Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by Aussie on vr 15/05/2015 at 0:47:29,47. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Aussie\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 15/05/2015 0:52:29 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~3\iolo deleted successfully C:\Users\Aussie\AppData\Local\PDFCreator deleted successfully C:\Users\Aussie\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== 7-Zip 9.22 (x64 edition) 8GadgetPack ACID Music Studio 9.0 Adobe Acrobat Reader DC - Nederlands Adobe AIR Adobe Shockwave Player 12.1 Agatha Christie - Death on the Nile Aloha TriPeaks AMD Accelerated Video Transcoding AMD APP SDK Runtime AMD Catalyst Control Center AMD Catalyst Install Manager AMD Fuel Apple Application Support (32-bit) Apple Application Support (64-bit) Audacity 2.1.0 Avast Free Antivirus Bejeweled 3 Build-a-lot: On Vacation Catalyst Control Center - Branding Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner CDBurnerXP Chuzzle Deluxe Classic Shell Cradle Of Egypt Collector's Edition CyberLink Power2Go 8 CyberLink PowerDVD D3DX10 Dropbox DVD Architect Studio 5.0 FATE FDUx86 FileZilla Client 3.10.3 Google Chrome Google Earth Google Update Helper Heroes of Hellas 3: Athens ImgBurn Intel AppUp(R) center Intel(R) Management Engine Components Intel(R) Rapid Storage Technology Intel© Trusted Connect Service Client IrfanView (remove only) Java 8 Update 45 Java 8 Update 45 (64-bit) Java Auto Updater Junk Mail filter update K-Lite Codec Pack 11.1.0 Full KUx86 Luxor HD Mahjongg Artifacts Malwarebytes Anti-Malware versie 2.1.6.1022 Microsoft Application Error Reporting Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 Movie Maker Movie Studio Platinum 12.0 (64-bit) Mozilla Firefox 37.0.2 (x86 nl) Mozilla Maintenance Service MSVCRT MSVCRT Redists MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 Mystery of Mortlake Mansion OpenOffice 4.1.1 Opera Stable 29.0.1795.47 PDFCreator Photo Common Photo Gallery Picasa 3 Plants vs. Zombies - Game of the Year PlayMemories Home Polar Bowler Pop-Up Stopper Free Edition Qualcomm Atheros Bluetooth Suite (64) Realtek High Definition Audio Driver Realtek PCIE Card Reader Restore Shared C Run-time for x64 SkypeT 7.4 Sound Forge Audio Studio 10.0 SSLx64 SSLx86 swMSM Synaptics Pointing Device Driver TeamViewer 10 Update Installer for WildTangent Games App Vacation QuestT - Australia VAIO - Xperia Link VAIO Care VAIO Control Center VAIO CPU Fan Diagnostic VAIO Data Restore Tool VAIO Easy Connect VAIO Gate VAIO Gate Default VAIO Gesture Control VAIO Hardware Diagnostics Plugin for VAIO Care VAIO Image Optimizer VAIO Improvement VAIO Manual VAIO Media Server Settings VAIO Movie Creator VAIO Movie Creator Template Data VAIO Transfer Support VAIO Update VASCO Card Reader Plug-In (64-Bit) VASCO Smart Card Reader Plug-In (User) VCCx64 VCCx86 VGClientX64 VHD Virtual Villagers 5 - New Believers VIx64 VIx86 VLC media player VMLx86 VPMx64 VSSTx64 VSSTx86 VU5x64 VU5x86 VUx64 VUx86 VWSTx86 WildTangent Games Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Mail Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinRAR 5.21 (64-bit) XperiaLinkx86 Youda Jewel Shop ==== Running Processes ====================== C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe C:\WINDOWS\SysWOW64\DllHost.exe C:\Program Files (x86)\Panicware\Pop-Up Stopper Free Edition\PSFree.exe C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files\Sony\VAIO Care\listener.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Users\Aussie\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files\Sony\VAIO Care\VCService.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE ==== Deleting Services ====================== ==== Batch Command(s) Run By Tool====================== C:\WINDOWS\system32\appdata deleted ==== Deleting Files \ Folders ====================== C:\Users\Aussie\AppData\Roaming\pdfforge deleted C:\PROGRA~3\eBay deleted C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\WINDOWS\wininit.ini deleted C:\WINDOWS\SysNative\config\systemprofile\Searches deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8140 MB CPU Info: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz CPU Speed: 2202,2 MHz Sound Card: Speaker/HP (Realtek High Defini | Display Adapters: AMD Radeon HD 7500M/7600M Series | AMD Radeon HD 7500M/7600M Series Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Bluetooth-apparaat (Personal Area Network) | Realtek PCIe GBE Family-controller | Qualcomm Atheros AR9485WB-EG Wireless-netwerkadapter CD / DVD Drives: 1x (D: | ) D: MATSHITABD-CMB UJ160 Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 660,7GB Hard Disks - Free: C: 576,1GB Manufacturer *: Insyde Corp. BIOS Info: AT/AT COMPATIBLE | | Sony - 20121113 Time Zone: Romance (standaardtijd) Motherboard *: Sony Corporation VAIO Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: avast! Antivirus disabled (Outdated) Default Browser: Google Chrome 42.0.2311.152 Internet Explorer Version: 11.0.9600.17801 Mozilla Firefox version: 37.0.2 (x86 nl) Opera Browser version: 29.0.1795.47 Google Chrome version: 42.0.2311.152 Adobe Reader version: 15.7.20033.133275 Sun Java version: 1.8.0_45 (32-bit) Sun Java version: 1.8.0_45 (64-bit) Shockwave Player version: 12.1.8r158 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2015-04-25 17:07:25 2169B4B1EFAA3453A4DA732F1F94C1E1 43112 ----a-w- C:\WINDOWS\avastSS.scr 2015-04-22 16:31:48 7826082B93262AB6460E77B91C61EA30 128512 ----a-w- C:\WINDOWS\splwow64.exe 2015-04-22 16:15:32 C10A66189DC8C090E7C84873EDCEBC88 2501368 ----a-w- C:\WINDOWS\explorer.exe 2015-04-22 15:35:39 81DD33EC695AB90466031CF430CFA1BD 20958 ----a-w- C:\WINDOWS\diagwrn.xml 2015-04-22 15:35:39 81DD33EC695AB90466031CF430CFA1BD 20958 ----a-w- C:\WINDOWS\diagerr.xml 2015-04-22 15:28:32 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\ativpsrm.bin ====== C:\Users\Aussie\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2015-05-12 19:52:31 A8B72561E67739D416C4BB3A62EC7331 102608 ----a-w- C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-05-12 19:37:06 3250046189DF6429ECD93D9B483C62C7 1943040 ----a-w- C:\WINDOWS\SysWOW64\dwmcore.dll 2015-05-12 19:36:53 7C29FBB11679B9B4F08D5AA771DABD90 358912 ----a-w- C:\WINDOWS\SysWOW64\schannel.dll 2015-05-12 19:36:51 96111DD5552A2A1DC02FC090EF80AF2D 324096 ----a-w- C:\WINDOWS\SysWOW64\certcli.dll 2015-05-12 19:36:50 697177C5242095DBDB3A3B52DD27C400 1207296 ----a-w- C:\WINDOWS\SysWOW64\dbghelp.dll 2015-05-12 19:36:50 3C2B9089839D283DD6F91CF5F0748D1D 2985984 ----a-w- C:\WINDOWS\SysWOW64\dbgeng.dll 2015-05-12 19:36:49 F601DD8702FB90928A4069AAF3329D2D 1560576 ----a-w- C:\WINDOWS\SysWOW64\DWrite.dll 2015-05-12 19:36:44 D74445161E58644309F858342F5E265C 19691008 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2015-05-12 19:36:39 0E22CD36FC3292CB812CC46CBCFD8444 12828672 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2015-05-12 19:36:37 6E2B4875B968324E5844F35A37A79260 4305920 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2015-05-12 19:36:35 CB5F450D21B9D76B7F01D006E4AEDB40 1882112 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2015-05-12 19:36:35 C525258A00ECFB4CE089F54C163268C3 2278400 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2015-05-12 19:36:34 F2DB87F164BC13AB8EF90FBF5D866B65 664576 ----a-w- C:\WINDOWS\SysWOW64\jscript.dll 2015-05-12 19:36:34 AA2F2D55DEF98007839D0189D721D70B 1310208 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2015-05-12 19:36:33 F7F090E8B59FEFC50BE6F2A1ABB1ED5D 230400 ----a-w- C:\WINDOWS\SysWOW64\webcheck.dll 2015-05-12 19:36:33 D8CAF4753CD2456C761E6761F2C713EE 128000 ----a-w- C:\WINDOWS\SysWOW64\iepeers.dll 2015-05-12 19:36:33 CFCB89C0FE8EF502A7934C0D20E5DBD6 76288 ----a-w- C:\WINDOWS\SysWOW64\mshtmled.dll 2015-05-12 19:36:33 C2EB0AA5570CF8BC881B36EE55A59337 688640 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2015-05-12 19:36:33 C1A32612710492D0C3339E46EC15E333 504320 ----a-w- C:\WINDOWS\SysWOW64\vbscript.dll 2015-05-12 19:36:33 8004E2E3D4DFEE81D6E102C537568AEC 327168 ----a-w- C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-05-12 19:36:33 7B4FA4B41FBDBB12C5038FCB6E6652AA 285696 ----a-w- C:\WINDOWS\SysWOW64\dxtrans.dll 2015-05-12 19:36:33 63A2E3E9C771B1D4D7D84942D6FCB661 710144 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2015-05-12 19:36:33 48143005C6FCE6D252162EE371532063 880128 ----a-w- C:\WINDOWS\SysWOW64\inetcomm.dll 2015-05-12 19:36:33 136687227F11CE928CB05F4FD90319AC 2052608 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-05-12 19:36:33 07E82A31808C8BC053D1DE547082C58F 341504 ----a-w- C:\WINDOWS\SysWOW64\html.iec ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2015-05-13 14:35:34 9703EC57F5BBB94F89CA80A5D0C12221 1429504 ----a-w- C:\WINDOWS\Sysnative\diagtrack.dll 2015-05-13 14:35:34 4C0E8295772A78291A0E256882A0D0E2 36864 ----a-w- C:\WINDOWS\Sysnative\UtcResources.dll 2015-05-12 19:52:31 5461373AB510F4C22CE61EB7965BE8F2 124112 ----a-w- C:\WINDOWS\Sysnative\PresentationCFFRasterizerNative_v0300.dll 2015-05-12 19:37:07 3DB29814EA5A2091425200B58E25BA15 2256896 ----a-w- C:\WINDOWS\Sysnative\dwmcore.dll 2015-05-12 19:36:53 9D17F78BB04A3EF67426AFD087660188 410017 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml 2015-05-12 19:36:53 62E3FCC2789CA52AA8A59122FDFCE26E 429568 ----a-w- C:\WINDOWS\Sysnative\schannel.dll 2015-05-12 19:36:51 CBB2FE432D81825C174A65DCE538A610 1441792 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2015-05-12 19:36:51 2DDC7AE2C753033E5EC95F3358358043 445440 ----a-w- C:\WINDOWS\Sysnative\certcli.dll 2015-05-12 19:36:50 E0C7813A97CA7947FF5C18A8F3B61A45 410128 ----a-w- C:\WINDOWS\Sysnative\services.exe 2015-05-12 19:36:50 48CC2698381AA1F6FBE0D78507281B40 4417536 ----a-w- C:\WINDOWS\Sysnative\dbgeng.dll 2015-05-12 19:36:50 161156327265FB02A820506B98DA7A07 1491456 ----a-w- C:\WINDOWS\Sysnative\dbghelp.dll 2015-05-12 19:36:49 7719BBE3BDA2171FF0955171D9460D26 4180480 ----a-w- C:\WINDOWS\Sysnative\win32k.sys 2015-05-12 19:36:49 6C068E7207F183FF3647E45D2599E80C 1387008 ----a-w- C:\WINDOWS\Sysnative\FntCache.dll 2015-05-12 19:36:49 4829F2EFACF23F63D6D85B7F1084FB70 1996800 ----a-w- C:\WINDOWS\Sysnative\DWrite.dll 2015-05-12 19:36:45 C31D57F7A58FACDA2671075CEBA75199 24971776 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2015-05-12 19:36:41 E061B5A1D0F9BBACA41149201ADF4A3B 14401536 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2015-05-12 19:36:38 79A4C71CD8B610DE9F66B72B5654C450 6025728 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2015-05-12 19:36:37 F0289B3A341429117696F0279DA977B6 2352128 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2015-05-12 19:36:36 843D063E75B19188759CBEC82828BCB1 2885120 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2015-05-12 19:36:34 ED4EB5A0CDD251A17B946C515CB94D70 1547264 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2015-05-12 19:36:34 63061A0826839DE8F5B4713976C99F1B 816640 ----a-w- C:\WINDOWS\Sysnative\jscript.dll 2015-05-12 19:36:33 F918BE3C5ACA0B6485D725CC1A5348DC 2125824 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2015-05-12 19:36:33 EB9FCD39D65E23380CB2C2F0E6F2ED53 316928 ----a-w- C:\WINDOWS\Sysnative\dxtrans.dll 2015-05-12 19:36:33 E20B5098C8707B2CF0858024568234FF 801280 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2015-05-12 19:36:33 C1D6BD834E69E8F77C8B4DDFCEE073F6 417792 ----a-w- C:\WINDOWS\Sysnative\html.iec 2015-05-12 19:36:33 B85ECB91C88F6E74045061B7F7DDEFA2 584192 ----a-w- C:\WINDOWS\Sysnative\vbscript.dll 2015-05-12 19:36:33 AB8DF81AC1BF4546C3102469B840009E 145408 ----a-w- C:\WINDOWS\Sysnative\iepeers.dll 2015-05-12 19:36:33 8541124139D68239B1EDE3E490367A6C 107520 ----a-w- C:\WINDOWS\Sysnative\inseng.dll 2015-05-12 19:36:33 673582881DAC4B27E9368BC8834507DD 374272 ----a-w- C:\WINDOWS\Sysnative\iedkcs32.dll 2015-05-12 19:36:33 5EDC6AF7589B65C89CB1154B3377D0C4 720384 ----a-w- C:\WINDOWS\Sysnative\ie4uinit.exe 2015-05-12 19:36:33 49B1935F131A44CD29857D6900CB643F 800768 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2015-05-12 19:36:33 1D610F215769E4FF56C7B1847DE4B86D 633856 ----a-w- C:\WINDOWS\Sysnative\ieui.dll 2015-05-12 19:36:33 1921A72BF1273BED72E569EF1F1A0611 92160 ----a-w- C:\WINDOWS\Sysnative\mshtmled.dll 2015-05-12 19:36:33 14673D16D433373898FE3006C5A01157 1032704 ----a-w- C:\WINDOWS\Sysnative\inetcomm.dll 2015-05-12 19:36:33 0D2B130C7B5BCEC85D7A789A4338F9B7 262144 ----a-w- C:\WINDOWS\Sysnative\webcheck.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2015-05-12 19:36:54 FE14D249D39368CA62D8DA6BC94AC694 80384 ----a-w- C:\WINDOWS\Sysnative\drivers\ahcache.sys 2015-05-12 19:36:51 5E5AB950693F2C6D6ACBEE3A74697ED7 561928 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2015-05-07 18:55:19 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2015-04-30 07:24:48 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_WUDFUsbccidDriver_01_11_00.Wdf 2015-04-25 18:45:01 E9CD058C79EA15B4AA93E259FA713B07 136408 ----a-w- C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys 2015-04-25 17:07:35 B5B4C90E9F52DA8586F1E5461AD90A5D 29168 ----a-w- C:\WINDOWS\Sysnative\drivers\aswHwid.sys 2015-04-25 17:07:35 B1368BE5F6BA529E0886F4DA2361BD2D 442264 ----a-w- C:\WINDOWS\Sysnative\drivers\aswSP.sys 2015-04-25 17:07:35 91782404718C6352C26B3242BAC3F0F1 272248 ----a-w- C:\WINDOWS\Sysnative\drivers\aswVmm.sys 2015-04-25 17:07:35 6E53278ECCFFBC2ACC2A5006745ED4BB 137288 ----a-w- C:\WINDOWS\Sysnative\drivers\aswStm.sys 2015-04-25 17:07:35 6D37D8DB30D086739507C5F6E542656A 93528 ----a-w- C:\WINDOWS\Sysnative\drivers\aswRdr2.sys 2015-04-25 17:07:35 3B4AC2DBFC86F7247C1FF1FAF2860530 1047320 ----a-w- C:\WINDOWS\Sysnative\drivers\aswSnx.sys 2015-04-25 17:07:35 300CB8E510855189CAD0B72FFB5590CB 89944 ----a-w- C:\WINDOWS\Sysnative\drivers\aswMonFlt.sys 2015-04-25 17:07:35 07E32DFCA422A2920482D762D01957EC 65736 ----a-w- C:\WINDOWS\Sysnative\drivers\aswRvrt.sys 2015-04-25 17:05:35 C85D13A4C918CB2BD9C461BB5BF068CB 107736 ----a-w- C:\WINDOWS\Sysnative\drivers\mbamchameleon.sys 2015-04-25 17:05:35 8E9027FC3F65F41B9607D02D608FCFCD 25816 ----a-w- C:\WINDOWS\Sysnative\drivers\mbam.sys 2015-04-25 17:05:35 451F099000928C9B1E6AD3A0548C007C 64216 ----a-w- C:\WINDOWS\Sysnative\drivers\mwac.sys 2015-04-22 16:47:42 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_WpdFs_01_11_00.Wdf 2015-04-22 16:34:13 B8F36CBC72FC5C8B8A30AD850165EA8E 72192 ----a-w- C:\WINDOWS\Sysnative\drivers\ndproxy.sys 2015-04-22 16:34:13 23006D660C0E54BF1CE8253E15F5E995 80896 ----a-w- C:\WINDOWS\Sysnative\drivers\wanarp.sys 2015-04-22 16:32:42 95B0179BDA907252025DEEA183699FB3 467776 -c--a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2015-04-22 16:32:42 272A62B660A48AEF366F8A1836CED19F 57856 -c--a-w- C:\WINDOWS\Sysnative\drivers\bthhfenum.sys 2015-04-22 16:32:18 C61EAF8E1E4B2F62BA4FDF457440B2C6 316416 ----a-w- C:\WINDOWS\Sysnative\drivers\udfs.sys 2015-04-22 16:32:03 C54B6B2170BF628FD42F799A66956D75 239424 -c--a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2015-04-22 16:32:03 95E295FD19F80B3AD33629B5AEFEC9C7 154432 -c--a-w- C:\WINDOWS\Sysnative\drivers\dumpsd.sys 2015-04-22 16:31:51 7EC9376D245D734791AD46738712E7D8 473408 ----a-w- C:\WINDOWS\Sysnative\drivers\netio.sys 2015-04-22 16:31:50 F6ECFD6128A16A4851CFE98D4E01B011 551232 -c--a-w- C:\WINDOWS\Sysnative\drivers\vhdmp.sys 2015-04-22 16:31:50 ED54A75050211DC77F9B98C41E026858 86336 ----a-w- C:\WINDOWS\Sysnative\drivers\pdc.sys 2015-04-22 16:31:50 AD7F69237480F6CB6294EFD9EE4CD04C 428864 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2015-04-22 16:31:50 7AA01AB1C110916825E6E1389F1B9AF2 39744 -c--a-w- C:\WINDOWS\Sysnative\drivers\intelpep.sys 2015-04-22 16:31:50 715ABA3DD164D06457A2A3C92F6EA9D5 136512 ----a-w- C:\WINDOWS\Sysnative\drivers\wfplwfs.sys 2015-04-22 16:31:50 5917AFE4A3F695A54B99C1849C8207FE 59712 -c--a-w- C:\WINDOWS\Sysnative\drivers\kbdclass.sys 2015-04-22 16:31:50 49EE0AE9E5B64FFBBD06D55C4984B598 108544 -c--a-w- C:\WINDOWS\Sysnative\drivers\i8042prt.sys 2015-04-22 16:31:50 3C2DF97A21A9BBE6355B0A51F288EFFF 2485056 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2015-04-22 16:31:50 389C998C64319CD97625B0550E52ECFA 58176 ----a-w- C:\WINDOWS\Sysnative\drivers\dam.sys 2015-04-22 16:31:50 1BD3022FD6E450B00DE560265638FD2A 112640 ----a-w- C:\WINDOWS\Sysnative\drivers\rasl2tp.sys 2015-04-22 16:31:50 08374E4E5B8914DE6067CBA99F61E930 51008 -c--a-w- C:\WINDOWS\Sysnative\drivers\mouclass.sys 2015-04-22 16:31:49 DC1D9F692C2AD84C214584C28501C1F7 24576 ----a-w- C:\WINDOWS\Sysnative\drivers\ndistapi.sys 2015-04-22 16:31:49 8CD840A062F6BDF41DDE3ACB96164B72 32256 -c--a-w- C:\WINDOWS\Sysnative\drivers\kbdhid.sys 2015-04-22 16:31:49 5FCBAB60598AE119E02B4C27DE6B99EA 30208 -c--a-w- C:\WINDOWS\Sysnative\drivers\mouhid.sys 2015-04-22 16:31:49 3EE5097945A7F680E320953271EB2D4F 96768 ----a-w- C:\WINDOWS\Sysnative\drivers\agilevpn.sys 2015-04-22 16:31:49 148195AE95D9BC7375A08846439FDAC1 26112 -c--a-w- C:\WINDOWS\Sysnative\drivers\sermouse.sys 2015-04-22 16:20:51 6D3A2565E01B3E4B0F1BEDB0D4B00B3F 1113920 ----a-w- C:\WINDOWS\Sysnative\drivers\ndis.sys 2015-04-22 16:20:27 D296D0F0DB2CD1504F90405603664493 264000 ----a-w- C:\WINDOWS\Sysnative\drivers\WdFilter.sys 2015-04-22 16:20:27 1751F6B031ADAC34724511057D2E455D 44024 ----a-w- C:\WINDOWS\Sysnative\drivers\WdBoot.sys 2015-04-22 16:20:26 9F4DF0043965808973023A9B51A11136 114496 ----a-w- C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys 2015-04-22 16:20:02 8EB7E70C2D348FE2476A2E3F2D585E3D 377152 ----a-w- C:\WINDOWS\Sysnative\drivers\clfs.sys 2015-04-22 16:19:43 DC66AE45816614D2999DCD3834DCCC4E 167424 -c--a-w- C:\WINDOWS\Sysnative\drivers\rfcomm.sys 2015-04-22 16:19:43 42F88B57CAE42FC10059C887B3FCFCEA 97792 -c--a-w- C:\WINDOWS\Sysnative\drivers\hidbth.sys 2015-04-22 16:19:27 15C8C65CEA018C02EA0F648448C491C5 177984 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecpkg.sys 2015-04-22 16:18:08 DB32958F0E704EFBF7F15161A569E39F 140800 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxdav.sys 2015-04-22 16:15:17 E87A6D3B8FECD5B93BC0CFBB48C27970 991552 ----a-w- C:\WINDOWS\Sysnative\drivers\http.sys 2015-04-22 15:28:10 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_SynTP_01009.Wdf 2015-04-22 15:27:57 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf ====== C:\WINDOWS\Tasks ====== 2015-04-25 17:07:46 BE8F806AC05CFF604373A980C57BEA4E 4182 ----a-w- C:\WINDOWS\Sysnative\Tasks\avast! Emergency Update 2015-04-25 17:06:25 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\Safer-Networking 2015-04-25 16:56:39 8A32C06BB3E70A9EF21185988A073841 3836 ----a-w- C:\WINDOWS\Sysnative\Tasks\Opera scheduled Autoupdate 1429980994 2015-04-23 11:14:35 9FB0255CF42D7B1DA246725E9260B050 3974 ----a-w- C:\WINDOWS\Sysnative\Tasks\User_Feed_Synchronization-{720B74A6-8B19-4526-BA84-A8945587A6B5} 2015-04-22 16:54:41 B63AD96D5AB77552EFDB7D2277C3B0CB 3886 ----a-w- C:\WINDOWS\Sysnative\Tasks\Adobe Acrobat Update Task 2015-04-22 16:53:27 89024B99A2704C87929AD5775769392C 3688 ----a-w- C:\WINDOWS\Sysnative\Tasks\klcp_update 2015-04-22 16:49:15 789494304963E65D9097D157A775B961 1088 ----a-w- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-04-22 16:49:15 73419A2CA83AEC919F44979BDFCAF8C4 4060 ----a-w- C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineUA 2015-04-22 16:49:12 F68FD75603ACE35A20414697EFE29B0F 3824 ----a-w- C:\WINDOWS\Sysnative\Tasks\GoogleUpdateTaskMachineCore 2015-04-22 16:49:12 1152A0294A2B60E2A03AF86B94623981 1084 ----a-w- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-04-22 15:28:10 792BD9CB14BDC0BFB85726D9DC977D2E 264 ----a-w- C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job 2015-04-22 10:04:12 D0CFF99D4FCD315B2A9C0E10B4FFBD30 3596 ----a-w- C:\WINDOWS\Sysnative\Tasks\Optimize Start Menu Cache Files-S-1-5-21-125574248-3282426005-3658786651-1001 2015-04-22 09:58:45 -------- d-----w- C:\WINDOWS\Sysnative\Tasks\WPD ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2015-05-11 10:28:31 -------- d-----w- C:\Program Files\7-Zip 2015-05-05 20:54:41 -------- d-----w- C:\Program Files\trend micro 2015-04-25 17:04:59 -------- d-----w- C:\Program Files\PDFCreator 2015-04-25 17:04:54 -------- d-----w- C:\Program Files\CDBurnerXP 2015-04-25 17:04:29 -------- d-----w- C:\Program Files\Common Files\Apple 2015-04-24 12:06:04 -------- d-----w- C:\Program Files\Windows Live 2015-04-22 16:52:33 -------- d-----w- C:\Program Files\VideoLAN 2015-04-22 16:51:53 -------- d-----w- C:\Program Files\Classic Shell 2015-04-22 16:51:52 -------- d-----w- C:\Program Files\WinRAR 2015-04-22 16:51:04 -------- d-----w- C:\Program Files\Java 2015-04-22 16:38:53 -------- d-----w- C:\Program Files\Common Files\Atheros 2015-04-22 16:13:10 -------- d-----w- C:\Program Files\Reference Assemblies 2015-04-22 16:13:10 -------- d-----w- C:\Program Files\MSBuild 2015-04-22 15:29:40 -------- d-----w- C:\Program Files\ATI Technologies 2015-04-22 15:28:19 -------- d-----w- C:\Program Files\AMD 2015-04-22 15:27:56 -------- d-----w- C:\Program Files\Synaptics 2015-04-22 15:27:48 -------- d-----w- C:\Program Files\Realtek ======= C:\PROGRA~2 ===== 2015-05-02 19:51:27 -------- d-----w- C:\PROGRA~2\Panicware 2015-04-25 17:04:18 -------- d-----w- C:\PROGRA~2\COMMON~1\Apple 2015-04-25 17:02:55 -------- d-----w- C:\PROGRA~2\OpenOffice 4 2015-04-25 16:58:44 -------- d-----w- C:\PROGRA~2\Audacity 2015-04-25 16:57:39 -------- d-----w- C:\PROGRA~2\FileZilla FTP Client 2015-04-25 16:57:18 -------- d-----w- C:\PROGRA~2\ImgBurn 2015-04-25 16:57:16 -------- d-----w- C:\PROGRA~2\IrfanView 2015-04-25 16:57:09 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service 2015-04-25 16:56:27 -------- d-----w- C:\PROGRA~2\Opera 2015-04-24 12:06:28 -------- d-----w- C:\PROGRA~2\Microsoft SQL Server Compact Edition 2015-04-24 12:05:55 -------- d-----w- C:\PROGRA~2\Windows Live 2015-04-24 12:03:22 -------- d-----w- C:\PROGRA~2\COMMON~1\Windows Live 2015-04-22 16:54:17 -------- d-----w- C:\PROGRA~2\COMMON~1\Adobe 2015-04-22 16:53:30 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype 2015-04-22 16:53:30 -------- d-----r- C:\PROGRA~2\Skype 2015-04-22 16:53:14 -------- d-----w- C:\PROGRA~2\K-Lite Codec Pack 2015-04-22 16:52:05 -------- d-----w- C:\PROGRA~2\TeamViewer 2015-04-22 16:50:57 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2015-04-22 16:50:03 -------- d-----w- C:\PROGRA~2\Java 2015-04-22 16:49:53 -------- d-----w- C:\PROGRA~2\COMMON~1\Adobe AIR 2015-04-22 16:49:08 -------- d-----w- C:\PROGRA~2\Google 2015-04-22 16:13:11 -------- d-----w- C:\PROGRA~2\Reference Assemblies 2015-04-22 16:13:10 -------- d-----w- C:\PROGRA~2\MSBuild 2015-04-22 15:29:19 -------- d-----w- C:\PROGRA~2\ATI Technologies ======= C: ===== 2015-04-21 20:16:50 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Recovery.txt ====== C:\Users\Aussie\AppData\Roaming ====== 2015-05-02 19:51:28 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Panicware 2015-04-30 07:24:16 -------- d-----w- C:\Users\Aussie\AppData\Roaming\VASCO 2015-04-30 07:24:11 -------- d-----w- C:\Users\Aussie\AppData\Local\Package Cache 2015-04-26 05:31:07 -------- d-----w- C:\Users\Aussie\AppData\Local\Clipboarder 2015-04-26 05:30:55 -------- d-----w- C:\Users\Aussie\AppData\Local\Sidebar7 2015-04-26 05:26:40 -------- d-----w- C:\Users\Aussie\AppData\Local\CrashDumps 2015-04-26 05:20:33 -------- d-----w- C:\Users\Aussie\AppData\Roaming\OpenOffice 2015-04-25 17:34:54 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Programs 2015-04-25 17:04:57 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Canneverbe Limited 2015-04-25 16:59:21 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Dropbox 2015-04-25 16:57:18 -------- d-----w- C:\Users\Aussie\AppData\Roaming\IrfanView 2015-04-24 12:09:45 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Windows Live Writer 2015-04-24 12:09:45 -------- d-----w- C:\Users\Aussie\AppData\Local\Windows Live Writer 2015-04-24 12:03:57 -------- d-----w- C:\Users\Aussie\AppData\Local\Windows Live 2015-04-23 11:25:29 -------- d-s---w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Locallow\Microsoft 2015-04-23 11:16:26 -------- d-----w- C:\Users\Aussie\AppData\Local\ClassicShell 2015-04-23 11:16:04 -------- d-----w- C:\Users\Aussie\AppData\Roaming\vlc 2015-04-23 11:14:35 -------- d-sh--w- C:\Users\Aussie\AppData\Locallow\EmieUserList 2015-04-23 11:14:35 -------- d-sh--w- C:\Users\Aussie\AppData\Locallow\EmieBrowserModeList 2015-04-23 11:14:34 -------- d-sh--w- C:\Users\Aussie\AppData\Locallow\EmieSiteList 2015-04-23 11:14:34 -------- d-sh--w- C:\Users\Aussie\AppData\Local\EmieUserList 2015-04-23 11:14:34 -------- d-sh--w- C:\Users\Aussie\AppData\Local\EmieSiteList 2015-04-23 11:14:34 -------- d-sh--w- C:\Users\Aussie\AppData\Local\EmieBrowserModeList 2015-04-23 11:12:11 -------- d-----w- C:\Users\Aussie\AppData\Roaming\MPC-HC 2015-04-23 11:10:03 -------- d-----w- C:\Users\Aussie\AppData\Locallow\Adobe 2015-04-23 08:04:44 -------- d-----w- C:\Users\Aussie\AppData\Local\Skype 2015-04-23 08:04:30 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Skype 2015-04-22 16:53:13 -------- d-----w- C:\Users\Aussie\AppData\Local\Programs 2015-04-22 16:52:07 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Sony Corporation 2015-04-22 16:51:53 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-04-22 16:50:56 -------- d-----w- C:\Users\Aussie\AppData\Locallow\Oracle 2015-04-22 16:50:01 -------- d-----w- C:\Users\Aussie\AppData\Locallow\Sun 2015-04-22 16:49:51 -------- d-----w- C:\Users\Aussie\AppData\Local\Adobe 2015-04-22 16:49:34 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft 2015-04-22 16:49:08 -------- d-----w- C:\Users\Aussie\AppData\Local\Google 2015-04-22 16:01:59 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Identities 2015-04-22 15:51:05 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming\Adobe 2015-04-22 15:44:49 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Sony Corporation 2015-04-22 15:44:37 -------- d-s---w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Roaming\Microsoft 2015-04-22 15:35:48 -------- d-s---w- C:\Users\Aussie\AppData\Roaming\Microsoft 2015-04-22 15:35:48 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-04-22 15:35:48 -------- d-----w- C:\Users\Aussie\AppData\Local\Temp 2015-04-22 15:35:48 -------- d-----w- C:\Users\Aussie\AppData\Local\Microsoft 2015-04-22 15:35:48 -------- d-----r- C:\Users\Aussie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-04-22 15:35:48 -------- d-----r- C:\Users\Aussie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-04-22 15:35:48 -------- d-----r- C:\Users\Aussie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-04-22 15:29:00 -------- d-s---w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Locallow\Microsoft 2015-04-22 15:29:00 -------- d-s---w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Locallow\Microsoft 2015-04-22 15:28:33 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft 2015-04-22 11:44:57 -------- d-s---w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Locallow\Microsoft 2015-04-22 10:22:45 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\PnrpSqm 2015-04-22 10:02:32 -------- d-----w- C:\Users\Aussie\AppData\Local\Sony Corporation 2015-04-22 10:00:48 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking 2015-04-22 10:00:04 -------- d-----w- C:\Users\Aussie\AppData\Roaming\ATI 2015-04-22 10:00:04 -------- d-----w- C:\Users\Aussie\AppData\Local\ATI 2015-04-22 09:59:22 -------- d-----w- C:\Users\Aussie\AppData\Local\BMExplorer 2015-04-22 09:59:04 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Atheros 2015-04-22 09:58:37 -------- d-----r- C:\Users\Aussie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2015-04-22 09:58:37 -------- d-----r- C:\Users\Aussie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2015-04-22 09:58:32 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Adobe 2015-04-22 09:58:26 -------- d-----w- C:\Users\Aussie\AppData\Roaming\Sony Corporation 2015-04-22 09:57:32 -------- d-----w- C:\Users\Aussie\AppData\Local\Packages 2015-04-22 09:05:56 -------- d-s---w- C:\Users\Aussie\AppData\Locallow\Microsoft ====== C:\Users\Aussie ====== 2015-05-14 22:35:07 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp 2015-05-11 10:28:31 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2015-05-05 20:59:49 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Aussie\Desktop\RSITx64.exe 2015-05-05 20:59:23 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Aussie\Downloads\RSITx64 (2).exe 2015-05-05 20:54:31 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Aussie\Downloads\RSITx64 (1).exe 2015-05-05 20:35:22 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Aussie\Downloads\RSITx64.exe 2015-05-02 19:51:28 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panicware 2015-05-02 19:51:12 7FA3C50D3FFB37BB0E0CF3172E1AB4C4 523976 ----a-w- C:\Users\Aussie\Downloads\PopUpStopperFree_3.1.1014.exe 2015-04-26 05:30:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\8GadgetPack 2015-04-25 17:05:04 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2015-04-25 17:04:18 -------- d-----w- C:\ProgramData\Apple 2015-04-25 17:03:53 -------- d-s---w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2015-04-25 16:58:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 2015-04-25 16:57:42 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2015-04-25 16:57:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn 2015-04-25 16:57:17 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView 2015-04-25 16:57:10 -------- d-----w- C:\ProgramData\Mozilla 2015-04-24 12:06:45 -------- d-----r- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live 2015-04-22 16:53:30 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-04-22 16:53:28 -------- d-----w- C:\ProgramData\Skype 2015-04-22 16:53:22 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2015-04-22 16:53:12 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-04-22 16:51:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell 2015-04-22 16:51:53 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-04-22 16:50:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-04-22 16:50:05 -------- d-----w- C:\ProgramData\Oracle 2015-04-22 16:49:34 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-04-22 16:01:41 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Aussie\ntuser.ini 2015-04-22 15:35:48 -------- d--h--w- C:\Users\Aussie\AppData 2015-04-22 15:35:48 -------- d-----r- C:\Users\Aussie\Favorites 2015-04-22 15:35:48 -------- d-----r- C:\Users\Aussie\Documents 2015-04-22 15:35:48 -------- d-----r- C:\Users\Aussie\Desktop 2015-04-22 15:29:44 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2015-04-22 09:58:37 -------- d-----r- C:\Users\Aussie\Searches 2015-04-22 09:58:37 -------- d-----r- C:\Users\Aussie\Contacts 2015-04-22 09:57:29 -------- d-----r- C:\Users\Aussie\Videos 2015-04-22 09:57:29 -------- d-----r- C:\Users\Aussie\Saved Games 2015-04-22 09:57:29 -------- d-----r- C:\Users\Aussie\Pictures 2015-04-22 09:57:29 -------- d-----r- C:\Users\Aussie\Music 2015-04-22 09:57:29 -------- d-----r- C:\Users\Aussie\Links 2015-04-22 09:57:29 -------- d-----r- C:\Users\Aussie\Downloads 2015-04-21 20:18:10 -------- d--h--r- C:\Users\Public\AccountPictures ====== C: exe-files == 2015-05-14 22:55:51 D308FEE17FBACB94C2E27067AE2C57A6 1044048 ----a-w- C:\Program Files (x86)\Google\Update\Install\{AC66F5DF-C615-452D-BD17-02880FF41E6C}\42.0.2311.152_42.0.2311.135_chrome_updater.exe 2015-05-14 22:55:51 D308FEE17FBACB94C2E27067AE2C57A6 1044048 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\42.0.2311.152\42.0.2311.152_42.0.2311.135_chrome_updater.exe 2015-05-12 19:36:50 E0C7813A97CA7947FF5C18A8F3B61A45 410128 ----a-w- C:\Windows\System32\services.exe 2015-05-12 19:36:33 5EDC6AF7589B65C89CB1154B3377D0C4 720384 ----a-w- C:\Windows\System32\ie4uinit.exe 2015-05-12 19:36:18 3E4D0668C6E0AFD10AFF52C134AC3CC8 2138112 ----a-w- C:\Program Files\Windows Journal\Journal.exe === C: other files == 2015-05-12 19:36:54 FE14D249D39368CA62D8DA6BC94AC694 80384 ----a-w- C:\Windows\System32\drivers\ahcache.sys 2015-05-12 19:36:51 5E5AB950693F2C6D6ACBEE3A74697ED7 561928 ----a-w- C:\Windows\System32\drivers\cng.sys 2015-05-12 19:36:49 7719BBE3BDA2171FF0955171D9460D26 4180480 ----a-w- C:\Windows\System32\win32k.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-125574248-3282426005-3658786651-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "PopUpStopperFreeEdition"="C:\Program Files (x86)\Panicware\Pop-Up Stopper Free Edition\PSFree.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "ISBMgr.exe"="C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" "PMBVolumeWatcher"="C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe" "BDRegion"="c:\Program Files (x86)\Cyberlink\Shared files\brs.exe" "Intel AppUp(R) center"="C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "PopUpStopperFreeEdition"="C:\Program Files (x86)\Panicware\Pop-Up Stopper Free Edition\PSFree.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SONYAPO " "BtTray"="C:\Program Files (x86)\Bluetooth Suite\BtTray.exe" "BtvStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" "Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CLKMSVC10_9EC60124] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\GamesAppService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TeamViewer] ==== Startup Folders ====================== 2015-05-14 22:35:32 1037 ----a-w- C:\Users\Aussie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar485.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22/04/2015 18:49] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22/04/2015 18:49] C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job --a-------- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [23/10/2012 03:39] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\CLVDLauncher" [C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\klcp_update" ["C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe"] "C:\WINDOWS\SysNative\tasks\Opera scheduled Autoupdate 1429980994" [C:\Program Files (x86)\Opera\launcher.exe] "C:\WINDOWS\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{720B74A6-8B19-4526-BA84-A8945587A6B5}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VHDInformationCheck" ["%ProgramFiles(x86)%\Sony\VAIO Recovery\plugins\InformationCheck.exe"] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Care\CRMReminder" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Care\VAIO Care" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Care\VCCheckIolo" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Care\VCMetrics" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Care\VCOneClick" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Care\VCSelfHeal" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Control Center\Level4Daily" [C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Control Center\Level4Month" [C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem" [C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser" [C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start" [C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Gate\VAIO Gate" [C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask" [C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader" [C:\Program Files\Sony\VAIO Improvement\viuploader.exe] "C:\WINDOWS\SysNative\tasks\Sony Corporation\VAIO Update\VAIO Update" ["C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe"] "C:\WINDOWS\SysNative\tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start" [C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [25/04/2015 19:07] ==== Chromium Look ====================== Google Chrome Version: 42.0.2311.152 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx[25/04/2015 19:07] gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[25/04/2015 19:07] Google Slides - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Bookmark Manager - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik Avast Online Security - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Google Wallet - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Aussie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\Aussie\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "https://www.google.be/", "startup_urls": [ "https://www.google.be/" ] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/webhp?hl=nl&gws_rd=ssl" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/webhp?hl=nl&gws_rd=ssl" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{69FC9567-91FA-4D91-9307-1D49B6D53134}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found" {69FC9567-91FA-4D91-9307-1D49B6D53134} Bing Url="http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-125574248-3282426005-3658786651-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe O4 - HKLM\..\Run: [BDRegion] c:\Program Files (x86)\Cyberlink\Shared files\brs.exe O4 - HKLM\..\Run: [Intel AppUp(R) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4 O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\Program Files (x86)\Panicware\Pop-Up Stopper Free Edition\PSFree.exe" O4 - Startup: Sidebar485.lnk = C:\Program Files\Windows Sidebar\sidebar.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NetworkSupport - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: VAIO Care Performance Service (SampleCollector) - Unknown owner - C:\Program Files\Sony\VAIO Care\VCPerfService.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: VAIO Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe O23 - Service: VAIO Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe O23 - Service: VAIO Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe O23 - Service: VCService - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCService.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update\VUAgent.exe O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Aussie\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Aussie\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Aussie\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Aussie\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Aussie\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=22 folders=20 15104718 bytes) ==== Empty Temp Folders ====================== C:\Users\Aussie\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Aussie\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on vr 15/05/2015 at 8:52:55,06 ======================