Zoek.exe v5.0.0.0 Updated 26-February-2015 Tool run by jimmy on vr 27-02-2015 at 10:32:47,39. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\jimmy\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 27-2-2015 10:34:35 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AVS4YOU deleted successfully C:\PROGRA~2\Blackhawk deleted successfully C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\My Product Name deleted successfully C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully C:\Program Files\Common Files\logishrd deleted successfully C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully C:\Users\admin\AppData\Local\VirtualStore deleted successfully C:\Users\jimmy\AppData\Local\Femap deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2671913729-1532251992-3584799097-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9D3BCDD0-0839-4B02-92FB-EC2FF0014A30} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 3D-Tool FreeViewer V10.03 64 Bit HP CIO Components Installer A-PDF Filler Add or Remove Adobe Creative Suite 3 Web Premium Adobe AIR Adobe Anchor Service CS3 Adobe Asset Services CS3 Adobe Bridge CS3 Adobe Bridge Start Meeting Adobe BridgeTalk Plugin CS3 Adobe Camera Raw 4.0 Adobe CMaps Adobe Color Common Settings Adobe Color EU Extra Settings Adobe Color JA Extra Settings Adobe Color NA Recommended Settings Adobe Default Language CS3 Adobe Device Central CS3 Adobe ExtendScript Toolkit 2 Adobe Extension Manager CS3 Adobe Flash Player 16 ActiveX Adobe Flash Player 16 NPAPI Adobe Fonts All Adobe Help Viewer CS3 Adobe Linguistics CS3 Adobe MotionPicture Color Files Adobe PageMaker 7.0 Adobe PDF Library Files Adobe Photoshop CS3 Adobe Reader XI (11.0.10) - Nederlands Adobe Refresh Manager Adobe Setup Adobe Shockwave Player 12.1 Adobe Stock Photos CS3 Adobe Type Support Adobe Update Manager CS3 Adobe Version Cue CS3 Client Adobe WAS CS3 Adobe WinSoft Linguistics Plugin Adobe XMP Panels CS3 AHV content for Acrobat and Flash Akamai NetSession Interface Asoftech Photo Recovery µTorrent Attribute Changer 7.10g Autodesk DWF Viewer Autodesk Inventor 2013 Quick Uninstaller Autodesk Inventor Content Center Libraries 2013 (Desktop Content) Autodesk Inventor Fusion for Inventor 2013 Add-in Autodesk Material Library 2013 Autodesk Material Library Base Resolution Image Library 2013 Autodesk Material Library Low Resolution Image Library 2013 Autodesk Sync BrouwHulp versie 5.3 BufferChm CBSquest 1.0.1.1447 CCleaner Code Composer Studio 5.3.0 Common Desktop Agent Crystal Reports Basic Runtime for Visual Studio 2008 (x64) CustomerResearchQFolder CutePDF Writer 2.7 Definition Update for Microsoft Office 2013 (KB2920752) 32-Bit Edition DeviceDiscovery DeviceManagementQFolder DWG TrueView 2013 EAGLE 6.4.0 Eco Materials Adviser for Autodesk Inventor 2013 ESET Smart Security GanttProject Google Chrome Google Update Helper HERMA Label Designer plus 1.1 HP Color LaserJet CM2320 MFP Series 3.1 HP Customer Participation Program 10.0 HP Imaging Device Functions 10.0 hppCLJCM2320 hppFaxDrvCM2320 hppFaxUtilityCM2320 hppFonts hppManualsCM2320 hppQFolderCM2320 hppScanToCM2320 hppSendFaxCM2320 hppusgCM2320 inFlow Inventory inFlow Inventory 64-bit Intel(R) Management Engine Interface Intel® Active Management Technology Java 8 Update 31 Java Auto Updater LibreOffice 3.6 Logitech-webcamsoftware LTspice IV LWS Webcam Software MagicDisc 2.7.106 MailToFile voor Outlook Malwarebytes Anti-Malware versie 2.0.4.1028 MarketResearch MATLAB R2011b Microsoft .NET Framework 4.5.1 Microsoft .NET Framework 4.5.1 (Nederlands) Microsoft .NET Framework 4.5.1 (NLD) Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office 64-bit Components 2013 Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Korrekturhilfen 2013 - Deutsch Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office OSM MUI (Dutch) 2013 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing (Dutch) 2013 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Proofing Tools 2013 - English Microsoft Office Proofing Tools 2013 - Nederlands Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2013 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2013 Microsoft Office Word MUI (Dutch) 2007 Microsoft Picture It Photo 7.0 Microsoft Project MUI (Dutch) 2013 Microsoft Project Professional 2013 Microsoft Silverlight Microsoft SQL Server 2005 Microsoft SQL Server 2005 Express Edition (INFLOWSQL) Microsoft SQL Server Native Client Microsoft SQL Server Setup Support Files (English) Microsoft SQL Server VSS Writer Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Microsoft WSE 3.0 Runtime Mozilla Firefox 35.0.1 (x86 nl) Mozilla Maintenance Service MSP-FET430PIF Driver MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Notepad++ Outils de vérification linguistique 2013 de Microsoft Office - Français P&E GDB Server for Kinetis Paperless Converter version 9.07 Paperless Printer version 5.3.0.3 PDF Settings PDF Splitter and Merger Free 4.0 PLC-ComPort-Controller PostgreSQL 9.2 (x86) ProjectLibre PropScope Protel DXP Service Pack 2 Samsung CLX-3300 Series Samsung Easy Document Creator Samsung Easy Printer Manager Samsung Network PC Fax Samsung Printer Live Update Samsung Scan Process Machine Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft .NET Framework 4.5.1 (KB2972107) Security Update for Microsoft .NET Framework 4.5.1 (KB2972216) Security Update for Microsoft .NET Framework 4.5.1 (KB2978128) Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2) Security Update for Microsoft Excel 2013 (KB2920753) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596927) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2920795) 32-Bit Edition Security Update for Microsoft Office 2013 (KB2726958) 32-Bit Edition Security Update for Microsoft Office 2013 (KB2760272) 32-Bit Edition Security Update for Microsoft Office 2013 (KB2880502) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2956097) 32-Bit Edition Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2956098) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2920788) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2956099) 32-Bit Edition Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition Skype™ 6.21 SNS Upload for Easy Document Creator Speccy Spotify StampPlot Version 3.75 swMSM Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD TrayApp Unity Web Player Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Lync 2013 (KB2920744) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office 2013 (KB2760344) 32-Bit Edition Update for Microsoft Office 2013 (KB2768012) 32-Bit Edition Update for Microsoft Office 2013 (KB2827223) 32-Bit Edition Update for Microsoft Office 2013 (KB2837654) 32-Bit Edition Update for Microsoft Office 2013 (KB2863843) 32-Bit Edition Update for Microsoft Office 2013 (KB2880478) 32-Bit Edition Update for Microsoft Office 2013 (KB2880977) 32-Bit Edition Update for Microsoft Office 2013 (KB2881001) 32-Bit Edition Update for Microsoft Office 2013 (KB2883036) 32-Bit Edition Update for Microsoft Office 2013 (KB2889846) 32-Bit Edition Update for Microsoft Office 2013 (KB2899522) 32-Bit Edition Update for Microsoft Office 2013 (KB2910921) 32-Bit Edition Update for Microsoft Office 2013 (KB2920735) 32-Bit Edition Update for Microsoft Office 2013 (KB2920740) 32-Bit Edition Update for Microsoft Office 2013 (KB2920742) 32-Bit Edition Update for Microsoft Office 2013 (KB2920745) 32-Bit Edition Update for Microsoft Office 2013 (KB2920769) 32-Bit Edition Update for Microsoft Office 2013 (KB2920798) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2956096) 32-Bit Edition Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition Update for Microsoft OneDrive for Business (KB2920746) 32-Bit Edition Update for Microsoft OneNote 2013 (KB2920739) 32-Bit Edition Update for Microsoft Outlook 2013 (KB2956087) 32-Bit Edition Update for Microsoft Project 2013 (KB2956091) 32-Bit Edition Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VBA (2627.01) VBA (2627.11) Visual Studio 2008 x64 Redistributables VLC media player WebReg Windows-stuurprogrammapakket - FTDI CDM Driver Package - Bus/D2XX Driver (03/18/2011 2.08.14) Windows-stuurprogrammapakket - FTDI CDM Driver Package - VCP Driver (03/18/2011 2.08.14) Windows-stuurprogrammapakket - Spectrum Digital (sdusb2em) SDUSBEmulators (03/25/2011 6.0.999.2) Windows-stuurprogrammapakket - Texas Instruments Incorporated (usbser) Ports (04/21/2009 5.1.2600.0) Windows Driver Package - Arduino LLC (www.arduino.cc) Arduino Boards (01/01/2013 1.0.0.0) Windows Driver Package - FTDI CDM Driver Package (02/17/2009 2.04.16) Windows Driver Package - Parallax Inc CDM Driver Package (02/17/2009 2.04.16) WinNc 4.8 WinRAR 5.01 (64-bit) WinRAR archiver ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Bonjour\mDNSResponder.exe C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe C:\Windows\SysWOW64\svchost.exe C:\Program Files (x86)\Intel\AMT\LMS.exe c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe C:\Users\jimmy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe C:\Users\jimmy\Downloads\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\AVS4YOU not found C:\PROGRA~2\Blackhawk not found C:\PROGRA~2\MSXML 4.0 not found C:\PROGRA~2\My Product Name not found C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found C:\PROGRA~2\Flyordie Plugin deleted C:\ProgramData\McAfee deleted C:\PROGRA~2\SamsungPrinterLiveUpdateInstaller deleted C:\Users\jimmy\AppData\Roaming\WB.CFG deleted C:\Users\jimmy\AppData\Roaming\LTspiceIV.ini deleted C:\PROGRA~3\ProductData deleted C:\PROGRA~3\Package Cache deleted C:\Users\jimmy\AppData\Local\cache deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\windows\SysNative\GroupPolicy\Machine deleted C:\windows\SysNative\GroupPolicy\User deleted C:\windows\SysNative\GroupPolicy\GPT.INI deleted C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted "C:\DelFix.txt" deleted "C:\Users\jimmy\AppData\Local\{33A259F9-3D89-433D-A28D-4D654E573005}" deleted "C:\PROGRA~2\Bonjour\mdnsNSP.dll" deleted "C:\PROGRA~2\Bonjour\mDNSResponder.exe" deleted "C:\PROGRA~2\Bonjour" not deleted ==== System Specs ====================== Windows: Windows 7 Professional Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 3932 MB CPU Info: Intel(R) Core(TM)2 Duo CPU E7300 @ 2.66GHz CPU Speed: 2657,1 MHz Sound Card: Hoofdtelefoon (2- High Definiti | Display Adapters: Intel(R) Q45/Q43 Express Chipset | Intel(R) Q45/Q43 Express Chipset | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 2x; Algemeen PnP-beeldscherm | Algemeen PnP-beeldscherm | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Intel(R) 82567LM-3 Gigabit-netwerkverbinding #2 CD / DVD Drives: 3x (D: | E: | F: | ) D: HL-DT-STDVD+-RW GT10N | E: AlViDrv BDDVDROM | F: MagicISOVirtual DVD-ROM Ports: COM4 | COM1 LPT1 Mouse: 8 Button Wheel Mouse Present Hard Disks: C: 141,2GB Hard Disks - Free: C: 39,2GB Manufacturer *: Dell Inc. BIOS Info: AT/AT COMPATIBLE | 04/29/09 | DELL - 15 Time Zone: West-Europa (standaardtijd) Motherboard *: Dell Inc. 0F373D Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: ESET Smart Security 7.0 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: ESET Smart Security 7.0 disabled (Outdated) Firewall: ESET Persoonlijke firewall disabled Internet Explorer Version: 11.0.9600.17633 Mozilla Firefox version: 35.0.1 (x86 nl) Google Chrome version: 40.0.2214.115 Adobe Reader version: 11.0.10.32 Sun Java version: 1.8.0_31 (32-bit) Sun Java version: 1.8.0_31 (64-bit) Flash Player version: 16.0.0.305 Shockwave Player version: 12.1.1r151 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-02-25 10:19:27 484E840A9191911CEE4A6302FAA9A699 97280 ------w- C:\Windows\CtDrvIns.exe ====== C:\Users\jimmy\AppData\Local\Temp ==== 2015-02-26 10:47:13 C1764BBDD36370854C3E65B675482E94 45109352 ----a-w- C:\Users\jimmy\AppData\Local\Temp\SkypeSetup.exe ====== Java Cache ===== 2015-01-28 10:24:12 D4842BE4A58F62F053830F3F3B32E2E6 19055 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\7a080d80-1c2303f7 2015-01-29 15:05:17 4DE937F6946C2B91E257436EF11525CA 2502 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\612aa3c1-72ea8e9f 2015-02-23 13:22:06 CC79BBC756FA93020E4C816FA63C01B9 7256 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\2f89b7ca-1e9872e6 2015-02-10 12:56:32 F8E8C5CE8F4AD7E81645964F4826C948 2453 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\51a57cc-52e966e8 2015-02-27 09:31:04 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-6f96144b 2015-02-06 12:26:14 9B77B7FE5BE643CD34F2DFAA40BC8FEF 10188 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\510a3790-73d5d42e 2015-02-27 09:31:00 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-799799c5 2015-02-27 09:31:00 79B68FF09C5F67F2C3CA31F1322DE8BC 99 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap 2015-01-28 13:35:57 BC2E41C521172A39681995C820E329EE 3495 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\167e1ed2-20e82b96 2015-02-27 09:30:59 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-4bb5063a 2015-02-11 14:49:26 DA44C75E7D85C71BCC407AFC3E103678 1683 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\712f91d8-21a46ebc 2015-01-29 15:05:17 2040484539E66FEEC675BB778F9FFB3D 18834 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\1a6d45c-7962c077 2015-02-24 15:14:06 8BD83B2868AA1D7609081D4256C14485 4015 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\2c5c5360-73e1782a 2015-02-06 15:40:57 A0266F6E9988EC1B697503938EB6E1CB 1885 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\3a4da020-6d3a00e8 2015-02-06 15:41:16 B15C3DA37937F45FDDC90585829B61BF 5893 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\362e9fa2-6aebf183 2015-02-24 15:14:06 6BE1081C1819877424483E1D7462E781 5337 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\5a4a16c4-20f6094a 2015-02-17 11:26:27 E2A748D614C8AA035C64994086B770AA 5421 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\32809d28-628b92e3 2015-02-27 09:31:00 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-7c4312ba 2015-02-19 13:00:45 7200AAE96EFE7A9B3B8653C35382458E 5518 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\4d8f0cad-29214b8d 2015-01-30 09:39:52 8AB40A31A0D95C17AB09A517FD576FD9 3217 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\22a4666f-582d9c9a 2015-02-03 14:35:50 BFC401C5046C9CFFFF5FF96D4BE91B56 2586 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\27aa10af-43aec115 2015-02-06 15:41:16 71CA78253809772646E42EBFDC25E1F6 18094 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\3c2c3431-7368a8c4 2015-02-17 11:26:27 0067BFB43D522394B7C1C7C2DA604210 3137 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\6db73b05-4c096335 2015-02-17 11:26:41 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-2a39cd30 2015-02-11 14:49:48 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-2dca8692 2015-02-04 08:28:19 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-382bb73f 2015-02-06 08:58:06 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-3bf0df51 2015-02-02 15:28:58 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-3c13d1ea 2015-02-23 11:33:49 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-43f3aef7 2015-02-05 08:55:36 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-442a5803 2015-02-09 10:06:11 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-47b6e540 2015-02-10 12:56:44 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-4c5600a4 2015-02-19 13:01:05 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-4df8fe28 2015-02-25 14:57:17 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-635b67df 2015-02-24 14:06:45 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-69a76c61 2015-01-30 09:40:11 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-733b962a 2015-01-28 15:36:51 76C609AAC4D2331FFEF5328621FD3870 8767 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\46ceb172-78cb57bb 2015-02-02 15:28:46 AAAD655B3329DF24AB979F6A23251DDF 2696 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\530601f2-79df93c6 2015-02-04 13:25:44 3896BD32168FF36D16234BD99F27BAD5 7749 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\61e368f3-493014d5 2015-02-24 15:14:06 C97E8C8048F6211A7301D8B236C82756 3254 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\7c3d4f36-46ee7493 2015-02-06 12:26:14 ABE834789A6A161F61F0919638F1966C 2768 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\4b0479fa-3b840c39 2015-02-04 13:25:45 51FD94EFD973B539E7039A9F35E7D825 13042 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\6de30cba-702645c5 2015-02-03 12:47:35 8C75D2901D2DBD2B8125C89B0D0452A5 3292 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\53c54f7b-79bdf226 2015-02-03 14:35:50 26EA4F07EE1473A124988960FA637EBB 10190 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\f296746-5c6a8488 2015-02-10 12:56:32 D0949353337B0AB6FE72B5C22CC295B9 3474 ----a-w- C:\Users\jimmy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\4044997d-527981cb ====== C:\Windows\SysWOW64 ===== 2015-02-27 09:27:49 13D186FA6F19823C598335443CE233BC 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2015-02-27 02:24:09 3B9E2AB1F3ABC53D4A423E699EB625C8 419936 ----a-w- C:\Windows\SysWOW64\locale.nls 2015-02-26 02:36:34 62C93E47A424A8EC79F3CF1719A2DCC6 3972544 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2015-02-26 02:36:33 6D227897A458DA8A9518DACDC88F1947 3917760 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2015-02-26 02:36:32 97B7E7E3356F7F7FE5B948AB3ED707DD 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll 2015-02-26 02:36:19 F3F6BE20A03215209B61CA85B4A83E1F 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll 2015-02-26 02:36:19 C256EFD3655EC782F8094E96094E8F9E 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll 2015-02-26 02:36:19 B63A6FF4339C9B701A93D3973C7FB6D2 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll 2015-02-26 02:36:19 A12D64A94EC57079C2D96A741CB4FF53 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll 2015-02-26 02:36:19 7D94A9161E8432B8521E60E064B1D737 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll 2015-02-26 02:36:19 7C893DBA0A58855A99DA68B751FD223B 248832 ----a-w- C:\Windows\SysWOW64\schannel.dll 2015-02-26 02:36:19 3BB446DE24501FEA5FDB9A9DB23A22AE 221184 ----a-w- C:\Windows\SysWOW64\ncrypt.dll 2015-02-26 02:36:09 E1A4D24281526DDFEA418F729CDA9DC6 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2015-02-26 02:36:09 D87759889FE7BCAE4461439139E62BAA 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2015-02-26 02:36:09 B0F7BD3492C2D60A70F15AEADCE1E2A6 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2015-02-26 02:36:08 94B1F7CE1AAA5542923E0AD63C4D0050 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-02-26 02:36:08 8FBC9680719ACDA9351B67D906C682F4 688640 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2015-02-26 02:36:08 8E8137569741D3693F88DDF94CC38C20 1307136 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2015-02-26 02:36:08 74EA6C792F57E453261DA210C1BCEB53 342712 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2015-02-26 02:36:08 6FA05244FD2E40A3DC08337146B3C425 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2015-02-26 02:36:08 3B9EF1B8E154D202D32A7765E2F33554 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll 2015-02-26 02:36:07 61C74D794C14E9FC94D93F5F0F72A3F9 19740160 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2015-02-26 02:36:07 47B26D89EF9973E2DD586D0C827F61A9 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2015-02-26 02:36:06 FD6AF61AF029B9BC2CF4EFF57CDD5821 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2015-02-26 02:36:06 EF05E63ACC834470A07A2E73D519B5FA 418304 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2015-02-26 02:36:06 AD3F5926EC2C1F21FB45D1CDED6E2A47 2052608 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2015-02-26 02:36:06 9A91F9B5035F54C2D0BA92CF9B16EE34 2277888 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2015-02-26 02:36:06 994E7459260D315573DD72783D1B78A7 478208 ----a-w- C:\Windows\SysWOW64\ieui.dll 2015-02-26 02:36:06 78A1A938D51D4F83A772123B93EE1612 12829184 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2015-02-26 02:36:06 5FB7E9786F70F4072663746072C9E6CE 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2015-02-26 02:36:06 55A84600EAAF8F1D3F0E6206E2EF6D48 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2015-02-26 02:36:06 28B2D3CB1B4306D476200D80AF7D87AD 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2015-02-26 02:36:06 2575170E9ACE5924716D34E7761B1F11 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2015-02-26 02:36:04 F285D499EC42969D963CA49EADA63218 1888256 ----a-w- C:\Windows\SysWOW64\wininet.dll 2015-02-26 02:36:04 9DEE691C8FDBC2DE6957F1AE873C78FC 503296 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2015-02-26 02:36:04 6F10743069DFFC56DEE079204960844E 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll 2015-02-26 02:36:04 180C599C9D5E15475EFEF3994067D739 4300800 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2015-02-26 02:36:04 180168942E4A133C55E7BBF17DA3C142 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2015-02-26 02:35:33 FE48346938C1CDDDF4E4097DB9B99764 52224 ----a-w- C:\Windows\SysWOW64\nlaapi.dll 2015-02-26 02:35:33 92940397DFFB4D237EA5BB22FF912BDC 156672 ----a-w- C:\Windows\SysWOW64\ncsi.dll 2015-02-26 02:35:25 F2A743912D404A8866362836CFE7A648 686080 ----a-w- C:\Windows\SysWOW64\adtschema.dll 2015-02-26 02:35:24 F312300F29620F74E3AF3AF018151935 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2015-02-26 02:35:24 F29BC66CE4A5507A49FB20744A056E61 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2015-02-26 02:35:24 4E6934926B4C923CC0FF61C6D77814EF 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe 2015-02-26 02:35:24 43791D2F736C4E9BE9FE0B33A1E92A5D 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll 2015-02-26 02:35:24 36F152AE2F64B12771A44EA77124332B 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll 2015-02-26 02:28:17 DDE994E9159497D0D5AB2CDF66D1EAD6 76800 ----a-w- C:\Windows\SysWOW64\wdi.dll 2015-02-26 02:28:08 793F6658ED65839FDB2957A4884CB63C 1230336 ----a-w- C:\Windows\SysWOW64\WindowsCodecs.dll 2015-02-26 02:28:05 E365C7B3EBB96451D3C9DF6B6B6900C2 179200 ----a-w- C:\Windows\SysWOW64\wintrust.dll 2015-02-26 02:28:05 0C96A745A76C7DD75C5503E86D968E49 1174528 ----a-w- C:\Windows\SysWOW64\crypt32.dll 2015-02-26 02:27:56 A208DAC2932649CFF82A6A684D8BB1F6 571904 ----a-w- C:\Windows\SysWOW64\oleaut32.dll 2015-02-26 02:27:55 B3BC38B886CA53C92D52EF724A9F0D45 308224 ----a-w- C:\Windows\SysWOW64\scesrv.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-02-27 02:24:09 3B9E2AB1F3ABC53D4A423E699EB625C8 419936 ----a-w- C:\Windows\Sysnative\locale.nls 2015-02-26 02:36:34 9819614CA9EFB5A96493B379170B9D89 5554112 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2015-02-26 02:36:33 F7A3018D8F1825427BC11E912D5287CD 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe 2015-02-26 02:36:33 0147AA370862201A443752351F135D31 503808 ----a-w- C:\Windows\Sysnative\srcore.dll 2015-02-26 02:36:32 D6CDCAF84810641D1D2B455750825ACA 50176 ----a-w- C:\Windows\Sysnative\srclient.dll 2015-02-26 02:36:24 B6A58491307B4CADA572583D863DC602 210432 ----a-w- C:\Windows\Sysnative\profsvc.dll 2015-02-26 02:36:19 DDACB408E607655EC64269706BFD504C 341504 ----a-w- C:\Windows\Sysnative\schannel.dll 2015-02-26 02:36:19 C1F9E139B8AE80803CE44DC0377CA342 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll 2015-02-26 02:36:19 A46A6C5AD462071B718EBF3C9E117849 309760 ----a-w- C:\Windows\Sysnative\ncrypt.dll 2015-02-26 02:36:19 8F33880F1863BE3925D3A0121FAC5E8F 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll 2015-02-26 02:36:19 6A06BCED1DF1CFE8A32E7D10ABAA7188 314880 ----a-w- C:\Windows\Sysnative\msv1_0.dll 2015-02-26 02:36:19 5350A548BEC957978B7014CDFF091542 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll 2015-02-26 02:36:19 22E30E28865C32C3CF4F4E0E7E277FDC 22016 ----a-w- C:\Windows\Sysnative\credssp.dll 2015-02-26 02:36:09 71EBA93C5322A52A7E177E03E1AE7161 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2015-02-26 02:36:09 01A314677CC80041A63ED109B56A76B0 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2015-02-26 02:36:08 F42B1DAAB5B7621341243878180446CD 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll 2015-02-26 02:36:08 92BD5080B81EDFA32B0CEE8B923D62C3 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2015-02-26 02:36:08 8076BB31004C1D763D5D4AEF9F0BDD4B 718848 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2015-02-26 02:36:08 68A2B96528F58D995882FBEB4D9658A5 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2015-02-26 02:36:06 DF39C79DFC1C063493D2DB9B3237B29F 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2015-02-26 02:36:06 CB2528D522FF1F5A7BF9B27D2FB250FF 1548288 ----a-w- C:\Windows\Sysnative\urlmon.dll 2015-02-26 02:36:06 97F037E09A706ACDA681D740DEE16AE4 968704 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2015-02-26 02:36:06 76DB5845E168173BBA2D3CCC4B363E42 801280 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2015-02-26 02:36:06 2E4F8664B54426C2F5523665B279E984 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2015-02-26 02:36:06 1D824B5A200C284E1A546C2C50704471 389808 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2015-02-26 02:36:05 7A388AFC6885D22F4D988EE9B8D1291A 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2015-02-26 02:36:05 512DD29CE6CDCB22EA615286DA7022E7 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll 2015-02-26 02:36:05 15842FB41A3BF2A2F5071518B38C957A 2125824 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2015-02-26 02:36:04 A7A3775B0014B165D75A00A1F632E4B5 2885632 ----a-w- C:\Windows\Sysnative\iertutil.dll 2015-02-26 02:36:04 A7814E76ED4ACE0694A83F6E4B6A7272 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2015-02-26 02:36:04 6916B0663357B183B120D1A4DD7DDAB0 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2015-02-26 02:36:03 E0F76B5B904E4F448641B2B506496351 14401024 ----a-w- C:\Windows\Sysnative\ieframe.dll 2015-02-26 02:36:03 D7922F3AC6BF1EA77240E0061D648174 490496 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2015-02-26 02:36:03 CA3F410410DE9E5234217D33B9628224 633856 ----a-w- C:\Windows\Sysnative\ieui.dll 2015-02-26 02:36:03 A04F0C4A0B80C92F92E854E7157D6466 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2015-02-26 02:36:02 F4B79B54D173FF0E6748F8C93E16CF4C 6041088 ----a-w- C:\Windows\Sysnative\jscript9.dll 2015-02-26 02:36:02 E6ABEE081FF46AD60FDC5D90F3824768 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2015-02-26 02:36:02 BF57C911895454A8874E9DFA5716C624 584192 ----a-w- C:\Windows\Sysnative\vbscript.dll 2015-02-26 02:36:02 9DFE41A69DF70AAB75CB5BA8C1109EA2 2358272 ----a-w- C:\Windows\Sysnative\wininet.dll 2015-02-26 02:36:02 4CE68D160D80AF6C9FDB5C60BA087DA5 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2015-02-26 02:36:01 CD726C899BD9A398E8420564A957320B 25056256 ----a-w- C:\Windows\Sysnative\mshtml.dll 2015-02-26 02:36:01 47162151E35EA0B7152B7C841FA21FDB 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll 2015-02-26 02:36:01 4701399F7BA312353ADE8225F6EB512B 199680 ----a-w- C:\Windows\Sysnative\msrating.dll 2015-02-26 02:35:33 8B301D474B478E9A92823BAB50A7BC49 303616 ----a-w- C:\Windows\Sysnative\nlasvc.dll 2015-02-26 02:35:25 C97662B6752BFEF07C565D96E8ECC98F 1461760 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2015-02-26 02:35:25 6EAD88B508E4785F4AFDFD24F76E8839 686080 ----a-w- C:\Windows\Sysnative\adtschema.dll 2015-02-26 02:35:24 E0105F3B5B1C4B0F5B3D788A13504EC6 31232 ----a-w- C:\Windows\Sysnative\lsass.exe 2015-02-26 02:35:24 BE4927689BA39E18A104986CB1363C97 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll 2015-02-26 02:35:24 94C6BCF9212E20866AC1558A32E9F228 28160 ----a-w- C:\Windows\Sysnative\secur32.dll 2015-02-26 02:35:24 857CED230A6B87E84FCA04B472A3CB1A 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll 2015-02-26 02:35:24 51BB93FF96AE3882B4AF7CA11000D3A3 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe 2015-02-26 02:35:24 2EE57F4491A402C04FCAA7D012493884 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll 2015-02-26 02:35:24 1798826FE9FFEA9E93E74A5868559D4A 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll 2015-02-26 02:28:17 D713D6446DDBB474D801F361B4B186EA 950272 ----a-w- C:\Windows\Sysnative\perftrack.dll 2015-02-26 02:28:17 C6F7473B55510F0B93961DA03D8E3B38 91136 ----a-w- C:\Windows\Sysnative\wdi.dll 2015-02-26 02:28:17 AA7079AD52B8BFBAE94167D54C32F84F 29696 ----a-w- C:\Windows\Sysnative\powertracker.dll 2015-02-26 02:28:11 DCD00561CBDE7FC42A49D84783F4C00B 62976 ----a-w- C:\Windows\Sysnative\TSWbPrxy.exe 2015-02-26 02:28:08 4861B9AF67E1B0154A55FDE4B3A61EB9 1424384 ----a-w- C:\Windows\Sysnative\WindowsCodecs.dll 2015-02-26 02:28:05 E5AF792AB409F600D416CB257C84305D 1480192 ----a-w- C:\Windows\Sysnative\crypt32.dll 2015-02-26 02:28:05 7FC292D1527EDFEBA2576B6789DE6AB5 229376 ----a-w- C:\Windows\Sysnative\wintrust.dll 2015-02-26 02:27:56 AE4FEDD98096C09A8A86E021FC5E9D67 861696 ----a-w- C:\Windows\Sysnative\oleaut32.dll 2015-02-26 02:27:55 FE72C89986E1BA32AD926A820491F23F 406528 ----a-w- C:\Windows\Sysnative\scesrv.dll 2015-02-26 02:26:39 DF07110F77639E73D0537188703F44F6 3201536 ----a-w- C:\Windows\Sysnative\win32k.sys 2015-02-25 10:19:28 6FE27D635EA7F88788614CC124BDC8C7 17408 ------w- C:\Windows\Sysnative\P0630Sti.dll ====== C:\Windows\Sysnative\drivers ===== 2015-02-26 02:35:32 AE3334958D8F631FF14A0AEB3D7EFB3A 141312 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys 2015-02-26 02:35:25 E45CDE1C8340DFEDF1D6724263F39E5B 458824 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2015-02-26 02:35:25 C60C6B9A2E50B0404F6789C62B428C03 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2015-02-26 02:35:24 78D152A9FD5747FF6AA89C79F0346F62 155072 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys ====== C:\Windows\Tasks ====== 2015-02-24 10:58:14 FCDA30F72C7C04BF5DC61A1B5B58EA32 4052 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA1d05020c98eac86 2015-02-24 10:58:14 55FEE8494FABA0D3EAC9DE778A9DA119 1056 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d05020c98eac86.job 2015-02-24 10:47:33 FCDA30F72C7C04BF5DC61A1B5B58EA32 4052 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA 2015-02-24 10:47:33 65FE7F4905DDFB55AC6E67053A5FFC1D 1056 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-02-24 10:47:32 2F153B8D7F40CA1B2DE901EC17B93338 3800 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore 2015-02-24 10:47:31 C6954D1B53D773EE111CB996EFF545E9 1052 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-02-06 09:08:34 FA5760529550E7C282EB75E1EB69638C 3878 ----a-w- C:\Windows\Sysnative\Tasks\Adobe Flash Player Updater 2015-02-06 09:08:34 7A55573FFC767761A9A700B0E3B9A33C 940 ----a-w- C:\Windows\Tasks\Adobe Flash Player Updater.job ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-02-26 13:01:16 -------- d-----w- C:\Program Files\Speccy 2015-02-24 10:31:32 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2015-02-27 09:27:54 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2015-02-27 09:26:11 -------- d-----w- C:\PROGRA~2\Java ======= C: ===== ====== C:\Users\jimmy\AppData\Roaming ====== 2015-02-27 02:42:19 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\PnrpSqm 2015-02-26 13:01:25 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking 2015-02-25 12:13:17 -------- d-----w- C:\Users\Public\AppData\Local\temp 2015-02-25 12:13:17 -------- d-----w- C:\Users\photoshop\AppData\Local\temp 2015-02-25 12:13:17 -------- d-----w- C:\Users\Default\AppData\Local\temp 2015-02-25 12:13:17 -------- d-----w- C:\Users\Default User\AppData\Local\temp 2015-02-25 12:13:17 -------- d-----w- C:\Users\admin\AppData\Local\temp 2015-02-25 11:06:36 -------- d-----w- C:\Users\jimmy\AppData\Roaming\Creative 2015-01-29 08:38:50 873768EBA9DDAE3D039F2EFA49BD8A97 10 ----a-w- C:\Users\jimmy\AppData\Local\DSI.DAT ====== C:\Users\jimmy ====== 2015-02-27 09:27:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-02-27 09:15:18 6AF69BF32D84229FF9A8904AB8ED28D7 639400 ----a-w- C:\Users\jimmy\Downloads\chromeinstall-8u31.exe 2015-02-26 13:02:32 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\jimmy\Downloads\RSITx64.exe 2015-02-26 13:00:21 F5042B046AE92B0B0F978E65BC3CE62B 5135288 ----a-w- C:\Users\jimmy\Downloads\spsetup128.exe 2015-02-25 10:48:39 F47C32B75F70FB268F6C160A4A306FCA 24923897 ----a-w- C:\Users\jimmy\Downloads\WCC_PCApp_US_1_71_02.exe 2015-02-25 10:41:12 4B7B1A85DEF445947489B3BF8D0223FB 2540136 ----a-w- C:\Users\jimmy\Downloads\LCVP_0410_DRV_LA_1_03_01.exe 2015-02-25 10:19:05 4D15FF4023F79DAEBD8F72339D958D9C 2146406 ----a-w- C:\Users\jimmy\Downloads\WCLV_PCDrv_US_2_00_06_0000.EXE 2015-02-24 13:13:17 -------- d-----w- C:\Users\Public\AppData 2015-02-24 13:13:17 -------- d-----w- C:\Users\photoshop\AppData 2015-02-24 10:49:04 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-02-24 10:46:21 45D44A7710432FB898BED8EE8CBA10B8 5325208 ----a-w- C:\Users\jimmy\Downloads\ccsetup502.exe 2015-01-28 09:59:06 8E1B08222F20E45A3E8DB04C569F9CB7 8 --sha-r- C:\ProgramData\ntuser.pol ====== C: exe-files == 2015-02-27 09:27:14 B0D46640968F989830413EB88F43E0D0 0 ----a-we C:\ProgramData\Oracle\Java\javapath\java.exe 2015-02-27 09:27:14 52C8B9FD016E6317FDB151296FF90877 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaws.exe 2015-02-27 09:27:14 3E72E1AB196855916E2065C604674631 0 ----a-we C:\ProgramData\Oracle\Java\javapath\javaw.exe 2015-02-27 09:26:23 F9D744CD9BC58F287F8FA59D32508EDD 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\orbd.exe 2015-02-27 09:26:23 DBB5C8AE19ACFA2857CFB90C7305AC56 51112 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssvagent.exe 2015-02-27 09:26:23 CDB1FE0DCF2ADB755EBF65C8AEBBC871 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\servertool.exe 2015-02-27 09:26:23 8B6DF9CD28359C5E819446FD79CE3948 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmiregistry.exe 2015-02-27 09:26:23 7479DA0BED071427A3F0017AC51CC27B 159656 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\unpack200.exe 2015-02-27 09:26:23 5F7C51E0DCA813D647F14FC12AE675F2 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\policytool.exe 2015-02-27 09:26:23 577F5DCBA4DE4C345631873670F84E79 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\tnameserv.exe 2015-02-27 09:26:23 39685FC75B6FB2144E793595F1AB111D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\pack200.exe 2015-02-27 09:26:23 0FB2ACAC796B166F6486B593B604A3FF 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\rmid.exe 2015-02-27 09:26:22 DA34E76DE9CD93471F24E7BD43139958 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\kinit.exe 2015-02-27 09:26:22 AF82EA1498FEC5C49B8A1AE5AA0A5F6C 77224 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2launcher.exe 2015-02-27 09:26:22 A8884FB8246655C84F110E77DF5E1B4A 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\ktab.exe 2015-02-27 09:26:22 90C02BD6D01BBC1C620323F9E330E89C 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jjs.exe 2015-02-27 09:26:22 69BD74EE834B5629226BF89468B8020B 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\keytool.exe 2015-02-27 09:26:22 2F77C9862B1A2401278C4A5B932DA69D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\klist.exe 2015-02-27 09:26:21 F5EA785B2BCC08DC28CBC2D96E05F2C1 68520 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\javacpl.exe 2015-02-27 09:26:21 DF1C8EDDAF14D2960A06A9DF7B2D0A89 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\java-rmi.exe 2015-02-27 09:26:21 B0D46640968F989830413EB88F43E0D0 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\java.exe 2015-02-27 09:26:21 52C8B9FD016E6317FDB151296FF90877 272296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaws.exe 2015-02-27 09:26:21 3E72E1AB196855916E2065C604674631 176552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\javaw.exe 2015-02-27 09:26:21 063A1044A451660B159426B9C5E75957 30632 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jabswitch.exe 2015-02-27 09:15:18 6AF69BF32D84229FF9A8904AB8ED28D7 639400 ----a-w- C:\Users\jimmy\Downloads\chromeinstall-8u31.exe 2015-02-26 13:02:32 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\jimmy\Downloads\RSITx64.exe 2015-02-26 13:00:21 F5042B046AE92B0B0F978E65BC3CE62B 5135288 ----a-w- C:\Users\jimmy\Downloads\spsetup128.exe 2015-02-26 10:47:13 C1764BBDD36370854C3E65B675482E94 45109352 ----a-w- C:\Users\jimmy\AppData\Local\Temp\SkypeSetup.exe 2015-02-26 02:36:34 9819614CA9EFB5A96493B379170B9D89 5554112 ----a-w- C:\Windows\System32\ntoskrnl.exe 2015-02-26 02:36:34 62C93E47A424A8EC79F3CF1719A2DCC6 3972544 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2015-02-26 02:36:33 F7A3018D8F1825427BC11E912D5287CD 296960 ----a-w- C:\Windows\System32\rstrui.exe 2015-02-26 02:36:33 6D227897A458DA8A9518DACDC88F1947 3917760 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2015-02-26 02:36:09 01A314677CC80041A63ED109B56A76B0 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe 2015-02-26 02:36:08 D674809F9EC7D6A409F553C0DF91E825 221184 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2015-02-26 02:36:08 8076BB31004C1D763D5D4AEF9F0BDD4B 718848 ----a-w- C:\Windows\System32\ie4uinit.exe 2015-02-26 02:36:06 97F037E09A706ACDA681D740DEE16AE4 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2015-02-26 02:36:06 8111C559DAD3A40200AE916874E7E62A 468992 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2015-02-26 02:36:06 4089C6F953C024E16BC2361F471864D7 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2015-02-26 02:36:06 363BC25BACB34E9D40441968B1B3D5BE 815288 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2015-02-26 02:36:06 28B2D3CB1B4306D476200D80AF7D87AD 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2015-02-26 02:36:05 3FB445C7BF7E342391FF3875413CCC33 484352 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2015-02-26 02:36:04 A7814E76ED4ACE0694A83F6E4B6A7272 144384 ----a-w- C:\Windows\System32\ieUnatt.exe 2015-02-26 02:36:04 2D4AB594AABBEBA938F36BA1BC71C3F6 813744 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2015-02-26 02:35:24 E0105F3B5B1C4B0F5B3D788A13504EC6 31232 ----a-w- C:\Windows\System32\lsass.exe 2015-02-26 02:35:24 51BB93FF96AE3882B4AF7CA11000D3A3 64000 ----a-w- C:\Windows\System32\auditpol.exe 2015-02-26 02:35:24 4E6934926B4C923CC0FF61C6D77814EF 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe 2015-02-26 02:28:11 DCD00561CBDE7FC42A49D84783F4C00B 62976 ----a-w- C:\Windows\System32\TSWbPrxy.exe 2015-02-25 10:51:16 F89558047E71F655A4DDB99E893213ED 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe 2015-02-25 10:48:39 F47C32B75F70FB268F6C160A4A306FCA 24923897 ----a-w- C:\Users\jimmy\Downloads\WCC_PCApp_US_1_71_02.exe 2015-02-25 10:41:41 9D294186F5246F0A207E57533B31E919 32768 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\V0410Mon.exe 2015-02-25 10:41:38 A94ECC861DD2F285AC1EC8F0EDD0DD41 102400 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\CtDrvStp.exe 2015-02-25 10:41:38 9EACB0F4474D05EA64C583413F66F9A5 108032 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\CtDrvIns64.exe 2015-02-25 10:41:38 90F3732E02A571E6A454682D3B4563F2 94208 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\CtDrvIns.exe 2015-02-25 10:41:38 85C132975B756DAC894B97FB3AECBEBF 24576 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\CtRunApp.exe 2015-02-25 10:41:12 4B7B1A85DEF445947489B3BF8D0223FB 2540136 ----a-w- C:\Users\jimmy\Downloads\LCVP_0410_DRV_LA_1_03_01.exe 2015-02-25 10:19:27 D7202545AD4A01FCCF7B7FA64D578DA2 24576 ----a-w- C:\WebCam\WCamLive\P0630Srv.exe 2015-02-25 10:19:27 CD251F42724060F6BB8E67124228F1DB 94208 ------w- C:\WebCam\WCamLive\CtDrvStp.exe 2015-02-25 10:19:27 BFCA781DCE0BA653C9A320D01FFB27DC 9728 ----a-w- C:\WebCam\WCamLive\P0630Srv64.exe 2015-02-25 10:19:27 484E840A9191911CEE4A6302FAA9A699 97280 ----a-w- C:\WebCam\WCamLive\CtDrvIns64.exe 2015-02-25 10:19:27 484E840A9191911CEE4A6302FAA9A699 97280 ------w- C:\Windows\CtDrvIns.exe 2015-02-25 10:19:27 0CD8FB9E376BF466AA525C5FFF8D4315 24576 ----a-w- C:\WebCam\WCamLive\P0630Cfg.exe 2015-02-25 10:19:26 9A6FE02845BC6D7112F8F4A4C6EB7CD9 86016 ----a-w- C:\WebCam\WCamLive\CtDrvIns.exe 2015-02-25 10:19:26 5D3055B6D450A3EFC2F7EED3D7EDE6BD 201731 ----a-w- C:\WebCam\WCamLive\VfwUpd.EXE 2015-02-25 10:19:05 4D15FF4023F79DAEBD8F72339D958D9C 2146406 ----a-w- C:\Users\jimmy\Downloads\WCLV_PCDrv_US_2_00_06_0000.EXE 2015-02-24 10:58:08 FD98434B6A06FE31A35E4BFBC827B290 52040 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe 2015-02-24 10:58:08 5F0A3AA68785C49454F56C9F2DDA0237 52040 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateWebPlugin.exe 2015-02-24 10:58:08 4C02536F4CA35911FB3EA5715F300C57 52040 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateBroker.exe 2015-02-24 10:58:07 7CA00A58AA808F4B9844C91845910377 880208 ----a-w- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateSetup.exe 2015-02-24 10:57:27 F3B6470DA7CE34E559D3BA7365CC909C 115528 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdateComRegisterShell64.exe 2015-02-24 10:57:04 323CFFFDAF253AC65CD194A101BE6231 287048 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe 2015-02-24 10:56:30 83BB030C71C9727DCFB2737005772C4E 232264 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe 2015-02-24 10:54:17 E1B44A75947137F4143308D566889837 107848 ----atw- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleUpdate.exe 2015-02-24 10:54:05 7CA00A58AA808F4B9844C91845910377 880208 ----a-w- C:\Program Files (x86)\Google\Update\Install\{382040A1-CF4A-41AD-9232-A01FC9C27BFE}\GoogleUpdateSetup.exe 2015-02-24 10:54:04 7CA00A58AA808F4B9844C91845910377 880208 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.26.9\GoogleUpdateSetup.exe 2015-02-24 10:48:10 C5FD49B0561203A17BBF947738CB124A 41186896 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\40.0.2214.115\40.0.2214.115_chrome_installer.exe 2015-02-24 10:47:18 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 2015-02-24 10:46:21 45D44A7710432FB898BED8EE8CBA10B8 5325208 ----a-w- C:\Users\jimmy\Downloads\ccsetup502.exe 2015-02-24 10:31:33 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\jimmy.exe === C: other files == 2015-02-27 09:26:25 3315140254247E248C3531F159C79109 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_31\lib\deploy\ffjcext.zip 2015-02-26 14:40:12 BDF68F686CC78A8EEB0F6D7970CFEE20 27996 ----a-w- C:\Users\jimmy\Downloads\Suits.S04E15.HDTV.KILLERS.en (1).zip 2015-02-26 14:39:49 BDF68F686CC78A8EEB0F6D7970CFEE20 27996 ----a-w- C:\Users\jimmy\Downloads\Suits.S04E15.HDTV.KILLERS.en.zip 2015-02-26 02:35:32 AE3334958D8F631FF14A0AEB3D7EFB3A 141312 ----a-w- C:\Windows\System32\drivers\mrxdav.sys 2015-02-26 02:35:25 E45CDE1C8340DFEDF1D6724263F39E5B 458824 ----a-w- C:\Windows\System32\drivers\cng.sys 2015-02-26 02:35:25 C60C6B9A2E50B0404F6789C62B428C03 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys 2015-02-26 02:35:24 78D152A9FD5747FF6AA89C79F0346F62 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2015-02-26 02:26:39 DF07110F77639E73D0537188703F44F6 3201536 ----a-w- C:\Windows\System32\win32k.sys 2015-02-25 10:41:41 F1D25A8A6E84107CC0C22BC1623E8B0C 7168 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\V0410Vfx.sys 2015-02-25 10:41:41 40F6F9D5C50A49B051C51BCC0B91AB63 11776 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\V0410Vfx64.sys 2015-02-25 10:41:40 DA377373BA8259AFD54FF0EA1843A933 244928 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\V0410Dev.sys 2015-02-25 10:41:40 43FAFEEF52C26B863778AAA64D8C2EEB 288064 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\V0410Dev64.sys 2015-02-25 10:41:40 215FF2D803AA06AB9EF0C33C34175B4D 267776 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\V0410Afx64.sys 2015-02-25 10:41:39 3F7EE8D806FD53B95223FA5459661A2F 160256 ----a-w- C:\Live! Cam\VideoIMPro_0410_1_03_01\V0410Afx.sys 2015-02-25 10:19:27 13A7AB9C652A338CCC556C97184BC083 4216 ----a-w- C:\WebCam\WCamLive\P0630Stb.sys 2015-02-25 10:19:26 E56F8148DF59BCEC1B4BA822B6AA4E9B 99488 ----a-w- C:\WebCam\WCamLive\p0630Vid64.sys 2015-02-25 10:19:26 01B008E6E423242E9FEC8F466EF83767 67968 ----a-w- C:\WebCam\WCamLive\P0630Vid.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2671913729-1532251992-3584799097-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Spotify Web Helper"="C:\Users\jimmy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "HPUsageTracking"="C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe C:\Program Files (x86)\HP\HP UT\" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Spotify Web Helper"="C:\Users\jimmy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "picon"="C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe -startup" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe" "CDAServer"="C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe" "egui"="C:\Program Files\ESET\ESET Smart Security\egui.exe /hide /waitservice" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Akamai NetSession Interface] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Akamai NetSession Interface" "hkey"="HKCU" "command"="\"C:\\Users\\jimmy\\AppData\\Local\\Akamai\\netsession_win.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AlcoholAutomount] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="AlcoholAutomount" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Alcohol Soft\\Alcohol 120\\AxAutoMntSrv.exe\" -automount" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GoogleDriveSync] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="GoogleDriveSync" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Google\\Drive\\googledrivesync.exe\" /autostart" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotKeysCmds] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HotKeysCmds" "hkey"="HKLM" "command"="C:\\Windows\\system32\\hkcmd.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Color LaserJet CM2320 MFP Series Fax] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HP Color LaserJet CM2320 MFP Series Fax" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\HP\\HP Color LaserJet CM2320 MFP Series\\hppfaxprintersrv.exe \"HP Color LaserJet CM2320 MFP Series Fax\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LWS] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="LWS" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Logitech\\LWS\\Webcam Software\\LWS.exe -hide" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Persistence] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Persistence" "hkey"="HKLM" "command"="C:\\Windows\\system32\\igfxpers.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\snpstd3] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="snpstd3" "hkey"="HKLM" "command"="C:\\Windows\\vsnpstd3.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Spotify Web Helper" "hkey"="HKCU" "command"="\"C:\\Users\\jimmy\\AppData\\Roaming\\Spotify\\Data\\SpotifyWebHelper.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SunJavaUpdateSched" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^jimmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk] "path"="C:\\Users\\jimmy\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\MagicDisc.lnk" "backup"="C:\\Windows\\pss\\MagicDisc.lnk.Startup" "backupExtension"=".Startup" "command"="C:\\PROGRA~2\\MAGICD~1\\MAGICD~1.EXE " "item"="MagicDisc" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^jimmy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Schermopname en Snel starten.lnk] "path"="C:\\Users\\jimmy\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OneNote 2007 Schermopname en Snel starten.lnk" "backup"="C:\\Windows\\pss\\OneNote 2007 Schermopname en Snel starten.lnk.Startup" "backupExtension"=".Startup" "command"="C:\\PROGRA~2\\MICROS~1\\Office12\\ONENOTEM.EXE /tsr" "item"="OneNote 2007 Schermopname en Snel starten" ==== Startup Folders ====================== 2013-02-13 15:43:20 2106 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [06-02-2015 10:46] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24-02-2015 11:47] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24-02-2015 11:47] C:\Windows\tasks\GoogleUpdateTaskMachineUA1d05020c98eac86.job --a------ [Undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA1d05020c98eac86" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions ====================== ProfilePath: C:\Users\jimmy\AppData\Roaming\Mozilla\Firefox\Profiles\b8aql7ev.default - Media Hint - %ProfilePath%\extensions\mediahint@jetpack.xpi - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\jimmy\AppData\Roaming\Mozilla\Firefox\Profiles\b8aql7ev.default C62322C77D1AAB77B1CF1130FCC3673A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll - Shockwave Flash E37EAD09D28AE19D8A39B6A95F47513A - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll - Shockwave for Director / Shockwave for Director F6D12679B9112358AC705A1308156F59 - C:\Users\jimmy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player F3B0E300AFC94E1A775A2D935A7D384F - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll - Shockwave for Director / Shockwave for Director 87132527E2256CF6683A18C4EB34DD3B - C:\Windows\system32\Wat\npWatWeb.dll - Windows Activation Technologies ==== Fake Chromium Profiles Check ====================== Fake profile C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome deleted ==== Chromium Look ====================== Google Chrome Version: 40.0.2214.115 (Up to date, latest Stable version: 40.0.2214.115) Google Slides - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Drive - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Slides - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Drive - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo selector is not a valid CSS selector - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Google Search - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf PanicButton - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\faminaibgiklngmfpfbhmokfmnglamcm crxMouse Chrome Gestures - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\jlgkpaicikihijadgifklkbpdajbkhjo eBay Extension for Google Chrome - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\khhckppjhonfmcpegdjdibmngahahhck Google Mail Checker - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff Google Wallet - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com/ie" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search?q=%s" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="www.google.com" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs] "Tabs"="www.google.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="about:newtab" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs] "Tabs"="about:newtab" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {159E1B4C-6924-BC33-39AF-5C6A634A373D} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" {57B189E8-A08D-46EF-B311-E5013ABB70FB} Google Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={sear" {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2671913729-1532251992-3584799097-1001\Software\Microsoft\Internet Explorer\SearchScopes\{DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd3 deleted successfully ==== HijackThis Entries ====================== O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT\" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\jimmy\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O10 - Broken Internet access because of LSP provider 'c:\program files (x86)\bonjour\mdnsnsp.dll' missing O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Unknown owner - C:\Program Files (x86)\Bonjour\mDNSResponder.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\AMT\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Samsung Network Fax Server - Samsung Electronics Co., Ltd. - C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\jimmy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\jimmy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\jimmy\AppData\Local\Mozilla\Firefox\Profiles\b8aql7ev.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\jimmy\AppData\Local\Google\Chrome\User Data\Profile 3\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=92 folders=51 122654233 bytes) ==== Empty Temp Folders ====================== C:\Users\admin\AppData\Local\temp emptied successfully C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\jimmy\AppData\Local\Temp will be emptied at reboot C:\Users\photoshop\AppData\Local\temp emptied successfully C:\Users\Public\AppData\Local\temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot