Zoek.exe v5.0.0.0 Updated 07-March-2014 Tool run by Fons on di 08-04-2014 at 16:32:38,13. Microsoft Windows 8.1 Pro 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Fons\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 8-4-2014 16:35:36 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AGEIA Technologies deleted successfully C:\PROGRA~3\FreeVideoPlayer deleted successfully C:\PROGRA~3\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} deleted successfully C:\Users\Fons\AppData\Roaming\DefaultTab deleted successfully C:\Users\Fons\AppData\Roaming\GrabPro deleted successfully C:\Users\Fons\AppData\Roaming\Windows Live Writer deleted successfully C:\Users\Fons\AppData\Local\Bundled software uninstaller deleted successfully C:\Users\Fons\AppData\Local\PackageStaging deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{000123B4-9B42-4900-B3F7-F4B073EFC214} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{000123B4-9B42-4900-B3F7-F4B073EFC214} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{000123B4-9B42-4900-B3F7-F4B073EFC214} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{000123B4-9B42-4900-B3F7-F4B073EFC214} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Internet Explorer\SearchScopes\{C431F2B5-AA4F-481C-9E6A-E2CD246467D0} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Internet Explorer\SearchScopes\{C431F2B5-AA4F-481C-9E6A-E2CD246467D0} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC8} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC8} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{000123B4-9B42-4900-B3F7-F4B073EFC214} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Wpm deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wpm deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IePluginService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.0.5 deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="C:\\Program Files\\Internet Explorer\\iexplore.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Maxthon3\Shell\open\command] @="C:\\Program Files (x86)\\Maxthon\\Bin\\Maxthon.exe" ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}] [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] ==== Deleting Files \ Folders ====================== C:\Users\Fons\AppData\Roaming\DefaultTab not found C:\PROGRA~3\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} not found C:\Program Files (x86)\Orbitdownloader deleted C:\Users\Fons\AppData\Roaming\SupTab deleted C:\ProgramData\IePluginService deleted C:\ProgramData\WPM deleted C:\Users\Fons\AppData\Roaming\sweet-page deleted C:\found.000 deleted C:\PROGRA~3\AVG Secure Search deleted C:\PROGRA~3\Package Cache deleted C:\Users\Fons\AppData\Local\AVG Secure Search deleted C:\windows\SysNative\Tasks\SomotoUpdateCheckerAutoStart deleted C:\Users\Fons\AppData\LocalLow\AVG Secure Search deleted C:\Users\Fons\AppData\LocalLow\PriceGong deleted C:\WINDOWS\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\user.js deleted C:\END deleted C:\Users\Fons\Desktop\Youtube.lnk deleted C:\Users\Fons\Desktop\Facebook.lnk deleted "C:\PROGRA~2\AVG Secure Search\TBAPI.dll" deleted "C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted "C:\PROGRA~2\AVG Secure Search\TBAPI.dll" deleted "C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.0.5\SiteSafety.dll" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.0.5\log4cplusU.dll" deleted "C:\Users\Fons\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe" deleted "C:\Program Files (x86)\SupTab" deleted "C:\PROGRA~2\SupTab" deleted "C:\PROGRA~2\AVG Secure Search" not deleted "C:\PROGRA~2\AVG Secure Search" not deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted "C:\Users\Fons\AppData\Local\WebPlayer" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.0.5" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.0.5" deleted "C:\Users\Fons\AppData\Local\WebPlayer\FLV Player" deleted ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Fons\AppData\Local\Temp ==== 2014-04-05 13:49:08 984CC93BB0EF86A0B4825269D8379D81 774424 ----a-w- C:\Users\Fons\AppData\Local\Temp\CRX_DF399A9B283A\GoogleUpdateSetup.exe 2014-04-05 13:49:08 4C8C0B0340C6234649C7F91FB5E89A54 571272 ----a-w- C:\Users\Fons\AppData\Local\Temp\CRX_DF399A9B283A\ChromeRecovery.exe 2014-04-05 13:41:02 E1D435F5AA50AD012329EE5253A2626B 564336 ----a-w- C:\Users\Fons\AppData\Local\Temp\sof_sweet-page.exe 2014-04-01 03:56:40 C397285D9BCAC97F2D8451BF4B974F1E 3048968 ----a-w- C:\Users\Fons\AppData\Local\Temp\fullpackage_temp1396705376\tmp\SupTab.exe 2014-03-25 22:58:22 8F4AF3027DC96C5B8C37AC20D19D071B 208280 ----a-w- C:\Users\Fons\AppData\Local\Temp\fullpackage_temp1396705376\qSE.exe 2014-03-25 22:58:22 7913F01708248F73B5B78EAB94AF2BBC 1747456 ----a-w- C:\Users\Fons\AppData\Local\Temp\fullpackage_temp1396705376\UninstallManager.exe ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2014-04-05 12:41:33 9EA661DB9B393F46046D6181A3DDC4AD 2804528 ----a-w- C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2014-04-05 12:41:27 72B3380DA5EA53028501F3B94E421FBB 2295808 ----a-w- C:\WINDOWS\SysWOW64\authui.dll 2014-04-05 12:41:26 D11A05032C28EE7588C135ECF7B49E81 1204968 ----a-w- C:\WINDOWS\SysWOW64\winmde.dll 2014-04-05 12:41:25 FF73CDC3F09904D82B0CCC1CA750CD02 218112 ----a-w- C:\WINDOWS\SysWOW64\Windows.Graphics.dll 2014-04-05 12:41:25 ECD4A3F754224C954D3D19B6ECBFE5AA 513536 ----a-w- C:\WINDOWS\SysWOW64\rastls.dll 2014-04-05 12:41:25 CF4C3815E577C7DC32BB8DB90F0B34C1 552624 ----a-w- C:\WINDOWS\SysWOW64\oleaut32.dll 2014-04-05 12:41:25 C85EA737B20BEDC46CBA748DCE115184 433664 ----a-w- C:\WINDOWS\SysWOW64\mfds.dll 2014-04-05 12:41:25 92124EF7B1BF5492EFCA17B3A208E4F4 663680 ----a-w- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2014-04-05 12:41:25 4E556E5490191ED9B771576D9221A461 273920 ----a-w- C:\WINDOWS\SysWOW64\msieftp.dll 2014-04-05 12:41:25 06730D9C233B01E2F99C1BE2461629F7 980480 ----a-w- C:\WINDOWS\SysWOW64\mispace.dll 2014-04-05 12:40:13 9929F71938D9FCE4550BEB935071F0C8 13949440 ----a-w- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2014-04-05 12:40:10 3104FCDE0470E5D89C9991FC0EDDE57E 18643560 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2014-04-05 12:40:06 65ACE54B8EDA937EE7706733D27F40A8 802816 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2014-04-05 12:40:05 DBB6B2FA462A5E7029766B09ED9CDA73 381168 ----a-w- C:\WINDOWS\SysWOW64\mfsvr.dll 2014-04-05 12:40:05 CF8746715C1AA00C29F789825E321C7C 770560 ----a-w- C:\WINDOWS\SysWOW64\ReAgent.dll 2014-04-05 12:40:04 D292652F380DFC23897CB31B1940E56C 588800 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2014-04-05 12:40:04 42433CDEC449D40F508752F2D487D8E4 478208 ----a-w- C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2014-04-05 12:40:03 EC308077E9BEEDF523AE3D6BA042E016 630272 ----a-w- C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll 2014-04-05 12:40:03 A863A4DEF854D579C36EAA9DECF21C80 336896 ----a-w- C:\WINDOWS\SysWOW64\XpsGdiConverter.dll 2014-04-05 12:40:03 986ABF43F76F5B0E3557363FB4925C78 1472048 ----a-w- C:\WINDOWS\SysWOW64\ntdll.dll 2014-04-05 12:40:03 716046CF7941B176C18AA58785899A2D 174592 ----a-w- C:\WINDOWS\SysWOW64\WSClient.dll 2014-04-05 12:40:02 E2C1E49EBFB8EFA1AFF6966533BAD12B 140800 ----a-w- C:\WINDOWS\SysWOW64\easwrt.dll 2014-04-05 12:40:02 A7DE6E0B69826D5B6F5FF68AABCF7035 218112 ----a-w- C:\WINDOWS\SysWOW64\sti.dll 2014-04-05 12:40:02 A00970DBAD7034523CF9D2C395A944B8 103936 ----a-w- C:\WINDOWS\SysWOW64\OEMLicense.dll 2014-04-02 20:06:21 260D6B421E5551E8BA75D16B5CA90D9A 51200 ----a-w- C:\WINDOWS\SysWOW64\ieetwproxystub.dll 2014-04-02 20:06:21 0E7B7C9F483300F9FF97C6A1E4BC4F57 32768 ----a-w- C:\WINDOWS\SysWOW64\iernonce.dll 2014-04-02 20:06:20 BD5E6C894130E7BB7ECE9A0925383068 2168320 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2014-04-02 20:06:19 0FF358906F2333B26267BC0064DC02C4 1156096 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2014-04-02 20:06:18 A045DAE4D242A9A50FF6902774C55BE0 524288 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2014-04-02 20:06:16 70462E0A4E293FC80620AB945D8A59BB 17074688 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2014-04-02 20:06:14 408805B8083896DC95E6340F4016BEBD 61952 ----a-w- C:\WINDOWS\SysWOW64\iesetup.dll 2014-04-02 20:06:13 6A06EB11F1E5BDAA795DAE7838F9FE20 43008 ----a-w- C:\WINDOWS\SysWOW64\jsproxy.dll 2014-04-02 20:06:13 40E68599FE3A10F816217D3789FCE74E 1964032 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2014-04-02 20:06:13 0F739443669F3A48F1B2325995117BFE 553472 ----a-w- C:\WINDOWS\SysWOW64\jscript9diag.dll 2014-04-02 20:06:12 4831AA1A6A112ACCEE240C9D5FA2108B 11266048 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2014-04-02 20:06:10 B5B3334F177CED627C2D7FE38235B6B1 2724864 ----a-w- C:\WINDOWS\SysWOW64\mshtml.tlb 2014-04-02 20:06:08 FC46FE32B043CA7251B1D707B91BA6A7 4244480 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2014-04-02 20:06:08 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\WINDOWS\SysWOW64\ieUnatt.exe 2014-04-02 20:06:07 B8F28AAC003060E3B125D2447CFC19E2 164864 ----a-w- C:\WINDOWS\SysWOW64\msrating.dll 2014-04-02 20:06:07 AAFEAB4FC9D70253F8C7E353E879E8A2 1820160 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2014-04-02 20:06:07 4605E0295C8E742B28FD63D255322795 703488 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-04-02 20:05:20 C9C0B562C7AA50A672766AAC8112DF05 3936256 ----a-w- C:\WINDOWS\SysWOW64\d2d1.dll 2014-04-02 20:05:19 2754B116D797255B6A2F2F5DB1760238 2071552 ----a-w- C:\WINDOWS\SysWOW64\d3d10warp.dll 2014-04-02 20:05:17 5254A52E0F354BC7955E309C4166CE0A 1317376 ----a-w- C:\WINDOWS\SysWOW64\msxml3.dll 2014-04-02 20:05:14 D34CE666D9BA3D5232609D3C15075B70 5770752 ----a-w- C:\WINDOWS\SysWOW64\mstscax.dll 2014-04-02 20:05:13 ECEBFCEF5799B57BFF242D24B27E4FE4 2143960 ----a-w- C:\WINDOWS\SysWOW64\mfcore.dll 2014-04-02 20:05:12 2A3626E0B7F5A5317902EBDAF2B4CCE0 1371824 ----a-w- C:\WINDOWS\SysWOW64\combase.dll 2014-04-02 20:05:11 6C8AC5035C39C818624EFA962B24AB3D 1036288 ----a-w- C:\WINDOWS\SysWOW64\kernel32.dll 2014-04-02 20:05:11 34823DAA381423CAE81FEE7C2EEE52F4 669352 ----a-w- C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-04-02 20:05:10 FCD51A3EB7E47FBCE17382A95FD3AB35 2873344 ----a-w- C:\WINDOWS\SysWOW64\dbgeng.dll 2014-04-02 20:05:10 878B3C936C3C2850A57C24C6F104EBC5 208896 ----a-w- C:\WINDOWS\SysWOW64\rdpencom.dll 2014-04-02 20:05:10 17500825FE6C7094ACC6E7DC6B578399 369280 ----a-w- C:\WINDOWS\SysWOW64\Faultrep.dll 2014-04-02 20:05:09 F5033F3C6F8E706D78ACB9351EBF7B3E 1238016 ----a-w- C:\WINDOWS\SysWOW64\dbghelp.dll 2014-04-02 20:05:09 249DE8C6F690646CC8EC53D49ABC6BE9 408480 ----a-w- C:\WINDOWS\SysWOW64\WerFault.exe 2014-04-02 20:05:08 D4A17A8DEB194D77AD9651F0EE0C76EB 138752 ----a-w- C:\WINDOWS\SysWOW64\DWWIN.EXE 2014-04-02 20:05:07 D0B6EB329D696A5C2122352EAE722290 855552 ----a-w- C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-04-02 20:05:07 3DA5CD1E3B9BDAF79731CB6CB1029CB3 53248 ----a-w- C:\WINDOWS\SysWOW64\tsgqec.dll 2014-04-02 20:05:02 F0769848C6438AF1FF45E495219222B7 444928 ----a-w- C:\WINDOWS\SysWOW64\msdrm.dll 2014-04-02 20:04:59 9A21A14A25A7BC3D0EC1ED56CC75B4B7 17408 ----a-w- C:\WINDOWS\SysWOW64\pcaui.exe 2014-04-02 20:04:53 7D30E75C5C0FEAA40B79775C92C6AF23 628736 ----a-w- C:\WINDOWS\SysWOW64\MrmCoreR.dll 2014-04-02 20:04:53 5D2A65C08953962327A21A51B5FC2089 1020928 ----a-w- C:\WINDOWS\SysWOW64\actxprxy.dll 2014-04-02 20:04:53 5A37BBFA3A43556806DE5DDAD682766B 105984 ----a-w- C:\WINDOWS\SysWOW64\SkyDriveShell.dll 2014-04-02 20:04:30 07B5CC5559ED3F55A3F940B3211D89C2 124416 ----a-w- C:\WINDOWS\SysWOW64\poqexec.exe 2014-04-02 19:54:25 F80E8CF9E4A051C2CC338C85088A046C 488448 ----a-w- C:\WINDOWS\SysWOW64\qedit.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2014-04-05 12:41:34 32370AF583EC8B24D790E1B9201D6811 3210528 ----a-w- C:\WINDOWS\Sysnative\msmpeg2vdec.dll 2014-04-05 12:41:29 9FF95D589B5626852CECA2444C5C5A58 2617344 ----a-w- C:\WINDOWS\Sysnative\authui.dll 2014-04-05 12:41:28 728D3349FAB251B0265EFA55C67DCA2D 1503232 ----a-w- C:\WINDOWS\Sysnative\wlansvc.dll 2014-04-05 12:41:27 EF276593AD1BDF5A99032F62D6272848 834048 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2014-04-05 12:41:27 D33E2A482C47ABFDD80185DD9C8C06F1 1399176 ----a-w- C:\WINDOWS\Sysnative\winmde.dll 2014-04-05 12:41:27 1A1B60D269F745C021F69564B5906AD0 1374384 ----a-w- C:\WINDOWS\Sysnative\wmpmde.dll 2014-04-05 12:41:26 D65B1C952AEB864C2BAC7A770B17ECCE 282112 ----a-w- C:\WINDOWS\Sysnative\SystemEventsBrokerServer.dll 2014-04-05 12:41:26 B9FC41CEC711DC0E1BFE927EEDC49176 745336 ----a-w- C:\WINDOWS\Sysnative\oleaut32.dll 2014-04-05 12:41:26 A6207A88B596F726DE558425F3B7E592 263168 ----a-w- C:\WINDOWS\Sysnative\bisrv.dll 2014-04-05 12:41:26 78AB9F5DC27E317F0B34C45D54ABB6B2 32088 ----a-w- C:\WINDOWS\Sysnative\ploptin.dll 2014-04-05 12:41:26 40B228D05DB02F4A5F2452600999F53F 809872 ----a-w- C:\WINDOWS\Sysnative\mfmp4srcsnk.dll 2014-04-05 12:41:26 39435F4007F1CEDEF04356892B18D174 202240 ----a-w- C:\WINDOWS\Sysnative\ubpm.dll 2014-04-05 12:41:25 FF9F658A51CAD74C25AF83038DBD735D 306688 ----a-w- C:\WINDOWS\Sysnative\msieftp.dll 2014-04-05 12:41:25 E18E9C9EBCFCA456B74BB6A80B1DB226 1415680 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2014-04-05 12:41:25 CD45E3FE736150D45EFDC9145DA53757 24064 ----a-w- C:\WINDOWS\Sysnative\bi.dll 2014-04-05 12:41:25 BDE4ABD3AB4171CECADFD38F392E656C 1227264 ----a-w- C:\WINDOWS\Sysnative\mispace.dll 2014-04-05 12:41:25 AD95F86C8D1843BE653F89FDE213F9E7 207872 ----a-w- C:\WINDOWS\Sysnative\deviceregistration.dll 2014-04-05 12:41:25 91433B44B1EF301E7DD696EB5281BC20 589824 ----a-w- C:\WINDOWS\Sysnative\rastls.dll 2014-04-05 12:41:25 660891FFB1B22FF39AADB3F45CE15D45 470016 ----a-w- C:\WINDOWS\Sysnative\mfds.dll 2014-04-05 12:41:25 54A9F4AC86F2A4E7C3ADE47CAE5DE8E0 136704 ----a-w- C:\WINDOWS\Sysnative\psmsrv.dll 2014-04-05 12:41:25 34F8F7A0B782798F6A9511157BCC3E32 273408 ----a-w- C:\WINDOWS\Sysnative\Windows.Graphics.dll 2014-04-05 12:40:17 FF73B88BA206966BD228320F664D4D92 21199256 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2014-04-05 12:40:16 04B5ADB034D17585D3BCFC6DE5CADFF8 18576384 ----a-w- C:\WINDOWS\Sysnative\Windows.UI.Xaml.dll 2014-04-05 12:40:07 E069B63DAD920D231FA8A141DFF43A8C 960512 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2014-04-05 12:40:06 E80700EB046D0B82B694C98CF7231C08 481944 ----a-w- C:\WINDOWS\Sysnative\mfsvr.dll 2014-04-05 12:40:06 D03BF756457B6A1EB305B26046BB9B4D 914944 ----a-w- C:\WINDOWS\Sysnative\ReAgent.dll 2014-04-05 12:40:06 A95838FFFAEAA7500263D491575F7E0C 1214976 ----a-w- C:\WINDOWS\Sysnative\schedsvc.dll 2014-04-05 12:40:04 E287F157F7A0011D93179C64EF8ADCF2 376320 ----a-w- C:\WINDOWS\Sysnative\pnrpsvc.dll 2014-04-05 12:40:04 B88A70259DF2927787C0B766DD4CFB5C 206336 ----a-w- C:\WINDOWS\Sysnative\WSClient.dll 2014-04-05 12:40:04 968FB3BA8E7DF0933A1CF593BD503F4A 461312 ----a-w- C:\WINDOWS\Sysnative\XpsGdiConverter.dll 2014-04-05 12:40:04 847CFF96ACB575CE73C0E2E86C6BA993 842752 ----a-w- C:\WINDOWS\Sysnative\MsSpellCheckingFacility.dll 2014-04-05 12:40:04 43D0F8E593ABD37B5BC9573EDD71EFEB 628736 ----a-w- C:\WINDOWS\Sysnative\SettingSyncHost.exe 2014-04-05 12:40:04 1FCA4E287F0ED13BF037A484AA2FE3B1 419160 ----a-w- C:\WINDOWS\Sysnative\hal.dll 2014-04-05 12:40:04 1D8F8BE07D2B06C32ADB4B08F0F2A357 749056 ----a-w- C:\WINDOWS\Sysnative\SettingSyncCore.dll 2014-04-05 12:40:03 C8ACFF60C553E63949A79DC370B516E4 947712 ----a-w- C:\WINDOWS\Sysnative\reseteng.dll 2014-04-05 12:40:03 A0D3749BB1BC942C7D21C4D99E79A615 131160 ----a-w- C:\WINDOWS\Sysnative\easinvoker.exe 2014-04-05 12:40:03 3D136E8D4C0407D9C40FD8BDD649B587 1720560 ----a-w- C:\WINDOWS\Sysnative\ntdll.dll 2014-04-05 12:40:02 68085A085DE8E3540EE8E02CAE575B2E 138240 ----a-w- C:\WINDOWS\Sysnative\OEMLicense.dll 2014-04-05 12:40:02 66F214C9E446407D78048681394820A6 178176 ----a-w- C:\WINDOWS\Sysnative\easwrt.dll 2014-04-05 12:40:02 0B9FBEC5714523FF76DDFEB320FE2DF2 303616 ----a-w- C:\WINDOWS\Sysnative\sti.dll 2014-04-02 20:06:21 76862AAF77C049EC20217FDC209F7F13 2765824 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2014-04-02 20:06:19 E77092C38028EB0A5C461B3436E0A6D5 4096 ----a-w- C:\WINDOWS\Sysnative\ieetwcollectorres.dll 2014-04-02 20:06:18 FCFAEDF0AA1A78A1875FDB798598408B 48640 ----a-w- C:\WINDOWS\Sysnative\ieetwproxystub.dll 2014-04-02 20:06:14 FD08F8BA2437A85F500EFFE3FD3158A6 33792 ----a-w- C:\WINDOWS\Sysnative\iernonce.dll 2014-04-02 20:06:14 94C59DD02BC7EA0E421055B9946CA861 2724864 ----a-w- C:\WINDOWS\Sysnative\mshtml.tlb 2014-04-02 20:06:13 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\WINDOWS\Sysnative\ieetwcollector.exe 2014-04-02 20:06:13 BA0A21F761CE5001DF712C51BF11F953 1393664 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2014-04-02 20:06:12 E6ACA421DA3E50D7F0A31228F0C547B0 627200 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2014-04-02 20:06:09 C1E2C16D58D76323800C3EE5E2C5095A 66048 ----a-w- C:\WINDOWS\Sysnative\iesetup.dll 2014-04-02 20:06:08 D378AB3C9178424588B55AC7B652D7F9 218624 ----a-w- C:\WINDOWS\Sysnative\ie4uinit.exe 2014-04-02 20:06:08 83296DE8CFFEADA636DCC1AB2E3BF643 2041856 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2014-04-02 20:06:06 9C5ADB26632D46919ABB231CF7DE98B9 13051904 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2014-04-02 20:06:05 3906C9640406FC0FC00A324947C74893 708608 ----a-w- C:\WINDOWS\Sysnative\jscript9diag.dll 2014-04-02 20:06:05 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\WINDOWS\Sysnative\ieUnatt.exe 2014-04-02 20:06:04 CF1C73DE1FADE3D3C44FCAF254F57DB2 5768704 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2014-04-02 20:06:04 48ED94DA88F65684B28FCD87C01288A7 817664 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2014-04-02 20:06:03 DF79CE9B950C62677D232154E93A81C7 2334208 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2014-04-02 20:06:03 99ED8FBAFD325550D07A32664D9E3CC8 53760 ----a-w- C:\WINDOWS\Sysnative\jsproxy.dll 2014-04-02 20:06:03 1D1D7F52EC84294859642A4309FE648E 195584 ----a-w- C:\WINDOWS\Sysnative\msrating.dll 2014-04-02 20:06:02 4E0709D9BB951AD1C22E4FF519B90839 23133696 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2014-04-02 20:05:20 053472337FDD116BD010C88DB0C34DF1 4604416 ----a-w- C:\WINDOWS\Sysnative\d2d1.dll 2014-04-02 20:05:19 389C4E97E3A498159B625A7A13EA4560 2397184 ----a-w- C:\WINDOWS\Sysnative\d3d10warp.dll 2014-04-02 20:05:17 AC7C39F7A866BF81103042244CE85827 2152448 ----a-w- C:\WINDOWS\Sysnative\msxml3.dll 2014-04-02 20:05:15 C993A0B97BECD3AAF5158E3869878465 6353960 ----a-w- C:\WINDOWS\Sysnative\sppsvc.exe 2014-04-02 20:05:14 BAAD43360A7DF630ECC414671AEFA28C 6640640 ----a-w- C:\WINDOWS\Sysnative\mstscax.dll 2014-04-02 20:05:13 C039246195C736A602F581D29F18A43D 1928144 ----a-w- C:\WINDOWS\Sysnative\combase.dll 2014-04-02 20:05:13 977F77CE98456F6B115E5360A1160449 2133208 ----a-w- C:\WINDOWS\Sysnative\mfcore.dll 2014-04-02 20:05:11 CFADC50692A845BAC30940E203393219 1287064 ----a-w- C:\WINDOWS\Sysnative\kernel32.dll 2014-04-02 20:05:11 C7B69F90B823182CE6BE7C5374832DE5 764864 ----a-w- C:\WINDOWS\Sysnative\mfmpeg2srcsnk.dll 2014-04-02 20:05:11 819A1E0F89B6AC222E9D95CA000A40B1 4175360 ----a-w- C:\WINDOWS\Sysnative\dbgeng.dll 2014-04-02 20:05:10 C83AFB0B285F293EDECF5EBDEC074A94 458616 ----a-w- C:\WINDOWS\Sysnative\WerFault.exe 2014-04-02 20:05:10 C7DFBE21051D5E44B479CBF74B968335 1486848 ----a-w- C:\WINDOWS\Sysnative\dbghelp.dll 2014-04-02 20:05:10 B5D2EBAD81739185A91D210F5F01824B 407024 ----a-w- C:\WINDOWS\Sysnative\Faultrep.dll 2014-04-02 20:05:10 2684605E822359CBD1ED2BD2C8E76397 249856 ----a-w- C:\WINDOWS\Sysnative\rdpencom.dll 2014-04-02 20:05:09 99453C649DC4B0BE6D062B701CD2917F 716288 ----a-w- C:\WINDOWS\Sysnative\swprv.dll 2014-04-02 20:05:09 735CB57F806D292FB7ABE8BDFD3B5853 233920 ----a-w- C:\WINDOWS\Sysnative\mfps.dll 2014-04-02 20:05:08 94D79382FB796B0A8C90270654A70563 1057280 ----a-w- C:\WINDOWS\Sysnative\rdvidcrl.dll 2014-04-02 20:05:08 724ADFEE7743C26C550ABFE04271DCFD 160256 ----a-w- C:\WINDOWS\Sysnative\DWWIN.EXE 2014-04-02 20:05:08 3FFEC6927D4017829A82ECDB277BB23E 64512 ----a-w- C:\WINDOWS\Sysnative\tsgqec.dll 2014-04-02 20:05:08 110BE5198A63D3FF3CE9C30F1DC12EC3 386722 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml 2014-04-02 20:05:07 AFCAB4DC692CCE37E283B00E2D7B438F 447488 ----a-w- C:\WINDOWS\Sysnative\sppcomapi.dll 2014-04-02 20:05:02 BE94090FCBB95B6F22E952D27BD2610E 570880 ----a-w- C:\WINDOWS\Sysnative\msdrm.dll 2014-04-02 20:04:59 6F531F98B8601A9E7A93F8FEC393E2D1 18944 ----a-w- C:\WINDOWS\Sysnative\pcaui.exe 2014-04-02 20:04:54 F67102E9791A5B80070B30ADF1159A3C 4217344 ----a-w- C:\WINDOWS\Sysnative\SyncEngine.dll 2014-04-02 20:04:53 F2629AF810E939672173CB17ECAC1667 919040 ----a-w- C:\WINDOWS\Sysnative\MrmCoreR.dll 2014-04-02 20:04:53 5C6F6CC5C1395A8B5864713CD3F7F329 720384 ----a-w- C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll 2014-04-02 20:04:53 5A9895295C7C6174C73496BD06B2E288 870912 ----a-w- C:\WINDOWS\Sysnative\SkyDrive.exe 2014-04-02 20:04:53 41BD327A7518C4102969FCEE8F3D5030 121344 ----a-w- C:\WINDOWS\Sysnative\SkyDriveShell.dll 2014-04-02 20:04:53 1968E2E5143D2EB964F836BA19A51104 2804224 ----a-w- C:\WINDOWS\Sysnative\actxprxy.dll 2014-04-02 20:04:52 BBB9A31169B4969169ADE608231E2985 115712 ----a-w- C:\WINDOWS\Sysnative\winbici.dll 2014-04-02 20:04:37 695C842DAA76536CE44C336C9E27B25D 1507704 ----a-w- C:\WINDOWS\Sysnative\winload.exe 2014-04-02 20:04:37 1A1DDFD4BA6523979C76BE188984C3AC 1643584 ----a-w- C:\WINDOWS\Sysnative\winload.efi 2014-04-02 20:04:31 4A8D40E38BC2C57E5D630AD6994A85CB 139776 ----a-w- C:\WINDOWS\Sysnative\poqexec.exe 2014-04-02 19:54:25 05894DFC52A78C3B1DD5EF6F30FAD28C 586240 ----a-w- C:\WINDOWS\Sysnative\qedit.dll 2014-04-02 19:54:05 1A69D165DDA78A4329B854D4FEDAD132 4189184 ----a-w- C:\WINDOWS\Sysnative\win32k.sys ====== C:\WINDOWS\Sysnative\drivers ===== 2014-04-05 12:41:27 ED39D676080A1AEA755F1DEC1A8DF1A4 1119064 ----a-w- C:\WINDOWS\Sysnative\drivers\ndis.sys 2014-04-05 12:41:26 79B6F3DF7CDFD12159871FF71464F0CE 403456 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys 2014-04-05 12:41:25 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\WINDOWS\Sysnative\drivers\ipnat.sys 2014-04-05 12:41:25 4628B415A84EA9D4D396A56F1D0CB6C6 142680 ----a-w- C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS 2014-04-05 12:41:25 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\WINDOWS\Sysnative\drivers\BtaMPM.sys 2014-04-05 12:40:07 13B160C1913F012BD1615EB1398D3779 1530712 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgkrnl.sys 2014-04-05 12:40:04 22EDC0DE06A0272DFA4C7B47B5D8E377 382808 ----a-w- C:\WINDOWS\Sysnative\drivers\dxgmms1.sys 2014-04-05 12:40:03 A1A5E79C0D1352AFDC08328A623DA051 408576 ----a-w- C:\WINDOWS\Sysnative\drivers\rdbss.sys 2014-04-05 12:40:02 DF355EB0199198728027962DCFCDE5FB 121088 ----a-w- C:\WINDOWS\Sysnative\drivers\USBAUDIO.sys 2014-04-05 12:40:02 D22EB844EB57D016CC34178AC86456DF 325464 ----a-w- C:\WINDOWS\Sysnative\drivers\USBXHCI.SYS 2014-04-02 20:05:12 ECC68BD5347BDE9631EE68274858A41F 2543960 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2014-04-02 20:05:09 C85C075DE5B6D0FE116043054DE8EE02 311640 ----a-w- C:\WINDOWS\Sysnative\drivers\volsnap.sys 2014-04-02 19:54:28 C52148456E0F6EAD9E903020A79207FC 236888 ----a-w- C:\WINDOWS\Sysnative\drivers\WdFilter.sys 2014-04-02 19:54:27 57F22324FAAF92ADF957B281E88F1743 124760 ----a-w- C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys 2014-04-02 19:54:27 241895E8A9C158DF86E12FDD21033A32 35856 ----a-w- C:\WINDOWS\Sysnative\drivers\WdBoot.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2014-04-06 08:57:18 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2014-03-12 12:45:36 -------- d-----w- C:\PROGRA~2\FLV Video Player 2014-03-12 11:05:59 -------- d-----w- C:\PROGRA~2\XMediaPlayer ======= C: ===== ====== C:\Users\Fons\AppData\Roaming ====== 2014-03-12 12:46:08 -------- d-----w- C:\Users\Fons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player 2014-03-12 11:08:50 -------- d-----w- C:\Users\Fons\AppData\Local\FreeVideoPlayer 2014-03-12 10:49:03 EFB4787D627108C0EDAE6B9FD4F6CC53 130 ----a-w- C:\Users\Fons\AppData\Roaming\default.rss 2014-03-12 10:47:58 -------- d-----w- C:\Users\Fons\AppData\Roaming\Nero ====== C:\Users\Fons ====== 2014-04-06 09:25:53 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Fons\Desktop\RSITx64.exe 2014-04-06 08:56:50 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Fons\Downloads\RSITx64.exe 2014-04-02 19:39:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2014-03-12 11:06:02 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMediaPlayer ====== C: exe-files == 2014-04-06 09:25:53 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Fons\Desktop\RSITx64.exe 2014-04-06 09:15:32 03821ADCE377054C939900E9DD6A0B0E 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-64827514-377139087-2016194062-1000\$I5UC61S.exe 2014-04-06 08:57:18 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Fons.exe 2014-04-06 08:56:50 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Fons\Downloads\RSITx64.exe 2014-04-06 08:56:36 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Fons\AppData\Local\Microsoft\Windows\INetCache\IE\M9JM42SI\RSITx64.exe 2014-04-05 13:51:34 CEC0A8DC98AF2CC2AE69CAB15B3B6C0E 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-64827514-377139087-2016194062-1000\$IYE5C48.exe 2014-04-05 13:49:08 984CC93BB0EF86A0B4825269D8379D81 774424 ----a-w- C:\Users\Fons\AppData\Local\Temp\CRX_DF399A9B283A\GoogleUpdateSetup.exe 2014-04-05 13:49:08 4C8C0B0340C6234649C7F91FB5E89A54 571272 ----a-w- C:\Users\Fons\AppData\Local\Temp\CRX_DF399A9B283A\ChromeRecovery.exe 2014-04-05 13:45:49 54F9DFCB8C34E25F102A46BD1BE94E54 5748760 ----a-w- C:\Users\Fons\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.812_1\plugin\hola_plugin_x64.exe 2014-04-05 13:45:48 6BF223F5DDDC60FF9B1114EC495B1B67 4968472 ----a-w- C:\Users\Fons\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.812_1\plugin\hola_plugin.exe 2014-04-05 13:43:10 54F9DFCB8C34E25F102A46BD1BE94E54 5748760 ----a-w- C:\Users\Fons\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.812_0\plugin\hola_plugin_x64.exe 2014-04-05 13:43:10 54F9DFCB8C34E25F102A46BD1BE94E54 5748760 ----a-w- C:\Users\Fons\AppData\Local\Torch\Plugins\Hola\hola_plugin_x64.exe 2014-04-05 13:42:25 832FC510EDA8F7A9482CA99F53A9433A 1121280 ----a-w- C:\Users\Fons\AppData\Local\Torch\Update\29.0.0.6292\TorchUpdate.exe 2014-04-05 13:42:23 8B623C94CD14C77B98B0EFDBECFF8B69 2370368 ----a-w- C:\Users\Fons\AppData\Local\Torch\Plugins\Torrent\29.0.0.6292\TorchTorrent.exe 2014-04-05 13:42:17 CF4C475E2F1EA162D17308B732C4B3F2 1335808 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\Installer\setup.exe 2014-04-05 13:42:17 597F1147B83B1A6E970D42AE0CD4EBED 884224 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\torch.exe 2014-04-05 13:42:15 8236E0B3587D43557BE306D0A3A7432B 192000 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\chrome_launcher.exe 2014-04-05 13:42:15 4BBAC91F4E438799A743A54231B59426 77824 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\chrome_frame_helper.exe 2014-04-05 13:42:15 315FE30974B396A907FE0CD084F795CA 1992704 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\delegate_execute.exe 2014-04-05 13:42:15 301CAD6F15B0B4B8F1723B29924D4BAB 2092032 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\nacl64.exe 2014-04-05 13:41:02 E1D435F5AA50AD012329EE5253A2626B 564336 ----a-w- C:\Users\Fons\AppData\Local\Temp\sof_sweet-page.exe 2014-04-05 13:41:02 7BE54E0427DDD5EAFE1446ECB5919BA3 2300840 ----a-w- C:\$Recycle.Bin\S-1-5-21-64827514-377139087-2016194062-1000\$RYE5C48.exe 2014-04-05 13:39:13 6E25114E5E612306282D0E326D3DAD3E 386912 ----a-w- C:\Downloads\SoftonicDownloader_voor_torch-browser.exe 2014-04-05 13:38:53 93E38BD8FBAA54EAFD14C04B3ABE6995 23452 ----a-w- C:\Users\Fons\AppData\Local\Microsoft\Windows\INetCache\Low\IE\P1JXI1M1\SoftonicDownloader_voor_torch-browser[1].exe 2014-04-05 13:24:07 E093151047BBFFC0CD78D52F36490206 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdateOnDemand.exe 2014-04-05 13:24:07 398F40FAE5ADA9521544393F1F67A17E 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdateBroker.exe 2014-04-05 13:24:06 039DE3F65C7992994F788EAC8E79BF4F 884504 ----a-w- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdateSetup.exe 2014-04-05 13:24:00 6EFC5F64258FE0D9DA3CCFA7FF4D84BD 114568 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdateComRegisterShell64.exe 2014-04-05 13:24:00 0D5CE0E5AEC3ACC7930AB955334B8533 281480 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe 2014-04-05 13:23:59 7E6B107120108B3A15BFECE0DE3201DB 228744 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe 2014-04-05 13:23:59 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleUpdate.exe 2014-04-05 13:23:55 039DE3F65C7992994F788EAC8E79BF4F 884504 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.23.9\GoogleUpdateSetup.exe 2014-04-05 12:40:04 43D0F8E593ABD37B5BC9573EDD71EFEB 628736 ----a-w- C:\Windows\System32\SettingSyncHost.exe 2014-04-05 12:40:04 42433CDEC449D40F508752F2D487D8E4 478208 ----a-w- C:\Windows\SysWOW64\SettingSyncHost.exe 2014-04-05 12:40:03 A0D3749BB1BC942C7D21C4D99E79A615 131160 ----a-w- C:\Windows\System32\easinvoker.exe 2014-04-02 20:06:19 2E032281A818BCD191E3DD92000A8EAE 806064 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-04-02 20:06:14 9FBB2F038A2DDCE696BDEE7080241C0C 808112 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-04-02 20:06:13 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-04-02 20:06:13 9E8F9FDD407DDE997965EEFD9E635CCF 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2014-04-02 20:06:09 AFAB9B381886ABE3490689B7633A858F 482816 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-04-02 20:06:08 D378AB3C9178424588B55AC7B652D7F9 218624 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-04-02 20:06:08 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-04-02 20:06:05 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-04-02 20:05:15 C993A0B97BECD3AAF5158E3869878465 6353960 ----a-w- C:\Windows\System32\sppsvc.exe 2014-04-02 20:05:10 C83AFB0B285F293EDECF5EBDEC074A94 458616 ----a-w- C:\Windows\System32\WerFault.exe 2014-04-02 20:05:09 249DE8C6F690646CC8EC53D49ABC6BE9 408480 ----a-w- C:\Windows\SysWOW64\WerFault.exe 2014-04-02 20:05:08 D4A17A8DEB194D77AD9651F0EE0C76EB 138752 ----a-w- C:\Windows\SysWOW64\DWWIN.EXE 2014-04-02 20:05:08 724ADFEE7743C26C550ABFE04271DCFD 160256 ----a-w- C:\Windows\System32\DWWIN.EXE 2014-04-02 20:04:59 9A21A14A25A7BC3D0EC1ED56CC75B4B7 17408 ----a-w- C:\Windows\SysWOW64\pcaui.exe 2014-04-02 20:04:59 6F531F98B8601A9E7A93F8FEC393E2D1 18944 ----a-w- C:\Windows\System32\pcaui.exe 2014-04-02 20:04:53 5A9895295C7C6174C73496BD06B2E288 870912 ----a-w- C:\Windows\System32\SkyDrive.exe 2014-04-02 20:04:53 16277D1B8961AFDC49F44D57611E864B 1375992 ----a-w- C:\Windows\Camera\Camera.exe 2014-04-02 20:04:52 F637B5A26013B3FFE9771EE7BF971C05 99680 ----a-w- C:\Windows\FileManager\FileManager.exe 2014-04-02 20:04:52 DA3EFBF93F45EC4E84001EF6F0C7708D 362040 ----a-w- C:\Windows\FileManager\PhotosApp.exe 2014-04-02 20:04:37 695C842DAA76536CE44C336C9E27B25D 1507704 ----a-w- C:\Windows\System32\winload.exe 2014-04-02 20:04:37 695C842DAA76536CE44C336C9E27B25D 1507704 ----a-w- C:\Windows\System32\Boot\winload.exe 2014-04-02 20:04:31 4A8D40E38BC2C57E5D630AD6994A85CB 139776 ----a-w- C:\Windows\System32\poqexec.exe 2014-04-02 20:04:30 07B5CC5559ED3F55A3F940B3211D89C2 124416 ----a-w- C:\Windows\SysWOW64\poqexec.exe 2014-04-02 19:49:21 211F96EB417FF837A70F5130E63A1A45 400840 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_64_4D9709C1FA1422BA.exe 2014-04-02 19:49:20 E8B7FD67DA14A7BE57A5CB80E3139E60 309704 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarUser_32_52E818EF81C83A9B.exe 2014-04-02 19:49:19 4C401FCC6D0C95E1A5D989E403E18F2F 1072072 ----a-w- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_8CA8B41417E66DEB.exe 2014-04-02 19:48:50 107A176FF25E2BA8016A92C301844839 532312 ----a-w- C:\Program Files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\7.5.5111.1712\GoogleToolbarInstaller_updater_signed.exe 2014-04-02 19:36:41 F11631852CD9D8C4F6ABFC64F30AE513 6089216 ----a-w- C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe 2014-04-02 19:33:49 BD3110EA6A60DE299900A358B7D42081 734936 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\33.0.1750.154\33.0.1750.154_33.0.1750.149_chrome_updater.exe 2014-04-02 19:31:23 1B2261DC4D131B2C699386D2100A599C 5071896 ----a-w- C:\Windows\Temp\{B6544180-6DF9-49E5-B8FD-4B5DAB3D3105}.exe === C: other files == 2014-04-08 14:30:02 04A980390F93CBB82AE3BC78EAC82B9E 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-64827514-377139087-2016194062-1000\$ILOX4NN.zip 2014-04-05 13:43:46 931D25D886CB2C01CEB95497CA537775 3402912 ----a-w- C:\Users\Fons\AppData\Local\Temp\fullpackage_temp1396705376\tmp\package2.zip 2014-04-05 13:42:56 D89BD0860AEBCCF835E2A95B3A7A4FFE 1823132 ----a-w- C:\Users\Fons\AppData\Local\Temp\fullpackage_temp1396705376\package1.zip 2014-04-05 13:42:09 B29768697D7973477600ED8A3C66990B 5416 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\default_apps\torch_music_app.crx 2014-04-05 13:42:09 AA5148DF165A2EC434BC4C1486E3DB2C 5563 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\default_apps\torch_torrent_app.crx 2014-04-05 13:42:09 96F789556701266D08161B12E4DEDC32 43702 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\Extensions\TorchDeals.crx 2014-04-05 13:42:09 91EEDBAA29227F82631CB15BEB7CC8DE 400406 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\Extensions\ask_toolbar_6_0_0.crx 2014-04-05 13:42:09 90DD84E7298936683091E1E1EA5B6BA3 445841 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\Extensions\torch_music_ext.crx 2014-04-05 13:42:09 8B4E1F9D599EDB360A392BFACA00162F 914571 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\Extensions\facelift.crx 2014-04-05 13:42:09 88DBE37428B692BF344C558BE866AC60 5849549 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\Extensions\hola_torch_ext_dll_1.2.812.crx 2014-04-05 13:42:09 85B592E9BD8C71FBFCA1C0EFF05B7B5D 139179 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\Extensions\torchhelper.crx 2014-04-05 13:42:09 5BEE170C41059B2EF6A50D44D0543323 1147447 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\Extensions\drop_to_s.crx 2014-04-05 13:42:09 4D32D151CCE8CF6D8B388BEA62959B26 521158 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\Extensions\addplus.crx 2014-04-05 13:42:09 36258DBD3303BEB4C7BF9D101CB769EB 5445 ----a-w- C:\Users\Fons\AppData\Local\Torch\Application\29.0.0.6292\default_apps\torch_games_app.crx 2014-04-05 12:41:27 ED39D676080A1AEA755F1DEC1A8DF1A4 1119064 ----a-w- C:\Windows\System32\drivers\ndis.sys 2014-04-05 12:41:26 79B6F3DF7CDFD12159871FF71464F0CE 403456 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys 2014-04-05 12:41:25 B7342B3C58E91107F6E946A93D9D4EFD 142848 ----a-w- C:\Windows\System32\drivers\ipnat.sys 2014-04-05 12:41:25 4628B415A84EA9D4D396A56F1D0CB6C6 142680 ----a-w- C:\Windows\System32\drivers\USBSTOR.SYS 2014-04-05 12:41:25 1C89EF529DB7DCA98E801EFDCC8437DE 19456 ----a-w- C:\Windows\System32\drivers\BtaMPM.sys 2014-04-05 12:40:07 13B160C1913F012BD1615EB1398D3779 1530712 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2014-04-05 12:40:04 22EDC0DE06A0272DFA4C7B47B5D8E377 382808 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys 2014-04-05 12:40:03 A1A5E79C0D1352AFDC08328A623DA051 408576 ----a-w- C:\Windows\System32\drivers\rdbss.sys 2014-04-05 12:40:02 DF355EB0199198728027962DCFCDE5FB 121088 ----a-w- C:\Windows\System32\drivers\USBAUDIO.sys 2014-04-05 12:40:02 D22EB844EB57D016CC34178AC86456DF 325464 ----a-w- C:\Windows\System32\drivers\USBXHCI.SYS 2014-04-02 20:05:12 ECC68BD5347BDE9631EE68274858A41F 2543960 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2014-04-02 20:05:09 C85C075DE5B6D0FE116043054DE8EE02 311640 ----a-w- C:\Windows\System32\drivers\volsnap.sys 2014-04-02 19:54:28 C52148456E0F6EAD9E903020A79207FC 236888 ----a-w- C:\Windows\System32\drivers\WdFilter.sys 2014-04-02 19:54:27 57F22324FAAF92ADF957B281E88F1743 124760 ----a-w- C:\Windows\System32\drivers\WdNisDrv.sys 2014-04-02 19:54:27 241895E8A9C158DF86E12FDD21033A32 35856 ----a-w- C:\Windows\System32\drivers\WdBoot.sys 2014-04-02 19:54:05 1A69D165DDA78A4329B854D4FEDAD132 4189184 ----a-w- C:\Windows\System32\win32k.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Epson Stylus SX210"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFDE.EXE /FU C:\WINDOWS\TEMP\E_SA285.tmp /EF HKCU" "AgataSoft_PingMaster_Pro"="C:\Program Files (x86)\AgataSoft\PingMaster_Pro\Ping_Master_Pro.exe" "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "NETGEARGenie"="C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe -mini -redirect" "Remote Control Editor"="C:\Program Files (x86)\Common Files\TERRATEC\Remote\TTTvRc.exe" "StartMenuX"="C:\Program Files\Start Menu X\StartMenuX.exe" "FLV Player"="C:\Users\Fons\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe" [HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Windows\CurrentVersion\Run] "Epson Stylus SX210"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFDE.EXE /FU C:\WINDOWS\TEMP\E_SA285.tmp /EF HKCU" "AgataSoft_PingMaster_Pro"="C:\Program Files (x86)\AgataSoft\PingMaster_Pro\Ping_Master_Pro.exe" "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "NETGEARGenie"="C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe -mini -redirect" "Remote Control Editor"="C:\Program Files (x86)\Common Files\TERRATEC\Remote\TTTvRc.exe" [HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce] "WAB Migrate"="%ProgramFiles%\Windows Mail\wab.exe /Upgrade" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" "vProt"="C:\Program Files (x86)\AVG Secure Search\vprot.exe" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "EEventManager"="C:\PROGRA~2\EPSONS~1\EVENTM~1\EEVENT~1.EXE" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Epson Stylus SX210"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFDE.EXE /FU C:\WINDOWS\TEMP\E_SA285.tmp /EF HKCU" "AgataSoft_PingMaster_Pro"="C:\Program Files (x86)\AgataSoft\PingMaster_Pro\Ping_Master_Pro.exe" "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "NETGEARGenie"="C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe -mini -redirect" "Remote Control Editor"="C:\Program Files (x86)\Common Files\TERRATEC\Remote\TTTvRc.exe" "StartMenuX"="C:\Program Files\Start Menu X\StartMenuX.exe" "FLV Player"="C:\Users\Fons\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" ==== Startup Folders ====================== 2013-04-24 14:16:57 1306 ----a-w- C:\Users\Fons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [12-03-2014 13:35] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05-02-2013 15:46] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [05-02-2013 15:46] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files (x86)\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\Maxthon Update" ["C:\Program Files (x86)\Maxthon\Bin\mxup.exe"] "C:\WINDOWS\SysNative\tasks\OpenCandyHelperDAC7F334E61B4AC3A276055B90B51D52" [C:\Windows\system32\rundll32.exe "C:\Users\Fons\AppData\Roaming\OpenCandy\312BBADA0B7B4280A39B71F96D3EFE5D\OCBrowserHelper_1.0.4.106.dll",_OCRestartDll@16] "C:\WINDOWS\SysNative\tasks\OpenCandyHelperRun237CF01262D248729E07F1B13397F0E7" [C:\Windows\system32\rundll32.exe "C:\Users\Fons\AppData\Roaming\OpenCandy\312BBADA0B7B4280A39B71F96D3EFE5D\OCBrowserHelper_1.0.4.106.dll",_OCRestartDll@16] "C:\WINDOWS\SysNative\tasks\ReviverSoft Start Menu Run once task" [C:\Program Files\ReviverSoft\Start Menu Reviver\StartMenuReviver.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{45B90A9E-73A9-40C2-BA4A-AEC3C215D722}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\{5EE60A5F-BFAF-4362-BF9B-44C2F491E1B7}" ["c:\program files\internet explorer\iexplore.exe" http://ui.skype.com/ui/0/6.3.73.105.456/nl/abandoninstall?page=tsWLM] ==== Firefox Extensions Registry ====================== [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}"="C:\Program Files (x86)\PriceGong\2.6.9\FF" [] ==== Chrome Look ====================== Google Wallet - Fons\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Ask Toolbar - Fons\AppData\Local\Torch\User Data\Default\Extensions\aaaalejpmnocmhmlbmlkjemekckoagne Google Docs - Fons\AppData\Local\Torch\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Fons\AppData\Local\Torch\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Fons\AppData\Local\Torch\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo DropToS - Fons\AppData\Local\Torch\User Data\Default\Extensions\cipmepknanmbbaneimacddfemfbfgpgo Torch Shopping - Fons\AppData\Local\Torch\User Data\Default\Extensions\dmgjnkhnkblpmfjpdakehnaikgdjllic Torch Music - Fons\AppData\Local\Torch\User Data\Default\Extensions\gcjbdjlojcomlphfchhihkigepfabcad FaceLift - Fons\AppData\Local\Torch\User Data\Default\Extensions\gimjmfipknpppbpmkdenjjpfhobiiojk Torch Helper - Fons\AppData\Local\Torch\User Data\Default\Extensions\lecpjhggilhbceadobnggaagnpfpafhg Google Wallet - Fons\AppData\Local\Torch\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Last updated at time on date - Fons\AppData\Local\Torch\User Data\Default\Extensions\ohgbnffmijlejkjkgehpgnddfkbgabde Torch Music - Fons\AppData\Local\Torch\User Data\Default\Extensions\ohimbkoaphfnmekmfppijeblmkncneed Hola for Torch - Fons\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh Gmail - Fons\AppData\Local\Torch\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\Fons\AppData\Local\Torch\User Data\Default\Extensions\dmgjnkhnkblpmfjpdakehnaikgdjllic deleted successfully C:\Users\Fons\AppData\Local\Torch\User Data\Default\Extensions\aaaalejpmnocmhmlbmlkjemekckoagne deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://doenormaal.eigenstart.nl/" "Search Bar"="http://www.google.com" "Search Page"="http://www.sweet-page.com/web/?type=ds&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX&q={searchTerms}" "Default_Page_URL"="http://www.sweet-page.com/?type=hp&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX" "Default_Search_URL"="http://www.sweet-page.com/web/?type=ds&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX&q={searchTerms}" "Use Search Asst"="yes" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.sweet-page.com/web/?type=ds&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX&q={searchTerms}" "Default_Page_URL"="http://www.sweet-page.com/?type=hp&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX" "Start Page"="http://www.sweet-page.com/?type=hp&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX" "Search Page"="http://www.sweet-page.com/web/?type=ds&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.sweet-page.com/web/?type=ds&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX&q={searchTerms}" "Default_Page_URL"="http://www.sweet-page.com/?type=hp&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX" "Start Page"="http://www.sweet-page.com/?type=hp&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX" "Search Page"="http://www.sweet-page.com/web/?type=ds&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX&q={searchTerms}" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="http://feed.helperbar.com/?publisher=OC&dpid=OC&co=NL&userid=fff967ec-2136-42a3-ab8f-eb9326775cda&affid=113129&searchtype=ds&babsrc=lnkry&q={searchTerms}" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://www.google.com" "SearchAssistant"="http://www.google.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://doenormaal.eigenstart.nl/" "Use Search Asst"="no" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-64827514-377139087-2016194062-1000\Software\Mozilla\Firefox\Extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829} deleted successfully ==== shortcuts on Users Desktops ====================== C:\Users\Fons\Desktop\FLV Player.lnk - C:\Users\Fons\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe C:\Users\Fons\Desktop\Free Easy Burner.lnk - C:\Program Files (x86)\Free Easy CD DVD Burner\FreeEasyBurner.exe C:\Users\Fons\Desktop\Gentibus CD.lnk - C:\Program Files (x86)\Gentibus CD\GentibusCD.exe C:\Users\Fons\Desktop\iexplore.exe - Snelkoppeling.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com/?type=sc&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX C:\Users\Fons\Desktop\Mijn camera (31258331).lnk - C:\Windows\explorer.exe "http://eu.mydlink.com//?mydlink_no=31258331&lang=Dutch" C:\Users\Fons\Desktop\MioMore Desktop 7.50.lnk - C:\Program Files (x86)\Mio\MioMore Desktop 7.50\MioMore.exe C:\Users\Fons\Desktop\Orbit.lnk - C:\Program Files (x86)\Orbitdownloader\orbitdm.exe C:\Users\Fons\Desktop\Torch.lnk - C:\Users\Fons\AppData\Local\Torch\Application\torch.exe C:\Users\Fons\Desktop\Verkenner - Snelkoppeling.lnk - C:\Users\Fons\Desktop\Printer\Epson Easy Photo Print.lnk - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPQuicker.exe C:\Users\Fons\Desktop\Printer\EPSON Scan.lnk - C:\Windows\twain_32\escndv\escndv.exe C:\Users\Fons\Desktop\Printer\Epson Stylus SX210_SX410_TX210_TX410 Handboek.lnk - C:\Program Files (x86)\epson\TPMANUAL\ESSX210_410_TX210_410\NLD\USE_G\index.htm ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe C:\Users\Public\Desktop\Amcap.lnk - C:\Program Files (x86)\SPCA1528\amcap.exe C:\Users\Public\Desktop\AVG 2014.lnk - C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Users\Public\Desktop\BitComet.lnk - C:\Program Files (x86)\BitComet\BitComet.exe C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files (x86)\CCleaner\CCleaner64.exe C:\Users\Public\Desktop\CyberLink PhotoDirector 4.lnk - C:\Program Files (x86)\CyberLink\PhotoDirector4\PhotoDirector4.exe C:\Users\Public\Desktop\EasyBCD 2.1.2.lnk - C:\Program Files (x86)\NeoSmart Technologies\EasyBCD\EasyBCD.exe C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.sweet-page.com/?type=sc&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX C:\Users\Public\Desktop\Google Earth.lnk - C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe C:\Users\Public\Desktop\IncrediMail.lnk - C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe C:\Users\Public\Desktop\Jasc Paint Shop Pro 9.lnk - C:\WINDOWS\Installer\{F843C6A3-224D-4615-94F8-3C461BD9AEA0}\PaintShopProExeIcon.ico C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Users\Public\Desktop\Maxthon Cloud Browser.lnk - C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk - C:\Program Files (x86)\Nero\Nero 9\Nero StartSmart\NeroStartSmart.exe C:\Users\Public\Desktop\NETGEAR Genie.lnk - C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe C:\Users\Public\Desktop\Skype.lnk - C:\WINDOWS\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe C:\Users\Public\Desktop\Start Menu Reviver.lnk - C:\Program Files\ReviverSoft\Start Menu Reviver\StartMenuReviver.exe C:\Users\Public\Desktop\TerraTec Home Cinema.lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\CinergyDvr.exe C:\Users\Public\Desktop\XMedia Player.lnk - C:\Program Files (x86)\XMediaPlayer\XMediaPlayer.exe C:\Users\Public\Desktop\AgataSoft\PingMaster Pro.lnk - C:\Program Files (x86)\AgataSoft\PingMaster_Pro\Ping_Master_Pro.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Fons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com/?type=sc&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX C:\Users\Fons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk - C:\Users\Fons\AppData\Local\Torch\Application\torch.exe C:\Users\Fons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player\Play online FLV files.lnk - C:\Users\Fons\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe C:\Users\Fons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player\Uninstall.lnk - C:\Users\Fons\AppData\Local\WebPlayer\Uninstall.exe _?=C:\Users\Fons\AppData\Local\WebPlayer\FLV Player C:\Users\Fons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch\Torch.lnk - C:\Users\Fons\AppData\Local\Torch\Application\torch.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2014.lnk - C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files (x86)\CCleaner\CCleaner64.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\Uninstall CCleaner.lnk - C:\Program Files (x86)\CCleaner\uninst.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.sweet-page.com/?type=sc&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Notifications.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\Silverlight.Configuration.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\TerraTec Home Cinema.lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\CinergyDvr.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Support\Controleer voor een nieuwere versie.lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\VersionCheck\VersionCheck.exe /THC:"C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\CinergyDvr.exe" C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Support\TerraTec Home Cinema (Repair Mode).lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\elevate.exe "C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\CinergyDvr.exe" -repair C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Support\TerraTec Home Cinema (Veilige modus).lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\CinergyDvr.exe -safe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Support\TerraTec Home Cinema FAQ.lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\TvApp_FAQ.html C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Support\TerraTec Home Cinema Help.lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\TvApp_nla.pdf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Tools\Channel Editor.lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\ChannelEditor\CinergyDvrChannelEditor.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Tools\Cut.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Tools\Remote Control Editor.lnk - C:\Program Files (x86)\Common Files\TERRATEC\Remote\TTTvRc.exe -SHOW C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Tools\tvtv Setup Help.lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\tvtvSetup\tvtv_Wizard_nla.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TerraTec\TerraTec Home Cinema\Tools\tvtv Setup.lnk - C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\tvtvSetup\tvtv_Wizard.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMediaPlayer\XMedia Player Uninstall.lnk - C:\Program Files (x86)\XMediaPlayer\Uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMediaPlayer\XMedia Player.lnk - C:\Program Files (x86)\XMediaPlayer\XMediaPlayer.exe ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Easy Burner.lnk - C:\Program Files (x86)\Free Easy CD DVD Burner\FreeEasyBurner.exe C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.sweet-page.com/?type=sc&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk - C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.sweet-page.com/?type=sc&ts=1396705416&from=sof&uid=HitachiXHDP725050GLA360_GEB531RE3G6YEF3G6YEFX C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk - C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE /recycle C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk - C:\Program Files (x86)\Nero\Nero 9\Nero StartSmart\NeroStartSmart.exe C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Torch.lnk - C:\Users\Fons\AppData\Local\Torch\Application\torch.exe C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Office Word 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - ==== shortcuts After Repair ====================== C:\Users\Fons\Desktop\iexplore.exe - Snelkoppeling.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Fons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Fons\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WPM deleted successfully ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Fons\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Fons\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Fons\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Fons\AppData\Local\Torch\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=961 folders=377 179718867 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Fons\AppData\Local\Temp will be emptied at reboot C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Fons\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\PROGRA~2\AVG Secure Search" not found "C:\PROGRA~2\AVG Secure Search" not found ==== EOF on di 08-04-2014 at 16:57:46,02 ======================