014-02-13 17:06:43 16277D1B8961AFDC49F44D57611E864B 1375992 ----a-w- C:\Windows\Camera\Camera.exe 2014-02-13 17:06:42 F637B5A26013B3FFE9771EE7BF971C05 99680 ----a-w- C:\Windows\FileManager\FileManager.exe 2014-02-13 17:06:42 DA3EFBF93F45EC4E84001EF6F0C7708D 362040 ----a-w- C:\Windows\FileManager\PhotosApp.exe 2014-02-13 15:21:53 2E032281A818BCD191E3DD92000A8EAE 806064 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-02-13 15:21:51 9FBB2F038A2DDCE696BDEE7080241C0C 808112 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-02-13 15:21:50 9E8F9FDD407DDE997965EEFD9E635CCF 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2014-02-13 15:21:49 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-02-13 15:21:47 AFAB9B381886ABE3490689B7633A858F 482816 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-02-13 15:21:46 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-02-13 15:21:46 27516B54E116D5EF8B0129B5C829A87C 218624 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-02-13 15:21:44 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\Windows\System32\ieUnatt.exe === C: other files == 2014-02-18 17:19:03 F76296368BB813E0C6996501A3271C7C 30496 ----a-w- C:\Windows\LastGood\system32\DRIVERS\nvpciflt.sys 2014-02-18 17:19:03 9B93CC9C70EDE60A9C486E7719DB9E8D 11273504 ----a-w- C:\Windows\LastGood\system32\DRIVERS\nvlddmkm.sys 2014-02-18 17:18:08 FACB0871B4480935F47234362F2FAE26 32544 ----a-w- C:\Windows\System32\drivers\nvpciflt.sys 2014-02-18 17:18:08 D230D757C084FB8D7BC4936E3D6334B8 34080 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{CB31FC1F-EBF4-44EA-8680-8498E68A7ADB}\nvvad32v.sys 2014-02-18 17:18:08 939C0FAE9CC0CDD69E6508BDE4C11FE5 39200 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys 2014-02-18 17:18:08 939C0FAE9CC0CDD69E6508BDE4C11FE5 39200 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{CB31FC1F-EBF4-44EA-8680-8498E68A7ADB}\nvvad64v.sys 2014-02-18 17:18:07 52B33E12FF8C9E219CAEC1BB4A5F5E4C 12324640 ----a-w- C:\Windows\System32\drivers\nvlddmkm.sys 2014-02-18 17:17:29 F4992A26D629288ADBBDC3A715629FA1 163104 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\HDAudio\nvhda64.sys 2014-02-18 17:17:29 E366A5681C50785D4ED04FCFD65C3415 197408 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\HDAudio\nvhda64v.sys 2014-02-18 17:17:29 D230D757C084FB8D7BC4936E3D6334B8 34080 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\NvVAD\nvvad32v.sys 2014-02-18 17:17:29 9F8EE4948B7ADD9D12F778F61A2758A4 162592 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\HDAudio\nvhda32v.sys 2014-02-18 17:17:29 939C0FAE9CC0CDD69E6508BDE4C11FE5 39200 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\NvVAD\nvvad64v.sys 2014-02-18 17:17:29 47FEB587AAE06F6717FCABF8BCF184FD 129312 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\HDAudio\nvhda32.sys 2014-02-18 17:17:29 0D24482F9513F2AA5A961EB9F1BA0CFA 435232 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\NV3DVisionUSB.Driver\nvstusb32.sys 2014-02-18 17:17:29 063BD34A095C88CC2E69CF0B93C0ECA6 451872 ----a-w- C:\NVIDIA\DisplayDriver\334.89\Win8_WinVista_Win7_64\International\NV3DVisionUSB.Driver\nvstusb64.sys 2014-02-16 12:06:46 0E0796E3413D38A396B1C1591CE2B72E 4191232 ----a-w- C:\Windows\System32\win32k.sys 2014-02-16 12:06:36 3D9A5AC880D7AA2305812D665D24ED23 2551128 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2014-02-16 12:06:32 ED39D676080A1AEA755F1DEC1A8DF1A4 1119064 ----a-w- C:\Windows\System32\drivers\ndis.sys 2014-02-16 12:06:31 79B6F3DF7CDFD12159871FF71464F0CE 403456 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2014-02-16 12:06:28 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\Windows\System32\drivers\ipnat.sys 2014-02-16 12:06:28 4628B415A84EA9D4D396A56F1D0CB6C6 142680 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS 2014-02-16 12:06:26 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\Windows\System32\drivers\BtaMPM.sys 2014-02-15 11:10:27 83E7AA6B7A0BD16E5D19A725F50D7901 233336 ----a-w- C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportIaso64.sys 2014-02-15 11:10:27 48B7B7BD033DC916748ADA22CE1D72A1 63320 ----a-w- C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\baseline\RapportIaso.sys 2014-02-15 11:10:26 C0E45816A95CFDC8DBC56D77B064B193 316312 ----a-w- C:\Windows\System32\drivers\RapportKE64.sys 2014-02-15 11:10:26 AB51E1F08C8E789D6C9E8B94D15BE9A9 340432 ----a-w- C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_59849.sys 2014-02-15 11:10:26 8A4AF5E572967033346B0EF0E38993F1 273592 ----a-w- C:\Windows\System32\drivers\RapportHades64.sys 2014-02-15 11:10:26 000D82CC258E2D341605A6F350C4D1E6 606672 ----a-w- C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_59849.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-4287868357-1583283398-1300414554-1001\Software\Microsoft\Windows\CurrentVersion\Run] "HP Officejet 6700 (NET)"="C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe -deviceID CN33UBQGK605RQ:NW -scfn HP Officejet 6700 (NET) -AutoStart 1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" "AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin" "ISUSPM"="C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe -scheduler" "RoxWatchTray"="C:\Program Files (x86)\Roxio Creator NXT 2\Common\RoxWatchTray15.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" "IsaKbcCertUpdate"="C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "HP Officejet 6700 (NET)"="C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe -deviceID CN33UBQGK605RQ:NW -scfn HP Officejet 6700 (NET) -AutoStart 1" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\WINDOWS\\SysWOW64\\nvinit.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "ShadowPlay"="C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe " [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\WINDOWS\\system32\\nvinitx.dll" ==== Startup Folders ====================== 2014-01-12 20:04:45 865 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hotkey.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [04/02/2014 20:51] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [12/01/2014 21:45] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [12/01/2014 21:45] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\HPCustParticipation HP Officejet 6700" ["C:\Program Files\HP\HP Officejet 6700\Bin\HPCustPartic.exe"] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{D6DC137E-2CC2-4BF9-BA4C-E98F14706E85}" [C:\WINDOWS\system32\msfeedssync.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [05/02/2014 13:21] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Lode\AppData\Roaming\Mozilla\Firefox\Profiles\di0b1mdk.default - Download Status Bar - %ProfilePath%\extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Lode\AppData\Roaming\Mozilla\Firefox\Profiles\di0b1mdk.default FD6ACD9D85177259D442A0C4AC15F7B8 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll - Shockwave Flash F3B0E300AFC94E1A775A2D935A7D384F - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1207148.dll - Shockwave for Director / Shockwave for Director ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions dchlnpcodkpfdpacogkljefecpegganj - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\urladvisor.crx[21/10/2013 19:49] efaidnbmnnnibpcajpcglclefindmkaj - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx[21/12/2013 07:04] hghkgaeecgjhjkannahfamoehjmkjail - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\content_blocker_chrome.crx[21/10/2013 19:49] jagncdcchgajhfhijbbhecadmaiegcmh - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\virtkbd.crx[18/02/2014 18:23] Google Docs - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Kaspersky URL Advisor - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj Adobe Acrobat - Create PDF - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj Dangerous Websites Blocker - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail Virtual Keyboard - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh Google Wallet - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Lode\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.be/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe -scheduler O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Roxio Creator NXT 2\Common\RoxWatchTray15.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [IsaKbcCertUpdate] C:\Program Files (x86)\Common Files\Isabel\isa_kbc_certupdate.exe O4 - HKCU\..\Run: [HP Officejet 6700 (NET)] "C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe" -deviceID "CN33UBQGK605RQ:NW" -scfn "HP Officejet 6700 (NET)" -AutoStart 1 O4 - Global Startup: Hotkey.lnk = C:\Program Files (x86)\Hotkey\Hotkey.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Verzenden naar Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm O9 - Extra button: Virtueel Toetsenbord - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra button: Controle van URL's - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll O9 - Extra button: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU) O9 - Extra 'Tools' menuitem: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: http://cbc-pdf.cbc.be O15 - Trusted Zone: http://static.cbc.be O15 - Trusted Zone: http://www.cbccorporate.be O15 - Trusted Zone: http://www.csob.cz O15 - Trusted Zone: http://www.csob.sk O15 - Trusted Zone: http://www.isabel.be O15 - Trusted Zone: http://www.beta.isabel.be O15 - Trusted Zone: http://www.isabel.eu O15 - Trusted Zone: http://www.beta.isabel.eu O15 - Trusted Zone: http://kbc-pdf.kbc.be O15 - Trusted Zone: http://static.kbc.be O15 - Trusted Zone: http://www.kbcam.be O15 - Trusted Zone: http://www.kbcam.com O15 - Trusted Zone: http://wp-a.kbcbankingforbusiness.com O15 - Trusted Zone: http://www.kbcbankingforbusiness.com O15 - Trusted Zone: http://www.kbccorporates.com O15 - Trusted Zone: http://www.kbcfi.com O15 - Trusted Zone: http://wp-a.kbcmerchantbanking.com O15 - Trusted Zone: http://www.kbcmerchantbanking.com O15 - Trusted Zone: http://www.kh.hu O15 - Trusted Zone: http://cbc-pdf.cbc.be (HKLM) O15 - Trusted Zone: http://static.cbc.be (HKLM) O15 - Trusted Zone: http://www.cbccorporate.be (HKLM) O15 - Trusted Zone: http://www.csob.cz (HKLM) O15 - Trusted Zone: http://www.csob.sk (HKLM) O15 - Trusted Zone: http://www.isabel.be (HKLM) O15 - Trusted Zone: http://www.beta.isabel.be (HKLM) O15 - Trusted Zone: http://www.isabel.eu (HKLM) O15 - Trusted Zone: http://www.beta.isabel.eu (HKLM) O15 - Trusted Zone: http://kbc-pdf.kbc.be (HKLM) O15 - Trusted Zone: http://static.kbc.be (HKLM) O15 - Trusted Zone: http://www.kbcam.be (HKLM) O15 - Trusted Zone: http://www.kbcam.com (HKLM) O15 - Trusted Zone: http://wp-a.kbcbankingforbusiness.com (HKLM) O15 - Trusted Zone: http://www.kbcbankingforbusiness.com (HKLM) O15 - Trusted Zone: http://www.kbccorporates.com (HKLM) O15 - Trusted Zone: http://www.kbcfi.com (HKLM) O15 - Trusted Zone: http://wp-a.kbcmerchantbanking.com (HKLM) O15 - Trusted Zone: http://www.kbcmerchantbanking.com (HKLM) O15 - Trusted Zone: http://www.kh.hu (HKLM) O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll O23 - Service: Roxio SAIB Service (9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269) - Unknown owner - C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Kaspersky Anti-Virus-service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BOT4Service - Unknown owner - C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: PowerBiosServer - Unknown owner - C:\Program Files (x86)\Hotkey\PowerBiosServer.exe O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Roxio Burn Launcher (RoxioBurnLauncher) - Unknown owner - C:\Program Files (x86)\Roxio Creator NXT 2\Roxio Burn\RoxioBurnLauncher.exe O23 - Service: RoxMediaDB15 - Corel Corporation - C:\Program Files (x86)\Roxio Creator NXT 2\Common\RoxMediaDB15.exe O23 - Service: Roxio Hard Drive Watcher 15 (RoxWatch15) - Corel Corporation - C:\Program Files (x86)\Roxio Creator NXT 2\Common\RoxWatch15.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\WINDOWS\SysWOW64\rpcnet.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Lode\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Lode\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Lode\AppData\Local\Mozilla\Firefox\Profiles\di0b1mdk.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Lode\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=186 folders=25 19869316 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Lode\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Lode\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\WINDOWS\Syswow64\SET944.tmpsearch" not found ==== EOF on di 18/02/2014 at 23:03:01,34 ======================