Zoek.exe v5.0.0.0 Updated 16-June-2014 Tool run by Milotte on vr 20-06-2014 at 17:43:36,27. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Milotte\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 20-6-2014 17:45:17 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AVS4YOU deleted successfully C:\Program Files\AVAST Software deleted successfully C:\PROGRA~3\HitmanPro deleted successfully C:\Users\Milotte\AppData\Roaming\337Games deleted successfully C:\Users\Milotte\AppData\Roaming\AVAST Software deleted successfully C:\Users\Milotte\AppData\Local\LSC deleted successfully C:\Users\Milotte\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IePluginServices deleted successfully ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== C:\Users\Milotte\AppData\Roaming\337Games not found C:\ProgramData\WindowsProtectManger deleted C:\ProgramData\IePluginServices deleted C:\Users\Milotte\AppData\Roaming\TuneUp Software deleted C:\Users\Milotte\AppData\Roaming\LoJackSetup.exe deleted ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Milotte\AppData\Local\Temp ==== 2014-06-20 09:23:16 5634C601025C31032A0AF1590B4C0CA6 43008 ----a-w- C:\Users\Milotte\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmphvdpjy.dll ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2014-06-18 18:31:27 3DA5CD1E3B9BDAF79731CB6CB1029CB3 53248 ----a-w- C:\WINDOWS\SysWOW64\tsgqec.dll 2014-06-15 20:50:49 53CDBB093B0AEE9FD6CF1CBD25A95077 290304 ----a-w- C:\WINDOWS\SysWOW64\subinacl.exe 2014-06-12 09:02:10 55ADDA5B29D1151727470FA165460773 1312256 ----a-w- C:\WINDOWS\SysWOW64\msxml3.dll 2014-06-12 09:02:08 CB1F941980DCC044542CEF180328D180 1064448 ----a-w- C:\WINDOWS\SysWOW64\gdi32.dll 2014-06-12 09:01:58 9EAAB4305536829D6B7D9C3A47E92861 2179072 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2014-06-12 09:01:57 7E27FB6AB8976897A530FB30F5FF7691 69632 ----a-w- C:\WINDOWS\SysWOW64\mshtmled.dll 2014-06-12 09:01:56 6D8E6A9A524FFAAFA4D2F6C8EF38D0BB 592896 ----a-w- C:\WINDOWS\SysWOW64\jscript9diag.dll 2014-06-12 09:01:55 0AFCE8EEF3751810FE2101FD608FB8B3 1143296 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2014-06-12 09:01:55 017B99D09904DCA35D5F66AD79084B5F 368128 ----a-w- C:\WINDOWS\SysWOW64\dxtmsft.dll 2014-06-12 09:01:54 8DF06ACA017949D37C38B6A0EF747D4E 526336 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2014-06-12 09:01:53 D5ECBB3BFDC73A59440D9CA79AB3A342 17271296 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2014-06-12 09:01:51 C69FDD49AB9E8BCF2BAAC469CE0CC756 1964544 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2014-06-12 09:01:50 5B5815477A53ED92B89955FFE7EDCB2E 242688 ----a-w- C:\WINDOWS\SysWOW64\dxtrans.dll 2014-06-12 09:01:48 688227D38A6FF6403B293D0C50B454B9 11725312 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2014-06-12 09:01:45 C58E97EEB1CB80CE91D5E7FD5E78794F 4244992 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2014-06-12 09:01:45 22D7FFA4B94916F18EB1F1D107B86839 704512 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-06-12 09:01:35 771CDBC3D62437D6DB070820BB1EDCCF 1790976 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2014-06-12 09:01:32 D9F5B424C307B195E16A9B0A21E53BCC 61952 ----a-w- C:\WINDOWS\SysWOW64\iesetup.dll 2014-06-12 09:01:24 A8358D0521BC91CF30C5C1EE4541B695 754688 ----a-w- C:\WINDOWS\SysWOW64\WSShared.dll 2014-06-12 09:01:01 A93E67D9084BEFC32C8E2B75FCC5B02E 11792384 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2014-06-12 09:01:00 A5358F64D4EB5ABE2829981CD9734901 18755672 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2014-06-12 09:00:51 A717D4AC0C44BCBE990DBF8B6EC979AA 12711424 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2014-06-12 09:00:36 0FDDBC46B0FE68B9516BED5CDC2A5296 5104640 ----a-w- C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2014-06-12 09:00:35 4550DC04464B86C5EB2CC77D9D27C06C 5833216 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2014-06-12 09:00:33 1E48870B29C7D7328A7D484A61250AE5 5774848 ----a-w- C:\WINDOWS\SysWOW64\mstscax.dll 2014-06-12 09:00:28 8EAD5F0BC40579B106CDD9D2591CFEC5 1797896 ----a-w- C:\WINDOWS\SysWOW64\d3d9.dll 2014-06-12 09:00:23 E678126493997B951C6A6E91BC15C91C 836608 ----a-w- C:\WINDOWS\SysWOW64\SearchFolder.dll 2014-06-12 09:00:22 561945C42E36012B4799C342E6A96498 800768 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2014-06-12 09:00:21 E2AAB5EDC278D489C8EF87F277B5E3E6 888320 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.dll 2014-06-12 09:00:20 87AB9959EC23455326C8C55E59DE0A88 669856 ----a-w- C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-06-12 09:00:20 5AE9C90A51256F72C541A2FD81EAB7C4 2144984 ----a-w- C:\WINDOWS\SysWOW64\mfcore.dll 2014-06-12 09:00:17 90C83CF02C884315E595FA07CA9C64EF 387896 ----a-w- C:\WINDOWS\SysWOW64\mfsvr.dll 2014-06-12 09:00:12 A54EB398BC2D792A0C603A97F7975FD8 357376 ----a-w- C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll 2014-06-12 09:00:11 76892045ECB1D830185618DBD3467562 337408 ----a-w- C:\WINDOWS\SysWOW64\XpsGdiConverter.dll 2014-06-12 09:00:10 EC4FA776548BF1A05DAE3B5EFB0FFE6F 1209616 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll 2014-06-12 09:00:10 13CE2AA6D3ACAF0B485DBFE8AF2F5C48 305768 ----a-w- C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2014-06-12 09:00:09 C97E772120135CD320CB217C92105B12 370176 ----a-w- C:\WINDOWS\SysWOW64\winspool.drv 2014-06-12 09:00:09 5FAEA469BCE03F8FABAFB63D7603DC3C 982016 ----a-w- C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2014-06-12 09:00:08 A4F3682781DD8B36E97FD04BA50845A2 209920 ----a-w- C:\WINDOWS\SysWOW64\rdpencom.dll 2014-06-12 09:00:06 008368626F3EFAEDB0C2CD4565BA6797 98584 ----a-w- C:\WINDOWS\SysWOW64\dwmapi.dll 2014-06-12 09:00:04 8C25FBB338147754DA42DF990FB3AE4A 285144 ----a-w- C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2014-06-12 08:59:59 A624CA7CDFA7941EECD6F96F1A47CCA3 178184 ----a-w- C:\WINDOWS\SysWOW64\MSVideoDSP.dll 2014-06-12 08:59:59 4874EB05C1BE374B8A4AC15DF3DB07B0 111528 ----a-w- C:\WINDOWS\SysWOW64\gpapi.dll 2014-06-12 08:59:59 15905E6B799C1446A37915ED23CD17E5 144384 ----a-w- C:\WINDOWS\SysWOW64\rpchttp.dll 2014-06-12 08:59:58 A9A027378882FFA14000612AE6FDA7AB 1200288 ----a-w- C:\WINDOWS\SysWOW64\propsys.dll 2014-06-12 08:59:57 A3ECC0F6960AA699895CB48BC69BEA3B 326024 ----a-w- C:\WINDOWS\SysWOW64\AudioSes.dll 2014-06-12 08:59:57 956D8170AD470804405C0564E10ED6ED 406504 ----a-w- C:\WINDOWS\SysWOW64\AudioEng.dll 2014-06-12 08:59:57 88A821BC72CB1A935C92F453586233EF 518544 ----a-w- C:\WINDOWS\SysWOW64\mf.dll 2014-06-12 08:59:57 6BAE2EB5EFCEAC999BB1A5BF267C711D 707048 ----a-w- C:\WINDOWS\SysWOW64\mfplat.dll 2014-06-12 08:59:54 619C6E72B8433B3F67738F7E6C972A96 230808 ----a-w- C:\WINDOWS\SysWOW64\wintrust.dll 2014-06-12 08:59:48 E697F1E4E819EB12C40AE01F88626BAB 219136 ----a-w- C:\WINDOWS\SysWOW64\resutils.dll 2014-06-12 08:59:48 06AB75759A0B2D79680F52ACDAE702A1 313344 ----a-w- C:\WINDOWS\SysWOW64\clusapi.dll 2014-06-12 08:59:47 D0E0E176F86C3B1048A67144DE0C5CD3 46592 ----a-w- C:\WINDOWS\SysWOW64\tlscsp.dll 2014-06-12 08:59:47 5C74AC34C1CAA9C232836C580272B0DD 1029120 ----a-w- C:\WINDOWS\SysWOW64\mispace.dll 2014-06-12 08:59:47 495C3945889DD59993474F2434863835 11776 ----a-w- C:\WINDOWS\SysWOW64\d3d8thk.dll 2014-06-12 08:59:46 FF28231D41465C253E9F9EF164DD619C 230400 ----a-w- C:\WINDOWS\SysWOW64\wlanapi.dll 2014-06-12 08:59:46 CF3EA59E07BF906B43058C98B6750D16 855552 ----a-w- C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-06-12 08:59:46 B6803C8A600E3F029A3D688D9E590CA3 300544 ----a-w- C:\WINDOWS\SysWOW64\wlanmsm.dll 2014-06-12 08:59:46 68A23F58F6F16B81BCBFCAA07CDF0680 61440 ----a-w- C:\WINDOWS\SysWOW64\srclient.dll 2014-06-12 08:59:45 3CABBCB26C4E73F3440A8A064EB490FF 11264 ----a-w- C:\WINDOWS\SysWOW64\wlanhlp.dll 2014-06-12 08:59:28 61F5222289E052C40274ECD182A8AA99 98816 ----a-w- C:\WINDOWS\SysWOW64\drvinst.exe 2014-06-12 08:59:27 65FCEABE3128592F84B60140F814BDDB 1509888 ----a-w- C:\WINDOWS\SysWOW64\DWrite.dll 2014-06-12 08:59:24 260A56A8164CBDF9884BB9B2895F6AB2 2344448 ----a-w- C:\WINDOWS\SysWOW64\Wpc.dll 2014-06-12 08:57:21 B8F28AAC003060E3B125D2447CFC19E2 164864 ----a-w- C:\WINDOWS\SysWOW64\msrating.dll 2014-06-12 08:57:21 6A06EB11F1E5BDAA795DAE7838F9FE20 43008 ----a-w- C:\WINDOWS\SysWOW64\jsproxy.dll 2014-06-12 08:57:17 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\WINDOWS\SysWOW64\ieUnatt.exe 2014-06-12 08:57:17 260D6B421E5551E8BA75D16B5CA90D9A 51200 ----a-w- C:\WINDOWS\SysWOW64\ieetwproxystub.dll 2014-06-12 08:57:17 0E7B7C9F483300F9FF97C6A1E4BC4F57 32768 ----a-w- C:\WINDOWS\SysWOW64\iernonce.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2014-06-12 09:02:12 CCDFFC83004AF62D0153CF45289028AF 3360256 ----a-w- C:\WINDOWS\Sysnative\rdpcorets.dll 2014-06-12 09:02:10 201FE8AAD76FB1E7FB5A3B1337435DC1 2151424 ----a-w- C:\WINDOWS\Sysnative\msxml3.dll 2014-06-12 09:02:08 A4948EA65E584A88BE09029DB49E4D70 1336648 ----a-w- C:\WINDOWS\Sysnative\gdi32.dll 2014-06-12 09:01:58 063EF4239479F52DAF9F4849B0B304F1 2768384 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2014-06-12 09:01:51 3A1AB9DE852F2BC1ECE6403BDD01B9F0 1398272 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2014-06-12 09:01:50 12BA419E27DBC5DBF9262C8A885FA361 452096 ----a-w- C:\WINDOWS\Sysnative\dxtmsft.dll 2014-06-12 09:01:49 867DD52B23D3B0390B88F3D7AD1E600C 631808 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2014-06-12 09:01:46 3FC3828E8820D1C93DBFBAD4BE456D85 2040832 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2014-06-12 09:01:43 CB8A91074AE1B5051E240B50A328DCF5 295424 ----a-w- C:\WINDOWS\Sysnative\dxtrans.dll 2014-06-12 09:01:43 2DBB9127794BC30BC31D26FA088F8BAB 13522944 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2014-06-12 09:01:42 CC603EF96BA456D4BCD9FF849ED07A2A 85504 ----a-w- C:\WINDOWS\Sysnative\mshtmled.dll 2014-06-12 09:01:41 6B9925F498D4E91FB57576CC3776D428 752640 ----a-w- C:\WINDOWS\Sysnative\jscript9diag.dll 2014-06-12 09:01:40 AB3FA3D9B1F1D0571CBC43D1487CCD6F 5782528 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2014-06-12 09:01:40 9013D5BBE1B6D3A060F54B4B5BB2C3A3 846336 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2014-06-12 09:01:38 790FD40601502C5FE8213D4F335DA0BD 51200 ----a-w- C:\WINDOWS\Sysnative\jsproxy.dll 2014-06-12 09:01:37 56803B20D168C1B740D12CE0BE4588F5 23414784 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2014-06-12 09:01:36 40BFD9D6EC8E174145F012246CA73CCD 2266112 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2014-06-12 09:01:33 EAAA62F272858695814A1F42D5E59BD3 608768 ----a-w- C:\WINDOWS\Sysnative\ie4uinit.exe 2014-06-12 09:01:25 AA5A86B32FC3975284082C64059F92DF 79872 ----a-w- C:\WINDOWS\Sysnative\WSReset.exe 2014-06-12 09:01:24 A28730EF44FCCBF0040B771CEFC8EE76 921088 ----a-w- C:\WINDOWS\Sysnative\WSShared.dll 2014-06-12 09:00:58 AD2DE3982C7B6E62346098C7570F6A7D 13287936 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2014-06-12 09:00:56 AE7D8835A29FADB39C0D095BA32A9462 21268952 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2014-06-12 09:00:54 0C5C304C3A2D9E9633A7506CBB04929E 16872448 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2014-06-12 09:00:50 151427E526E96471A45FF6CC2257FBA0 8652800 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Search.dll 2014-06-12 09:00:44 AEDD44FDB8B521D443A07146F5CA3A53 7173120 ----a-w- C:\WINDOWS\Sysnative\Windows.Data.Pdf.dll 2014-06-12 09:00:39 F4C09C622BC55A80F775DF7D8AB9984F 6645248 ----a-w- C:\WINDOWS\Sysnative\mstscax.dll 2014-06-12 09:00:31 8ECEBEE92854C6705877911BA75889A8 2124840 ----a-w- C:\WINDOWS\Sysnative\d3d9.dll 2014-06-12 09:00:31 7E4A8D95B9DBC2CB588B91848A0AE731 2688000 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers.dll 2014-06-12 09:00:29 383DA813409316D69603C1D849834D24 1308160 ----a-w- C:\WINDOWS\Sysnative\gpsvc.dll 2014-06-12 09:00:27 C2A06D6E746C42E6CE6CA020EE67FFA2 4269056 ----a-w- C:\WINDOWS\Sysnative\SyncEngine.dll 2014-06-12 09:00:26 6B7B2211C293218706D491204FCE8695 1126912 ----a-w- C:\WINDOWS\Sysnative\SearchFolder.dll 2014-06-12 09:00:25 EAE6ED6C5076CF765EB731B92A237149 955904 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2014-06-12 09:00:25 CFB353B4E33AFE922C3A62DBC9C9B0A8 7425368 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2014-06-12 09:00:24 6C6E26E0DB9AB2077F42FBBCDB153C84 2140888 ----a-w- C:\WINDOWS\Sysnative\mfcore.dll 2014-06-12 09:00:24 6873D09262D32B95D6AC3026FCF8B424 1230336 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.dll 2014-06-12 09:00:23 5661481164A164CAD67DBE5A0191207F 4190720 ----a-w- C:\WINDOWS\Sysnative\win32k.sys 2014-06-12 09:00:22 AE210430A150FF20A58E3C6B381A832F 1025024 ----a-w- C:\WINDOWS\Sysnative\localspl.dll 2014-06-12 09:00:21 7FB9EC74ADFB2353B7782C3EF833F5B7 765408 ----a-w- C:\WINDOWS\Sysnative\mfmpeg2srcsnk.dll 2014-06-12 09:00:21 0BBD7EDAEA54D0E30445E9FC1179C60A 1411584 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2014-06-12 09:00:19 A1CD5194ACC156A852136B303F087260 491744 ----a-w- C:\WINDOWS\Sysnative\mfsvr.dll 2014-06-12 09:00:19 5071E71CC05346D88C5A08EB8B5A05E3 1584128 ----a-w- C:\WINDOWS\Sysnative\workfolderssvc.dll 2014-06-12 09:00:18 411DBFCD6ABAB75B6F7950677AEEFB7D 1403856 ----a-w- C:\WINDOWS\Sysnative\winmde.dll 2014-06-12 09:00:17 9ED0E72966FB08F7E6DB15E5519AF8D1 1379064 ----a-w- C:\WINDOWS\Sysnative\wmpmde.dll 2014-06-12 09:00:17 067CB90C277DB4A737D5DEABA3055972 407016 ----a-w- C:\WINDOWS\Sysnative\services.exe 2014-06-12 09:00:16 ED7C0A11E655CD8B89BE499F99D56098 486912 ----a-w- C:\WINDOWS\Sysnative\winspool.drv 2014-06-12 09:00:15 EEC46BC17F28C528AB7FAC20AFDF69E3 462336 ----a-w- C:\WINDOWS\Sysnative\XpsGdiConverter.dll 2014-06-12 09:00:15 626D19F1771E1AE72208AE9A8F3082F7 491520 ----a-w- C:\WINDOWS\Sysnative\GeofenceMonitorService.dll 2014-06-12 09:00:14 98A184F6EC43B178901FCD5D4E2EC43B 1222656 ----a-w- C:\WINDOWS\Sysnative\Windows.Media.Streaming.dll 2014-06-12 09:00:13 CB79B5D367376E7B49E2D95BFFB0BEEB 364640 ----a-w- C:\WINDOWS\Sysnative\AUDIOKSE.dll 2014-06-12 09:00:12 46378ECCB4A29AA81BF296641C2501EF 323072 ----a-w- C:\WINDOWS\Sysnative\srvsvc.dll 2014-06-12 09:00:11 0BDD786156C820F49EEF5D348B4ACFF4 335872 ----a-w- C:\WINDOWS\Sysnative\MDEServer.exe 2014-06-12 09:00:09 D872C6095AACC13AD897DB5E4D2B5D91 805376 ----a-w- C:\WINDOWS\Sysnative\win32spl.dll 2014-06-12 09:00:09 BAF51BE2DEB387BD99CAC4E3B7850FEC 250368 ----a-w- C:\WINDOWS\Sysnative\rdpencom.dll 2014-06-12 09:00:09 79B134ECE836B406B212E28C24011538 834048 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2014-06-12 09:00:08 AF3FF97AC2A73E70F8A8D11FB694175B 449536 ----a-w- C:\WINDOWS\Sysnative\defragsvc.dll 2014-06-12 09:00:07 67176AA6EAF34FF2A962F14EB8F0478B 263424 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlows.exe 2014-06-12 09:00:06 1697E09CDA4DD8741B8276F48A8514DE 32600 ----a-w- C:\WINDOWS\Sysnative\ploptin.dll 2014-06-12 09:00:06 1517EE52367CABAA5615AC736DC96C7D 125496 ----a-w- C:\WINDOWS\Sysnative\dwmapi.dll 2014-06-12 09:00:05 95471DDCB3B3FF70015FD9AA13404F44 281600 ----a-w- C:\WINDOWS\Sysnative\resutils.dll 2014-06-12 09:00:05 87CF824E47489DD972FB4FB9FC4EDD0A 324888 ----a-w- C:\WINDOWS\Sysnative\MFCaptureEngine.dll 2014-06-12 09:00:04 850EBB87584484DC16F917E7B6F4A304 718336 ----a-w- C:\WINDOWS\Sysnative\swprv.dll 2014-06-12 09:00:03 7B12172CCE581F76C9335D7A47E0AD50 130144 ----a-w- C:\WINDOWS\Sysnative\gpapi.dll 2014-06-12 09:00:03 315502228EB37F36E86EF75CB1DA1D44 201920 ----a-w- C:\WINDOWS\Sysnative\MSVideoDSP.dll 2014-06-12 09:00:02 E369C59F2C0852DDD090C07E0DDE0051 1436160 ----a-w- C:\WINDOWS\Sysnative\VSSVC.exe 2014-06-12 08:59:59 9654DE19551093CD73874281E1573C94 135168 ----a-w- C:\WINDOWS\Sysnative\wscsvc.dll 2014-06-12 08:59:59 2A4177EE5446877BD24DD72504105603 191488 ----a-w- C:\WINDOWS\Sysnative\rpchttp.dll 2014-06-12 08:59:58 4684C8E852065C0A7937C395C165A24F 1466856 ----a-w- C:\WINDOWS\Sysnative\propsys.dll 2014-06-12 08:59:57 F4E351BB95D473CB55BB7C1A1FEB2798 467496 ----a-w- C:\WINDOWS\Sysnative\AudioSes.dll 2014-06-12 08:59:57 AE2B9504C975B529D92D9E6603F6D33F 609448 ----a-w- C:\WINDOWS\Sysnative\mf.dll 2014-06-12 08:59:56 01851563CB6FB986A4C0221C15AB6ADC 463256 ----a-w- C:\WINDOWS\Sysnative\AudioEng.dll 2014-06-12 08:59:52 92B785213F856EC736673516C54FA791 233912 ----a-w- C:\WINDOWS\Sysnative\mfps.dll 2014-06-12 08:59:49 5EE916C3272A19B459717A8D2397B07A 55296 ----a-w- C:\WINDOWS\Sysnative\energyprov.dll 2014-06-12 08:59:48 BF6FBC9D97A24FABB0AE8B878279CF0B 244880 ----a-w- C:\WINDOWS\Sysnative\audiodg.exe 2014-06-12 08:59:48 99277BE68298288A0E27CF9E50FAD091 881616 ----a-w- C:\WINDOWS\Sysnative\mfplat.dll 2014-06-12 08:59:48 88ACBA95BB55B8226D52117462B76CD4 307304 ----a-w- C:\WINDOWS\Sysnative\wintrust.dll 2014-06-12 08:59:48 7B3255A0B833908E4A7ACEA6245D344E 426496 ----a-w- C:\WINDOWS\Sysnative\clusapi.dll 2014-06-12 08:59:48 64B2A2630C964BF135A84A52FB2EEF9A 47616 ----a-w- C:\WINDOWS\Sysnative\tlscsp.dll 2014-06-12 08:59:48 414B81DE6CE46022ED43051C09EDB00B 467968 ----a-w- C:\WINDOWS\Sysnative\srcore.dll 2014-06-12 08:59:48 22B8B1F946ACFCB03832793A25216D8C 186880 ----a-w- C:\WINDOWS\Sysnative\WorkFoldersShell.dll 2014-06-12 08:59:48 072A99F351C505A45C9FDA32E7324602 28408 ----a-w- C:\WINDOWS\Sysnative\mfpmp.exe 2014-06-12 08:59:47 EF252510DB6C3511E30418BD2AC95A2D 1527296 ----a-w- C:\WINDOWS\Sysnative\wlansvc.dll 2014-06-12 08:59:47 B24960B79BDE7D5ED1EA638027F9E8F0 143872 ----a-w- C:\WINDOWS\Sysnative\BootMenuUX.dll 2014-06-12 08:59:47 8E1866A4E96F1159B6625627860A0454 2100736 ----a-w- C:\WINDOWS\Sysnative\SystemSettingsAdminFlowUI.dll 2014-06-12 08:59:47 78D26F162E015FF644785C8836B617CA 1287168 ----a-w- C:\WINDOWS\Sysnative\mispace.dll 2014-06-12 08:59:47 69A374DE46C7BAAE30BFB1E40D69C5C6 761856 ----a-w- C:\WINDOWS\Sysnative\WorkfoldersControl.dll 2014-06-12 08:59:46 F587513213947A4C7EF47B660DAAFBC5 271872 ----a-w- C:\WINDOWS\Sysnative\rstrui.exe 2014-06-12 08:59:46 F2895547FC275642A29692DC344A847F 296960 ----a-w- C:\WINDOWS\Sysnative\wlanapi.dll 2014-06-12 08:59:46 E86E7792A2A0854D5560371BBDDA760B 1057280 ----a-w- C:\WINDOWS\Sysnative\rdvidcrl.dll 2014-06-12 08:59:46 E2C26EECF60D9DF94706DF981D074B98 721408 ----a-w- C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll 2014-06-12 08:59:46 DC61194C93DE9E5D549AEC5064A06BD4 872448 ----a-w- C:\WINDOWS\Sysnative\SkyDrive.exe 2014-06-12 08:59:46 B6BD22DDEDDD8665080D664749ACFEF5 64512 ----a-w- C:\WINDOWS\Sysnative\tsgqec.dll 2014-06-12 08:59:46 977D67467950D8048E94651EE6081B99 370176 ----a-w- C:\WINDOWS\Sysnative\wlanmsm.dll 2014-06-12 08:59:46 9465F8E72887AC6CCDD97F738A5AB6B6 70656 ----a-w- C:\WINDOWS\Sysnative\srclient.dll 2014-06-12 08:59:46 88BCAEABEB2A46DB7B336B8432720AC8 443904 ----a-w- C:\WINDOWS\Sysnative\wlansec.dll 2014-06-12 08:59:46 886767FD022213F7885416134E9082E5 201216 ----a-w- C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll 2014-06-12 08:59:45 82FE5F302FD7C7EF0E41465BB873EFC7 11264 ----a-w- C:\WINDOWS\Sysnative\wlanhlp.dll 2014-06-12 08:59:28 CC8E86B9C18BCA38D3C467CFD661A466 1975296 ----a-w- C:\WINDOWS\Sysnative\DWrite.dll 2014-06-12 08:59:28 BB7F878413AD3C2E7E89C96193D405DF 57856 ----a-w- C:\WINDOWS\Sysnative\drvcfg.exe 2014-06-12 08:59:28 8E472AA2E916417B55BC1E6727957453 110592 ----a-w- C:\WINDOWS\Sysnative\drvinst.exe 2014-06-12 08:59:27 3FA6DC6B29717E32E211C1FD821F2C75 1345536 ----a-w- C:\WINDOWS\Sysnative\FntCache.dll 2014-06-12 08:59:25 8838E982B803E9303ABE051E0CAB5A64 2861056 ----a-w- C:\WINDOWS\Sysnative\WpcWebSync.dll 2014-06-12 08:59:25 60A4EAAA2964A3ECFD91A6EC9F8B72C0 3048904 ----a-w- C:\WINDOWS\Sysnative\WpcMon.exe 2014-06-12 08:59:25 416BE72F050166A6B5820833363AB0F2 3118080 ----a-w- C:\WINDOWS\Sysnative\Wpc.dll 2014-06-12 08:59:24 52E94AE3C9FF1E18A1EA125C4FFB0EEC 2834944 ----a-w- C:\WINDOWS\Sysnative\wpccpl.dll 2014-06-12 08:57:17 FCFAEDF0AA1A78A1875FDB798598408B 48640 ----a-w- C:\WINDOWS\Sysnative\ieetwproxystub.dll 2014-06-12 08:57:17 E77092C38028EB0A5C461B3436E0A6D5 4096 ----a-w- C:\WINDOWS\Sysnative\ieetwcollectorres.dll 2014-06-12 08:57:17 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\WINDOWS\Sysnative\ieetwcollector.exe 2014-06-12 08:57:17 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\WINDOWS\Sysnative\ieUnatt.exe 2014-06-12 08:57:16 FD08F8BA2437A85F500EFFE3FD3158A6 33792 ----a-w- C:\WINDOWS\Sysnative\iernonce.dll 2014-06-12 08:57:16 C1E2C16D58D76323800C3EE5E2C5095A 66048 ----a-w- C:\WINDOWS\Sysnative\iesetup.dll 2014-06-12 08:57:14 1D1D7F52EC84294859642A4309FE648E 195584 ----a-w- C:\WINDOWS\Sysnative\msrating.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2014-06-13 08:02:43 D18EC2C83C2F773C9476A4FB0AA4C314 295424 ----a-w- C:\WINDOWS\Sysnative\drivers\ks.sys 2014-06-12 09:01:29 A9749FD0A06E22009EA972D8B9CB046B 428888 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2014-06-12 09:01:28 4B666AE119D2ADBAC816BEA7DB4D6881 2518872 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2014-06-12 09:00:18 92370F46AF28D54B67C135FA8C2AFCFC 1200128 -c--a-w- C:\WINDOWS\Sysnative\drivers\bthport.sys 2014-06-12 09:00:16 7C7BE474915166B61B84C025F1F10157 563200 ----a-w- C:\WINDOWS\Sysnative\drivers\afd.sys 2014-06-12 09:00:13 78514B073CC5775800A65BFB82A0D66B 443904 ----a-w- C:\WINDOWS\Sysnative\drivers\nwifi.sys 2014-06-12 09:00:12 FD163F487CBA9C98AFFEB546C80F49A2 677376 ----a-w- C:\WINDOWS\Sysnative\drivers\srv2.sys 2014-06-12 09:00:12 4BB9BC49DEE1A319EC58274A7BBED663 310616 -c--a-w- C:\WINDOWS\Sysnative\drivers\volsnap.sys 2014-06-12 09:00:11 DBA635C6398782C549E3BE45CF1D0411 206848 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys 2014-06-12 09:00:10 0696F66E4D423793951A60562F794D14 402432 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys 2014-06-12 09:00:07 498288DD5CA42C2D36D125893E968C53 77312 -c--a-w- C:\WINDOWS\Sysnative\drivers\hdaudbus.sys 2014-06-12 09:00:06 F152D55E497E12256290C43B31C7D0CE 589656 ----a-w- C:\WINDOWS\Sysnative\drivers\fvevol.sys 2014-06-12 09:00:05 CADCE0D6C30427F70A4BFA426256F68C 337240 ----a-w- C:\WINDOWS\Sysnative\drivers\Classpnp.sys 2014-06-12 09:00:03 D90AB68D0FAC9F357F663670FDBB511E 275800 -c--a-w- C:\WINDOWS\Sysnative\drivers\msiscsi.sys 2014-06-12 09:00:03 716059F37BCCB1ABEDE99EBE82E8E362 246272 ----a-w- C:\WINDOWS\Sysnative\drivers\srvnet.sys 2014-06-12 08:59:59 4C1E71E37B56C768900B1FCF81205027 372568 ----a-w- C:\WINDOWS\Sysnative\drivers\storport.sys 2014-06-12 08:59:58 6592D192E2823C043EDBC010E7774053 360792 ----a-w- C:\WINDOWS\Sysnative\drivers\fltMgr.sys 2014-06-12 08:59:58 33977549C2CED09936E05BEE7659EAFF 384856 -c--a-w- C:\WINDOWS\Sysnative\drivers\spaceport.sys 2014-06-12 08:59:24 182561A14F2E93E81E66FE3700D17A5A 55328 ----a-w- C:\WINDOWS\Sysnative\drivers\wpcfltr.sys ====== C:\WINDOWS\Tasks ====== 2014-06-18 18:14:07 26452505FC78977F9924ED90919AA3C8 1038 ----a-w- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-233296446-2188455759-894637912-1001Core1cf8b211847db8a.job 2014-06-15 21:04:32 9BE4A59D7963432A5C82C4A21C369708 418 ----a-w- C:\WINDOWS\Tasks\Ad-Aware Update (Daily 1).job 2014-06-15 21:04:32 6D06E90016BE2F7DD307314A37D9DD0B 418 ----a-w- C:\WINDOWS\Tasks\Ad-Aware Update (Daily 2).job 2014-06-15 21:04:32 588AF64C75A7595E2B7179C04D8DD4ED 418 ----a-w- C:\WINDOWS\Tasks\Ad-Aware Update (Daily 3).job 2014-06-15 21:04:32 31D888B4BCA94887A7673A887E9C3576 418 ----a-w- C:\WINDOWS\Tasks\Ad-Aware Update (Daily 4).job 2014-06-03 10:10:23 7764E84D3DF323311707559C65E7A9BE 3754 ----a-w- C:\WINDOWS\Sysnative\Tasks\AutoKMS 2014-06-02 16:19:52 65CE8A755DF1E6C85B89F91EEFF51DCA 3416 ----a-w- C:\WINDOWS\Sysnative\Tasks\Ad-Aware Update (Daily 4) 2014-06-02 16:19:52 0A681335631902BB053606DDE6D36A96 3416 ----a-w- C:\WINDOWS\Sysnative\Tasks\Ad-Aware Update (Daily 3) 2014-06-02 16:19:51 046CC55B1D64B88ED44BB884584CA4AD 3416 ----a-w- C:\WINDOWS\Sysnative\Tasks\Ad-Aware Update (Daily 2) 2014-06-02 16:19:50 F1526583F8AAB26CCF811293B01A1A0F 3416 ----a-w- C:\WINDOWS\Sysnative\Tasks\Ad-Aware Update (Daily 1) 2014-05-26 12:16:34 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\NCH Software ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2014-06-20 09:27:23 -------- d-----w- C:\Program Files\trend micro 2014-06-15 20:50:42 -------- d-----w- C:\Program Files\Common Files\Microsoft 2014-06-02 16:04:28 -------- d-----w- C:\Program Files\WinRAR 2014-06-02 15:55:16 -------- d-----w- C:\Program Files\HitmanPro ======= C:\PROGRA~2 ===== 2014-05-26 12:16:25 -------- d-----w- C:\PROGRA~2\NCH Software ======= C: ===== ====== C:\Users\Milotte\AppData\Roaming ====== 2014-06-03 17:13:06 -------- d-----w- C:\Users\Milotte\AppData\Local\Spotify 2014-06-03 17:12:24 -------- d-----w- C:\Users\Milotte\AppData\Roaming\Spotify 2014-06-02 16:10:25 -------- d-s---w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft 2014-06-02 16:04:43 -------- d-----w- C:\Users\Milotte\AppData\Roaming\WinRAR 2014-06-02 16:04:31 -------- d-----w- C:\Users\Milotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-06-02 15:33:39 -------- d-----w- C:\Users\Milotte\AppData\Roaming\uTorrent 2014-05-26 12:16:35 -------- d-----w- C:\Users\Milotte\AppData\Roaming\NCH Software ====== C:\Users\Milotte ====== 2014-06-20 09:24:08 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Milotte\Downloads\RSITx64.exe 2014-06-02 16:09:08 -------- d-----w- C:\ProgramData\Lavasoft 2014-06-02 16:04:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-05-26 12:16:34 -------- d-----w- C:\ProgramData\NCH Software ====== C: exe-files == 2014-06-20 09:27:25 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Milotte.exe 2014-06-20 09:24:08 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Milotte\Downloads\RSITx64.exe 2014-06-18 18:14:05 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Users\Milotte\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateBroker.exe 2014-06-18 18:14:05 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Users\Milotte\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe 2014-06-18 18:14:04 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Users\Milotte\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateSetup.exe 2014-06-18 18:13:52 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Users\Milotte\AppData\Local\Google\Update\1.3.24.15\GoogleCrashHandler64.exe 2014-06-18 18:13:52 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Users\Milotte\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateComRegisterShell64.exe 2014-06-18 18:13:51 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Milotte\AppData\Local\Google\Update\1.3.24.15\GoogleUpdate.exe 2014-06-18 18:13:51 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Users\Milotte\AppData\Local\Google\Update\1.3.24.15\GoogleCrashHandler.exe 2014-06-18 18:13:45 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Users\Milotte\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.24.15\GoogleUpdateSetup.exe 2014-06-15 20:50:49 53CDBB093B0AEE9FD6CF1CBD25A95077 290304 ----a-w- C:\Windows\SysWOW64\subinacl.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-233296446-2188455759-894637912-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\Milotte\AppData\Local\Google\Update\GoogleUpdate.exe /c" "EPSON6D9428 (Epson Stylus Office BX525WD)"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAU.EXE /FU C:\WINDOWS\TEMP\E_S9678.tmp /EF HKCU" "Epson Stylus Office BX525WD(Netwerk)"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAU.EXE /FU C:\WINDOWS\TEMP\E_S495C.tmp /EF HKCU" "Spotify Web Helper"="C:\Users\Milotte\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "331BigDog"="C:\Program Files (x86)\USB Camera\VM331STI.EXE" "Fastboot"="C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe /analysis" "EEventManager"="C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\Milotte\AppData\Local\Google\Update\GoogleUpdate.exe /c" "EPSON6D9428 (Epson Stylus Office BX525WD)"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAU.EXE /FU C:\WINDOWS\TEMP\E_S9678.tmp /EF HKCU" "Epson Stylus Office BX525WD(Netwerk)"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGAU.EXE /FU C:\WINDOWS\TEMP\E_S495C.tmp /EF HKCU" "Spotify Web Helper"="C:\Users\Milotte\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\PROGRA~2\\SupTab\\SEARCH~1.DLL" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" "LenovoOptMouseUpdate"="C:\Program Files\Lenovo\HOTKEY\extapsup.exe" "LENOVO.TPKNRRES"="rundll32.exe C:\Program Files\Lenovo\Communications Utility\LibStartStub.dll,AVStartupStub" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Startup Folders ====================== 2014-03-19 19:36:19 1112 ----a-w- C:\Users\Milotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2013-10-30 04:27:25 876 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job --a-------- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [] C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job --a-------- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [] C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job --a-------- [Undetermined Task] C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job --a-------- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-233296446-2188455759-894637912-1001Core1cf8b211847db8a.job --a-------- C:\Users\Milotte\AppData\Local\Google\Update\GoogleUpdate.exe [09-04-2014 15:59] C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job --a-------- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [16-08-2012 08:23] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Ad-Aware Update (Daily 1)" [C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe] "C:\WINDOWS\SysNative\tasks\Ad-Aware Update (Daily 2)" [C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe] "C:\WINDOWS\SysNative\tasks\Ad-Aware Update (Daily 3)" [C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe] "C:\WINDOWS\SysNative\tasks\Ad-Aware Update (Daily 4)" [C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe] "C:\WINDOWS\SysNative\tasks\AutoKMS" [C:\WINDOWS\AutoKMS\AutoKMS.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe] "C:\WINDOWS\SysNative\tasks\Intel\Intel Service Manager" ["C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe"] "C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program" ["%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"] "C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program 64" ["%ProgramFiles(x86)%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"] "C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Settings Power" ["C:\WINDOWS\system32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor] "C:\WINDOWS\SysNative\tasks\Lenovo\Lenovo Solution Center Launcher" [%programfiles%\lenovo\lenovo solution center\App\LSCService.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\LenovoDependencyVersionTask" [C:\Program Files\lenovo\SystemAgent\DependencyVersion.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\LenovoMachineInformation" [C:\Program Files\lenovo\SystemAgent\MachineInformation.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\LenovoUserguidesCopy" [C:\Program Files\lenovo\SystemAgent\UserguidesCopy.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\LenovoWarrantyChinaTask" [C:\Program Files\lenovo\SystemAgent\ChinaWarrantyService.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\LSC\LSCHardwareScan" ["C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan] "C:\WINDOWS\SysNative\tasks\Lenovo\LSC\LSCHardwareScanPostpone" ["C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan] "C:\WINDOWS\SysNative\tasks\Lenovo\LSC\LSCTaskService" [C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCTaskService.exe] "C:\WINDOWS\SysNative\tasks\Lenovo\LSC\RebootCountTask" ["C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe"] "C:\WINDOWS\SysNative\tasks\Lenovo\LSC\Time72Task" ["C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe"] "C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] "C:\WINDOWS\SysNative\tasks\TVT\LenovoWERMonitor" ["C:\Program Files (x86)\Common Files\lenovo\SUP\sup_wermonitor.exe"] "C:\WINDOWS\SysNative\tasks\TVT\TVSUUpdateTask" ["C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe"] ==== Chrome Look ====================== Google Docs - Milotte\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Milotte\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Milotte\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Milotte\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - Milotte\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Chrome Fix ====================== C:\Users\Milotte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_videopad-video-editor.nl.softonic.com_0.localstorage deleted successfully C:\Users\Milotte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_videopad-video-editor.nl.softonic.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.sweet-page.com/web/?type=ds&ts=1401106612&from=sof&uid=WDCXWD3200LPVT-08G33T1_WD-WX91A833033130331&q={searchTerms}" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com" "Start Page Redirect Cache"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.sweet-page.com/web/?type=ds&ts=1401106612&from=sof&uid=WDCXWD3200LPVT-08G33T1_WD-WX91A833033130331&q={searchTerms}" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com" "Start Page Redirect Cache"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page Redirect Cache"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page Redirect Cache"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{67C334C0-408D-4E6D-B5A7-0ADD6AFFA252}" {67C334C0-408D-4E6D-B5A7-0ADD6AFFA252} Google Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Milotte\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Milotte\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=14 folders=13 1272244 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Milotte\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Milotte\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on vr 20-06-2014 at 18:02:02,05 ======================