Zoek.exe v5.0.0.0 Updated 09-January-2015 Tool run by sander on za 10/01/2015 at 14:43:47,12. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\sander\Downloads\zoek(1).exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 10/01/2015 14:46:34 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\BlueStacks deleted successfully C:\Program Files\Google deleted successfully C:\Users\sander\AppData\Roaming\ObviousIdea deleted successfully C:\Users\sander\AppData\Local\Adobe deleted successfully C:\Users\sander\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== æTorrent abDocs abDocs Office AddIn abMedia abPhoto Acer Games Acer Launch Manager Acer Portal Acer Power Management Acer Quick Access Acer Recovery Management Acer Remote Files Adobe Flash Player 16 NPAPI Akamai NetSession Interface AOP Framework Apple Application Support Apple Mobile Device Support Apple Software Update Bonjour BS.Player FREE CCleaner Combat Arms EU CyberLink PowerDVD 12 Dolby Digital Plus Home Theater Free YouTube to MP3 Converter version 3.12.46.923 Google Chrome Google Update Helper Identity Card Intel(R) Driver Update Utility 2.0 Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) Rapid Storage Technology Intel© Driver Update Utility Intel© Trusted Connect Service Client iTunes Logitech Gaming Software Logitech Gaming Software 8.57 Malwarebytes Anti-Malware versie 2.0.4.1028 Microsoft Office Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual Studio 2005 Tools for Office Runtime Mozilla Firefox 34.0.5 (x86 nl) Mozilla Maintenance Service Nero BackItUp Nero BackItUp 12 Essentials OEM.a01 Nero BackItUp Help (CHM) Nero ControlCenter Nero ControlCenter Help (CHM) Nero Core Components Nero Launcher Nero RescueAgent Nero RescueAgent Help (CHM) Nero Update Norton Online Backup Norton Security with Backup NVIDIA-configuratiescherm 344.65 NVIDIA GeForce Experience 2.1.4 NVIDIA GeForce Experience Service NVIDIA Grafisch stuurprogramma 344.65 NVIDIA Install Application NVIDIA LED Visualizer 1.0 NVIDIA Network Service NVIDIA Optimus Update 16.13.65 NVIDIA PhysX NVIDIA PhysX systeemsoftware 9.14.0702 NVIDIA ShadowPlay 16.13.65 NVIDIA Update 16.13.65 NVIDIA Update Core NVIDIA Virtual Audio 1.2.26 Office Addin Pokki Start Menu Prerequisite installer Qualcomm Atheros Bluetooth Suite (64) Qualcomm Atheros WLAN and Bluetooth Client Installation Program Realtek Card Reader Realtek High Definition Audio Driver SHIELD Streaming SHIELD Wireless Controller Driver Speccy Spotify Synaptics Pointing Device Driver the downloaded files Visual Studio 2005 Tools for Office Second Edition Runtime Visual Studio Tools for the Office system 3.0 Runtime Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) WinRAR 5.20 (64-bit) YAC(Yet Another Cleaner) ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe C:\Program Files (x86)\Norton Security with Backup\Engine\22.1.0.9\NSBU.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe C:\Program Files (x86)\Norton Security with Backup\Engine\22.1.0.9\NSBU.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\Elex-tech\YAC\iDesk.exe C:\Users\sander\AppData\Local\Akamai\netsession_win.exe C:\Users\sander\AppData\Local\Akamai\netsession_win.exe C:\Users\sander\Downloads\zoek(1).exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Users\sander\AppData\Roaming\uTorrent\uTorrent.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Users\sander\AppData\Roaming\eCyber deleted C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC deleted C:\Users\sander\Downloads\SoftonicDownloader_voor_winrar.exe deleted C:\Users\Public\Desktop\YAC.lnk deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8073 MB CPU Info: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz CPU Speed: 2198,1 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 | NVIDIA GeForce GTX 760M Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Microsoft Hosted Network Virtual Adapter | Bluetooth Device (Personal Area Network) | Microsoft Wi-Fi Direct Virtual Adapter | Qualcomm Atheros AR5BWB222 Wireless Network Adapter | Broadcom NetLink (TM) Gigabit Ethernet CD / DVD Drives: 1x (D: | ) D: MATSHITADVD-RAM UJ8E0 Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 912,7GB Hard Disks - Free: C: 781,0GB Manufacturer *: Insyde Corp. BIOS Info: AT/AT COMPATIBLE | | ACRSYS - 1 Time Zone: West-Europa (standaardtijd) Motherboard *: Acer VA70_HW Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: Norton Security with Backup On-access scanning disabled (Outdated) Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: Norton Security with Backup disabled (Outdated) Firewall: Norton Security with Backup disabled Default Browser: Firefox 34.0.5 Internet Explorer Version: 11.0.9600.17498 Mozilla Firefox version: 34.0.5 (x86 nl) Google Chrome version: 39.0.2171.95 Flash Player version: 16.0.0.235 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-12-30 22:08:57 4C3B6897900C90D7B930FC093F08A095 691323018 ----a-w- C:\Windows\MEMORY.DMP ====== C:\Users\sander\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2015-01-10 11:38:05 220505B0B3E96C857DD01729AF0CD369 19749376 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2015-01-10 11:37:37 B59E370277EDB6643083B62297175628 12836864 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2015-01-10 11:37:30 F728E7E9937117E0F32F39840EB6D737 4299264 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2015-01-10 11:37:29 5E4E0E43E0A5BF9F089696DFA7A3D677 1888256 ----a-w- C:\Windows\SysWOW64\wininet.dll 2015-01-10 11:37:28 F34F6DC38A21FCDBB50CDD1EE97B1EA3 1307136 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2015-01-10 11:37:28 98F2784FC4A4A80CE20016C6281834EE 880128 ----a-w- C:\Windows\SysWOW64\inetcomm.dll 2015-01-10 11:37:28 01777AB557997E98691E322225314E57 2277888 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2015-01-10 11:37:27 45CDC0E37774D30BEE8C5F62CE30D599 1042944 ----a-w- C:\Windows\SysWOW64\actxprxy.dll 2015-01-10 11:37:26 C6941899E6B0A1893D2D5A89241A43B6 661504 ----a-w- C:\Windows\SysWOW64\jscript.dll 2015-01-10 11:37:25 EF7A48E5955736BEECF0B0ABB478E90E 478208 ----a-w- C:\Windows\SysWOW64\ieui.dll 2015-01-10 11:37:25 D7A98A4CEA2E89F544065A00BF37FC10 688640 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2015-01-10 11:37:25 8FC2FB51EB90E6AA582BDBA39C1935FD 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2015-01-10 11:37:25 7BCC24D058205664BD700D272B169AEC 418304 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2015-01-10 11:37:25 543ADCEA31CF9C2B4EEB900D4AAFD0F9 2052096 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2015-01-10 11:37:25 41AFA61E061E98E97272AC02184C8C2C 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2015-01-10 11:37:25 37F078B5B435AFC6BF316F2AD14B469A 501248 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2015-01-10 11:37:24 69AC6FD5B0B4DC963723E1EBDEE10A2C 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2015-01-10 11:37:23 713407DA59A9DBE5BD64A17D7A267DA1 326656 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2015-01-10 11:37:23 476900A8699F5C3D954ADD4A35D33F89 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll 2015-01-10 11:37:21 BE5EDCACB9E83C3695F650094367740C 99328 ----a-w- C:\Windows\SysWOW64\hlink.dll 2015-01-10 11:37:21 86181845803967FC51B64119E80FC18C 340992 ----a-w- C:\Windows\SysWOW64\html.iec 2015-01-10 11:37:21 236AD481F1632F4CE7E9835FFD4AF41D 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll 2015-01-10 11:37:20 FCAF49AE2E10EF3823262D10E7F2D0DE 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-01-10 11:37:20 FC51834D5057B9D7847666AE88BC981C 130048 ----a-w- C:\Windows\SysWOW64\occache.dll 2015-01-10 11:37:20 F25284C763E728E4DAC248C211D1FC5B 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2015-01-10 11:37:20 F1313045CDCBBC4C90C34AEF67CEE088 112128 ----a-w- C:\Windows\SysWOW64\IEAdvpack.dll 2015-01-10 11:37:20 EF7B7299A1D6604AD3CA2CE1BEF8C8F3 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2015-01-10 11:37:20 ED5A4451A1A2777C6C5DB4238FD09078 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2015-01-10 11:37:20 DCFF6E5356CFF5B50BBA0FAAE01A0412 90624 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2015-01-10 11:37:20 A66A88FFE53BBB9DDAACE0110A8232EC 137728 ----a-w- C:\Windows\SysWOW64\wextract.exe 2015-01-10 11:37:20 8D1E12756ED6F1FDB026AD3CF264F90C 40448 ----a-w- C:\Windows\SysWOW64\imgutil.dll 2015-01-10 11:37:20 615D259116D1B331911CE28C8CD1CCF3 73216 ----a-w- C:\Windows\SysWOW64\tdc.ocx 2015-01-10 11:37:20 59607FB7C6B84860CE2D1C5F7C57E052 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2015-01-10 11:37:20 3C544C566EE7091AC52D4D9156C62687 235520 ----a-w- C:\Windows\SysWOW64\url.dll 2015-01-10 11:37:20 316280CC22CBB15271A91D83CDFB73C3 27136 ----a-w- C:\Windows\SysWOW64\licmgr10.dll 2015-01-10 11:37:20 29CED1A4777A43526A4ED8A7B6936883 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2015-01-10 11:37:20 26F4BDB6EA83011885E217A51A4A3E68 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2015-01-10 11:37:20 1D391C687102569FD1EA154F0C1A4CE8 91136 ----a-w- C:\Windows\SysWOW64\inseng.dll 2015-01-10 11:37:20 159199095C9959BE75E61C0FF947708F 152064 ----a-w- C:\Windows\SysWOW64\iexpress.exe 2015-01-10 11:37:20 0FEEFF4B96CA5972121F59525142A14E 52736 ----a-w- C:\Windows\SysWOW64\msfeedsbs.dll 2015-01-10 11:37:20 0E4D9A13C7C6C8FC3ACCF1C8C28DE200 128000 ----a-w- C:\Windows\SysWOW64\iepeers.dll 2015-01-10 11:37:20 0812A503FF349D1DCEEB820B2E4FEE15 57344 ----a-w- C:\Windows\SysWOW64\pngfilt.dll 2015-01-10 11:37:20 02FF387F6228169EDDCB41F5E4B1A4E4 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2015-01-10 11:37:19 3FA76B67F25D84B3C2A4E8A8C0919E6E 12800 ----a-w- C:\Windows\SysWOW64\mshta.exe 2015-01-10 11:37:19 1BD4CD20A25B4A3A5F7BAAC25E9D9202 11264 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-01-10 11:38:06 D478A4CF07FB8ADF72FB16B88E8030B8 25059840 ----a-w- C:\Windows\Sysnative\mshtml.dll 2015-01-10 11:37:41 556D271F4243B273EDA353512BF3608A 14412800 ----a-w- C:\Windows\Sysnative\ieframe.dll 2015-01-10 11:37:32 8D64466AD12CA5677CD0099C43C58569 6039552 ----a-w- C:\Windows\Sysnative\jscript9.dll 2015-01-10 11:37:29 E7A2061ADF0F4D430FECDA1E8D6B7BA6 1548288 ----a-w- C:\Windows\Sysnative\urlmon.dll 2015-01-10 11:37:29 62D54F4673A6208C8CC147758122B3C3 2865152 ----a-w- C:\Windows\Sysnative\actxprxy.dll 2015-01-10 11:37:29 4AF089160FE082E5EA5C4AA72782DCA2 2358272 ----a-w- C:\Windows\Sysnative\wininet.dll 2015-01-10 11:37:28 982B871A25B5078093FAD82D0AB0E3FC 2885120 ----a-w- C:\Windows\Sysnative\iertutil.dll 2015-01-10 11:37:28 507DC5EE1363EEB7D986B1026DF4E39D 1032704 ----a-w- C:\Windows\Sysnative\inetcomm.dll 2015-01-10 11:37:26 DE58DE2C6C8439B7174D6D3568AA4A80 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2015-01-10 11:37:26 A7F53772ECAE2F44B455D14F71179940 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2015-01-10 11:37:26 A41AC7E8D142FD0ECF6EF7F1BB63D478 812544 ----a-w- C:\Windows\Sysnative\jscript.dll 2015-01-10 11:37:26 587DEBB59F5F14C9610966FB14A33607 633856 ----a-w- C:\Windows\Sysnative\ieui.dll 2015-01-10 11:37:25 1D294810D3A8A8F722E86AA001F54DCC 580096 ----a-w- C:\Windows\Sysnative\vbscript.dll 2015-01-10 11:37:25 175C139D51F99099D1BDA17794B02191 490496 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2015-01-10 11:37:25 14BA910E7731FC84EB85328BD0F1EE81 800768 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2015-01-10 11:37:24 EFBA893429814EA3244C87C2D1256618 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2015-01-10 11:37:24 3FE71E2A5BD3EC652E64FC8BCEFEDD2C 2125312 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2015-01-10 11:37:24 0AF0AEF0BA9EF6169E61C78504DCAE55 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2015-01-10 11:37:23 D248949FCF2B72C1FD4EC15DA92065C0 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll 2015-01-10 11:37:21 F0A53129AE95A895EC8C4DC36E1797A2 108544 ----a-w- C:\Windows\Sysnative\hlink.dll 2015-01-10 11:37:21 DDE455CF1B9F43775A53A4E577DFDC54 373760 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2015-01-10 11:37:21 39B512C643812FC2D4843C0D4206C759 718848 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2015-01-10 11:37:21 3721721151DB49457B0FD35E0C04594C 199680 ----a-w- C:\Windows\Sysnative\msrating.dll 2015-01-10 11:37:20 F79E5258AF040A8AD83C7C1273A071C3 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2015-01-10 11:37:20 F54E1190251EB245183BF16D6C315613 237568 ----a-w- C:\Windows\Sysnative\url.dll 2015-01-10 11:37:20 E40D3696BE4852956669C285038B37A6 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2015-01-10 11:37:20 DD8FD33C108F14681A410067AB21DDF3 152064 ----a-w- C:\Windows\Sysnative\occache.dll 2015-01-10 11:37:20 DB10D681314714E0D4623E4C0CF6654A 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2015-01-10 11:37:20 D66D11191B48007179B0A77DC0717267 33280 ----a-w- C:\Windows\Sysnative\licmgr10.dll 2015-01-10 11:37:20 CDC8A85EB301A8CBE55A81A1D55AF5E5 132096 ----a-w- C:\Windows\Sysnative\IEAdvpack.dll 2015-01-10 11:37:20 C9AB2198141844D3DF96B4552CE9D5AB 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2015-01-10 11:37:20 A348DEFC16B6FBC88B7D61C3B861BCB1 107520 ----a-w- C:\Windows\Sysnative\inseng.dll 2015-01-10 11:37:20 8AE1AC97407CD82D8389390C21430579 111616 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2015-01-10 11:37:20 85E97591864F3125C5B08FB44E0E8078 60416 ----a-w- C:\Windows\Sysnative\msfeedsbs.dll 2015-01-10 11:37:20 6A7F8D139610E5F3F158182778EF9275 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll 2015-01-10 11:37:20 62CFEE2A516C68540486EBF26F18ED4C 145408 ----a-w- C:\Windows\Sysnative\iepeers.dll 2015-01-10 11:37:20 6096209CB47D61499C3608B9C25B073C 64512 ----a-w- C:\Windows\Sysnative\pngfilt.dll 2015-01-10 11:37:20 4B9C652BD0FD95A9E6123913C35519D6 143872 ----a-w- C:\Windows\Sysnative\wextract.exe 2015-01-10 11:37:20 284070B045F8B11B4A1FB32F72023038 417280 ----a-w- C:\Windows\Sysnative\html.iec 2015-01-10 11:37:20 1C3C54FA2D620DF3093F356A56EC5957 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2015-01-10 11:37:20 17A157A4225CF562202AC71DB8103177 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2015-01-10 11:37:20 161BC2E883A8D8759A4DCF2A85AF9128 51200 ----a-w- C:\Windows\Sysnative\imgutil.dll 2015-01-10 11:37:20 00FB2FB8C27C834CF575BC415B80F995 87552 ----a-w- C:\Windows\Sysnative\tdc.ocx 2015-01-10 11:37:19 E99E2E88BFE584184AE92B1F8995CE93 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll 2015-01-10 11:37:19 CA2F3153EF3BCB0BD3A8984C933DF604 167424 ----a-w- C:\Windows\Sysnative\iexpress.exe 2015-01-10 11:37:19 A3871DED5ED88F59C0D1396761708F81 13824 ----a-w- C:\Windows\Sysnative\mshta.exe 2015-01-10 11:37:19 66585D645C4E23A0FD5124BD714AE020 12800 ----a-w- C:\Windows\Sysnative\msfeedssync.exe 2015-01-10 11:36:52 8283D7B0DCB540AB58A864E4BF2451FD 830464 ----a-w- C:\Windows\Sysnative\appraiser.dll 2015-01-10 11:36:51 FB7F1B20A2C86D55F731E53EB04C9360 740864 ----a-w- C:\Windows\Sysnative\invagent.dll 2015-01-10 11:36:51 EE5ED8E6998D7E686F614BA8D876829B 192000 ----a-w- C:\Windows\Sysnative\aepic.dll 2015-01-10 11:36:51 C4A550C337ADB0EB4C4D4F388C27B815 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll 2015-01-10 11:36:51 C4859B1344645E6109DE77F5577CD37F 396288 ----a-w- C:\Windows\Sysnative\devinv.dll 2015-01-10 11:36:51 2DD8EC6F8DE5F8556ABC5F223D49EA07 412672 ----a-w- C:\Windows\Sysnative\generaltel.dll 2015-01-10 11:36:51 222F243A138149E51FEA4769A475A144 1083392 ----a-w- C:\Windows\Sysnative\aeinv.dll ====== C:\Windows\Sysnative\drivers ===== 2015-01-04 18:07:08 A619A46B767F22626E8ED1140D1C5E89 45224 ----a-w- C:\Windows\Sysnative\drivers\iSafeKrnlBoot.sys 2015-01-04 18:07:08 85418C38693F1C36B2CCB660E2C22352 52392 ----a-w- C:\Windows\Sysnative\drivers\iSafeNetFilter.sys 2014-12-24 10:13:03 8E98D21EE06192492A5671A6144D092F 33240 ----a-w- C:\Windows\Sysnative\drivers\GEARAspiWDM.sys 2014-12-20 18:04:21 6D2EE96150E35B9EA49F2B481DE0369A 177472 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2014-12-20 18:04:21 4E1207CE16E615B0B7A70DC889F4500E 563976 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2014-12-20 18:04:20 9F08A6608F98B5407E7DDBCF306573EF 27456 ----a-w- C:\Windows\Sysnative\drivers\rdpvideominiport.sys 2014-12-20 18:03:37 B02118A776C368F7EE1A8CC81378D265 153920 -c--a-w- C:\Windows\Sysnative\drivers\dumpsd.sys 2014-12-20 18:03:37 A770340FC02B999EF0DE6C2A6BC8437C 39744 -c--a-w- C:\Windows\Sysnative\drivers\intelpep.sys 2014-12-20 18:03:37 7B7C482CF48E6EE33664340D1A78E6FE 238912 -c--a-w- C:\Windows\Sysnative\drivers\sdbus.sys 2014-12-20 18:03:37 24A8DFC07E4BAF29AEA26E383D4CC886 86336 ----a-w- C:\Windows\Sysnative\drivers\pdc.sys ====== C:\Windows\Tasks ====== 2014-12-24 10:11:27 -------- d-----w- C:\Windows\Sysnative\Tasks\Apple 2014-12-20 17:46:47 74E2441B8647ECD473478260A652BBBC 3162 ----a-w- C:\Windows\Sysnative\Tasks\Game_Booster_AutoUpdate ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-12-31 17:56:38 -------- d-----w- C:\Program Files\WinRAR 2014-12-24 10:12:17 -------- d-----w- C:\Program Files\iPod 2014-12-24 10:12:16 -------- d-----w- C:\Program Files\iTunes 2014-12-24 10:11:17 -------- d-----w- C:\Program Files\Common Files\Apple ======= C:\PROGRA~2 ===== 2015-01-04 18:06:47 -------- d-----w- C:\PROGRA~2\Elex-tech 2014-12-24 10:12:16 -------- d-----w- C:\PROGRA~2\iTunes 2014-12-24 10:11:25 -------- d-----w- C:\PROGRA~2\Apple Software Update 2014-12-24 10:10:58 -------- d-----w- C:\PROGRA~2\COMMON~1\Apple 2014-12-20 17:46:30 -------- d-----w- C:\PROGRA~2\IObit 2014-12-20 17:36:17 -------- d-----w- C:\PROGRA~2\Intel Driver Update Utility ======= C: ===== ====== C:\Users\sander\AppData\Roaming ====== 2015-01-04 18:06:47 -------- d-----w- C:\Users\sander\AppData\Roaming\Elex-tech 2014-12-31 17:56:54 -------- d-----w- C:\Users\sander\AppData\Roaming\WinRAR 2014-12-31 17:56:46 -------- d-----w- C:\Users\sander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-12-24 11:55:39 -------- d-----w- C:\Users\sander\AppData\Roaming\WildTangent 2014-12-24 10:13:09 -------- d-----w- C:\Users\sander\AppData\Roaming\Apple Computer 2014-12-24 10:13:09 -------- d-----w- C:\Users\sander\AppData\Local\Apple Computer 2014-12-24 10:11:27 -------- d-----w- C:\Users\sander\AppData\Local\Apple 2014-12-24 10:11:21 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Apple Computer 2014-12-20 17:36:47 -------- d-----w- C:\Users\sander\AppData\Local\Intel 2014-12-17 12:18:34 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\clear.fi ====== C:\Users\sander ====== 2015-01-10 11:55:56 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\sander\Downloads\RSITx64.exe 2015-01-04 18:05:44 E713142712B31512F78B6877EC962391 783400 ----a-w- C:\Users\sander\Downloads\yet_another_cleaner_matf.exe 2014-12-31 17:56:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-12-31 17:56:26 6158A1045C148DF1AADDCE15091362F3 1941064 ----a-w- C:\Users\sander\Downloads\winrar-x64-520.exe 2014-12-24 10:13:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-12-24 10:12:16 -------- d-----w- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 2014-12-24 10:12:16 -------- d-----w- C:\ProgramData\Apple Computer 2014-12-20 17:46:30 -------- d-----w- C:\ProgramData\IObit 2014-12-20 17:36:17 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility ====== C: exe-files == 2015-01-10 11:55:56 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\sander\Downloads\RSITx64.exe 2015-01-10 11:37:21 39B512C643812FC2D4843C0D4206C759 718848 ----a-w- C:\Windows\System32\ie4uinit.exe 2015-01-10 11:37:20 E40D3696BE4852956669C285038B37A6 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe 2015-01-10 11:37:20 CFB15ED916904B30D32DFDE29B67CDCC 25600 ----a-w- C:\Program Files (x86)\Internet Explorer\ExtExport.exe 2015-01-10 11:37:20 CC5C5634FA72689449B4BF7960AC1AD5 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2015-01-10 11:37:20 8D7C6EE90630126F79275BAC5FE16E51 468992 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2015-01-10 11:37:20 8CFC152DF5D4FCFD621EF3E231999D03 484352 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2015-01-10 11:37:20 6A16741182E4C1E83636053C81CE344E 221184 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2015-01-10 11:37:20 5F1B1148C830C0F149A476A58CE0D09D 815248 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2015-01-10 11:37:20 5AC6DB399DE418E3955F0CA4567BDD37 813712 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2015-01-10 11:37:20 4B9C652BD0FD95A9E6123913C35519D6 143872 ----a-w- C:\Windows\System32\wextract.exe 2015-01-10 11:37:20 1C3C54FA2D620DF3093F356A56EC5957 144384 ----a-w- C:\Windows\System32\ieUnatt.exe 2015-01-10 11:37:19 CA2F3153EF3BCB0BD3A8984C933DF604 167424 ----a-w- C:\Windows\System32\iexpress.exe 2015-01-10 11:37:19 A3871DED5ED88F59C0D1396761708F81 13824 ----a-w- C:\Windows\System32\mshta.exe 2015-01-10 11:37:19 66585D645C4E23A0FD5124BD714AE020 12800 ----a-w- C:\Windows\System32\msfeedssync.exe 2015-01-10 11:36:51 65536EB5F53B76562BBE0DE332A8BA3C 66216 ----a-w- C:\Windows\System32\CompatTel\diagtrackrunner.exe 2015-01-09 22:37:26 58689D86E2D8CEDB2F786DD5A76DF2FB 432376 ----a-w- C:\Users\sander\AppData\Local\NVIDIA\NvBackend\Packages\00006b06\CoProc update.19212142.exe 2015-01-04 18:06:54 BF766B69940099C31AFFE4EABA4F382A 284968 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\isafeLottery.exe 2015-01-04 18:06:54 B6F85419B1FCECA1D6C8006DB9F7FAD1 454568 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeTHlp64.exe 2015-01-04 18:06:54 AFF03B9A9DF52F48118A01FFC8628839 585512 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iDesk.exe 2015-01-04 18:06:53 E70F75059755D60D0EE39E3821EAA9C9 512808 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeVirusScanner.exe 2015-01-04 18:06:53 D0C6D9D570ECB6D76D857E21E31ED571 445736 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeTHlp.exe 2015-01-04 18:06:53 B97E05F0F93EDCDA1E5A03E2C62F545F 156520 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\ipcdl.exe 2015-01-04 18:06:53 B70C1D15E508BB0F65E01528B7F7A489 811816 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafe.exe 2015-01-04 18:06:53 A9F7221F4F33705D888F88C92413C7DC 354088 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe 2015-01-04 18:06:53 A03A95B389479B2ADE3A288FA2EA11D1 118048 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe 2015-01-04 18:06:53 96F30AFD80CEE7951F8199285FB34EA2 409896 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\feedback.exe 2015-01-04 18:06:53 8080416CBCEF8B1C629720B15DCC7D53 296744 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeBugReport.exe 2015-01-04 18:06:53 6933D811970EAEFD54522AFECB002AE0 966056 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\uninstall.exe 2015-01-04 18:06:53 5FDFE68137032BD8EECEE7BD616E67B6 303912 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iStart.exe 2015-01-04 18:06:53 5C8036BB29940D2754E665056135035B 306472 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\bugreport.exe 2015-01-04 18:06:53 1EC45DC4F84777759EB6620325FCAD89 120128 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe 2015-01-04 18:06:53 08E390FBBD23B035ECF4F2D813305BE0 605672 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\YacLuckySpin.exe 2015-01-04 18:06:09 31C22034DB4F2876D7E8F895C7FD15AC 13110080 ----a-w- C:\Users\sander\AppData\Local\Microsoft\Windows\INetCache\IE\R2LQ0M0J\yac[1].exe 2015-01-04 18:05:44 E713142712B31512F78B6877EC962391 783400 ----a-w- C:\Users\sander\Downloads\yet_another_cleaner_matf.exe === C: other files == 2015-01-10 12:11:59 A1B1BC6A14B437C82AC830116979E9F6 979699 ----a-w- C:\Users\sander\AppData\Roaming\Mozilla\Firefox\Profiles\n5a3ep2a.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi 2015-01-10 12:11:58 A1B1BC6A14B437C82AC830116979E9F6 979699 ----a-w- C:\Users\sander\AppData\Local\Temp\tmp-5vl.xpi 2015-01-04 18:07:08 A619A46B767F22626E8ED1140D1C5E89 45224 ----a-w- C:\Windows\System32\drivers\iSafeKrnlBoot.sys 2015-01-04 18:07:08 85418C38693F1C36B2CCB660E2C22352 52392 ----a-w- C:\Windows\System32\drivers\iSafeNetFilter.sys 2015-01-04 18:06:54 D2B19A4F2D330FB84672617042849B08 93352 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys 2015-01-04 18:06:54 A619A46B767F22626E8ED1140D1C5E89 45224 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlBoot.sys 2015-01-04 18:06:54 8A70A1F5146785D5D54F30248B540FBD 249000 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys 2015-01-04 18:06:54 85418C38693F1C36B2CCB660E2C22352 52392 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeNetFilter.sys 2015-01-04 18:06:54 4BAF8AB363C9C4149FDD00CDB261BDBE 99496 ----a-w- C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-973614633-2271649423-588968297-1002\Software\Microsoft\Windows\CurrentVersion\Run] "Akamai NetSession Interface"="C:\Users\sander\AppData\Local\Akamai\netsession_win.exe" "uTorrent"="C:\Users\sander\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BacKGround Agent"="C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" "abDocsDllLoader"="C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Akamai NetSession Interface"="C:\Users\sander\AppData\Local\Akamai\netsession_win.exe" "uTorrent"="C:\Users\sander\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Launch LCore"="C:\Program Files\Logitech Gaming Software\LCore.exe /minimized" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22/09/2014 02:49] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22/09/2014 02:49] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\AcerCloud" [C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe] "C:\Windows\SysNative\tasks\ALU" [C:\Program Files (x86)\Acer\Live Updater\updater.exe] "C:\Windows\SysNative\tasks\ALUAgent" [C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\Dolby Selector" [C:\Program Files\Dolby Digital Plus\ddp.exe] "C:\Windows\SysNative\tasks\Game_Booster_AutoUpdate" [C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\Launch Manager" ["C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe"] "C:\Windows\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton Security with Backup\Engine\22.1.0.9\WSCStub.exe"] "C:\Windows\SysNative\tasks\Power Management" ["C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"] "C:\Windows\SysNative\tasks\Quick Access" ["C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"] "C:\Windows\SysNative\tasks\Synaptics TouchPad Enhancements" ["C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{8F13F818-3226-42F9-99CF-6B5C199D36CB}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\Norton Security with Backup\Norton Error Analyzer" [C:\Program Files (x86)\Norton Security with Backup\Engine\22.1.0.9\SymErr.exe] "C:\Windows\SysNative\tasks\Norton Security with Backup\Norton Error Processor" [C:\Program Files (x86)\Norton Security with Backup\Engine\22.1.0.9\SymErr.exe] "C:\Windows\SysNative\tasks\Recovery Management\Notification" [C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.0.0.110\coFFPlgn" [10/01/2015 14:44] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "{B64D9B05-48E1-4CEB-BF58-E0643994E900}"="C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff" [06/10/2014 22:49] ==== Firefox Extensions ====================== ProfilePath: C:\Users\sander\AppData\Roaming\Mozilla\Firefox\Profiles\n5a3ep2a.default - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\sander\AppData\Roaming\Mozilla\Firefox\Profiles\n5a3ep2a.default 424899266BA430CCE5DDB6C1B4BE1B99 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll - Shockwave Flash F2CD1D7524F8E15AAC55568B9F72DE5B - C:\ProgramData\NexonEU\NGM\npNxGameEU.dll - Nexon Game Controller ==== Chromium Look ====================== Google Chrome Version: 39.0.2171.95 (Up to date, latest Stable version: 39.0.2171.95) HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions cjabmdjcfcfdmffimndhafhblfmpjdpe - C:\Program Files (x86)\Norton Security with Backup\Engine\22.1.0.9\Exts\Chrome.crx[05/12/2014 14:11] iikflkcanblccfahdhdonehdalibjnif - No path found[] Google Slides - sander\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - sander\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - sander\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - sander\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo selector is not a valid CSS selector - sander\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Google Search - sander\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Norton Safe Search as default for Chrome - sander\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl Google Wallet - sander\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - sander\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security with Backup\Engine\22.1.0.9\coIEPlg.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security with Backup\Engine\22.1.0.9\coIEPlg.dll O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\sander\AppData\Local\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [uTorrent] "C:\Users\sander\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - (no file) O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participações Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe O23 - Service: Norton Security with Backup (NSBU) - Symantec Corporation - C:\Program Files (x86)\Norton Security with Backup\Engine\22.1.0.9\NSBU.exe O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\sander\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\sander\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\sander\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\sander\AppData\Local\Microsoft\Windows\INetCache\IE\P3VG4RIL will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\sander\AppData\Local\Mozilla\Firefox\Profiles\n5a3ep2a.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\sander\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=20 folders=14 9897477 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\sander\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\sander\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\sander\AppData\Local\Microsoft\Windows\INetCache\IE\P3VG4RIL" not found ==== EOF on za 10/01/2015 at 18:26:12,34 ======================