Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by Mike on do 07-04-2016 at 12:23:21,01. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Mike\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 7-4-2016 12:24:51 Zoek.exe System Restore Point Created Successfully. ==== Reset Hosts File ====================== # Copyright (c) 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host 127.0.0.1 localhost ==== Empty Folders Check ====================== C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\Users\Mike\AppData\Local\ActiveSync deleted successfully C:\Users\Mike\AppData\Local\LogMeIn Rescue Applet deleted successfully C:\Users\Mike\AppData\Local\NetworkTiles deleted successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== ęTorrent ASUS GIFTBOX Desktop ASUS HiPost ASUS Live Update ASUS Smart Gesture ASUS Splendid Video Enhancement Technology ASUS USB Charger Plus ATK Package AudioWizard AVG AVG 2016 AVG Protection CCleaner CyberLink PhotoDirector 5 CyberLink PowerDirector 12 DAEMON Tools Lite Device Setup Dropbox 25 GB FMW 1 Google Chrome Google Update Helper Gyazo 3.2.1 Intel Collaborative Processor Performance Control Intel(R) Chipset Device Software Intel(R) Dynamic Platform and Thermal Framework Intel(R) Management Engine Components Intel(R) ME UninstallLegacy Intel(R) Processor Graphics Intel© Security Assist Intel© Trusted Connect Service Client Java 8 Update 77 Java Auto Updater Microsoft Office 365 ProPlus - nl-nl Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 mIRC Office 16 Click-to-Run Extensibility Component Office 16 Click-to-Run Licensing Component Office 16 Click-to-Run Localization Component Qualcomm Atheros Client Installation Program R for Windows 3.2.4 Revised Realtek Card Reader Realtek Ethernet Controller Driver Realtek High Definition Audio Driver RuneScape Launcher 1.2.7 TeamSpeak 3 Client Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables VLC media player WebStorage Windows-stuurprogrammapakket - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) WinFlash WPS Office for ASUS ==== Running Processes ====================== C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe C:\Program Files (x86)\ASUS\Splendid\ACMON.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files (x86)\mIRC\mirc.exe C:\Users\Mike\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\Gyazo\GyStation.exe C:\Program Files (x86)\AVG\Framework\Common\avguix.exe C:\Program Files (x86)\AVG\Av\avgui.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Users\Mike\jagexcache\jagexlauncher\bin\JagexLauncher.exe C:\WINDOWS\SysWOW64\ctfmon.exe C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe C:\Users\Mike\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\ProgramData\McAfee deleted C:\Program Files (x86)\McAfee deleted C:\PROGRA~2\Sports Interactive deleted C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted "C:\PROGRA~3\Kingsoft\office6\mtfont\mtextra.ttf" deleted "C:\PROGRA~3\Kingsoft" not deleted "C:\PROGRA~3\Kingsoft\office6" not deleted "C:\PROGRA~3\Kingsoft\office6\mtfont" not deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 4005 MB CPU Info: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz CPU Speed: 1703,9 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics Family | Intel(R) HD Graphics Family | Intel(R) HD Graphics Family Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Qualcomm Atheros AR9485 Wireless Network Adapter | Realtek PCIe GBE Family Controller | Microsoft Wi-Fi Direct Virtual Adapter CD / DVD Drives: 6x (D: | E: | F: | H: | I: | J: | ) D: HL-DT-STDVDRAM GUE1N | E: DiscSoftVirtual | F: DiscSoftVirtual | H: DiscSoftVirtual | I: DiscSoftVirtual | J: DiscSoftVirtual Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 8 Button Wheel Mouse Present Hard Disks: C: 118,5GB Hard Disks - Free: C: 43,2GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | _ASUS_ - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: ASUSTeK COMPUTER INC. X555LAB Country: Nederland Language: NLD ==== System Specs (Software) ====================== Internet Explorer Version: 11.162.10586.0 Google Chrome version: 49.0.2623.110 Sun Java version: 1.8.0_77 (32-bit) Sun Java version: 1.8.0_77 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2016-03-22 03:23:34 582A523E7FCD8AD148216F0A51298DAB 67584 --s-a-w- C:\WINDOWS\bootstat.dat 2016-03-22 03:17:06 95D730526EF81792CD6848D8D10FAA1C 4502352 ----a-w- C:\WINDOWS\explorer.exe ====== C:\Users\Mike\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2016-03-30 13:35:58 6FB144600FAE112D455DC5792091B42A 301728 ------w- C:\WINDOWS\Sysnative\MpSigStub.exe ====== C:\WINDOWS\Sysnative\drivers ===== 2016-04-06 13:34:27 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\WINDOWS\Sysnative\drivers\EsgScanner.sys 2016-04-01 13:25:03 E23FDD696839A4790682CA66C48D3F2F 47672 ----a-w- C:\WINDOWS\Sysnative\drivers\dtliteusbbus.sys 2016-04-01 13:24:57 679FF716052109392D870F6A6C4A3535 30264 ----a-w- C:\WINDOWS\Sysnative\drivers\dtlitescsibus.sys 2016-03-24 13:00:05 78488AF2AB2111D67B3C4044707A519B 192216 ----a-w- C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys 2016-03-22 03:24:00 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\WINDOWS\Sysnative\drivers\Msft_User_esif_umdf2_02_00_00.Wdf 2016-03-22 03:17:37 91D3F2A6253EF83EFBD7903028F58C4D 118624 ----a-w- C:\WINDOWS\Sysnative\drivers\tdx.sys 2016-03-22 03:17:37 1A490555FD330CA2764D89191177C867 285696 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb10.sys 2016-03-22 03:17:18 70148EFA9A562E7185B75BBE7D376BF7 578912 ----a-w- C:\WINDOWS\Sysnative\drivers\afd.sys 2016-03-22 03:17:18 58BFFEF692A47FCE3FAAEDBC8F3DCBBB 2152288 ----a-w- C:\WINDOWS\Sysnative\drivers\ntfs.sys 2016-03-22 03:17:18 0B3B0C1D86050355676640488FA897D3 430944 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys 2016-03-22 03:17:06 EDDB0D726DBECDFC1DBCC6DB464E5A13 146272 ----a-w- C:\WINDOWS\Sysnative\drivers\appid.sys 2016-03-22 03:17:06 E3C82823B22463BC38AA4F8ADA852624 104960 ----a-w- C:\WINDOWS\Sysnative\drivers\rasl2tp.sys 2016-03-22 03:17:06 DBBACE77DDE8CCFD85B37B114965C385 147968 ----a-w- C:\WINDOWS\Sysnative\drivers\rmcast.sys 2016-03-22 03:17:06 A4411C522D41707D5BCA817A5BB9E30B 114688 ----a-w- C:\WINDOWS\Sysnative\drivers\bridge.sys 2016-03-22 03:17:00 F45665E77D11F3C1552EDBEAD1559DC8 1997152 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2016-03-22 03:17:00 EF536C54AB9281FDC4E83B07279FCFC4 35680 ----a-w- C:\WINDOWS\Sysnative\drivers\wimmount.sys 2016-03-22 03:17:00 BF6CA7EA5ECD6CF72D3D76652A9B8280 144384 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxdav.sys 2016-03-22 03:17:00 A1105260EEEE3DBD8D38FD054B22BD00 604928 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2016-03-22 03:17:00 7D8B9214692C4D0F1646215D9984E19A 161632 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecpkg.sys 2016-03-22 03:17:00 64D4F5DE44B64B8284BADE5819B5195A 394080 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2016-03-22 03:17:00 33190E86460C4FF7382848187463DC28 576864 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms2.sys 2016-03-22 03:17:00 318E816717431D3C23DC82779900C744 1089880 ----a-w- C:\WINDOWS\Sysnative\drivers\http.sys 2016-03-22 03:16:48 F279536122B83FD0D8E158AA753E1B7C 238592 ----a-w- C:\WINDOWS\Sysnative\drivers\xboxgip.sys 2016-03-22 03:16:48 F259A45D6B555B14CC8365AA6BC8DC20 67072 ----a-w- C:\WINDOWS\Sysnative\drivers\usbser.sys 2016-03-22 03:16:48 DE6D7DC78D956928F59F7415A0F41E13 95072 ----a-w- C:\WINDOWS\Sysnative\drivers\sdstor.sys 2016-03-22 03:16:48 DBACD4E4FE191D0CE7C624ACA389535E 29696 ----a-w- C:\WINDOWS\Sysnative\drivers\xinputhid.sys 2016-03-22 03:16:48 C24C27FDF93B85A4EFCF25F830253AA2 117248 ----a-w- C:\WINDOWS\Sysnative\drivers\capimg.sys 2016-03-22 03:16:48 B7E1CAA9429E4C3E7E01CB35B97E1536 534368 ----a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2016-03-22 03:16:48 8949F77132A4F8F3BA17C6727099F002 127840 ----a-w- C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS 2016-03-22 03:16:48 469441BAE3FF8A16826FC62C51EF5E18 563552 ----a-w- C:\WINDOWS\Sysnative\drivers\acpi.sys 2016-03-22 02:42:04 F871CE85AF64D81A9CB6C361CF797144 185184 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpsd.sys 2016-03-22 02:42:04 70165A0A2653FB8AFDE3D85000727F29 277856 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2016-03-17 13:14:01 34E103A5EFF7EADA5ADE6D61294FAA7F 7858088 ----a-w- C:\WINDOWS\Sysnative\drivers\igdkmd64.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-04-06 14:22:22 -------- d-----w- C:\Program Files\trend micro 2016-04-01 13:24:49 -------- d-----w- C:\Program Files\DAEMON Tools Lite 2016-03-29 13:52:33 -------- d-----w- C:\Program Files\R 2016-03-22 03:24:53 -------- d-----w- C:\Program Files\Realtek 2016-03-22 03:24:17 -------- d-----w- C:\Program Files\Intel 2016-03-22 02:42:53 -------- d-----w- C:\Program Files\Reference Assemblies 2016-03-22 02:42:53 -------- d-----w- C:\Program Files\MSBuild ======= C:\PROGRA~2 ===== 2016-04-06 13:03:41 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2016-03-30 14:47:00 -------- d-----w- C:\PROGRA~2\AVG 2016-03-22 03:24:12 -------- d-----w- C:\PROGRA~2\COMMON~1\Intel 2016-03-22 03:23:59 -------- d-----w- C:\PROGRA~2\Intel 2016-03-22 02:42:53 -------- d-----w- C:\PROGRA~2\Reference Assemblies 2016-03-22 02:42:53 -------- d-----w- C:\PROGRA~2\MSBuild 2016-03-15 08:57:44 -------- d---a-w- C:\PROGRA~2\COMMON~1\DESIGNER ======= C: ===== 2016-04-06 13:36:04 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat 2016-03-30 14:14:22 95B9802866B44E27093E1955BB58C9E0 248 ----a-w- C:\rescue.info ====== C:\Users\Mike\AppData\Roaming ====== 2016-04-01 16:36:45 -------- d-----w- C:\Users\Mike\AppData\Local\Sports Interactive 2016-04-01 13:29:11 -------- d-----w- C:\Users\Mike\AppData\Local\Diagnostics 2016-04-01 13:27:40 -------- d-----w- C:\Users\Mike\AppData\Local\Disc_Soft_Ltd 2016-03-30 17:25:43 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\AvgSetupLog 2016-03-30 14:38:04 -------- d-----w- C:\Users\Mike\AppData\Local\AvgSetupLog 2016-03-30 14:28:41 -------- d-----w- C:\Users\Mike\AppData\Local\Avg 2016-03-30 13:19:29 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Avg 2016-03-30 13:16:39 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Avg 2016-03-23 12:24:10 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\DataSharing 2016-03-22 03:38:17 -------- d-s---w- C:\WINDOWS\serviceprofiles\networkservice\AppData\LocalLow 2016-03-22 03:34:12 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft 2016-03-22 03:33:51 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Packages 2016-03-22 03:26:36 -------- d-s---r- C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2016-03-22 03:26:36 -------- d-----w- C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2016-03-22 03:26:36 -------- d-----w- C:\Users\Mike\AppData\Roaming 2016-03-22 03:26:36 -------- d-----w- C:\Users\Mike\AppData\Local\Temp 2016-03-22 03:26:36 -------- d-----w- C:\Users\Mike\AppData\Local\Microsoft 2016-03-22 03:26:36 -------- d-----w- C:\Users\Mike\AppData\Local 2016-03-22 03:26:36 -------- d-----r- C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-03-22 03:26:36 -------- d-----r- C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2016-03-22 03:26:36 -------- d-----r- C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2016-03-22 03:26:36 -------- d-----r- C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-03-22 03:23:59 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Intel 2016-03-22 03:23:04 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\FontCache 2016-03-22 03:22:44 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Roaming 2016-03-22 03:22:44 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp 2016-03-22 03:22:43 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft 2016-03-22 03:22:43 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Roaming 2016-03-22 03:22:43 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp 2016-03-22 03:22:43 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Microsoft 2016-03-22 03:22:43 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local ====== C:\Users\Mike ====== 2016-04-06 14:22:07 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Mike\Downloads\RSITx64.exe 2016-04-06 13:35:20 -------- d-----w- C:\Users\Mike\Start Menu 2016-04-06 13:34:02 A930E4076A7F08CB5A81798EAEF92AE4 3286400 ----a-w- C:\Users\Mike\Downloads\SpyHunter-Installer.exe 2016-04-06 11:54:49 2E19A6AD6BFC37FA554A0D1586B8F72D 6869352 ----a-w- C:\Users\Mike\Downloads\ccsetup516pro.exe 2016-04-01 16:36:45 -------- d-----w- C:\Users\Public\Documents\Sports Interactive 2016-04-01 13:25:26 -------- d-----w- C:\Users\Public\Documents\Daemon Tools Images 2016-04-01 13:24:42 -------- d-----w- C:\ProgramData\DAEMON Tools Lite 2016-04-01 13:22:00 CEAA57526F3A0A33D2C61716DDD23C84 692072 ----a-w- C:\Users\Mike\Downloads\DTLiteInstaller.exe 2016-03-30 14:49:20 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2016-03-30 14:47:00 -------- d---a-w- C:\ProgramData\Avg 2016-03-30 14:13:10 041F2CE514EFCE41C6EC39CF41090B0B 1821224 ----a-w- C:\Users\Mike\Downloads\Support-LogMeInRescue.exe 2016-03-30 13:12:35 -------- d--h--w- C:\ProgramData\Common Files 2016-03-29 13:53:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R 2016-03-29 13:50:34 F5FDE91FC7F2119C18B6ACD61C845E2F 65593847 ----a-w- C:\Users\Mike\Downloads\R-3.2.4revised-win.exe 2016-03-24 12:59:08 52F4695C53B02ADA7D648F95F2E2F8B4 22851472 ----a-w- C:\Users\Mike\Downloads\mbam-setup-2.2.1.1043 (1).exe 2016-03-24 12:58:46 52F4695C53B02ADA7D648F95F2E2F8B4 22851472 ----a-w- C:\Users\Mike\Downloads\mbam-setup-2.2.1.1043.exe 2016-03-22 08:57:33 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\Mike\ntuser.ini 2016-03-22 03:26:36 -------- d--h--w- C:\Users\Mike\AppData 2016-03-22 03:25:06 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\ProgramData\DP45977C.lfl 2016-03-22 03:23:04 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp 2016-03-22 03:22:44 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\Saved Games 2016-03-22 03:22:44 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Videos 2016-03-22 03:22:44 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Pictures 2016-03-22 03:22:44 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Music 2016-03-22 03:22:44 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Links 2016-03-22 03:22:44 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Favorites 2016-03-22 03:22:44 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Downloads 2016-03-22 03:22:44 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Documents 2016-03-22 03:22:44 -------- d-----r- C:\WINDOWS\serviceprofiles\Localservice\Desktop 2016-03-22 03:22:43 -------- d--h--w- C:\WINDOWS\serviceprofiles\networkservice\AppData 2016-03-22 03:22:43 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\Saved Games 2016-03-22 03:22:43 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Videos 2016-03-22 03:22:43 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Pictures 2016-03-22 03:22:43 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Music 2016-03-22 03:22:43 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Links 2016-03-22 03:22:43 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Favorites 2016-03-22 03:22:43 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Downloads 2016-03-22 03:22:43 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Documents 2016-03-22 03:22:43 -------- d-----r- C:\WINDOWS\serviceprofiles\networkservice\Desktop 2016-03-10 14:08:34 -------- d-----w- C:\Users\Mike\.jagex_cache_32 ====== C: exe-files == 2016-04-06 17:40:06 CEBBD45985EB8D30A37B6E8D22DCAB11 257192 ----a-w- C:\Windows\Temp\DPTF\esif_assist_64.exe 2016-04-06 14:22:22 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Mike.exe 2016-04-06 14:22:07 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Mike\Downloads\RSITx64.exe 2016-04-06 13:34:02 A930E4076A7F08CB5A81798EAEF92AE4 3286400 ----a-w- C:\Users\Mike\Downloads\SpyHunter-Installer.exe 2016-04-06 13:02:51 F85C40988E94C2F463508FBEE94025BF 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\kinit.exe 2016-04-06 13:02:51 F4E94CBB9DEF622171D8943F2160B214 51776 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssvagent.exe 2016-04-06 13:02:51 E2AF676759086BAE2F16D6B5033E7F46 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\policytool.exe 2016-04-06 13:02:51 D709404CB67D09946628987244B98A60 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\servertool.exe 2016-04-06 13:02:51 D62B10425DC16A177CB64D6B0356F915 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\jjs.exe 2016-04-06 13:02:51 C558C87F624CF96F812028165190EEDE 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\pack200.exe 2016-04-06 13:02:51 C1F46A7656D1DED6326D8E28B1CF1862 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\rmiregistry.exe 2016-04-06 13:02:51 AC4F3A4F853070419C9E8479B3868103 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\tnameserv.exe 2016-04-06 13:02:51 A756D5633F6596B0E4711E60D3F61BCA 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\orbd.exe 2016-04-06 13:02:51 A48BDE309534612FBA41D58E754A38BE 159296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\unpack200.exe 2016-04-06 13:02:51 8DF0EA1993F98096557A4AFA6235DE4E 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\rmid.exe 2016-04-06 13:02:51 724998551979EB4E0DF53CA3994AF035 77888 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2launcher.exe 2016-04-06 13:02:51 5192C3656176D1D21D21372E1061D1A4 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\ktab.exe 2016-04-06 13:02:51 4CC7AA4DCC143BB06999A62B8763EA6C 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\keytool.exe 2016-04-06 13:02:51 26E779D9D96192E312E5DC042E993DED 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\klist.exe 2016-04-06 13:02:50 D763E321831C859D9195ADF15A951E95 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\java-rmi.exe 2016-04-06 13:02:50 C31F1BDBB1902458FA15515BD0D8340B 191040 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\java.exe 2016-04-06 13:02:50 AAADCD8DA5BCE8986D6FEC09FAB7B70D 68672 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\javacpl.exe 2016-04-06 13:02:50 A5AECC1529B64CB123B1880D3AD0F1AE 268352 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\javaws.exe 2016-04-06 13:02:50 6101EC702C56D5F688AA578AC457A440 30784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\jabswitch.exe 2016-04-06 13:02:50 2AD9EFBB015490AA315707BAC2BFD816 191552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\javaw.exe 2016-04-06 13:00:07 F3EE8B9873F4468A58A8F00E31DFBCEE 736320 ----a-w- C:\Users\Mike\AppData\Local\Temp\jre-8u77-windows-au.exe 2016-04-06 11:54:49 2E19A6AD6BFC37FA554A0D1586B8F72D 6869352 ----a-w- C:\Users\Mike\Downloads\ccsetup516pro.exe 2016-04-01 13:22:00 CEAA57526F3A0A33D2C61716DDD23C84 692072 ----a-w- C:\Users\Mike\Downloads\DTLiteInstaller.exe === C: other files == 2016-04-06 13:36:04 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat 2016-04-06 13:34:27 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Windows\System32\drivers\EsgScanner.sys 2016-04-06 13:02:51 4EDC09D3151E434741F50E8F7210D162 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\lib\deploy\ffjcext.zip 2016-04-01 13:25:03 E23FDD696839A4790682CA66C48D3F2F 47672 ----a-w- C:\Windows\System32\drivers\dtliteusbbus.sys 2016-04-01 13:25:03 E23FDD696839A4790682CA66C48D3F2F 47672 ----a-w- C:\Program Files\DAEMON Tools Lite\dtliteusbbus.sys 2016-04-01 13:24:57 679FF716052109392D870F6A6C4A3535 30264 ----a-w- C:\Windows\System32\drivers\dtlitescsibus.sys 2016-04-01 13:24:57 679FF716052109392D870F6A6C4A3535 30264 ----a-w- C:\Program Files\DAEMON Tools Lite\dtlitescsibus.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-2630893962-933853546-2990357590-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\Mike\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Gyazo"="C:\Program Files (x86)\Gyazo\GyStation.exe" "DAEMON Tools Lite Automount"="C:\Program Files\DAEMON Tools Lite\DTAgent.exe -autorun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WebStorage"="C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe" "AvgUi"="C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe /lps=fmw" "AVG_UI"="C:\Program Files (x86)\AVG\Av\avuirunnerx.exe C:\Program Files (x86)\AVG\Av\avgui.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\Mike\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Gyazo"="C:\Program Files (x86)\Gyazo\GyStation.exe" "DAEMON Tools Lite Automount"="C:\Program Files\DAEMON Tools Lite\DTAgent.exe -autorun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [15-01-2016 19:54] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [15-01-2016 19:54] C:\WINDOWS\tasks\WpsNotifyTask_Administrator.job --a-------- C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe [18-08-2015 07:28] C:\WINDOWS\tasks\WpsUpdateTask_Administrator.job --a-------- C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe [18-08-2015 07:28] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\ASUS Live Update1" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\WINDOWS\SysNative\tasks\ASUS Live Update2" [C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe] "C:\WINDOWS\SysNative\tasks\ASUS Smart Gesture Launcher" [C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe] "C:\WINDOWS\SysNative\tasks\ASUS Splendid ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe] "C:\WINDOWS\SysNative\tasks\ASUS USB Charger Plus" ["C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"] "C:\WINDOWS\SysNative\tasks\ATK Package 36D18D69AFC3" ["C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe"] "C:\WINDOWS\SysNative\tasks\ATK Package A22126881260" ["C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe"] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\DropboxOEM" ["%ProgramFiles(x86)%\Dropbox\DropboxOEM\DropboxOEM.exe"] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GyazoUpdateTaskMachine" ["C:\Program Files (x86)\Gyazo\GyazoUpdate.exe"] "C:\WINDOWS\SysNative\tasks\GyazoUpdateTaskMachineDaily" ["C:\Program Files (x86)\Gyazo\GyazoUpdate.exe"] "C:\WINDOWS\SysNative\tasks\RtHDVBg_ListenToDevice" ["C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe"] "C:\WINDOWS\SysNative\tasks\RTKCPL" ["C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"] "C:\WINDOWS\SysNative\tasks\Update Checker" [C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{C2FACC01-19A8-4CCC-A005-53092900A116}" [C:\Windows\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\WpsNotifyTask_Administrator" [C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe] "C:\WINDOWS\SysNative\tasks\WpsUpdateTask_Administrator" [C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe] "C:\WINDOWS\SysNative\tasks\ASUS\ASUS Product Register Service" [C:\Program Files (x86)\ASUS\APRP\aprp.exe] ==== Chromium Look ====================== Google Slides - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Google Docs - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo selector is not a valid CSS selector - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Google Search - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Ad.Block Plus - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\deedacoecmlfgkmcjikebmhgeilkhbpf Google Sheets - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Cisco WebEx Extension - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma Google Mail Checker - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff Chrome Web Store Payments - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Fix ====================== C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage deleted successfully C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_cdncache-a.akamaihd.net_0.localstorage-journal deleted successfully C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.shopeasy00.shopeasy.xyz_0.localstorage deleted successfully C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.shopeasy00.shopeasy.xyz_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC ==== Reset Google Chrome ====================== C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully ==== HijackThis Entries ====================== O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll O4 - HKLM\..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [OneDrive] "C:\Users\Mike\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe O23 - Service: Asus GiftBox Desktop (ASUSGiftBoxDekstop) - ASUS - C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagent.exe O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @oem15.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Intel Corporation - C:\WINDOWS\SysWOW64\esif_uf.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: WPS Office Update Service (Kingsoft_WPS_UpdateService) - Zhuhai Kingsoft Office Software Co.,Ltd - C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\IE\9PA1W4E8 will be deleted at reboot C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\IE\BJ6V4ZWO will be deleted at reboot C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\IE\MEPE0H94 will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=16 folders=13 2850698 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Mike\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\PROGRA~3\Kingsoft" not found "C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\IE\9PA1W4E8" not found "C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\IE\BJ6V4ZWO" not found "C:\Users\Mike\AppData\Local\Microsoft\Windows\INetCache\IE\MEPE0H94" not found ==== EOF on do 07-04-2016 at 12:54:03,82 ======================