
Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by Juicy on ma 28/04/2014 at 19:18:32,01.
Microsoft Windows 7 Ultimate  6.1.7600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Juicy\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

28/04/2014 19:19:43 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~3\Oracle deleted successfully
C:\Users\Juicy\AppData\Local\Canon Easy-PhotoPrint EX deleted successfully
C:\Users\Juicy\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3042176276-2792811667-891264616-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2094dc86-dda0-497a-a339-0a09b0b6a0a8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2094dc86-dda0-497a-a339-0a09b0b6a0a8} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{48093449-14a3-4466-83a1-a011db4d69f6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{48093449-14a3-4466-83a1-a011db4d69f6} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{518699f7-07df-4217-8346-ef436e893bbd} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{518699f7-07df-4217-8346-ef436e893bbd} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{7ebd0f2e-e5ee-4553-aa1e-114c9f725bb8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7ebd0f2e-e5ee-4553-aa1e-114c9f725bb8} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{a77412c8-34a8-4150-97a1-4df23bf696dc} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a77412c8-34a8-4150-97a1-4df23bf696dc} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{AA74D58F-ACD0-450D-A85E-6C04B171C044} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{b766c17e-b77e-456e-9f61-728658b3e32f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b766c17e-b77e-456e-9f61-728658b3e32f} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{d9670f1d-7353-4fd2-a420-c1790351d55b} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d9670f1d-7353-4fd2-a420-c1790351d55b} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{AAA38851-3CFF-475F-B5E0-720D3645E4A5} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3042176276-2792811667-891264616-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{539F76FD-084E-4858-86D5-62F02F54AE86} deleted successfully
HKEY_USERS\S-1-5-21-3042176276-2792811667-891264616-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{2094dc86-dda0-497a-a339-0a09b0b6a0a8} deleted successfully
HKEY_USERS\S-1-5-21-3042176276-2792811667-891264616-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{48093449-14a3-4466-83a1-a011db4d69f6} deleted successfully
HKEY_USERS\S-1-5-21-3042176276-2792811667-891264616-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{518699f7-07df-4217-8346-ef436e893bbd} deleted successfully
HKEY_USERS\S-1-5-21-3042176276-2792811667-891264616-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{7ebd0f2e-e5ee-4553-aa1e-114c9f725bb8} deleted successfully
HKEY_USERS\S-1-5-21-3042176276-2792811667-891264616-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{a77412c8-34a8-4150-97a1-4df23bf696dc} deleted successfully
HKEY_USERS\S-1-5-21-3042176276-2792811667-891264616-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{b766c17e-b77e-456e-9f61-728658b3e32f} deleted successfully
HKEY_USERS\S-1-5-21-3042176276-2792811667-891264616-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{d9670f1d-7353-4fd2-a420-c1790351d55b} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.1.0 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater18.1.0 deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default

user.js not found
---- Lines mystart removed from prefs.js ----
user_pref("browser.newtab.url", "http://mystart.incredibar.com/?a=6R968dhCl3&i=26&loc=skw");
user_pref("browser.search.defaultenginename", "MyStart Search");
user_pref("browser.search.selectedEngine", "MyStart Search");
user_pref("keyword.URL", "http://mystart.incredibar.com/?a=6R968dhCl3&i=26&loc=skw&search=");
---- Lines Downloader.com modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"avg@toolbar\":{\"descriptor\":\"C:\\\\ProgramData\\\\AVG Secure S
---- Lines mysearch removed from prefs.js ----
user_pref("avg.userPreferences.URLBarFocus.whiteList", "bing\\.com|google\\.\\w+|yahoo\\.\\w+|gmail\\.\\w+|hotmail\\.\\w+|live\\.\\w+|isearch\\.avg\\.
---- Lines EEE6C361-6118-11DC-9C72-001320C79847 modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"avg@toolbar\":{\"descriptor\":\"C:\\\\ProgramData\\\\AVG Secure S
---- Lines Sweet removed from prefs.js ----
user_pref("avg.install.userSPSettings", "SweetIM search");
user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "AVG Secure Search");
user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
user_pref("sweetim.toolbar.previous.keyword.URL", "");
user_pref("sweetim.toolbar.urls.homepage", "http://home.sweetim.com/?crg=3.1010000.10011&barid={A593FAEF-A8F6-11E2-8D4A-A4BADBB0321B}");
---- FireFox user.js and prefs.js backups ---- 

prefs_20142804_1941_.backup

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2094dc86-dda0-497a-a339-0a09b0b6a0a8}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{48093449-14a3-4466-83a1-a011db4d69f6}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{518699f7-07df-4217-8346-ef436e893bbd}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7ebd0f2e-e5ee-4553-aa1e-114c9f725bb8}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a77412c8-34a8-4150-97a1-4df23bf696dc}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b766c17e-b77e-456e-9f61-728658b3e32f}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d9670f1d-7353-4fd2-a420-c1790351d55b}] 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"NextLive"=- 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mobilegeni daemon] 
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM] 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 

==== Deleting Files \ Folders ======================

C:\Users\Juicy\AppData\Roaming\newnext.me not found
"C:\Program Files (x86)\AVG\AVG2012\avgpp.dll" not found
C:\Program Files (x86)\Minibar deleted
C:\Program Files (x86)\MediaWatchV1 deleted
C:\Program Files (x86)\MediaViewV1 deleted
C:\Program Files (x86)\VideoPlayerV3 deleted
C:\Program Files (x86)\MediaBuzzV1 deleted
C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default\extensions\{97A78363-B868-4B48-AC91-A783A31215AF} deleted
C:\Users\Juicy\AppData\Local\genienext deleted
C:\Users\Juicy\daemonprocess.txt deleted
C:\Users\Juicy\.android deleted
C:\PROGRA~2\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml deleted
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\autoconfig.js deleted
C:\PROGRA~2\Mobogenie deleted
C:\PROGRA~2\MediaViewerV1 deleted
C:\PROGRA~2\MediaPlayerV1 deleted
C:\PROGRA~2\sweetpacks bundle uninstaller deleted
C:\PROGRA~2\SweetIM deleted
C:\found.000 deleted
C:\PROGRA~3\SweetIM deleted
C:\PROGRA~3\AVG Secure Search deleted
C:\Users\Juicy\AppData\Local\AVG Secure Search deleted
C:\Users\Juicy\AppData\Local\FilesFrog Update Checker deleted
C:\Users\Juicy\AppData\Local\Minibar deleted
C:\Users\Juicy\AppData\Local\PutLockerDownloader deleted
C:\Users\Juicy\AppData\Local\Mobogenie deleted
C:\Users\Juicy\AppData\Local\cache deleted
C:\Users\Juicy\AppData\Local\SwvUpdater deleted
C:\Users\Juicy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie deleted
C:\Users\Juicy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker deleted
C:\Users\Juicy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com deleted
C:\windows\SysNative\dmwu.exe deleted
C:\Users\Juicy\AppData\LocalLow\AVG Secure Search deleted
C:\Users\Juicy\AppData\LocalLow\AskToolbar deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\windows\SysNative\tasks\AmiUpdXp deleted
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job deleted
C:\windows\SysNative\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv deleted
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job deleted
C:\windows\SysNative\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv deleted
C:\windows\SysNative\ljkb deleted
C:\Windows\Syswow64\jmdp deleted
C:\Windows\Syswow64\ARFC deleted
C:\Windows\Syswow64\WNLT deleted
C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default\searchplugins\MyStart Search.xml deleted
C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default\searchplugins\SweetIM Search.xml deleted
C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default\extensions\ftdownloader3@ftdownloader.com.xpi deleted
C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default\jetpack deleted
C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4} deleted
C:\Users\Juicy\Desktop\FTDownloader.lnk deleted
"C:\Windows\tasks\AmiUpdXp.job" deleted
"C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default\searchplugins\sweetim.xml" deleted
"C:\Windows\Installer\10e31e18.msi" deleted
"C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi" deleted
"C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default\searchplugins\sweetim.xml" deleted
"C:\PROGRA~2\Bizzybolt\updateBizzybolt.exe" deleted
"C:\PROGRA~2\Bizzybolt\updateBizzybolt.exe" deleted
"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted
"C:\PROGRA~2\AVG Secure Search\vprot.exe" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.1.0\SiteSafety.dll" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.1.0\log4cplusU.dll" deleted
"C:\PROGRA~2\Bizzybolt" not deleted
"C:\PROGRA~2\Bizzybolt" not deleted
"C:\PROGRA~2\AVG Secure Search" deleted
"C:\PROGRA~2\AVG Secure Search" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.1.0" deleted
"C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.1.0" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Juicy\AppData\Local\Temp ====
2014-04-26 11:55:43	F2907CC910C423C0778E1BC754494108	670842	----a-w-	C:\Users\Juicy\AppData\Local\Temp\appinstal1.exe
====== Java Cache =====
2014-04-28 17:11:39	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Juicy\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-5a579746
====== C:\Windows\SysWOW64 =====
2014-04-28 17:15:48	6EA69D2312F3571F6F8BEADD224165E8	264616	----a-w-	C:\Windows\SysWOW64\javaws.exe
2014-04-28 17:15:38	3B10B54F50CD362537B9F2186267EDF8	96168	----a-w-	C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2014-04-15 11:35:26	11E6217CEC418B2B16FB457A02C07004	240952	----a-w-	C:\Windows\Sysnative\drivers\avgtdia.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-04-27 18:53:19	--------	d-----w-	C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2014-04-28 17:15:59	--------	d-----w-	C:\PROGRA~2\COMMON~1\Java
======= C: =====
====== C:\Users\Juicy\AppData\Roaming ======
====== C:\Users\Juicy ======
2014-04-28 17:15:38	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

====== C: exe-files ==
2014-04-28 17:15:48	6EA69D2312F3571F6F8BEADD224165E8	264616	----a-w-	C:\Windows\SysWOW64\javaws.exe
2014-04-28 17:15:27	FBC892A1196A03F695F112A5EDE032DC	48040	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe
2014-04-28 17:15:27	FB67D8F555AA8E847DC6D7BFFF69C1C1	145832	----a-w-	C:\Program Files (x86)\Java\jre7\bin\unpack200.exe
2014-04-28 17:15:27	E788AC8198E99F9DA268A35719462DEF	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\kinit.exe
2014-04-28 17:15:27	CA8C3C3510377A38A0FD0386B1C8700D	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\keytool.exe
2014-04-28 17:15:27	C38B939945B2357D56B105C8F8FE7C45	52648	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe
2014-04-28 17:15:27	B863FBED45DA51498B42DEAE76006D94	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\ktab.exe
2014-04-28 17:15:27	B1CE4931FCA0E9D6493F18440A492472	49576	----a-w-	C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe
2014-04-28 17:15:27	9533FE0A942E00114047140B42DF8E3D	175016	----a-w-	C:\Program Files (x86)\Java\jre7\bin\java.exe
2014-04-28 17:15:27	829199AE07062FE066CCD037190B4D04	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\servertool.exe
2014-04-28 17:15:27	77430E8234A0050ECCC5E2F5B30A7BEF	182696	----a-w-	C:\Program Files (x86)\Java\jre7\bin\jqs.exe
2014-04-28 17:15:27	7151FDB921CC188833E69690E969616A	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe
2014-04-28 17:15:27	6EA69D2312F3571F6F8BEADD224165E8	264616	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javaws.exe
2014-04-28 17:15:27	67E721D8CA3F26695C2836870FF395E0	16808	----a-w-	C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe
2014-04-28 17:15:27	5F32AD07982BE93452A755CE94F130BA	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\pack200.exe
2014-04-28 17:15:27	58B60ED489B1EDFA2BCDCAAF90B5EDD8	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe
2014-04-28 17:15:27	3DAA029309C13F0A8DFB839372A3E8D3	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\orbd.exe
2014-04-28 17:15:27	3B8C2991462B84868BB04C67E197CFC1	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\rmid.exe
2014-04-28 17:15:27	37C15684482B4D596316735DCEEE939A	175528	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javaw.exe
2014-04-28 17:15:27	21190A2C683911E97E6484632F0A11AF	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\policytool.exe
2014-04-28 17:15:27	0F298580559EE0929C572CFEB99B5AAA	16296	----a-w-	C:\Program Files (x86)\Java\jre7\bin\klist.exe
2014-04-28 17:15:27	00F5108D91D768CA9D4ABC5E5053F50F	68008	----a-w-	C:\Program Files (x86)\Java\jre7\bin\javacpl.exe
2014-04-28 17:14:45	3842C46F2FBC7522EF625F1833530804	145408	----a-w-	C:\Users\Juicy\AppData\LocalLow\Sun\Java\jre1.7.0_55\lzma.exe
2014-04-27 18:53:20	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Juicy.exe
2014-04-27 14:41:15	F282A633FDCE2DA79777BB0FE7B6DC8D	7658936	----a-w-	C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
2014-04-27 14:41:15	73A4E4E33BAA90B986BC18E693876F44	7658936	----a-w-	C:\Windows\System32\config\systemprofile\AppData\Local\Avg2013\update\backup\avgmfapx.exe
2014-04-27 14:19:31	CBD1CB6EEEE2094FB32E30F3CE716916	6413336	----a-w-	C:\Windows\Temp\{159B30EF-5187-427E-BBE5-021F8258572B}.exe
2014-04-26 11:55:43	F2907CC910C423C0778E1BC754494108	670842	----a-w-	C:\Users\Juicy\AppData\Local\Temp\appinstal1.exe
=== C: other files ==
2014-04-28 17:15:27	D95F1D4129F0CB2F7626CDCBAC2F512B	18636	----a-w-	C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip
2014-04-28 08:43:20	E178B57D7D59ABF8CEBD8C8D1C7FCAB8	1370673	----a-w-	C:\Program Files (x86)\AVG\AVG2013\banners\banners.zip
2014-04-27 18:47:36	99F10158A090014B068DA3A7BEE5BEE5	145173	----a-w-	C:\ProgramData\AVG2013\IDS\quarantine\2dab69da-c046-47d2-820c-75f39d54dbe8.zip
2014-04-27 14:21:24	A867AA530DCBBBD7B2D7701A15C63704	145155	----a-w-	C:\ProgramData\AVG2013\IDS\quarantine\8502cc60-fdd6-47d2-9ce6-75f39d54dbe8.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"vProt"="C:\Program Files (x86)\AVG Secure Search\vprot.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"Apoint"="C:\Program Files\DellTPad\Apoint.exe"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CanonMyPrinter]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CanonMyPrinter"
"hkey"="HKLM"
"command"="C:\\Program Files\\Canon\\MyPrinter\\BJMyPrt.exe /logon"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CanonSolutionMenu]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CanonSolutionMenu"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Canon\\SolutionMenu\\CNSLMAIN.exe /logon"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Facebook Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Facebook Update"
"hkey"="HKCU"
"command"="\"C:\\Users\\Juicy\\AppData\\Local\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google+ Auto Backup]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Google+ Auto Backup"
"hkey"="HKCU"
"command"="\"C:\\Users\\Juicy\\AppData\\Local\\Programs\\Google\\Google+ Auto Backup\\Google+ Auto Backup.exe\" /autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Launch LGDCore]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Launch LGDCore"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Logitech\\GamePanel Software\\G-series Software\\LGDCore.exe\" /SHOWHIDE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Launch LgDeviceAgent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Launch LgDeviceAgent"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Logitech\\GamePanel Software\\LgDevAgt.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SDP]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SDP"
"hkey"="HKCU"
"command"="C:\\Users\\Juicy\\AppData\\Local\\FilesFrog Update Checker\\update_checker.exe /auto "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Skype\\Phone\\Skype.exe\" /nosplash /minimized"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify"
"hkey"="HKCU"
"command"="\"C:\\Users\\Juicy\\AppData\\Roaming\\Spotify\\Spotify.exe\" /uri spotify:autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify Web Helper"
"hkey"="HKCU"
"command"="\"C:\\Users\\Juicy\\AppData\\Roaming\\Spotify\\Data\\SpotifyWebHelper.exe\""


==== Startup Folders ======================

2011-12-07 12:43:24	1937	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14/03/2014 19:07]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3042176276-2792811667-891264616-1000Core.job --a------ C:\Users\Juicy\AppData\Local\Facebook\Update\FacebookUpdate.exe [12/07/2012 19:47]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3042176276-2792811667-891264616-1000UA.job --a------ C:\Users\Juicy\AppData\Local\Facebook\Update\FacebookUpdate.exe [12/07/2012 19:47]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [08/05/2013 21:23]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [Undetermined Task]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3042176276-2792811667-891264616-1000Core" [C:\Users\Juicy\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-3042176276-2792811667-891264616-1000UA" [C:\Users\Juicy\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\{466E8F54-85B8-4495-93A9-23B546E32516}" [C:\Program Files (x86)\Skype\\Phone\Skype.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"ext@MediaBuzzV1mode6003.net"="C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode6003\ff" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default
- Undetermined - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta9582\ff
- Undetermined - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha546\ff
- Undetermined - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2172\ff
- Undetermined - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha5181\ff
- Undetermined - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3067\ff
- Undetermined - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode6003\ff
- Undetermined - C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.0.443

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Juicy\AppData\Roaming\Mozilla\Firefox\Profiles\gpknj617.default
95812430959AE88CDD0301AB3A71913B	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll -	Shockwave Flash
63EE2015B877A2E472CC59E05291AA39	- C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMSS.dll -	McAfee Security Scanner +
FF0D6F82A0EC13952E83B9439100E45D	- C:\Users\Juicy\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll -	Facebook Video Calling Plugin


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bbffdhejhaoiflnpooogkckfdcmmjppn - C:\Program Files (x86)\FTDownloader.com\FTDownloader10.crx[]
bopakagnckmlgajfccecajhnimjiiedh - No path found[]
gcfcppoodhlohmkfcebjibkclgmjnlgi - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha5181\ch\MediaViewV1alpha5181.crx[]
kcepbijaaeffgmjoiljlndlldfakcibo - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha860\ch\MediaViewerV1alpha860.crx[]
ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Secure Search\ChromeExt\17.3.0.49\avg.crx[]
nnljockdofalaijaodfhpallfkdekjmg - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode6003\ch\MediaBuzzV1mode6003.crx[]
occabmojnkfghkbclljjiigceeocdlia - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta9582\ch\VideoPlayerV3beta9582.crx[]
oejjddlkpgagimbanliacpmdjkgfihhp - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3067\ch\MediaWatchV1home3067.crx[]
phdnckaaapcdaamedocponenooebjdjm - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha2172\ch\MediaViewV1alpha2172.crx[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://isearch.avg.com/tab?cid={FAF6DC12-99B0-46DC-92C8-D7AF9758B8E1}&mid=15c0fd3aaecb47d1bb7175f39d54dbe8-023a1c8dae97aeac421468ce50a4e51be65b25d3&lang=nl&ds=AVG&coid=&cmpid=&pr=pr&d=2012-01-26 13:53:49&v=17.2.0.38&pid=avg&sg=0&sap=nt"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://isearch.avg.com/tab?cid={FAF6DC12-99B0-46DC-92C8-D7AF9758B8E1}&mid=15c0fd3aaecb47d1bb7175f39d54dbe8-023a1c8dae97aeac421468ce50a4e51be65b25d3&lang=nl&ds=AVG&coid=&cmpid=&pr=pr&d=2012-01-26 13:53:49&v=17.2.0.38&pid=avg&sg=0&sap=nt"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{95B7759C-8C7F-4BF1-B163-73684A933233}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\avg@toolbar deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@VideoPlayerV3beta9582.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaPlayerV1alpha546.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaViewerV1alpha860.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaViewV1alpha2172.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaViewV1alpha5181.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaWatchV1home3067.net deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ext@MediaBuzzV1mode6003.net deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google\Chrome\ExtensionInstallForcelist deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bbffdhejhaoiflnpooogkckfdcmmjppn deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\gcfcppoodhlohmkfcebjibkclgmjnlgi deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kcepbijaaeffgmjoiljlndlldfakcibo deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\nnljockdofalaijaodfhpallfkdekjmg deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\occabmojnkfghkbclljjiigceeocdlia deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\oejjddlkpgagimbanliacpmdjkgfihhp deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\phdnckaaapcdaamedocponenooebjdjm deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Video Player deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SweetIM Bundle by SweetPacks deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDP deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Juicy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Juicy\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Juicy\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Juicy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Juicy\AppData\Local\Mozilla\Firefox\Profiles\gpknj617.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2422 folders=658 338482680 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Juicy\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Juicy\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Juicy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\PROGRA~2\Bizzybolt"  not found
"C:\PROGRA~2\Bizzybolt"  not found

==== EOF on ma 28/04/2014 at 20:08:00,61 ======================