Zoek.exe v5.0.0.0 Updated 19-February-2014 Tool run by Xienix on zo 02-03-2014 at 14:57:18,80. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Xienix\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean] ==== Older Logs ====================== C:\zoek-results2014-03-01-204622.log 3111 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-02-07 14:35:23 43B2CDD8FE2492C8F5183C1E0668BEDC 67312 ----a-w- C:\Windows\UnDeployV.exe ====== C:\Users\Xienix\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-02-23 20:29:02 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\SysWOW64\white-list.txt 2014-02-23 20:29:02 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\SysWOW64\ops.txt 2014-02-23 20:29:02 063B61F07344E99338474D7801F70B5A 108 ----a-w- C:\Windows\SysWOW64\banned-players.txt 2014-02-23 20:29:02 063B61F07344E99338474D7801F70B5A 108 ----a-w- C:\Windows\SysWOW64\banned-ips.txt 2014-02-23 20:29:01 F91F4C740B77F5BF6C8E70AB9F9FFC0F 645 ----a-w- C:\Windows\SysWOW64\server.properties ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-02-27 11:38:13 62FE4654B27862DFF07DB9EAEA3AB484 8062048 ----a-w- C:\Windows\Sysnative\FNTCACHE.DAT ====== C:\Windows\Sysnative\drivers ===== 2014-02-02 22:05:15 0E38E105A73F131D72932DE0FB84D0D8 173656 ----a-w- C:\Windows\Sysnative\drivers\jmcr.sys 2014-02-02 21:48:00 BD9BA262CF26EFE9A9867EBE32D12164 708200 ----a-w- C:\Windows\Sysnative\drivers\Rt64win7.sys 2014-01-31 17:08:21 0BB97D43299910CBFBA59C461B99B910 25928 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys ====== C:\Windows\Tasks ====== 2014-02-23 20:28:56 67C67CE1044623520E515AFAF08DA940 2996 ----a-w- C:\Windows\Sysnative\Tasks\{4CCA7142-0DC8-4FCF-9F23-B63287CB983B} 2014-02-15 23:01:22 EDE713F1E0768A0D8D84EC5E05A5AB15 3518 ----a-w- C:\Windows\Sysnative\Tasks\AdobeAAMUpdater-1.0-Xienix-PcOfDoom-Xienix 2014-02-15 19:06:12 67DD34C23C56FA443E3488E81C9EE5B0 2970 ----a-w- C:\Windows\Sysnative\Tasks\{3253DBF9-0BFB-4288-B005-06F383134C66} 2014-02-02 22:11:52 D8AD680CFE3F4BE244024FA5D8EF65FB 2732 ----a-w- C:\Windows\Sysnative\Tasks\DriverToolkit Autorun 2014-02-02 22:11:52 08AD003CB565E3E15E62C0A16AB53046 360 ----a-w- C:\Windows\Tasks\DriverToolkit Autorun.job 2014-02-01 23:35:29 D0D51CEB2B79141B2AA65E93E8E4641A 3172 ----a-w- C:\Windows\Sysnative\Tasks\PC Shutdown 2014-01-31 22:25:39 E990F8B5E1E0C23284012D5846727029 1052 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-01-31 22:25:39 637BC883DFA550685C8167EC2502E1C5 4052 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA 2014-01-31 22:25:39 4C3C8CFF86F1DB3A4D20870C486E0DDD 1056 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-01-31 22:25:39 2C5AC0AD03B9C87D458DD0230F129616 3800 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-02-27 21:26:37 -------- d-----w- C:\Program Files\trend micro 2014-02-22 15:48:34 -------- d-----w- C:\Program Files\Speccy 2014-02-20 16:27:23 -------- d-----w- C:\Program Files\DesignSpark 2014-02-06 15:36:58 -------- d--h--w- C:\Program Files\CanonBJ 2014-01-31 17:07:40 -------- d-----w- C:\Program Files\SUPERAntiSpyware ======= C:\PROGRA~2 ===== 2014-02-23 23:39:36 -------- d-----w- C:\PROGRA~2\Quake Live 2014-02-23 21:17:03 -------- d-----w- C:\PROGRA~2\Survivors Viy 2014-02-23 13:22:54 -------- d-----w- C:\PROGRA~2\GPU-Z 2014-02-15 23:08:08 -------- d-----w- C:\PROGRA~2\Yawcam 2014-02-15 21:16:16 -------- d-----w- C:\PROGRA~2\Adobe Download Assistant 2014-02-15 17:21:02 -------- d-----w- C:\PROGRA~2\3Dwebcam 2014-02-15 13:25:50 -------- d--h--w- C:\PROGRA~2\COMMON~1\EAInstaller 2014-02-12 15:20:58 -------- d-----w- C:\PROGRA~2\LEGO Software 2014-02-12 15:20:39 -------- d-----w- C:\PROGRA~2\IVI Foundation 2014-02-12 15:20:33 -------- d-----w- C:\PROGRA~2\National Instruments 2014-02-08 23:03:38 -------- d-----w- C:\PROGRA~2\CNCSimulator.com 2014-02-07 14:35:23 -------- d-----w- C:\PROGRA~2\intricad 2014-02-07 07:32:48 -------- d-----w- C:\PROGRA~2\Zenimax Online 2014-02-06 15:31:06 -------- d-----w- C:\PROGRA~2\Canon 2014-02-01 00:27:05 -------- d-----w- C:\PROGRA~2\ManyCam 2014-01-31 22:12:26 -------- d-----w- C:\PROGRA~2\Uniblue 2014-01-31 21:37:28 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service 2014-01-31 16:48:28 -------- d-----w- C:\PROGRA~2\Enigma Software Group 2014-01-31 16:47:10 -------- d-----w- C:\PROGRA~2\COMMON~1\Wise Installation Wizard ======= C: ===== 2014-01-31 16:49:12 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat ====== C:\Users\Xienix\AppData\Roaming ====== 2014-02-26 23:31:23 9F5AC9D030D8449A9C778EEC8A19FAF6 642792 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat 2014-02-26 15:46:26 19F2EB6567F9F6D3E62899D28A59C0D3 111968 ----a-w- C:\Users\Xienix\AppData\Local\GDIPFONTCACHEV1.DAT 2014-02-23 23:42:05 -------- d-----w- C:\Users\Xienix\AppData\Locallow\id Software 2014-02-23 23:42:05 -------- d-----w- C:\Users\Xienix\AppData\Local\id Software 2014-02-23 21:17:43 -------- d-----w- C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Survivors Viy 2014-02-23 13:22:58 -------- d-----w- C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2014-02-20 16:33:35 -------- d-----w- C:\Users\Xienix\AppData\Local\SpaceClaim 2014-02-20 16:27:23 -------- d-----w- C:\Users\Xienix\AppData\Roaming\SpaceClaim 2014-02-19 20:24:07 -------- d-----w- C:\Users\Xienix\AppData\Roaming\Unity 2014-02-15 23:23:22 B5F972564A0B1C5165FE3FB9AFFA868F 46 ----a-w- C:\Users\Xienix\AppData\Roaming\Camdata.ini 2014-02-15 23:23:22 6E96EF680E0E25B7CAE5CD2410B99B26 408 ----a-w- C:\Users\Xienix\AppData\Roaming\CamLayout.ini 2014-02-15 23:23:22 381090055DEF2AF0F21B6B9D95D632D1 408 ----a-w- C:\Users\Xienix\AppData\Roaming\CamShapes.ini 2014-02-15 23:23:22 0552182A95B5D0E8C38916F82A7EDADC 4510 ----a-w- C:\Users\Xienix\AppData\Roaming\CamStudio.cfg 2014-02-15 21:59:11 -------- d-----w- C:\Users\Xienix\AppData\Roaming\PDAppFlex 2014-02-15 21:16:18 -------- d-----w- C:\Users\Xienix\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant 2014-02-15 16:44:25 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs 2014-02-15 16:44:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-02-15 16:44:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2014-02-15 12:21:04 -------- d-----w- C:\Users\Xienix\AppData\Roaming\Origin 2014-02-09 16:30:57 -------- d-----w- C:\Users\Xienix\AppData\Local\#Bqb 2014-02-08 23:04:57 -------- d-----w- C:\Users\Xienix\AppData\Local\IsolatedStorage 2014-02-08 14:13:53 -------- d-----w- C:\Users\Xienix\AppData\Roaming\Autodesk 2014-02-06 15:31:31 -------- d-----w- C:\Users\Xienix\AppData\Roaming\Canon 2014-02-03 14:18:46 -------- d-----w- C:\Users\Xienix\AppData\Local\PassMark 2014-02-02 17:52:36 -------- d-----w- C:\Users\Xienix\AppData\Local\EdgeOfReality 2014-02-01 00:30:14 -------- d-----w- C:\Users\Xienix\AppData\Local\ManyCam 2014-02-01 00:27:41 -------- d-----w- C:\Users\Xienix\AppData\Roaming\ManyCam 2014-01-31 21:37:40 -------- d-----w- C:\Users\Xienix\AppData\Roaming\Mozilla 2014-01-31 21:37:40 -------- d-----w- C:\Users\Xienix\AppData\Local\Mozilla 2014-01-31 17:07:45 -------- d-----w- C:\Users\Xienix\AppData\Roaming\SUPERAntiSpyware.com ====== C:\Users\Xienix ====== 2014-02-27 20:57:14 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Xienix\Downloads\RSITx64.exe 2014-02-25 21:03:16 3C166BAE84553D4CB27AF8ABDC61712D 675988 ----a-w- C:\Users\Xienix\Downloads\Minecraft.exe 2014-02-25 20:52:04 199D3A0D4CDE35E3FD8D6A90C8CFAED7 1146380 ----a-w- C:\Users\Xienix\Downloads\TMC_Minecraft_Launcher (1).exe 2014-02-25 20:50:16 -------- d-----w- C:\Users\Xienix\minecraft 2014-02-23 23:39:25 F9FE097FFF487D95EF738E6FAE45BA01 6024320 ----a-w- C:\Users\Xienix\Downloads\QuakeLiveSetup_841.exe 2014-02-23 21:14:00 5B224EB799A6972E6F5DE30CB883AC70 215576436 ----a-w- C:\Users\Xienix\Downloads\InstallEnglishVer.exe 2014-02-23 20:26:15 0F0885B99081D0C2EF8A3CE697E52F5E 9566327 ----a-w- C:\Users\Xienix\Downloads\minecraft_server.1.7.4.exe 2014-02-23 13:15:42 501E26080BFF03563B4A691C3B39A007 1344480 ----a-w- C:\Users\Xienix\Downloads\GPU-Z.exe 2014-02-22 23:50:46 2086CBCAD3BD7837278BEE73767E420D 1639000 ----a-w- C:\Users\Xienix\Downloads\GPU-Z.0.7.7 (3).exe 2014-02-22 23:49:58 E4CBBDA31A15D61CDF594F098AE3E69B 1716824 ----a-w- C:\Users\Xienix\Downloads\GPU-Z_ASUS_ROG_0.7.7.exe 2014-02-22 23:12:10 86602DEAE16B5A1BF40D1306AE6C3EE7 1639000 ----a-w- C:\Users\Xienix\Downloads\GPU-Z.0.7.7 (2).exe 2014-02-22 23:09:37 74A558A17E59E562C630E55895FCBD35 1350232 ----a-w- C:\Users\Xienix\Downloads\GPU-Z.0.7.5.exe 2014-02-22 23:08:03 6098B6B4A8B6552E89489B8E5A014729 1639000 ----a-w- C:\Users\Xienix\Downloads\GPU-Z.0.7.7 (1).exe 2014-02-22 23:06:25 276BBF9FE53029B838C38ABCE2098846 1639000 ----a-w- C:\Users\Xienix\Downloads\GPU-Z.0.7.7.exe 2014-02-22 15:48:40 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2014-02-22 15:47:40 024542793EF5B061EA2AE16D991D2DD3 4845384 ----a-w- C:\Users\Xienix\Downloads\spsetup125.exe 2014-02-20 16:27:23 -------- d-----w- C:\ProgramData\SpaceClaim 2014-02-15 23:08:31 -------- d-----w- C:\Users\Xienix\.yawcam 2014-02-15 21:17:13 -------- d-----w- C:\Users\Xienix\Adobe Premiere Elements 12 2014-02-15 17:21:02 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dwebcam 2014-02-15 16:44:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Saved Games 2014-02-15 16:44:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Links 2014-02-15 16:44:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Favorites 2014-02-15 16:44:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Downloads 2014-02-15 16:44:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Documents 2014-02-15 16:44:25 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Contacts 2014-02-15 16:44:24 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Videos 2014-02-15 16:44:24 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Searches 2014-02-15 16:44:24 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Pictures 2014-02-15 16:44:24 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Music 2014-02-15 16:44:24 -------- d-----r- C:\Windows\sysWoW64\config\systemprofile\Desktop 2014-02-15 12:19:15 -------- d-----w- C:\ProgramData\Origin 2014-02-12 15:22:30 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEGO MINDSTORMS NXT 2.0 2014-02-12 15:20:39 -------- d-----w- C:\ProgramData\IVI Foundation 2014-02-12 15:20:06 -------- d-----w- C:\ProgramData\National Instruments 2014-02-08 23:05:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps 2014-02-08 23:03:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CNCSimulator Pro 2014-02-08 14:13:53 -------- d-----w- C:\ProgramData\Autodesk 2014-02-07 14:35:24 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mimix 3D Scanner Personal 2014-02-07 13:55:26 -------- d-----w- C:\ProgramData\Elder Scrolls Online 2014-02-06 15:37:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CanoScan LiDE 70 2014-02-06 15:31:07 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2014-02-05 14:39:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2014-02-03 14:18:38 -------- d-----w- C:\ProgramData\Passmark 2014-02-01 00:29:29 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam 2014-01-31 22:26:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-01-31 21:37:29 -------- d-----w- C:\ProgramData\Mozilla 2014-01-31 17:07:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware 2014-01-31 17:07:40 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com ====== C: exe-files == 2014-02-28 22:47:46 3E6E841C6A326C1BBB39185F045CBB11 221184 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Cry of Fear\hltv.exe 2014-02-28 22:39:23 5204DC2B91DFED33032161614C52CDF9 28672 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Cry of Fear\cryoffear\mp3.exe 2014-02-28 22:21:59 12CC11D1D3152DA1FB10087C6321589D 90173 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Cry of Fear\cof.exe 2014-02-28 22:21:58 BEE0AA5F2822BACC9069EEC563F93E5F 389120 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Cry of Fear\hlds.exe 2014-02-28 22:21:58 0C95137F07399B48C104327AB982815A 286720 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Cry of Fear\cryoffear\StatsReset.exe 2014-02-28 22:21:34 F82051797D9A51C8405D583415C69CD2 2683904 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Cry of Fear\CoFLaunchApp.exe 2014-02-27 21:53:27 9BAE2517C0AF16DAB77BC820E29BD532 16384 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\WorkshopUserTool.exe 2014-02-27 21:53:26 1E3810CAF021681B66FC89C483331183 54784 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\WorkshopServerTool.exe 2014-02-27 21:26:39 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Xienix.exe 2014-02-27 20:12:15 C7B738F3E332FDE3995ADD606C2F68CE 55288320 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\UDKEditor.exe 2014-02-27 20:12:15 32FB63BFFFE6A2BBF99A6E2C5EAFA8F3 55289344 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\UDK.exe 2014-02-27 20:12:15 32FB63BFFFE6A2BBF99A6E2C5EAFA8F3 55289344 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe 2014-02-27 20:12:15 32052C8F2471393136B6CB4249DD4995 44764160 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe 2014-02-27 20:12:15 32052C8F2471393136B6CB4249DD4995 44764160 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe 2014-02-26 15:16:32 A21D5F3F3B6B18158C00001F08372B41 7631360 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Awesomenauts\Awesomenauts.exe 2014-02-24 20:40:30 0097765675107EFDB8EC869BC42E0971 508416 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\SDKFrontend.exe 2014-02-23 23:39:47 E59F8E28634FCA4D88A9A3F102F441B2 78226 ----a-w- C:\Program Files (x86)\Quake Live\Uninstall.exe === C: other files == 2014-03-02 13:35:19 4FD4092F034D1D243F713B87CACCDE04 108 ---ha-w- C:\Program Files (x86)\Common Files\X10\Common\x10prod.sys 2014-02-27 18:59:24 DF297A84AAF66136EC1B12E0F98380FB 338 ----a-w- C:\Users\Xienix\Downloads\Thief Full Unlocked-SG\Thief\Engine\Shaders\Compute\Compile_ClearColorShader_To_Header.bat 2014-02-27 18:59:21 E8E659BD049BE0FAB16A729F6C9F8F2E 1692 ----a-w- C:\Users\Xienix\Downloads\Thief Full Unlocked-SG\Thief\Engine\Shaders\Compute\Compile_HLSL_To_Header.bat 2014-02-27 18:59:20 B25E466089A0816BC53A285D7CFAA534 2268 ----a-w- C:\Users\Xienix\Downloads\Thief Full Unlocked-SG\Thief\Engine\Shaders\Compute\Compile_PSSL_To_Header.bat 2014-02-27 18:07:43 D9B932F97EE884EA3EC6F9B2FEC23B59 10855 ----a-w- C:\Users\Xienix\Downloads\Bestelling [8256237240] Centralpoint.nl order 913951 bevestiging annulering.zip 2014-02-25 22:25:53 058F89B4AEB63A3E605A7D8146A2BA41 358 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\redist\cleanup.bat 2014-02-25 22:23:28 AB6511CA5DD739C389529460B6BB4BD9 342 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\The Mighty Quest For Epic Loot\GameData\Data\Generated\deltree.bat 2014-02-25 21:14:22 1261AD835A9F5DD5500E20BB2D846BB8 7666630 ----a-w- C:\Users\Xienix\Downloads\cschnur-BEST_MAP_EVER!!!_(FIXED).zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2312216213-2769650502-2724658445-1000\Software\Microsoft\Windows\CurrentVersion\Run] "SandboxieControl"="C:\Program Files\Sandboxie\SbieCtrl.exe" "CAHeadless"="C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" "MGSysCtrl"="C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "Adobe Acrobat Speed Launcher"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" "Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" "PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE -startup" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "LogMeIn Hamachi Ui"="C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start" "Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "SandboxieControl"="C:\Program Files\Sandboxie\SbieCtrl.exe" "CAHeadless"="C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3" "RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Startup Folders ====================== 2013-11-23 16:19:14 1057 ----a-w- C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2013-11-21 21:56:32 2150 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Assistent content manager voor PlayStation(R).lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\DriverToolkit Autorun.job --a------ C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31-01-2014 23:25] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31-01-2014 23:25] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Ad-Aware Antivirus Scheduled Scan" [C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe] "C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Xienix-PcOfDoom-Xienix" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\DriverToolkit Autorun" [C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\PC Shutdown" [C:\Windows\System32\shutdown.exe] "C:\Windows\SysNative\tasks\Red Giant Link" ["C:\Program Files (x86)\Red Giant Link\Red Giant Link.exe"] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\{3253DBF9-0BFB-4288-B005-06F383134C66}" [C:\Program Files (x86)\3Dwebcam\3Dwebcam.exe] "C:\Windows\SysNative\tasks\{4CCA7142-0DC8-4FCF-9F23-B63287CB983B}" [C:\Users\Xienix\Desktop\server\minecraft_server.1.7.4.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "web2pdfextension@web2pdf.adobedotcom"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn" [17-01-2014 13:57] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Xienix\AppData\Roaming\Mozilla\Firefox\Profiles\vhe6t909.default - Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn - Extension_Protected - %ProfilePath%\extensions\jid0-O6MIff3eO5dIGf5Tcv8RsJDKxrs@jetpack.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Xienix\AppData\Roaming\Mozilla\Firefox\Profiles\vhe6t909.default 2557FBC582910A71CDEB0F22886D118D - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll - Shockwave Flash 853A6F93105790D4DC4D30CC92B19E11 - C:\Users\Xienix\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player ==== Deleted Firefox Extensions ====================== C:\Users\Xienix\AppData\Roaming\Mozilla\Firefox\Profiles\vhe6t909.default\extensions\jid0-O6MIff3eO5dIGf5Tcv8RsJDKxrs@jetpack.xpi deleted ==== Chrome Look ====================== Changes to sync - Xienix\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla Angry Birds - Xienix\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj Last updated at time on date - Xienix\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb ICE Quick Stream - Xienix\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpioikmjnfipgphjldakcaocbbpnfabl Google Wallet - Xienix\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Background Tab - Xienix\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" "Default_Page_URL"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.awesomehp.com/web/?type=ds&ts=1391206302&from=tugs&uid=SAMSUNGXHM641JI_S2BEJ1LZ803797&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.awesomehp.com/web/?type=ds&ts=1391206302&from=tugs&uid=SAMSUNGXHM641JI_S2BEJ1LZ803797&q={searchTerms}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== shortcuts on Users Desktops ====================== C:\Users\Xienix\Desktop\Adobe After Effects CS6.lnk - C:\Program Files (x86)\Adobe\Adobe After Effects CS6\Support Files\AfterFX.exe C:\Users\Xienix\Desktop\Assassin's Creed III - Snelkoppeling.lnk - C:\Users\Xienix\Desktop\Assistent content manager.lnk - C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe C:\Users\Xienix\Desktop\Auslogics Disk Defrag.lnk - C:\Program Files (x86)\Auslogics\Auslogics Disk Defrag\DiskDefrag.exe C:\Users\Xienix\Desktop\AVG PC Tuneup 2011.lnk - C:\Program Files (x86)\AVG\AVG PC Tuneup 2011\BoostSpeed.exe C:\Users\Xienix\Desktop\BioShockInfinite.lnk - C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe C:\Users\Xienix\Desktop\Cura 14.01.lnk - C:\Program Files (x86)\Cura_14.01\python\pythonw.exe -m "Cura.cura" C:\Users\Xienix\Desktop\DOW2 - Snelkoppeling.lnk - C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War II - Retribution\DOW2.exe C:\Users\Xienix\Desktop\EEScreen - Snelkoppeling.lnk - C:\Program Files (x86)\Microsoft Expression\Encoder 4\EEScreen.exe C:\Users\Xienix\Desktop\EXCEL.lnk - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE C:\Users\Xienix\Desktop\HitFilm 2 Express.lnk - C:\Program Files (x86)\FXhome\HitFilm 2 Express\HitFilmExpress.exe C:\Users\Xienix\Desktop\LaunchPad - Snelkoppeling.lnk - C:\Program Files (x86)\Steam\SteamApps\common\PlanetSide 2\LaunchPad.ico C:\Users\Xienix\Desktop\Microsoft Expression Encoder 4.lnk - C:\Program Files (x86)\Microsoft Expression\Encoder 4\Encoder.exe C:\Users\Xienix\Desktop\Microsoft Office Word 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe C:\Users\Xienix\Desktop\Photoshop.lnk - C:\Program Files (x86)\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe C:\Users\Xienix\Desktop\PokeMMO - Snelkoppeling.lnk - C:\Users\Xienix\Downloads\PokeMMO-Client\PokeMMO.exe C:\Users\Xienix\Desktop\POWERPNT.lnk - C:\Program Files (x86)\Microsoft Office\Office12\POWERPNT.EXE C:\Users\Xienix\Desktop\ReplicatorG - Snelkoppeling.lnk - C:\Users\Xienix\Documents\ReplicatorG\replicatorg-0040\ReplicatorG.exe C:\Users\Xienix\Desktop\Sandboxed Web Browser.lnk - C:\Program Files (x86)\Sandboxie\Start.exe default_browser C:\Users\Xienix\Desktop\SkyrimLauncher.lnk - C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe C:\Users\Xienix\Desktop\Spring lobby-client Zero-K.lnk - C:\Program Files (x86)\Spring\Zero-K.exe C:\Users\Xienix\Desktop\SpringLobby.lnk - C:\Program Files (x86)\Spring\springlobby.exe C:\Users\Xienix\Desktop\TechPowerUp GPU-Z.lnk - C:\Program Files (x86)\GPU-Z\GPU-Z.exe C:\Users\Xienix\Desktop\Viy new One English Multiplayer 2 - Snelkoppeling.lnk - C:\Program Files (x86)\Survivors Viy\Viy new One English Multiplayer 2.exe C:\Users\Xienix\Desktop\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 C:\Users\Xienix\Desktop\µTorrent.lnk - C:\Users\Xienix\Desktop\Adobe\Adobe Audition CS6 - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Audition CS6\Adobe Audition CS6.exe C:\Users\Xienix\Desktop\Adobe\Adobe Encore - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Encore CS6\Adobe Encore.exe C:\Users\Xienix\Desktop\Adobe\Adobe Extension Manager CS6 - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Adobe Extension Manager CS6.exe C:\Users\Xienix\Desktop\Adobe\Adobe Media Encoder - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe C:\Users\Xienix\Desktop\Adobe\Adobe Prelude - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Prelude CS6\Adobe Prelude.exe C:\Users\Xienix\Desktop\Adobe\Adobe Premiere Pro - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe C:\Users\Xienix\Desktop\Adobe\Adobe Widget Browser - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Widget Browser\Adobe Widget Browser.exe C:\Users\Xienix\Desktop\Adobe\Bridge - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe C:\Users\Xienix\Desktop\Adobe\Dreamweaver - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe C:\Users\Xienix\Desktop\Adobe\Fireworks - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Fireworks CS6\Fireworks.exe C:\Users\Xienix\Desktop\Adobe\Illustrator - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe Illustrator CS6 (64 Bit)\Support Files\Contents\Windows\Illustrator.exe C:\Users\Xienix\Desktop\Adobe\SpeedGrade - Snelkoppeling.lnk - C:\Program Files (x86)\Adobe\Adobe SpeedGrade CS6\bin\SpeedGrade.exe ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\3Dwebcam.lnk - C:\Program Files (x86)\3Dwebcam\3Dwebcam.exe C:\Users\Public\Desktop\AVG 2014.lnk - C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Users\Public\Desktop\CanoScan Toolbox 5.0.lnk - C:\Program Files (x86)\Canon\CanoScan Toolbox Ver5.0\CSTBox.exe C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe C:\Users\Public\Desktop\CNCSimulator Pro.lnk - C:\Program Files (x86)\CNCSimulator.com\CNCSimulator Pro\CNCSimulator.exe C:\Users\Public\Desktop\DesignSpark Mechanical 1.0.lnk - C:\Program Files (x86)\DesignSpark\DesignSpark Mechanical 1.0\SpaceClaim.exe C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe C:\Users\Public\Desktop\Foxit Reader 5.1.lnk - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe C:\Users\Public\Desktop\Fraps.lnk - C:\Fraps\fraps.exe C:\Users\Public\Desktop\Free Audio Converter.lnk - C:\Program Files (x86)\DVDVideoSoft\Free Audio Converter\FreeAudioConverter.exe C:\Users\Public\Desktop\Free YouTube Download.lnk - C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk - C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Public\Desktop\intricad mimix 3D Scanner Personal.lnk - C:\Program Files (x86)\intricad\mimix 3D Scanner Personal\mimixpersonalv1.exe C:\Users\Public\Desktop\Kernel Panic - Online Multiplayer.lnk - C:\Games\Spring\TASClient.exe -no3d -inifile lobby\KPSClient.ini C:\Users\Public\Desktop\Kernel Panic - Single Player.lnk - C:\Games\Spring\spring.exe \luaui\kpmenu2.txt C:\Users\Public\Desktop\LEGO MINDSTORMS NXT 2.0.lnk - C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS NXT\MINDSTORMSNXT.exe C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Users\Public\Desktop\ManyCam.lnk - C:\Program Files (x86)\ManyCam\ManyCam.exe C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.awesomehp.com/?type=sc&ts=1391206302&from=tugs&uid=SAMSUNGXHM641JI_S2BEJ1LZ803797 C:\Users\Public\Desktop\Nexus Mod Manager.lnk - C:\Program Files\Nexus Mod Manager\NexusClient.exe C:\Users\Public\Desktop\Play League of Legends.lnk - C:\Riot Games\League of Legends\lol.launcher.exe C:\Users\Public\Desktop\PowerISO.lnk - C:\Program Files\PowerISO\PowerISO.exe C:\Users\Public\Desktop\Project Miller.lnk - C:\Program Files (x86)\Autodesk\Project Miller\Miller.exe C:\Users\Public\Desktop\Quake Live.lnk - C:\Program Files (x86)\Quake Live\Launcher.exe C:\Users\Public\Desktop\QuickTime Player.lnk - C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe C:\Users\Public\Desktop\Speccy.lnk - C:\Program Files\Speccy\Speccy64.exe C:\Users\Public\Desktop\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Users\Public\Desktop\Vegas Pro 12.0.lnk - C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe C:\Users\Public\Desktop\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.awesomehp.com/?type=sc&ts=1391206302&from=tugs&uid=SAMSUNGXHM641JI_S2BEJ1LZ803797 C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ReplicatorG.lnk - C:\Users\Xienix\Documents\ReplicatorG\replicatorg-0040\ReplicatorG.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.awesomehp.com/?type=sc&ts=1391206302&from=tugs&uid=SAMSUNGXHM641JI_S2BEJ1LZ803797 C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center\Voorkeuzes\Skyrim.lnk - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe Start Load profilename="Skyrim" C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved\AMD Gaming Evolved.lnk - C:\Program Files (x86)\Raptr\raptrstub.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox.lnk - C:\Users\Xienix\AppData\Roaming\Dropbox\bin\Dropbox.exe /home C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Uninstall Dropbox.lnk - C:\Users\Xienix\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk - C:\Users\Xienix\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Survivors Viy\Uninstall Survivors Viy.lnk - C:\Program Files (x86)\Survivors Viy\Uninstal.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z\TechPowerUp GPU-Z.lnk - C:\Program Files (x86)\GPU-Z\GPU-Z.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z\Uninstall.lnk - C:\Program Files (x86)\GPU-Z\uninstall.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk - C:\Program Files (x86)\Adobe Download Assistant\Adobe Download Assistant.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-A91000000001}\SC_Reader.ico C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesignSpark Mechanical 1.0.lnk - C:\Program Files (x86)\DesignSpark\DesignSpark Mechanical 1.0\SpaceClaim.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.awesomehp.com/?type=sc&ts=1391206302&from=tugs&uid=SAMSUNGXHM641JI_S2BEJ1LZ803797 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quake Live.lnk - C:\Program Files (x86)\Quake Live\Launcher.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dwebcam\3Dwebcam.lnk - C:\Program Files (x86)\3Dwebcam\3Dwebcam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3Dwebcam\uninstall.lnk - C:\Windows\SysWOW64\msiexec.exe /x {A469E77A-EB54-4BB7-9CC5-C276B80C2D92} C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2014.lnk - C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\CanoScan Toolbox 5.0\CanoScan Toolbox 5.0.lnk - C:\Program Files (x86)\Canon\CanoScan Toolbox Ver5.0\CSTBox.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\CanoScan Toolbox 5.0\Leesmij-bestand bij CanoScan Toolbox 5.0.lnk - C:\Program Files (x86)\Canon\CanoScan Toolbox Ver5.0\Readme.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\CanoScan Toolbox 5.0\Uninstall van CanoScan Toolbox 5.0.lnk - C:\Program Files (x86)\Canon\CanoScan Toolbox Ver5.0\Maint.exe /UninstallRemove C:\Program Files (x86)\Canon\CanoScan Toolbox Ver5.0\uninst.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CanoScan LiDE 70\Leesmij.lnk - C:\Program Files (x86)\CanonBJ\IJScan\CNQ2411\readme_Dutch.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CanoScan LiDE 70\Verwijderen.lnk - C:\Windows\System32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2411\DelDrv.exe /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2411 /L0x0013 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CNCSimulator Pro\CNCSimulator Pro.lnk - C:\Program Files (x86)\CNCSimulator.com\CNCSimulator Pro\CNCSimulator.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free YouTube to MP3 Converter.lnk - C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\PremiumMembershipOffer.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Uninstall.lnk - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps\Fraps.lnk - C:\Fraps\fraps.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps\Uninstall.lnk - C:\Fraps\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEGO MINDSTORMS NXT 2.0\LEGO MINDSTORMS NXT 2.0.lnk - C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS NXT\MINDSTORMSNXT.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEGO MINDSTORMS NXT 2.0\Read Me.lnk - C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS NXT\Read Me (Nederlands).txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEGO MINDSTORMS NXT 2.0\Uninstall LEGO MINDSTORMS NXT 2.0.lnk - C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS NXT\plugins\Uninstaller.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi\LogMeIn Hamachi.lnk - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi\Uninstall.lnk - C:\Windows\SysWOW64\msiexec.exe /i {F5CA78D9-B5E9-421E-8DF9-0B418BCBD563} REMOVE=ALL C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Uninstall Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam\ManyCam.lnk - C:\Program Files (x86)\ManyCam\ManyCam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam\Reset settings.lnk - C:\Program Files (x86)\ManyCam\ManyCam.exe --remove-settings C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam\Uninstall ManyCam.lnk - C:\Program Files (x86)\ManyCam\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam\User Guide.lnk - C:\Program Files (x86)\ManyCam\help\UserGuide.pdf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mimix 3D Scanner Personal\intricad Application Update.lnk - C:\Program Files (x86)\intricad\mimix 3D Scanner Personal\intricadApplicationUpdater.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mimix 3D Scanner Personal\intricad mimix 3D Profile Scanner Personal.lnk - C:\Program Files (x86)\intricad\mimix 3D Scanner Personal\mimixpersonalv1.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mimix 3D Scanner Personal\Remove mimix 3D Scanner Personal.lnk - C:\Windows\UnDeployV.exe "C:\Program Files (x86)\intricad\mimix 3D Scanner Personal\Deploy.log" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony\Vegas Pro 12.0\Vegas Pro 12.0 (64-bit).lnk - C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony\Vegas Pro 12.0\Vegas Pro 12.0 Readme.lnk - C:\Program Files (x86)\Sony\Vegas Pro 12.0\Readme\Vegas_readme.htm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony\Vegas Pro 12.0\Video Capture 6.0 Readme.lnk - C:\Program Files (x86)\Sony\Vegas Pro 12.0\Readme\Videocapture_readme.htm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy\Speccy.lnk - C:\Program Files\Speccy\Speccy64.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy\Uninstall Speccy.lnk - C:\Program Files\Speccy\uninst.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Alternate Start.lnk - C:\Program Files\SUPERAntiSpyware\RUNSAS.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Free Edition.lnk - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Help.lnk - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe /register ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AVG PC Tuneup 2011.lnk - C:\Program Files (x86)\AVG\AVG PC Tuneup 2011\BoostSpeed.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit Reader 5.1.lnk - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.awesomehp.com/?type=sc&ts=1391206302&from=tugs&uid=SAMSUNGXHM641JI_S2BEJ1LZ803797 C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ManyCam.lnk - C:\Program Files (x86)\ManyCam\ManyCam.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Sandboxed Web Browser.lnk - C:\Program Files\Sandboxie\Start.exe default_browser C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Adobe After Effects CS6.lnk - C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\AfterFX.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Adobe Photoshop CS6 (64 Bit).lnk - C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Office Word 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Skype.lnk - C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Vegas Pro 12.0 (64-bit).lnk - C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.awesomehp.com/?type=sc&ts=1391206302&from=tugs&uid=SAMSUNGXHM641JI_S2BEJ1LZ803797 C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Taakbeheer.lnk - C:\Windows\System32\taskmgr.exe ==== shortcuts After Repair ====================== C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Xienix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Xienix\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Xienix\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Xienix\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=188 folders=77 32734017 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Xienix\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Xienix\AppData\Local\Temp successfully emptied ==== EOF on zo 02-03-2014 at 15:26:22,28 ======================