Zoek.exe v5.0.0.0 Updated 05-March-2015 Tool run by flore on wo 08/04/2015 at 13:19:13,20. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64 Running in: Normal Mode No Internet Access Detected Launched: C:\Users\flore\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 8/04/2015 13:20:27 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AGEIA Technologies deleted successfully C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully C:\Program Files\Nitro deleted successfully C:\Users\Flore 2\AppData\Roaming\Apple Computer deleted successfully C:\Users\flore\AppData\Local\ms-drivers deleted successfully C:\Users\flore\AppData\Local\VirtualStore deleted successfully C:\Users\Flore 2\AppData\Local\Packages deleted successfully C:\Users\Flore 2\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3829408510-2573632918-2497041444-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== PowerDVD Create 10 Adobe AIR Adobe Flash Player 16 ActiveX Adobe Reader XI (11.0.10) - Nederlands Adobe Refresh Manager Apple Application Support Apple Mobile Device Support Apple Software Update AVG 2015 Bonjour Conexant HD Audio CyberLink Power2Go 7 CyberLink PowerDVD 10 CyberLink PowerProducer 5.5 De SimsT 3 De SimsT 3 Ambities De SimsT 3 Exotisch Eiland Definition Update for Microsoft Office 2010 (KB2956207) 32-Bit Edition DisplayLink Core Software Dolby Advanced Audio v2 Google Chrome Google Drive Google Toolbar for Internet Explorer Google Update Helper Integrated Camera Intel(R) Management Engine Components Intel(R) PRO/Wireless Driver Intel(R) Processor Graphics Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1419.2) Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel(R) Update Manager Intel(R) USB 3.0 eXtensible Host Controller Driver Intel(R) WiDi Intel© PROSet/Wireless Software Intel© PROSet/Wireless WiFi Software Intel© SSD Toolbox Intel© Trusted Connect Service Client iTunes Java 8 Update 40 Java Auto Updater Lenovo Auto Scroll Utility Lenovo Communications Utility Lenovo Fingerprint Manager Lenovo Patch Utility Lenovo Patch Utility 64 bit Lenovo Peer Connect SDK Lenovo Power Management Driver Lenovo QuickControl Lenovo QuickDisplay Lenovo Solution Center Lenovo USB Graphics Lenovo USB3.0 to DVI VGA Monitor Adapter Lenovo User Guide Lenovo Warranty Information Metric Collection SDK Metric Collection SDK 35 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.5.2 (DEU) Microsoft .NET Framework 4.5.2 (Deutsch) Microsoft .NET Framework 4.5.2 (FRA) Microsoft .NET Framework 4.5.2 (Fran‡ais) Microsoft .NET Framework 4.5.2 (ITA) Microsoft .NET Framework 4.5.2 (Italiano) Microsoft .NET Framework 4.5.2 (Nederlands) Microsoft .NET Framework 4.5.2 (NLD) Microsoft Office Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared 64-bit MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Microsoft WSE 3.0 Runtime NVIDIA-configuratiescherm 345.20 NVIDIA Grafisch stuurprogramma 345.20 NVIDIA Install Application NVIDIA Optimus Update 10.4.0 NVIDIA PhysX NVIDIA PhysX System Software 9.13.0725 NVIDIA Update 10.4.0 NVIDIA Update Components NVIDIA Update Core On Screen Display Origin PokerStars.be Power Manager PowerDVD Create PrimoPDF -- brought to you by Nitro PDF Software Realtek Card Reader Realtek Ethernet Controller Driver Security Update for Microsoft Excel 2010 (KB2956142) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2883100) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2889839) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2920748) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2920812) 32-Bit Edition Security Update for Microsoft Word 2010 (KB2956139) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition SkypeT 7.2 Syndicate Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD ThinkPad Hotkey Features Integration Setup ThinkPad OneLink Dock ThinkPad UltraNav Driver Thinkpad USB 3.0 Ethernet Adapter Driver Update for Microsoft Access 2010 (KB2837601) 32-Bit Edition Update for Microsoft Excel 2010 (KB2589348) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition Update for Microsoft Office 2010 (KB2837602) 32-Bit Edition Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition Update for Microsoft Office 2010 (KB2920813) 32-Bit Edition Update for Microsoft Office 2010 (KB2956141) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2956205) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2956128) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2956203) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition Update for Microsoft Visio 2010 (KB2878283) 32-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition USB Enhanced Performance Keyboard Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables VLC media player VoiceOver Kit WaveEditor Windows Driver Package - Intel Corporation (iaStorA) HDC (08/01/2013 12.8.0.1016) Windows Driver Package - Lenovo 1.67.04.05 (12/17/2013 1.67.04.05) ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\AVG\AVG2015\avgfws.exe C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe C:\Windows\SysWOW64\SAsrv.exe C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe C:\Program Files (x86)\USB Camera\VM331STI.EXE C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe C:\Windows\SysWOW64\ctfmon.exe C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\flore\Downloads\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\KMService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\KMService deleted successfully ==== Deleting Files \ Folders ====================== C:\PROGRA~2\AGEIA Technologies not found "C:\windows\SysNative\srvany.exe" not found C:\PROGRA~2\AVG Web TuneUp deleted C:\found.000 deleted C:\PROGRA~3\AVG Security Toolbar deleted C:\PROGRA~3\Package Cache deleted C:\Users\Flore 2\AppData\LocalLow\AVG Web TuneUp deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted C:\Windows\SysNative\config\systemprofile\Searches deleted "C:\PROGRA~2\Free Codec Pack\VSFilter.dll" deleted "C:\PROGRA~2\Free Codec Pack" not deleted ==== System Specs ====================== Operating System: Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 64-bits Manufacturer: LENOVO - Model: 20C600JHMB Install Date: 14/11/2014 9:46:17 Last Boot: 8/04/2015 12:21:49 Processor: Intel(R) Core(TM) i5-4210M CPU @ 2.60GHz Number of Processors: 4 Work Station Bootmode: Normal boot Total RAM: 3810 MB (free 1318 MB - 34) Computername: FLORE-PC Domain: WORKGROUP User: flore (Non-Administrator account) Local Disk: C:\ - NTFS - 207 GB (free 128 GB) CD \ DVD Drive: D:\ Local Disk: Q:\ - NTFS - 14 GB (free 0 GB) Bootdevice: \Device\HarddiskVolume1 Windows update: Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: AVG Internet Security 2015 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG Internet Security 2015 disabled (Outdated) Firewall: AVG Internet Security 2015 disabled Default Browser: Google Chrome 41.0.2272.118 Internet Explorer Version: 11.0.9600.17691 Google Chrome version: 41.0.2272.118 Adobe Reader version: 11.0.10.32 Sun Java version: 1.8.0_40 (32-bit) Sun Java version: 1.8.0_40 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\flore\AppData\Local\Temp ==== 2015-04-08 11:16:15 CC02C8B8EF80A4F9C34B08B2E33005AC 1095472 ----a-w- C:\Users\flore\AppData\Local\Temp\{E2391128-E692-46EE-AA57-0ED46E13E763}\Setup.exe 2015-04-08 11:16:15 93812FDC01AA864195816CD814445F95 241984 ----a-w- C:\Users\flore\AppData\Local\Temp\{E2391128-E692-46EE-AA57-0ED46E13E763}\SqmApi.dll 2015-04-08 11:16:15 856E41303DB61794937703AC60FA31F4 8864 ----a-w- C:\Users\flore\AppData\Local\Temp\{E2391128-E692-46EE-AA57-0ED46E13E763}\SetupRes.dll 2015-04-08 11:16:15 1A524714927D62ACCCC2651C8C42DD31 186656 ----a-w- C:\Users\flore\AppData\Local\Temp\{E2391128-E692-46EE-AA57-0ED46E13E763}\EppManifest.dll 2015-04-08 09:04:14 70595A37D9C4647C195CDA11EDC2D251 2909720 ----a-w- C:\Users\flore\AppData\Local\Temp\UNINSTALL.EXE 2015-04-04 18:27:07 F76D4ECF94DC677C13061EAEE9D6745A 312832 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\IntlProvider.dll 2015-04-04 18:27:07 EC664AAB47C27667256DDFBD13986239 127488 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\OSProvider.dll 2015-04-04 18:27:07 CD564F5637BBBEB6E5F3464EDD573C80 438272 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\DmiProvider.dll 2015-04-04 18:27:07 CCF6EC908566900E9626DC3360B9E35E 112128 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\DismCorePS.dll 2015-04-04 18:27:07 A909643B215FC0587A043C9C15959D41 186368 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\DismProv.dll 2015-04-04 18:27:07 A77A8EB5E9BA6D63A121811F0830F565 302080 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\UnattendProvider.dll 2015-04-04 18:27:07 8DF4C8E300C8D32468F6141D22BBAF24 271360 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\SmiProvider.dll 2015-04-04 18:27:07 7B38D7916A7CD058C16A0A6CA5077901 271360 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\wdscore.dll 2015-04-04 18:27:07 739968678548BA15F6B9372E8760C012 444416 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\TransmogProvider.dll 2015-04-04 18:27:07 6EBC2138A3C9B3B7D1E69E0629B6C815 289792 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\DismCore.dll 2015-04-04 18:27:07 64B66A41B61D511E8EBE94625EC0E45A 53760 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\FolderProvider.dll 2015-04-04 18:27:07 516A5FCE06BB388499238A5F9286CB74 96768 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\DismHost.exe 2015-04-04 18:27:07 45FF4FA5CA5432BFCCDED4433FE2A85B 216576 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\MsiProvider.dll 2015-04-04 18:27:07 3A9C49943047DE6C6F8DC68CB986A0EC 183296 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\CompatProvider.dll 2015-04-04 18:27:07 2961AB067AE61440ADF11C4BFE085151 1672192 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\CbsProvider.dll 2015-04-04 18:27:07 27EC9795973FB7790059892EF2F363B1 107008 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\LogProvider.dll 2015-04-04 18:27:07 26981358EA5F82938387F6998F861978 471040 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\WimProvider.dll 2015-03-29 17:06:27 34253E557A9A424649B1B6A9DED022C7 406832 ----a-w- C:\Users\flore\AppData\Local\Temp\{E29D3FD2-80CD-4225-90D4-C44DD1827582}\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}\_IsRes.dll 2015-03-29 17:06:27 2A276BA2B7782476302C59D0F760F4BC 117560 ----a-w- C:\Users\flore\AppData\Local\Temp\{E29D3FD2-80CD-4225-90D4-C44DD1827582}\ISBEW64.exe 2015-03-29 17:06:27 0F68D760FB480A1B039CA7D6B877D24C 223024 ----a-w- C:\Users\flore\AppData\Local\Temp\{E29D3FD2-80CD-4225-90D4-C44DD1827582}\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}\isrt.dll 2015-03-29 17:06:26 B702C13575E2B48DA7BDC326BA67BC40 20480 ----a-w- C:\Users\flore\AppData\Local\Temp\{E29D3FD2-80CD-4225-90D4-C44DD1827582}\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}\_ISUser.dll 2015-03-29 17:06:26 A4D3F1287DE1822904A3EB1F4F8CD8F0 427912 ----a-w- C:\Users\flore\AppData\Local\Temp\{E29D3FD2-80CD-4225-90D4-C44DD1827582}\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}\The Sims 3 Island Paradise_code.exe 2015-03-29 17:06:26 66D7E5D8EC1DD797966A018169CC0E46 194440 ----a-w- C:\Users\flore\AppData\Local\Temp\{E29D3FD2-80CD-4225-90D4-C44DD1827582}\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}\The Sims 3 Island Paradise_uninst.exe 2015-03-29 17:06:26 4D3AC88054DF63FC810427BDAA96C458 96264 ----a-w- C:\Users\flore\AppData\Local\Temp\{E29D3FD2-80CD-4225-90D4-C44DD1827582}\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}\GameuxInstallHelper.dll 2015-03-29 17:06:26 454B552E06B44D4594A811E066DC4C5F 11080 ----a-w- C:\Users\flore\AppData\Local\Temp\{E29D3FD2-80CD-4225-90D4-C44DD1827582}\dotnetinstaller.exe 2015-03-29 17:06:22 F52C09D6F4B2636CCE631DD128C4FC25 561984 ----a-w- C:\Users\flore\AppData\Local\Temp\{58189A46-3993-4F7F-AC7E-5B16B4937B7D}\ISSetup.dll 2015-03-29 17:06:21 6CB95B248973FE757C6FD8EE15316CFA 399680 ----a-w- C:\Users\flore\AppData\Local\Temp\{58189A46-3993-4F7F-AC7E-5B16B4937B7D}\Sims3EP10Setup.exe 2015-03-29 17:06:20 5236F845CCD5B2816D4F839E9FF69632 319488 ----a-w- C:\Users\flore\AppData\Local\Temp\{58189A46-3993-4F7F-AC7E-5B16B4937B7D}\_Setup.dll 2015-03-29 16:53:05 9FF6078C0DEA0672EAD358A1EC359F70 47796216 ----a-w- C:\Users\flore\AppData\Local\Temp\EAD4A49.exe ====== Java Cache ===== 2015-04-06 15:42:59 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-7ba39c74 2015-04-06 15:42:56 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-2c5985c1 2015-04-06 15:42:56 044A7B2CC0B1BC318C9BAB852FC9B043 425 ----a-w- C:\Users\flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-aa56bb018d5de3a531ee91cc4857f0f479656e5370ebf87789e721aaaf530ebc-6.0.lap 2015-04-06 15:42:55 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-69fb56e0 2015-04-06 15:42:56 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Users\flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-1567b786 ====== C:\Windows\SysWOW64 ===== 2015-04-05 12:41:33 1C0E369575F387460E2A5F28269B2CC4 1247744 ----a-w- C:\Windows\SysWOW64\DWrite.dll 2015-03-29 16:34:38 797E24743937D67D69F28F2CF5052EE8 2414360 ----a-w- C:\Windows\SysWOW64\d3dx9_31.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-04-05 12:41:34 DD85F00EC31F77315AE992B7B0411D65 1643520 ----a-w- C:\Windows\Sysnative\DWrite.dll 2015-03-29 16:34:38 FAAA0BB9CD2905B25334132E5BA093EB 3977496 ----a-w- C:\Windows\Sysnative\d3dx9_31.dll 2015-03-25 16:01:37 EBDBE8037B0BE75B05CBC5DEEE49BA90 677888 ----a-w- C:\Windows\Sysnative\generaltel.dll 2015-03-25 16:01:37 E82D241A892C15FB42AB0A3D83C01ACA 414720 ----a-w- C:\Windows\Sysnative\devinv.dll 2015-03-25 16:01:37 B3B9C29F90A10216F13113757BCACAD8 1107456 ----a-w- C:\Windows\Sysnative\aeinv.dll 2015-03-25 16:01:37 82009026471290E8A512D1FE2442FDFC 760832 ----a-w- C:\Windows\Sysnative\invagent.dll 2015-03-25 16:01:37 75A43F9EA79BF721DC6D94980F85F87D 943616 ----a-w- C:\Windows\Sysnative\appraiser.dll 2015-03-25 16:01:37 4BA77DD4E4894EAF2BCB2D3E0A0B6F7A 30720 ----a-w- C:\Windows\Sysnative\acmigration.dll 2015-03-25 16:01:36 EBDE90C94A0671F05AAA0DF2A2139F43 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll 2015-03-25 16:01:36 1C11E0739B2B354647D292FCDCB7AF8E 192000 ----a-w- C:\Windows\Sysnative\aepic.dll ====== C:\Windows\Sysnative\drivers ===== 2015-04-07 23:00:17 05A0C2744CEAC6F1B723EC469B650EF0 47632 ----a-w- C:\Windows\Sysnative\drivers\PSKMAD.sys 2015-03-25 09:21:34 079F75EE36CD275620298DA7D7636006 281056 ----a-w- C:\Windows\Sysnative\drivers\avgidsdrivera.sys 2015-03-11 11:05:40 ED6E75158D28D33A2E2A020AC5B2B59D 663552 ----a-w- C:\Windows\Sysnative\drivers\PEAuth.sys 2015-03-11 11:05:38 87BCD1034CBF33537D4D4C251D39BA26 94656 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys 2015-03-11 11:05:36 90C53BD47979FB8814F465A08B885102 61440 ----a-w- C:\Windows\Sysnative\drivers\appid.sys 2015-03-11 11:04:56 8BA90F480705D7153AD0060CCA62222A 155576 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2015-03-11 11:04:56 56ED3EE5FED6BF2FC1305CF872042868 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2015-03-11 11:04:56 27667A788130A7F7A5858DE27572E6D7 459336 ----a-w- C:\Windows\Sysnative\drivers\cng.sys ====== C:\Windows\Tasks ====== 2015-03-29 19:26:40 7D3D8C509C17D476E455E4DB978EB8CF 3130 ----a-w- C:\Windows\Sysnative\Tasks\{63BE41FE-7853-4188-9667-6568137C97EE} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-04-08 07:26:22 -------- d-----w- C:\Program Files\trend micro 2015-04-05 15:35:32 -------- d-----w- C:\Program Files\Common Files\Bitdefender ======= C:\PROGRA~2 ===== 2015-04-06 15:40:37 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2015-04-05 15:35:21 -------- d-----w- C:\PROGRA~2\COMMON~1\Bitdefender 2015-03-29 19:22:32 -------- d--h--w- C:\PROGRA~2\COMMON~1\EAInstaller 2015-03-29 19:14:16 -------- d-----w- C:\PROGRA~2\Origin Games 2015-03-29 16:56:28 -------- d-----w- C:\PROGRA~2\Origin 2015-03-29 16:35:18 -------- d-----w- C:\PROGRA~2\Microsoft WSE 2015-03-29 16:15:43 -------- d-----w- C:\PROGRA~2\Electronic Arts ======= C: ===== 2015-04-05 15:38:31 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat ====== C:\Users\flore\AppData\Roaming ====== 2015-04-08 00:05:16 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\PwrMgr 2015-04-07 21:28:46 -------- d-----w- C:\Users\Flore 2\AppData\Locallow\Adobe 2015-04-07 18:58:48 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\vlc 2015-04-07 17:54:40 -------- d-----w- C:\Users\Flore 2\AppData\Local\Adobe 2015-04-07 17:54:36 -------- d-----w- C:\Users\Flore 2\AppData\Local\Skype 2015-04-07 17:54:34 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\Skype 2015-04-07 16:14:18 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\LSC 2015-04-07 16:04:43 -------- d-----w- C:\Users\Flore 2\AppData\Local\Power2Go 2015-04-07 16:04:29 -------- d-s---w- C:\Users\Flore 2\AppData\Locallow\Microsoft 2015-04-07 16:04:25 59659CB87B0E690902A0DE31C14F9BB9 91640 ----a-w- C:\Users\Flore 2\AppData\Local\GDIPFONTCACHEV1.DAT 2015-04-07 16:04:25 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\AVG2015 2015-04-07 16:04:25 -------- d-----w- C:\Users\Flore 2\AppData\Local\Lenovo 2015-04-07 16:04:24 -------- d-----w- C:\Users\Flore 2\AppData\Local\Avg2015 2015-04-07 16:04:23 -------- d-----w- C:\Users\Flore 2\AppData\Local\NVIDIA 2015-04-07 16:04:16 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\Adobe 2015-04-07 16:04:15 -------- d-----r- C:\Users\Flore 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2015-04-07 16:04:15 -------- d-----r- C:\Users\Flore 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2015-04-07 16:04:08 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\Identities 2015-04-07 16:04:05 -------- d-s---w- C:\Users\Flore 2\AppData\Roaming\Microsoft 2015-04-07 16:04:05 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\TuneUp Software 2015-04-07 16:04:05 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\Media Center Programs 2015-04-07 16:04:05 -------- d-----w- C:\Users\Flore 2\AppData\Roaming\Intel 2015-04-07 16:04:05 -------- d-----w- C:\Users\Flore 2\AppData\Local\Temp 2015-04-07 16:04:05 -------- d-----w- C:\Users\Flore 2\AppData\Local\Microsoft Help 2015-04-07 16:04:05 -------- d-----w- C:\Users\Flore 2\AppData\Local\Microsoft 2015-04-07 16:04:05 -------- d-----w- C:\Users\Flore 2\AppData\Local\Google 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-04-06 14:36:24 -------- d-----w- C:\Users\flore\AppData\Roaming\LSC 2015-04-04 18:11:30 -------- d-----w- C:\Users\flore\AppData\Local\NVIDIA 2015-04-04 18:07:34 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\NVIDIA 2015-03-29 19:14:08 -------- d-----w- C:\Users\flore\AppData\Local\Origin 2015-03-29 16:56:59 -------- d-----w- C:\Users\flore\AppData\Roaming\Origin ====== C:\Users\flore ====== 2015-04-08 09:19:17 CB909610E54A541C829B2CE5271B6855 31646088 ----a-w- C:\Users\flore\Downloads\PandaCloudCleaner (1).exe 2015-04-08 07:26:11 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\flore\Downloads\RSITx64.exe 2015-04-08 07:20:36 -------- d-----w- C:\ProgramData\HitmanPro 2015-04-08 07:18:51 5C80FF85C8644A630D341F27176042BA 11028616 ----a-w- C:\Users\flore\Downloads\HitmanPro_x64.exe 2015-04-08 07:09:25 9866F32F94E0450453A0094F4AB81555 5344528 ----a-w- C:\Users\flore\Downloads\ccsetup504.exe 2015-04-07 22:57:46 CB909610E54A541C829B2CE5271B6855 31646088 ----a-w- C:\Users\flore\Downloads\PandaCloudCleaner.exe 2015-04-07 22:27:03 -------- d-----w- C:\ProgramData\SecTaskMan 2015-04-07 17:55:05 -------- d-----w- C:\Users\Flore 2\Tracing 2015-04-07 16:04:15 -------- d-----r- C:\Users\Flore 2\Searches 2015-04-07 16:04:08 -------- d-----r- C:\Users\Flore 2\Contacts 2015-04-07 16:04:05 6FC234AD3752E1267B34FB12BCD6718B 20 --sha-w- C:\Users\Flore 2\ntuser.ini 2015-04-07 16:04:05 -------- d--h--w- C:\Users\Flore 2\AppData 2015-04-07 16:04:05 -------- d-----w- C:\Users\Flore 2\Roaming 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\Videos 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\Saved Games 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\Pictures 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\Music 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\Links 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\Favorites 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\Downloads 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\Documents 2015-04-07 16:04:05 -------- d-----r- C:\Users\Flore 2\Desktop 2015-04-06 15:39:29 49BF715D225A5D3FE9D2FA75967C1466 561064 ----a-w- C:\Users\flore\Downloads\chromeinstall-8u40.exe 2015-04-06 14:39:06 291271DD3FE680AF7E716B90DF107C9F 12470976 ----a-w- C:\Users\flore\Downloads\systemupdate506-03-27-2015.exe 2015-04-06 14:34:14 ECA027CBCAF51073492E1D57D966B36B 44738856 ----a-w- C:\Users\flore\Downloads\lscsetup_x64_28004.exe 2015-04-06 11:40:06 31D2409237481996E00505054E68BA3E 21540440 ----a-w- C:\Users\flore\Downloads\mbam-setup-2.1.4.1018 (2).exe 2015-04-05 16:37:45 FB2D4ABBB0C651701BEE65D45E02AD5E 1630952 ----a-w- C:\Users\flore\Downloads\PANDAFREEAV (2).exe 2015-04-05 16:34:20 FB2D4ABBB0C651701BEE65D45E02AD5E 1630952 ----a-w- C:\Users\flore\Downloads\PANDAFREEAV (1).exe 2015-04-05 16:29:57 E55D0D5D5A3A585BFF48B990708007A5 2208768 ----a-w- C:\Users\flore\Downloads\adwcleaner_4.200.exe 2015-04-05 15:38:02 -------- d-----w- C:\Users\flore\Start Menu 2015-04-05 15:37:07 9622C5F454EEC85F2FE409166ACAEB0A 3109248 ----a-w- C:\Users\flore\Downloads\SpyHunter-Installer.exe 2015-04-04 18:29:54 31D2409237481996E00505054E68BA3E 21540440 ----a-w- C:\Users\flore\Downloads\mbam-setup-2.1.4.1018 (1).exe 2015-04-04 18:13:07 31D2409237481996E00505054E68BA3E 21540440 ----a-w- C:\Users\flore\Downloads\mbam-setup-2.1.4.1018.exe 2015-03-29 19:07:08 -------- d-----w- C:\ProgramData\EA Core 2015-03-29 16:56:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2015-03-29 16:56:44 -------- d-----w- C:\ProgramData\Origin 2015-03-29 16:53:04 -------- d-----w- C:\ProgramData\Electronic Arts 2015-03-13 08:37:58 -------- d-----w- C:\Users\flore\Tracing ====== C: exe-files == 2015-04-08 11:16:15 CC02C8B8EF80A4F9C34B08B2E33005AC 1095472 ----a-w- C:\Users\flore\AppData\Local\Temp\{E2391128-E692-46EE-AA57-0ED46E13E763}\Setup.exe 2015-04-08 09:19:36 D5241D063334DD8D3E587A39CDE6C074 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$IBDMB4N.exe 2015-04-08 09:19:36 445DD0CA1B0081ECE24C6C8350A6623D 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$IFFJCQZ.exe 2015-04-08 09:19:36 3B84BAB205E712B44C56E5B708D4B420 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$IP9VCVP.exe 2015-04-08 09:19:17 CB909610E54A541C829B2CE5271B6855 31646088 ----a-w- C:\Users\flore\Downloads\PandaCloudCleaner (1).exe 2015-04-08 09:12:53 7198CEAC5A21834B53BD156196C968A0 104792 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$RBDMB4N.exe 2015-04-08 09:12:53 6358BB7AD64E28755784F325BF19BF72 140616 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$RFFJCQZ.exe 2015-04-08 09:12:53 376F3FF24CB45FAEC3C615E48A176B3D 70488 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$RP9VCVP.exe 2015-04-08 09:04:14 70595A37D9C4647C195CDA11EDC2D251 2909720 ----a-w- C:\Users\flore\AppData\Local\Temp\UNINSTALL.EXE 2015-04-08 07:26:23 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\flore.exe 2015-04-08 07:26:11 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\flore\Downloads\RSITx64.exe 2015-04-08 07:18:51 5C80FF85C8644A630D341F27176042BA 11028616 ----a-w- C:\Users\flore\Downloads\HitmanPro_x64.exe 2015-04-08 07:09:25 9866F32F94E0450453A0094F4AB81555 5344528 ----a-w- C:\Users\flore\Downloads\ccsetup504.exe 2015-04-07 23:44:43 D35BB73A53FFBC1B0BBEFBBA78A23398 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$I7QDC89.exe 2015-04-07 23:44:43 6CC6EB028977792BC217517C2DFA96CE 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$ISGPO9F.exe 2015-04-07 23:44:43 448BC6562AB0614E65A27E86F6DF3B40 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$INEGBIN.exe 2015-04-07 23:44:43 283E3A851E80C4FD58B0BAC54F002CA5 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$IP8Q767.exe 2015-04-07 22:57:46 CB909610E54A541C829B2CE5271B6855 31646088 ----a-w- C:\Users\flore\Downloads\PandaCloudCleaner.exe 2015-04-07 22:27:00 7F140B1A02C33C116C638D183E561656 750992 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$RNEGBIN.exe 2015-04-07 22:27:00 7198CEAC5A21834B53BD156196C968A0 104792 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$R7QDC89.exe 2015-04-07 22:27:00 6358BB7AD64E28755784F325BF19BF72 140616 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$RSGPO9F.exe 2015-04-07 22:27:00 376F3FF24CB45FAEC3C615E48A176B3D 70488 ----a-w- C:\$Recycle.Bin\S-1-5-21-3829408510-2573632918-2497041444-1001\$RP8Q767.exe 2015-04-07 16:05:33 554D0E50BFE40D6B633392A03077C046 446584 ----a-w- C:\Users\Flore 2\AppData\Local\NVIDIA\NvBackend\Packages\0000731e\CoProc update.19457567.exe 2015-04-07 16:05:28 28970D295417AA1D81979E397BE4717F 334784 ----a-w- C:\Users\Flore 2\AppData\Local\NVIDIA\NvBackend\Packages\000067a9\DRS update.19048648.exe 2015-04-06 15:40:19 F95C5163F6D8955BEF59A896C7F7112D 159656 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\unpack200.exe 2015-04-06 15:40:19 A29B7A1BAD1A1EB608ACF7684F1F1E37 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\tnameserv.exe 2015-04-06 15:40:19 7833052815087E5BF9346AC78FDCED68 51112 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssvagent.exe 2015-04-06 15:40:18 DFB1F31DD4A08FA5892886DC7117064A 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\rmid.exe 2015-04-06 15:40:18 AF28DAA2B4EB3AD87203202264A2491C 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\klist.exe 2015-04-06 15:40:18 A07427A93E1133A7F0F4691CC54B9294 272296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\javaws.exe 2015-04-06 15:40:18 946FD6292EAE3FBB93CC3BB01BA8763D 76712 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2launcher.exe 2015-04-06 15:40:18 94017ABBDE345580542D8301793EFF7A 191400 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\javaw.exe 2015-04-06 15:40:18 79B6403F5BD398BB9880F00FAF7C69DA 68520 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\javacpl.exe 2015-04-06 15:40:18 751E8649890CC42727D80F8D6DE1F1CB 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\servertool.exe 2015-04-06 15:40:18 7162180C98D1BE5D1315FC05B3C91E9D 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\pack200.exe 2015-04-06 15:40:18 689916BDF4F58C7F7AD25F8B3ABB783A 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\rmiregistry.exe 2015-04-06 15:40:18 3DB4CD42B36FD2C98E9B51E3CBC1670E 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\jjs.exe 2015-04-06 15:40:18 32700B34EE49959FAF64EC46D96B3630 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\ktab.exe 2015-04-06 15:40:18 1FA2D0F07730F502A857BFC63DA6C193 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\kinit.exe 2015-04-06 15:40:18 0A9C7408BADBA5D2C841817C22ACBF07 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\policytool.exe 2015-04-06 15:40:18 08363434BEC1B0AE6420C77820BC12E9 16296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\orbd.exe 2015-04-06 15:40:18 042B789E469D238D5FA9DEC4241CE3FD 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\keytool.exe 2015-04-06 15:40:17 6031BACB59D93E5ECB4ACDE6E12565EA 30632 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\jabswitch.exe 2015-04-06 15:40:17 30E9397C2F0C8FF128219D6A25E172BB 190888 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\java.exe 2015-04-06 15:40:17 2794D464D89260B0316C16A9FE24C660 15784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\bin\java-rmi.exe 2015-04-06 15:39:29 49BF715D225A5D3FE9D2FA75967C1466 561064 ----a-w- C:\Users\flore\Downloads\chromeinstall-8u40.exe 2015-04-06 14:39:06 291271DD3FE680AF7E716B90DF107C9F 12470976 ----a-w- C:\Users\flore\Downloads\systemupdate506-03-27-2015.exe 2015-04-06 14:38:06 E41C4B2066CF1B2B07D90D13BB7B193A 54432 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\airappinstaller.exe 2015-04-06 14:38:06 E41C4B2066CF1B2B07D90D13BB7B193A 54432 ----a-w- C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\airappinstaller.exe 2015-04-06 14:38:06 67F3E1CF291FD03D8F7B4E87015A8AB8 59392 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe 2015-04-06 14:38:06 49F3DF5F4DED35ED40DCC8B97018155C 130208 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe 2015-04-06 14:38:06 0F8485C6CF126C41FD8AF1D75FC2DC08 96768 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe 2015-04-06 14:34:14 ECA027CBCAF51073492E1D57D966B36B 44738856 ----a-w- C:\Users\flore\Downloads\lscsetup_x64_28004.exe 2015-04-06 11:40:06 31D2409237481996E00505054E68BA3E 21540440 ----a-w- C:\Users\flore\Downloads\mbam-setup-2.1.4.1018 (2).exe 2015-04-05 16:37:45 FB2D4ABBB0C651701BEE65D45E02AD5E 1630952 ----a-w- C:\Users\flore\Downloads\PANDAFREEAV (2).exe 2015-04-05 16:34:20 FB2D4ABBB0C651701BEE65D45E02AD5E 1630952 ----a-w- C:\Users\flore\Downloads\PANDAFREEAV (1).exe 2015-04-05 16:29:57 E55D0D5D5A3A585BFF48B990708007A5 2208768 ----a-w- C:\Users\flore\Downloads\adwcleaner_4.200.exe 2015-04-05 15:37:07 9622C5F454EEC85F2FE409166ACAEB0A 3109248 ----a-w- C:\Users\flore\Downloads\SpyHunter-Installer.exe 2015-04-05 15:35:32 DBC605388BB7EBD6E6EAE1E0AFFF5E35 519472 ----a-w- C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setuplauncher.exe 2015-04-05 15:35:32 CD3F6F99F9CB0E989DAB1A8AD0BBF845 537464 ----a-w- C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setupdownloader.exe 2015-04-05 15:35:21 DBC605388BB7EBD6E6EAE1E0AFFF5E35 519472 ----a-w- C:\Program Files (x86)\Common Files\Bitdefender\setupinformation\setuplauncher.exe 2015-04-05 15:35:21 CD3F6F99F9CB0E989DAB1A8AD0BBF845 537464 ----a-w- C:\Program Files (x86)\Common Files\Bitdefender\setupinformation\setupdownloader.exe 2015-04-05 12:44:58 04A8F29E2CB7A633109E6AF1316F6E97 864336 ----a-w- C:\Program Files (x86)\Google\Update\Install\{6F9575F0-58B9-4F0C-B5F5-415385E4F3BF}\41.0.2272.118_41.0.2272.101_chrome_updater.exe 2015-04-05 12:44:58 04A8F29E2CB7A633109E6AF1316F6E97 864336 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\41.0.2272.118\41.0.2272.118_41.0.2272.101_chrome_updater.exe 2015-04-04 18:29:54 31D2409237481996E00505054E68BA3E 21540440 ----a-w- C:\Users\flore\Downloads\mbam-setup-2.1.4.1018 (1).exe 2015-04-04 18:27:07 516A5FCE06BB388499238A5F9286CB74 96768 ----a-w- C:\Users\flore\AppData\Local\Temp\C0911CA8-7827-4B7A-9F0E-3E9F19ECD05C\DismHost.exe 2015-04-04 18:13:07 31D2409237481996E00505054E68BA3E 21540440 ----a-w- C:\Users\flore\Downloads\mbam-setup-2.1.4.1018.exe 2015-04-04 18:12:41 554D0E50BFE40D6B633392A03077C046 446584 ----a-w- C:\Users\flore\AppData\Local\NVIDIA\NvBackend\Packages\0000731e\CoProc update.19457567.exe 2015-04-04 18:12:35 28970D295417AA1D81979E397BE4717F 334784 ----a-w- C:\Users\flore\AppData\Local\NVIDIA\NvBackend\Packages\000067a9\DRS update.19048648.exe 2015-04-04 18:08:45 554D0E50BFE40D6B633392A03077C046 446584 ----a-w- C:\Windows\SysWOW64\config\systemprofile\AppData\Local\NVIDIA\NvBackend\Packages\0000731e\CoProc update.19457567.exe 2015-04-04 18:08:41 28970D295417AA1D81979E397BE4717F 334784 ----a-w- C:\Windows\SysWOW64\config\systemprofile\AppData\Local\NVIDIA\NvBackend\Packages\000067a9\DRS update.19048648.exe 2015-04-04 18:07:41 3D93EB4C3C3F420C9763ED51BB87516F 412872 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{179A9AF4-4691-4047-BA95-BC4ABA069A9B}\setup.exe 2015-04-04 18:07:35 3D93EB4C3C3F420C9763ED51BB87516F 412872 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{A0514DAB-5D65-438D-8F06-43DB66186636}\setup.exe 2015-04-04 18:07:34 DE9600C6DBCDC219EE13E6F14DD2369C 1793736 ----a-w- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe 2015-04-04 18:07:34 7ACB2B83222B25D3D5842935240D4B45 188616 ----a-w- C:\Program Files\NVIDIA Corporation\Update Core\WLMerger.exe 2015-04-04 18:07:33 3D93EB4C3C3F420C9763ED51BB87516F 412872 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\SETUP.EXE 2015-04-04 18:07:26 081371EB1863964C48D537EE401D26CC 3435336 ----a-w- C:\Program Files\NVIDIA Corporation\Control Panel Client\NvGpuUtilization.exe 2015-04-04 18:07:10 B12A490B9F29FC2A8DFAD0103B8B9448 76096 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{8734B6E8-1D5F-4739-AA58-33FAF48B5C89}\nvsetup.exe 2015-04-04 18:07:10 40929D8DAC967640931C85A167F15356 85370776 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{8734B6E8-1D5F-4739-AA58-33FAF48B5C89}\NvCplSetupInt.exe 2015-04-04 18:07:10 1ECB853286F56BBC36ADBFE97127E626 35900480 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{8734B6E8-1D5F-4739-AA58-33FAF48B5C89}\NvCplSetupEng.exe 2015-04-04 18:07:09 B1A543C58F9D16110588D38E5EBFD2BF 438984 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{8734B6E8-1D5F-4739-AA58-33FAF48B5C89}\dbInstaller.exe 2015-04-04 18:07:04 3D93EB4C3C3F420C9763ED51BB87516F 412872 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{53A349DC-9583-4FDE-B766-DFC3E12A8702}\setup.exe 2015-04-04 14:47:22 E32AAB3E477398B78E9D8F2418D1989C 658944 ----a-w- C:\Windows\System32\GWX\GWXConfigManager.exe 2015-04-04 14:47:22 A6C3E3120AC125BABE410959083A0108 459264 ----a-w- C:\Windows\System32\GWX\GWX.exe 2015-04-04 14:47:22 86345D30828786E1CC6AF12DF769D136 392704 ----a-w- C:\Windows\SysWOW64\GWX\GWX.exe 2015-04-04 14:47:22 771215B601C7D7E88D015D974AF7BEC7 393216 ----a-w- C:\Windows\System32\GWX\GWXUX.exe 2015-04-04 14:47:22 29038FF696BB007224872DA9645EA324 353048 ----a-w- C:\Windows\System32\GWX\GWXUXWorker.exe === C: other files == 2015-04-08 10:30:14 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\flore\AppData\Local\Temp\_MEI39962\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2015-04-08 10:30:14 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\flore\AppData\Local\Temp\_MEI39962\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2015-04-07 23:00:17 05A0C2744CEAC6F1B723EC469B650EF0 47632 ----a-w- C:\Windows\System32\drivers\PSKMAD.sys 2015-04-06 15:40:19 9DCBFF045A2A43212A4763C3461A50B9 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_40\lib\deploy\ffjcext.zip 2015-04-05 15:38:31 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat 2015-04-04 18:07:42 D2DF95CDE541021B7908503C6FE8F306 434832 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.NVIRUSB.{56FCFE06-AD07-440E-A89B-FB9D67BB22C1}\nvstusb32.sys 2015-04-04 18:07:42 C87B11EB78428853F9E8495C47E53C10 197408 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{D174E567-27F4-41D7-97AE-6351E8DAEE63}\nvhda64v.sys 2015-04-04 18:07:42 B612810DD740F53244C9E53362D7D9A0 129184 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{D174E567-27F4-41D7-97AE-6351E8DAEE63}\nvhda32.sys 2015-04-04 18:07:42 91724DB3DDD59F27000D1C159A5F67FB 162592 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{D174E567-27F4-41D7-97AE-6351E8DAEE63}\nvhda32v.sys 2015-04-04 18:07:42 81060E9F913E96F59CF1AEBC4F0618FF 163104 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{D174E567-27F4-41D7-97AE-6351E8DAEE63}\nvhda64.sys 2015-04-04 18:07:42 61E742FCFC9621DFD173B7AD7841CE4C 451216 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.NVIRUSB.{56FCFE06-AD07-440E-A89B-FB9D67BB22C1}\nvstusb64.sys 2015-04-04 18:07:41 6BD367FF9AC5CBC4B4F5F8063ECE8707 13512 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{179A9AF4-4691-4047-BA95-BC4ABA069A9B}\NVI2SystemService32.sys 2015-04-04 18:07:41 4D659E2217BBDFF7A92B90B2E965B477 15688 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{179A9AF4-4691-4047-BA95-BC4ABA069A9B}\NVI2SystemService64.sys 2015-04-04 18:07:38 D2DF95CDE541021B7908503C6FE8F306 434832 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.NVIRUSB.{A58926DC-DBEB-42D2-A3BE-B634CBC3FE64}\nvstusb32.sys 2015-04-04 18:07:38 C87B11EB78428853F9E8495C47E53C10 197408 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{57FCEC71-DDDE-4BA1-AD30-A4783EBD39B1}\nvhda64v.sys 2015-04-04 18:07:38 B612810DD740F53244C9E53362D7D9A0 129184 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{57FCEC71-DDDE-4BA1-AD30-A4783EBD39B1}\nvhda32.sys 2015-04-04 18:07:38 91724DB3DDD59F27000D1C159A5F67FB 162592 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{57FCEC71-DDDE-4BA1-AD30-A4783EBD39B1}\nvhda32v.sys 2015-04-04 18:07:38 81060E9F913E96F59CF1AEBC4F0618FF 163104 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\HDAudio.Driver.{57FCEC71-DDDE-4BA1-AD30-A4783EBD39B1}\nvhda64.sys 2015-04-04 18:07:38 61E742FCFC9621DFD173B7AD7841CE4C 451216 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\Display.NVIRUSB.{A58926DC-DBEB-42D2-A3BE-B634CBC3FE64}\nvstusb64.sys 2015-04-04 18:07:35 6BD367FF9AC5CBC4B4F5F8063ECE8707 13512 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{A0514DAB-5D65-438D-8F06-43DB66186636}\NVI2SystemService32.sys 2015-04-04 18:07:35 4D659E2217BBDFF7A92B90B2E965B477 15688 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{A0514DAB-5D65-438D-8F06-43DB66186636}\NVI2SystemService64.sys 2015-04-04 18:07:34 6BD367FF9AC5CBC4B4F5F8063ECE8707 13512 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2SystemService32.sys 2015-04-04 18:07:34 4D659E2217BBDFF7A92B90B2E965B477 15688 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2SystemService64.sys 2015-04-04 18:07:04 6BD367FF9AC5CBC4B4F5F8063ECE8707 13512 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{53A349DC-9583-4FDE-B766-DFC3E12A8702}\NVI2SystemService32.sys 2015-04-04 18:07:04 4D659E2217BBDFF7A92B90B2E965B477 15688 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{53A349DC-9583-4FDE-B766-DFC3E12A8702}\NVI2SystemService64.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3829408510-2573632918-2497041444-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3829408510-2573632918-2497041444-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-21-3829408510-2573632918-2497041444-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IMSS"="C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" "331BigDog"="C:\Program Files (x86)\USB Camera\VM331STI.EXE" "BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "Enhanced Performance Keyboard"="C:\Program Files\Lenovo\USB Enhanced Performance Keyboard\SKDaemon.exe" "cAudioFilterAgent"="C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe" "ForteConfig"="C:\Program Files\Conexant\ForteConfig\fmapp.exe" "SmartAudio"="C:\Program Files\CONEXANT\SAII\SACpl.exe /t" "BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp" "LENOVO.TPKNRRES"="C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\Windows\\system32\\nvinitx.dll" ==== Startup Folders ====================== 2014-09-17 22:14:46 1808 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ThinkPad OneLink Dock Management.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [05/02/2015 00:56] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16/11/2014 15:32] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [16/11/2014 15:32] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CLMLSvc" [C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe] "C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\SysNative\tasks\DiskUpdate" [C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" [C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe] "C:\Windows\SysNative\tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon" ["C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe"] "C:\Windows\SysNative\tasks\PMTask" [C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe] "C:\Windows\SysNative\tasks\StartPowerDVDService" ["C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program" ["%ProgramFiles%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"] "C:\Windows\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program 64" ["%ProgramFiles(x86)%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"] "C:\Windows\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program 64 35" ["%ProgramFiles(x86)%\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe"] "C:\Windows\SysNative\tasks\Lenovo\Lenovo Solution Center Launcher" [%programfiles%\lenovo\lenovo solution center\App\LSCService.exe] "C:\Windows\SysNative\tasks\Lenovo\LSC\Lenovo Solution Center Notifications" [%programfiles%\Lenovo\Lenovo Solution Center\LSCNotify.exe] "C:\Windows\SysNative\tasks\Lenovo\LSC\LSCHardwareScan" ["C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] "C:\Windows\SysNative\tasks\TVT\Lenovo QuickDisplay Agent" ["C:\Program Files\Lenovo\QuickDisplay\QuickDisplayAgent.exe"] "C:\Windows\SysNative\tasks\TVT\LenovoWERMonitor" ["C:\Program Files (x86)\Common Files\lenovo\SUP\sup_wermonitor.exe"] ==== Chromium Look ====================== Google Chrome Version: 41.0.2272.118 (Could not determine latest Stable Version) HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions apdfllckaahabafndbhieahigkjlhalf - C:\Users\flore\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx[18/11/2014 20:56] bmkckgpgekmanipelfidlhmkfcjicion - No path found[] lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[] Google Docs - flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Google Wallet - flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Google Slides - Flore 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Flore 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Flore 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Flore 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Flore 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - Flore 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Wallet - Flore 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Flore 2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Fix ====================== C:\Users\Flore 2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.veehd00.veehd.com_0.localstorage deleted successfully C:\Users\Flore 2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.veehd00.veehd.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://mysearch.avg.com/?cid={5DC7F992-7430-44A7-A5C2-1581723EF851}&mid=eca4229ba3b247cdb93b515072e21465-dbca0b1fcc4c33ef8cb3ae2d2ff67dadefce2fe8&lang=nl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2015-02-23 20:18:45&v=4.1.0.411&pid=wtu&sg=&sap=hp" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{23BC09AE-79EA-4FA5-A623-A32BD2E74558}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {081EC173-9386-42B4-9409-23A0232AD587} Google Url="https://www.google.com/search?q={searchTerms}" {23BC09AE-79EA-4FA5-A623-A32BD2E74558} Bing Url="http://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q={searchTerms}&src=IE-SearchBox" ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE" O4 - HKLM\..\Run: [PWMTRV] rundll32 "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-3829408510-2573632918-2497041444-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-3829408510-2573632918-2497041444-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Global Startup: ThinkPad OneLink Dock Management.lnk = ? O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing) O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe O23 - Service: Lenovo Virtual Camera Controller (LENOVO.TVTVCAM) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: lnvDiscoveryWinSvc - Lenovo - C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe O23 - Service: LSCWinService - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe O23 - Service: Power Manager Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE O23 - Service: Lenovo QuickControl Master Service (QuickControlMasterSvc) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe O23 - Service: Lenovo QuickControl Service (QuickControlService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: ValBioService - Validity Sensors, Inc. - C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe O23 - Service: Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\Windows\system32\valWBFPolicyService.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\flore\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Flore 2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\flore\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Flore 2\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=33 folders=26 100921852 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\flore\AppData\Local\Temp will be emptied at reboot C:\Users\Flore 2\AppData\Local\Temp emptied successfully C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\flore\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\flore\AppData\Local\Packages" not found "C:\PROGRA~2\Free Codec Pack" not found ==== EOF on wo 08/04/2015 at 13:34:02,52 ======================