Zoek.exe v5.0.0.1 Updated 19-September-2016 Tool run by Pc on di 01-11-2016 at 9:18:22,94. Microsoft Windows 10 Home 10.0.14393 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Pc\Downloads\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 1-11-2016 9:19:46 Zoek.exe System Restore Point Created Successfully. ==== Reset Hosts File ====================== # Copyright (c) 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host 127.0.0.1 localhost ==== Empty Folders Check ====================== C:\PROGRA~2\AGEIA Technologies deleted successfully C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\COMMON~1\PDF Architect deleted successfully C:\PROGRA~3\Babylon deleted successfully C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\NVIDIA deleted successfully C:\PROGRA~3\PCSettings deleted successfully C:\PROGRA~3\SoftwareDistribution deleted successfully C:\Users\DefaultAppPool\AppData\LocalLow deleted successfully C:\Users\nmees\AppData\Local\ActiveSync deleted successfully C:\Users\nmees\AppData\Local\VirtualStore deleted successfully C:\Users\Pc\AppData\Local\ActiveSync deleted successfully C:\Users\Pc\AppData\Local\EmieBrowserModeList deleted successfully C:\Users\Pc\AppData\Local\EmieSiteList deleted successfully C:\Users\Pc\AppData\Local\EmieUserList deleted successfully C:\Users\Pc\AppData\Local\NetworkTiles deleted successfully C:\Users\Pc\AppData\Local\PackageStaging deleted successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Maps deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6D53EC84-6AAE-4787-AEEE-F4628F01010C} deleted successfully HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{6D53EC84-6AAE-4787-AEEE-F4628F01010C} deleted successfully HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} deleted successfully HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{FF059E31-CC5A-4E2E-BF3B-96E929D65503} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{6D53EC84-6AAE-4787-AEEE-F4628F01010C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== AC3Filter (remove only) Adobe Acrobat Reader DC - Nederlands Adobe Flash Player 23 NPAPI Adobe Refresh Manager AMD Accelerated Video Transcoding AMD APP SDK Runtime AMD Catalyst Control Center AMD Catalyst Install Manager AMD Drag and Drop Transcoding AMD Fuel AMD Media Foundation Decoders Apple Application Support Apple Mobile Device Support Apple Software Update Battle.net Bonjour Canon iP2700 series Printer Driver Catalyst Control Center - Branding Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish Citrix Authentication Manager Citrix Receiver Citrix Receiver (HDX Flash Redirection) Citrix Receiver Inside Citrix Receiver Updater Citrix Receiver(Aero) Citrix Receiver(DV) Citrix Receiver(USB) Cossacks - European Wars CyberLink DVD Suite Deluxe DAEMON Tools Lite De Sims 2 Debut Video Capture Software Definition Update for Microsoft Office 2013 (KB3115404) 64-Bit Edition Diablo III Diagnostisch hulpprogramma voor hardware DirectX for Managed Code Update (Summer 2004) DivX Setup Dropbox eMagicOne Store Manager for OpenCart 1.15.0.502 eReg Express Zip File Compression Software Fallout Fallout 3 Fallout: New Vegas FRANCAIS POUR DEBUTANTS Free YouTube Download version 3.1.27.508 Gangsters 2 Google Chrome Google Update Helper GTAIII Hearthstone Heroes of the Storm HP Customer Experience Enhancements HP MAINSTREAM KEYBOARD HP MediaSmart DVD HP MediaSmart Movie Themes HP MediaSmart Music/Photo/Video HP MediaSmart SmartMenu HP Odometer HP Remote Solution HP Setup HP Support Information HP Update HTC Sync Manager Huawei modem Intel© Matrix Storage Manager ION Scanner Core IPTInstaller iTunes Java 8 Update 111 Java Auto Updater LabelPrint LightScribe System Software Logitech SetPoint 6.32 Magic 2014 Demo Magic Online Magic The Gathering Online Magic Workstation 0.94f Media Player Metro: Last Light Microsoft .NET Framework 4.5.1 (NLD) Microsoft .NET Framework 4.5.2 Microsoft Access MUI (Dutch) 2013 Microsoft Access MUI (English) 2013 Microsoft Access Setup Metadata MUI (English) 2013 Microsoft Age of Empires Microsoft DCF MUI (Dutch) 2013 Microsoft DCF MUI (English) 2013 Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64) Microsoft Excel MUI (Dutch) 2013 Microsoft Excel MUI (English) 2013 Microsoft Games for Windows - LIVE Redistributable Microsoft Groove MUI (Dutch) 2013 Microsoft Groove MUI (English) 2013 Microsoft InfoPath MUI (Dutch) 2013 Microsoft InfoPath MUI (English) 2013 Microsoft Lync MUI (Dutch) 2013 Microsoft Lync MUI (English) 2013 Microsoft Office 32-bit Components 2013 Microsoft Office File Validation Add-In Microsoft Office Korrekturhilfen 2013 - Deutsch Microsoft Office Language Pack 2013 - Dutch/Nederlands Microsoft Office O MUI (Dutch) 2013 Microsoft Office OSM MUI (Dutch) 2013 Microsoft Office OSM MUI (English) 2013 Microsoft Office OSM UX MUI (Dutch) 2013 Microsoft Office OSM UX MUI (English) 2013 Microsoft Office Professional Plus 2013 Microsoft Office Proofing (Dutch) 2013 Microsoft Office Proofing (English) 2013 Microsoft Office Proofing Tools 2013 - English Microsoft Office Proofing Tools 2013 - Espa¤ol Microsoft Office Proofing Tools 2013 - Nederlands Microsoft Office Shared 32-bit MUI (Dutch) 2013 Microsoft Office Shared 32-bit MUI (English) 2013 Microsoft Office Shared MUI (Dutch) 2013 Microsoft Office Shared MUI (English) 2013 Microsoft Office Shared Setup Metadata MUI (English) 2013 Microsoft OneNote MUI (Dutch) 2013 Microsoft OneNote MUI (English) 2013 Microsoft Outlook MUI (Dutch) 2013 Microsoft Outlook MUI (English) 2013 Microsoft PowerPoint MUI (Dutch) 2013 Microsoft PowerPoint MUI (English) 2013 Microsoft Publisher MUI (Dutch) 2013 Microsoft Publisher MUI (English) 2013 Microsoft SharePoint Designer MUI (Dutch) 2013 Microsoft Silverlight Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Microsoft Word MUI (Dutch) 2013 Microsoft Word MUI (English) 2013 Microsoft X MUI (Dutch) 2013 mIRC Mobiel Internet Software Mozilla Firefox 49.0.2 (x86 nl) Mozilla Maintenance Service MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Norton 360 Premier NVIDIA PhysX OLYMPUS CAMEDIA Master 4.1 Online Plug-in Outils de v‚rification linguistique 2013 de Microsoft Office˙- Fran‡ais PKR Power2Go PowerDirector PowerRecover Prism Video File Converter QuickTime RAGE Realtek High Definition Audio Driver Return to Castle Wolfenstein RollerCoaster Tycoon 3: Platinum Rose Online Security Update for Microsoft Office 2013 (KB2910941) 64-Bit Edition Security Update for Microsoft Office 2013 (KB3039798) 64-Bit Edition Security Update for Microsoft Office 2013 (KB3054816) 64-Bit Edition Security Update for Microsoft Office 2013 (KB3114340) 64-Bit Edition Security Update for Microsoft OneNote 2013 (KB3115256) 64-Bit Edition Security Update for Microsoft PowerPoint 2013 (KB3115487) 64-Bit Edition Security Update for Microsoft Publisher 2013 (KB3085561) 64-Bit Edition Security Update for Microsoft SharePoint Designer 2013 (KB2752096) 64-Bit Edition Security Update for Microsoft Word 2013 (KB3118345) 64-Bit Edition Security Update for Skype for Business 2015 (KB3118348) 64-Bit Edition Self-service Plug-in Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition Shockwave Flash Skype Click to Call SkypeT 7.0 Steam Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD TeamSpeak 3 Client The Settlers IV Tixati Trust.Zone VPN Client Update for Microsoft Access 2013 (KB3114948) 64-Bit Edition Update for Microsoft Excel 2013 (KB3118369) 64-Bit Edition Update for Microsoft InfoPath 2013 (KB3114818) 64-Bit Edition Update for Microsoft InfoPath 2013 (KB3114946) 64-Bit Edition Update for Microsoft Office 2013 (KB2760344) 64-Bit Edition Update for Microsoft Office 2013 (KB2760371) 64-Bit Edition Update for Microsoft Office 2013 (KB2883095) 64-Bit Edition Update for Microsoft Office 2013 (KB2889863) 64-Bit Edition Update for Microsoft Office 2013 (KB2899522) 64-Bit Edition Update for Microsoft Office 2013 (KB2975869) 64-Bit Edition Update for Microsoft Office 2013 (KB3023049) 64-Bit Edition Update for Microsoft Office 2013 (KB3023052) 64-Bit Edition Update for Microsoft Office 2013 (KB3023068) 64-Bit Edition Update for Microsoft Office 2013 (KB3039701) 64-Bit Edition Update for Microsoft Office 2013 (KB3039720) 64-Bit Edition Update for Microsoft Office 2013 (KB3039737) 64-Bit Edition Update for Microsoft Office 2013 (KB3039756) 64-Bit Edition Update for Microsoft Office 2013 (KB3039766) 64-Bit Edition Update for Microsoft Office 2013 (KB3039778) 64-Bit Edition Update for Microsoft Office 2013 (KB3039795) 64-Bit Edition Update for Microsoft Office 2013 (KB3039800) 64-Bit Edition Update for Microsoft Office 2013 (KB3054783) 64-Bit Edition Update for Microsoft Office 2013 (KB3054785) 64-Bit Edition Update for Microsoft Office 2013 (KB3054819) 64-Bit Edition Update for Microsoft Office 2013 (KB3054856) 64-Bit Edition Update for Microsoft Office 2013 (KB3055007) 64-Bit Edition Update for Microsoft Office 2013 (KB3085486) 64-Bit Edition Update for Microsoft Office 2013 (KB3085565) 64-Bit Edition Update for Microsoft Office 2013 (KB3085570) 64-Bit Edition Update for Microsoft Office 2013 (KB3085587) 64-Bit Edition Update for Microsoft Office 2013 (KB3101487) 64-Bit Edition Update for Microsoft Office 2013 (KB3101491) 64-Bit Edition Update for Microsoft Office 2013 (KB3101503) 64-Bit Edition Update for Microsoft Office 2013 (KB3114488) 64-Bit Edition Update for Microsoft Office 2013 (KB3114499) 64-Bit Edition Update for Microsoft Office 2013 (KB3114825) 64-Bit Edition Update for Microsoft Office 2013 (KB3114835) 64-Bit Edition Update for Microsoft Office 2013 (KB3115156) 64-Bit Edition Update for Microsoft Office 2013 (KB3115257) 64-Bit Edition Update for Microsoft Office 2013 (KB3115485) 64-Bit Edition Update for Microsoft Office 2013 (KB3118354) 64-Bit Edition Update for Microsoft OneDrive for Business (KB3115492) 64-Bit Edition Update for Microsoft Outlook 2013 (KB3118367) 64-Bit Edition Update for Microsoft Outlook Social Connector 2013 (KB3054854) 64-Bit Edition Update for Microsoft Project 2013 (KB3115493) 64-Bit Edition Update for Microsoft SharePoint Designer 2013 (KB3114721) 64-Bit Edition Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition Update for Microsoft Word 2013 (KB2878319) 64-Bit Edition Update for Skype for Business 2015 (KB3039776) 64-Bit Edition Vastlegprogramma EI (LH307), versie 3.07 (Voor XP,Vista en Win VC80CRTRedist - 8.0.50727.6195 Ventrilo Client for Windows x64 Verzoek of wijziging voorlopige aanslag 2015 Windows Media Player Firefox Plugin WinZip 16.5 World of Warcraft XCOM: Enemy Unknown ==== Running Processes ====================== C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Program Files (x86)\KPN\Mobiel Internet Software\BecHelperService.exe C:\Program Files (x86)\Norton 360\Engine\22.7.1.32\N360.exe C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files (x86)\KPN\Mobiel Internet Software\LoggerServer.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\Norton 360\Engine\22.7.1.32\N360.exe C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe C:\Program Files (x86)\Citrix\ICA Client\concentr.exe C:\Program Files (x86)\Citrix\Receiver\Receiver.exe C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe C:\Users\Pc\Downloads\zoek.exe C:\WINDOWS\SysWoW64\cmd.exe C:\WINDOWS\SysWoW64\cmd.exe C:\WINDOWS\SysWoW64\cmd.exe ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- ==== Deleting Files \ Folders ====================== C:\PROGRA~2\AGEIA Technologies not found C:\Program Files (x86)\BabylonToolbar not found C:\Program Files\McAfee Security Scan not found C:\Program Files (x86)\BabylonToolbar not found C:\Program Files\McAfee Security Scan not found "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" not found "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" not found C:\Users\Pc\.android deleted C:\PROGRA~2\GUT6366.tmp deleted C:\PROGRA~2\GUM6365.tmp deleted C:\PROGRA~2\COMMON~1\DVDVideoSoft\TB deleted C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted C:\PROGRA~2\1ClickDownload deleted C:\user.js deleted C:\PROGRA~3\Tarma Installer deleted C:\PROGRA~3\{ADCBF7A8-716E-4B21-AF03-E3F11C06C309} deleted C:\PROGRA~3\Package Cache deleted C:\Users\Pc\AppData\Local\Babylon deleted C:\Users\Pc\AppData\Roaming\Mozilla\Firefox\Profiles\sqb6i9gi.default-1374836263121\jetpack deleted "C:\Windows\Installer\1293f536.msi" deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 6136 MB CPU Info: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz CPU Speed: 2845,2 MHz Sound Card: Luidsprekers (Realtek High Defi | Realtek HDMI Output (Realtek Hi | Realtek Digital Output (Realtek | Display Adapters: AMD Radeon HD 6670 | AMD Radeon HD 6670 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1680 X 1050 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller | VPN Client Adapter - VPN | 802.11n Wireless PCI Express Card LAN Adapter #2 | Microsoft Wi-Fi Direct Virtual Adapter CD / DVD Drives: 2x (F: | L: | ) F: hp CDDVDW TS-H653R | L: DTSOFT BDROM Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 688,1GB | D: 10,0GB | E: 698,6GB Hard Disks - Free: C: 158,6GB | D: 1,9GB | E: 677,9GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 03/03/10 | HPQOEM - 20100303 Time Zone: West-Europa (standaardtijd) Motherboard *: MSI Indio Country: Nederland Language: NLD ==== System Specs (Software) ====================== Default Browser: Firefox 49.0.2 Internet Explorer Version: 11.321.14393.0 Mozilla Firefox version: 49.0.2 (x86 nl) Google Chrome version: 54.0.2840.71 Adobe Reader version: 15.20.20039.203716 Sun Java version: 1.8.0_111 (32-bit) Sun Java version: 1.8.0_111 (64-bit) Flash Player version: 23.0.0.205 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Pc\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== ====== C:\WINDOWS\Sysnative\drivers ===== 2016-10-16 15:11:36 E542C084F75E441550FB5D27B3557E96 100592 ----a-w- C:\WINDOWS\Sysnative\drivers\SYMEVENT64x86.SY1 2016-10-12 14:02:31 25D32BE04FE0A23FDF57FD5382757672 143872 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxdav.sys 2016-10-12 14:02:20 2CF0CB2A0ED68C5455371E84C16F9627 64352 ----a-w- C:\WINDOWS\Sysnative\drivers\MegaSas2i.sys 2016-10-12 14:02:02 8F5C24F4F47120157AB6D889B96A2AC2 619368 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2016-10-12 14:01:48 E5E5D9E317739CEE510EAF46C88A7C38 128864 ----a-w- C:\WINDOWS\Sysnative\drivers\tm.sys 2016-10-12 14:01:48 0D1D392ED2597F295956D058D33BD7C3 144896 ----a-w- C:\WINDOWS\Sysnative\drivers\dfsc.sys 2016-10-12 14:01:47 D5564FC81350458ED570528C4E3B1CCF 1181536 ----a-w- C:\WINDOWS\Sysnative\drivers\ndis.sys 2016-10-12 14:01:31 7C3D10BEC8B0DBA00A78C78EB10B3AE2 279904 ----a-w- C:\WINDOWS\Sysnative\drivers\sdbus.sys 2016-10-12 14:01:30 FE33B645A2E0F5AB0B42318355B85178 2537824 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2016-10-12 14:01:29 FFFBB40B9C7AD811AA6EA74A0A6168B1 187232 ----a-w- C:\WINDOWS\Sysnative\drivers\dumpsd.sys 2016-10-02 12:55:16 2FEFE1E095146CE1822F00B0FAB3066A 22784 ----a-w- C:\WINDOWS\Sysnative\drivers\neo_vpn.sys ====== C:\WINDOWS\Tasks ====== 2016-11-01 08:09:32 1150C7F6CB65EEF7BCF13CBA738A1FBD 4174 ----a-w- C:\WINDOWS\Sysnative\Tasks\User_Feed_Synchronization-{506E6149-A7D9-48E8-859F-2ADBA4BAF480} 2016-10-13 15:51:24 C86BE8DF2D7D074D38CFF367808AACFF 3800 ----a-w- C:\WINDOWS\Sysnative\Tasks\AutoKMS 2016-10-03 15:00:58 C8FE39A7A0367D7219D5E7CB8E459F27 4562 ----a-w- C:\WINDOWS\Sysnative\Tasks\Adobe Acrobat Update Task ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-10-30 12:51:39 -------- d-----w- C:\Program Files\trend micro 2016-10-02 12:54:48 -------- d-----w- C:\Program Files\Trust.Zone VPN Client ======= C:\PROGRA~2 ===== 2016-11-01 08:08:45 -------- d-----w- C:\PROGRA~2\COMMON~1\Java ======= C: ===== ====== C:\Users\Pc\AppData\Roaming ====== 2016-11-01 08:23:09 -------- d-----w- C:\Users\Pc\AppData\Local\NetworkTiles 2016-10-28 05:29:27 -------- d-----w- C:\Users\Pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-10-24 06:46:24 -------- d-----w- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\CrashDumps 2016-10-03 07:26:34 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CrashDumps ====== C:\Users\Pc ====== 2016-11-01 08:06:27 A8752E848C88A477CF88BA615E4EB28A 737344 ----a-w- C:\Users\Pc\Downloads\JavaSetup8u111.exe 2016-10-30 12:50:15 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Pc\Downloads\RSITx64.exe 2016-10-29 11:07:44 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\DefaultAppPool\ntuser.ini 2016-10-02 12:54:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trust.Zone VPN Client ====== C: exe-files == 2016-11-01 08:08:23 F38FB008B3816D9585F10A7D2CC22DF1 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\orbd.exe 2016-11-01 08:08:23 ED141A08605AF568747C8F418170FC06 159296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\unpack200.exe 2016-11-01 08:08:23 EBF20DDA7DDA14BBD1F6F2F1B37BC113 83008 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2launcher.exe 2016-11-01 08:08:23 C2B897032A8604E1827B0CD07EBB3306 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\java-rmi.exe 2016-11-01 08:08:23 C07D4839606118BBF7C5153FF171301C 70208 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\javacpl.exe 2016-11-01 08:08:23 B8EDC4631E2B5D7AE9E626690F6506FF 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\rmid.exe 2016-11-01 08:08:23 A90E29C3839ED2141F80670A3DB32F69 191552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\javaw.exe 2016-11-01 08:08:23 A1AD424B821EB9878B985AB43253DCA0 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\keytool.exe 2016-11-01 08:08:23 8448994199BEE00F4C40A561AE77672F 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\kinit.exe 2016-11-01 08:08:23 6DDA1D127FD0C4B8F93307E6D52B1ABD 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\tnameserv.exe 2016-11-01 08:08:23 65E94EC48AE31838C8F6F2F4FC59AB44 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\pack200.exe 2016-11-01 08:08:23 5F2D0025CB3C078E0AAB83E1430827C6 52800 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssvagent.exe 2016-11-01 08:08:23 5A92988B4DEC8EAFE62F7D2DBE8AB620 269888 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\javaws.exe 2016-11-01 08:08:23 490D67C45EE587B06833ADA0811F241B 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\servertool.exe 2016-11-01 08:08:23 487C48AA28B0DC99A387F31E7764ABFB 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\jjs.exe 2016-11-01 08:08:23 3FAF0C9A1D59F5D196C0578839A00EFE 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\policytool.exe 2016-11-01 08:08:23 391D35229BF096E04FEE6F8520DC3B21 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\klist.exe 2016-11-01 08:08:23 1D623A885163D6BA50175987B4BB9450 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\rmiregistry.exe 2016-11-01 08:08:23 1B7F15EA9DA5322698988698C7D58959 191040 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\java.exe 2016-11-01 08:08:23 1598CF2FAD014E95975560929F578E05 30784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\jabswitch.exe 2016-11-01 08:08:23 09C754EFAEE0DA93817D5DC0A5FFE8B4 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\bin\ktab.exe 2016-11-01 08:06:27 A8752E848C88A477CF88BA615E4EB28A 737344 ----a-w- C:\Users\Pc\Downloads\JavaSetup8u111.exe 2016-10-30 12:51:46 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Pc.exe 2016-10-30 12:50:15 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Pc\Downloads\RSITx64.exe 2016-10-28 05:29:12 790881A4E93FFF5EA4356443FA1AB9E1 174048 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe 2016-10-28 05:29:12 566BD6ED419F7FBC88EDD579044AD5C9 41576 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\driver_amd64\dbxsvc.exe 2016-10-28 05:29:12 476C950C4AB1B426F1B0AAD08A21CCD1 35440 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\driver_x86\dbxsvc.exe 2016-10-28 05:29:12 22DE1B88FC48FA1EB0FAC51BF1ACE087 25424008 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\Dropbox.exe 2016-10-28 05:28:09 15A1352CAB4086792689DC05C7896A5A 70575032 ----a-w- C:\Users\Pc\AppData\Local\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\13.4.21\DropboxClient_13.4.21.exe 2016-10-25 20:41:04 B90B48EC45364F53BB6C0394148DF8C5 44295032 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\54.0.2840.71\54.0.2840.71_chrome_installer.exe 2016-10-25 09:31:21 572BD5A99648652147A5D3C6DA946C99 172488 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice_tmp.exe === C: other files == 2016-11-01 08:08:23 467720B73E839ED66826EAF59C9A59E7 14156 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_111\lib\deploy\ffjcext.zip 2016-10-30 01:29:59 0CA72578F9F64628B50403FD1DB34C8E 5389 ----a-w- C:\Users\Pc\AppData\Roaming\Mozilla\Firefox\Profiles\sqb6i9gi.default-1374836263121\features\{8f8ce63c-64f5-4454-99a2-92e2b7cd4653}\asyncrendering@mozilla.org.xpi 2016-10-28 05:29:12 75527C244D55E9C557E1E4655FE62E3B 75888 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\driver_amd64\dbx-stable.sys 2016-10-28 05:29:12 75527C244D55E9C557E1E4655FE62E3B 75888 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\driver_amd64\dbx-dev.sys 2016-10-28 05:29:12 75527C244D55E9C557E1E4655FE62E3B 75888 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\driver_amd64\dbx-canary.sys 2016-10-28 05:29:12 459F7CFC5CEBA439AE0E6E868C1C6C9C 63600 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\driver_x86\dbx-stable.sys 2016-10-28 05:29:12 459F7CFC5CEBA439AE0E6E868C1C6C9C 63600 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\driver_x86\dbx-dev.sys 2016-10-28 05:29:12 459F7CFC5CEBA439AE0E6E868C1C6C9C 63600 ----a-w- C:\Users\Pc\AppData\Roaming\Dropbox\bin\driver_x86\dbx-canary.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-2343392737-2357105771-3563990559-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent" "GoogleChromeAutoLaunch_08FE143FD2AB823235E69C88CCC8ECF7"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" "Dropbox Update"="C:\Users\Pc\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c" "OneDrive"="C:\Users\Pc\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" "BATINDICATOR"="C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe" "LaunchHPOSIAPP"="C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe" "UpdatePRCShortCut"="C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\Hewlett-Packard\Recovery UpdateWithCreateOnce Software\CyberLink\PowerRecover" "DivXMediaServer"="C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup" "Redirector"="C:\Program Files (x86)\Citrix\ICA Client\redirector.exe /startup" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "HP Remote Solution"="%ProgramFiles%\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent" "GoogleChromeAutoLaunch_08FE143FD2AB823235E69C88CCC8ECF7"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window" "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" "Dropbox Update"="C:\Users\Pc\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c" "OneDrive"="C:\Users\Pc\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" "SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background" "EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming" "Trust.Zone VPN Client UI Helper"="C:\Program Files\Trust.Zone VPN Client\tzclient_x64.exe /uihelp" ==== Startup Folders ====================== 2014-09-23 11:44:30 1686 --sha-w- C:\Users\Pc\AppData\Roaming\Microsoft\LastFlashConfig.wfc ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [27-10-2016 01:32] C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2343392737-2357105771-3563990559-1000Core.job --a-------- C:\Users\Pc\AppData\Local\Dropbox\Update\DropboxUpdate.exe [21-06-2015 14:17] C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2343392737-2357105771-3563990559-1000UA.job --a-------- C:\Users\Pc\AppData\Local\Dropbox\Update\DropboxUpdate.exe [21-06-2015 14:17] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01-09-2015 02:01] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01-09-2015 02:01] C:\WINDOWS\tasks\PCDRScheduledMaintenance.job --a-------- C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe [02-07-2009 12:04] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\AutoKMS" [C:\Windows\AutoKMS\AutoKMS.exe] "C:\WINDOWS\SysNative\tasks\OneDrive Standalone Update Task" [C:\Users\Pc\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\OneDriveStandaloneUpdater.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{506E6149-A7D9-48E8-859F-2ADBA4BAF480}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\Norton 360\Norton Autofix" [C:\Program Files (x86)\Norton 360\Engine\22.7.1.32\SymErr.exe] "C:\WINDOWS\SysNative\tasks\Norton 360\Norton Error Analyzer" [C:\Program Files (x86)\Norton 360\Engine\22.7.1.32\SymErr.exe] "C:\WINDOWS\SysNative\tasks\Norton 360\Norton Error Processor" [C:\Program Files (x86)\Norton 360\Engine\22.7.1.32\SymErr.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{C1A2A613-35F1-4FCF-B27F-2840527B6556}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.7.0.76\coFFAddon" [22-09-2016 03:38] [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{C1A2A613-35F1-4FCF-B27F-2840527B6556}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.7.0.76\coFFAddon" [22-09-2016 03:38]