Zoek.exe v5.0.0.0 Updated 05-July-2014 Tool run by Flore on di 08/07/2014 at 13:41:58,70. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Safe Mode NETWORK Internet Access Detected Launched: C:\Users\Flore\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== ==== Empty Folders Check ====================== C:\PROGRA~2\iWin.com deleted successfully C:\PROGRA~2\MSXML 4.0 deleted successfully C:\PROGRA~2\Origin Games deleted successfully C:\PROGRA~2\predm deleted successfully C:\PROGRA~2\Probit Software deleted successfully C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully C:\Program Files\log deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\PROGRA~3\WinZip deleted successfully C:\Users\Flore\AppData\Roaming\.# deleted successfully C:\Users\Flore\AppData\Roaming\Probit Software deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A3BC75A2-1F87-4686-AA43-5347D756017C} deleted successfully HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully HKEY_CLASSES_ROOT\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_CLASSES_ROOT\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\UrlSearchHooks\{A3BC75A2-1F87-4686-AA43-5347D756017C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\avg@igeared deleted successfully ==== Installed Programs ====================== Update for Microsoft Office 2007 (KB2508958) Adobe Digital Editions Adobe Digital Editions 2.0 Adobe Flash Player 14 ActiveX Adobe Flash Player 14 Plugin Adobe Reader X (10.1.10) - Nederlands Adobe Shockwave Player 12.0 Alps Pointing-device for VAIO Apple Application Support Apple Mobile Device Support Apple Software Update ArcSoft Magic-i Visual Effects 2 ArcSoft WebCam Companion 3 Ask Toolbar avast Free Antivirus Belgium e-ID middleware 4.0.7 (build 7453) BenVista PhotoZoom Classic 5.0.8 Big Fish Games: Game Manager Bonjour Catalyst Control Center - Branding Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Common Catalyst Control Center Graphics Previews Vista Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-core-static ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish Cisco Systems VPN Client 5.0.07.0440 Citrix Receiver Citrix Receiver (HDX Flash Redirection) Citrix Receiver Inside Citrix Receiver(Aero) Citrix Receiver(DV) Citrix Receiver(USB) Click to Disc MergeModules x64 Cooking Academy 3: Culinaire Kunsten De SimsT 3 De SimsT 3 Ambities De SimsT 3 Exotisch Eiland De SimsT 3 Na Middernacht Dropbox Evernote EZ Vinyl/Tape Converter 10 by Ion Audio Google Chrome Google Earth Plug-in Google Toolbar for Internet Explorer Google Update Helper inSSIDer Home Intel(R) Control Center Intel(R) Management Engine Components Intel(R) Rapid Storage Technology Intel(R) Turbo Boost Technology Driver IrfanView (remove only) iTunes Java 7 Update 60 Java Auto Updater Jojo's Fashion Show: World Tour Junk Mail filter update Kitchen Brigade Media Gallery Microsoft .NET Framework 4.5.1 Microsoft Application Error Reporting Microsoft Choice Guard Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office PowerPoint Viewer 2007 (English) Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Suite Activation Assistant Microsoft Office Word MUI (Dutch) 2007 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft SQL Server Compact 3.5 SP1 English Microsoft SQL Server Compact 3.5 SP1 x64 English Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Works Microsoft WSE 3.0 Runtime MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MusicStation Nitro Reader 2 Online Plug-in Origin Panda Cloud Cleaner Pet Shop Hop PMB PMB VAIO Edition Guide PMB VAIO Edition plug-in (Click to Disc) PMB VAIO Edition plug-in (VAIO Image Optimizer) PMB VAIO Edition plug-in (VAIO Movie Story) PokerStars.be Posh Boutique 2 PrimoPDF -- brought to you by Nitro PDF Software QuickTime 7 Realtek HDMI Audio Driver for ATI Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader RollerCoaster Tycoon 3 Roxio Central Audio Roxio Central Copy Roxio Central Core Roxio Central Data Roxio Central Tools Roxio Easy Media Creator 10 LJ Roxio Easy Media Creator Home Sally's Salon Sally's Spa Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2880513) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2880515) 32-Bit Edition Setting Utility Series SkypeT 6.16 Sony Home Network Library Sony MSS Strangestone swMSM Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2881065) 32-Bit Edition Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VAIO Care VAIO Content Metadata Intelligent Analyzing Manager VAIO Content Metadata Intelligent Network Service Manager VAIO Content Metadata Manager Settings VAIO Content Metadata XML Interface Library VAIO Content Monitoring Settings VAIO Control Center VAIO Data Restore Tool VAIO DVD Menu Data VAIO Entertainment Platform VAIO Event Service VAIO Gate VAIO Gate Default VAIO Hardware Diagnostics VAIO Marketing Tools VAIO Media plus VAIO Media plus Opening Movie VAIO Movie Story MergeModules x64 VAIO Movie Story Template Data VAIO Original Function Settings VAIO Personalization Manager VAIO Power Management VAIO Premium Partners VAIO Quick Web Access VAIO Smart Network VAIO Transfer Support VAIO Update VAIO Wallpaper Contents Visual C++ 8.0 Runtime Setup Package (x64) Visual Studio 2008 x64 Redistributables Visual Studio 2010 x64 Redistributables VLC media player 2.1.3 VoiceOver Kit VU5x64 VU5x86 Wedding Salon WIDCOMM Bluetooth Software Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405) Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) Windows Driver Package - Fedict SmartCard (03/25/2014 4.0.7.4) Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live Mail Windows Live Photo Gallery Windows Live Writer YTD Video Downloader 4.8 Zylom Games Player Plugin ==== Running Processes ====================== C:\Users\Flore\Downloads\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\GUTDC35.tmp deleted C:\PROGRA~2\GUMDC34.tmp deleted C:\PROGRA~2\GreenTree Applications deleted C:\PROGRA~2\globalUpdate deleted C:\PROGRA~2\AskPartnerNetwork deleted C:\Users\Flore\AppData\Roaming\Alawar Stargaze deleted C:\Users\Flore\AppData\Roaming\AlawarEntertainment deleted C:\Users\Flore\AppData\Roaming\YoudaGames deleted C:\Users\Flore\AppData\Roaming\Systweak deleted C:\Users\Flore\AppData\Roaming\OpenCandy deleted C:\PROGRA~3\AskPartnerNetwork deleted C:\PROGRA~3\Alawar Stargaze deleted C:\PROGRA~3\APN deleted C:\PROGRA~3\AVG Security Toolbar deleted C:\PROGRA~3\Partner deleted C:\PROGRA~3\YTD Video Downloader deleted C:\Users\Flore\AppData\Local\globalUpdate deleted C:\Users\Flore\AppData\Local\AVG Security Toolbar deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted C:\Users\Flore\Searches deleted C:\Users\Flore\Downloads\FreeYouTubeToMP3Converter.exe deleted C:\Users\Flore\AppData\LocalLow\AVG Security Toolbar deleted C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted C:\windows\SysNative\tasks\RunAsStdUser Task deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\Windows\Syswow64\RegistryHelperLM.ocx deleted C:\Users\Flore\Desktop\Continue Free YouTube to MP3 Converter Installation.lnk deleted "C:\Windows\Installer\2211600.msi" deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601) Memory (RAM): 3951 MB CPU Info: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz CPU Speed: 2318.5 MHz Sound Card: Not detected Display Adapters: | RDP Encoder Mirror Driver Monitors: 1x; Screen Resolution: 800 X 600 - 32 bit Network: Network Present Network Adapters: Microsoft Virtual WiFi Miniport Adapter | Marvell Yukon 88E8059 PCI-E Gigabit Ethernet Controller | Atheros AR9285 Wireless Network Adapter CD / DVD Drives: 1x (F: | ) F: Optiarc DVD RW AD-7700H Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 2 Button Wheel Mouse Present Hard Disks: C: 455.0GB Hard Disks - Free: C: 351.8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | 09/23/09 | Sony - 20100126 Time Zone: Romance Standard Time Motherboard *: Sony Corporation VAIO Country: Belgium Language: NLB ==== System Specs (Software) ====================== Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: avast! Antivirus disabled (Outdated) Internet Explorer Version: 11.0.9600.17126 Google Chrome version: 35.0.1916.153 Adobe Reader version: 10.1.10.18 Sun Java version: 1.7.0_60 (32-bit) Flash Player version: 14.0.0.125 Shockwave Player version: 12.0r112 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-07-05 14:58:07 357CEBBCD99C8928A2D1A61A6CACC168 43152 ----a-w- C:\Windows\avastSS.scr 2014-06-20 10:41:45 09E5A1F24A533D20228695C8CE3574D3 21 ----a-w- C:\Windows\Model.txt ====== C:\Users\Flore\AppData\Local\Temp ==== 2014-07-08 09:55:14 FC00A05639494779002682A9B965EF9C 471040 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\WimProvider.dll 2014-07-08 09:55:14 7B38D7916A7CD058C16A0A6CA5077901 271360 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\wdscore.dll 2014-07-08 09:55:13 FE447D1CD38CECAC2331FA932078D9A0 271360 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\SmiProvider.dll 2014-07-08 09:55:13 E7CAED467F80B29F4E63BA493614DBB1 127488 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\OSProvider.dll 2014-07-08 09:55:13 8D3855B133E21143E8B4BFADB9FB14A3 302080 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\UnattendProvider.dll 2014-07-08 09:55:13 739968678548BA15F6B9372E8760C012 444416 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\TransmogProvider.dll 2014-07-08 09:55:13 45FF4FA5CA5432BFCCDED4433FE2A85B 216576 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\MsiProvider.dll 2014-07-08 09:55:12 C9D74156913061BE6C51D8FC3ACF8E93 53760 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\FolderProvider.dll 2014-07-08 09:55:12 BBB9E4FA2561F6A6E5CCF25DA069AC1B 313344 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\IntlProvider.dll 2014-07-08 09:55:09 FC2DB5842190C6E78A40CD7DA483B27C 435712 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\DmiProvider.dll 2014-07-08 09:55:09 F2B0771A7CD27F20689E0AB787B7EB7C 289792 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\DismCore.dll 2014-07-08 09:55:09 9A821D8D62F4C60232B856E98CBA7E4F 96768 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\DismHost.exe 2014-07-08 09:55:09 8CA117CB9338C0351236939717CB7084 186368 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\DismProv.dll 2014-07-08 09:55:09 5488E381238FF19687FDD7AB2F44CFCC 111616 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\DismCorePS.dll 2014-07-08 09:55:08 EFCB002ABC3529D71B61E6FB6434566C 762368 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\CbsProvider.dll 2014-07-08 09:55:08 6A4BD682396F29FD7DF5AB389509B950 183296 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\CompatProvider.dll 2014-07-05 15:09:31 B600DE404F4D6C5A1AB9A033739A21AA 41984 ----a-w- C:\Users\Flore\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpwbk9y0.dll 2014-07-04 22:43:26 97E8867F458230ED2382910A629726B6 1099248 ------w- C:\Users\Flore\AppData\Local\Temp\{397E31AA-0D78-4649-A01C-339D73A2ED35}_NSS_14182.exe 2014-07-04 20:29:50 4CB215ABD1C07C209003366AB8876E74 165112 ----a-w- C:\Users\Flore\AppData\Local\Temp\PCloudCleanerUpdater.exe ====== Java Cache ===== 2014-06-09 16:19:19 6847CA2F3334D0804B42EFAABADB3779 2366 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\59570a00-77943075 2014-06-09 16:09:26 8AAA91AE3E8E8490DA001CE62517E782 94 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\78686780-0e711a7c6ad58696f678a881697e4da02b92d36f48c91630f9bdbe0486d0bbf3-6.0.lap 2014-06-09 16:19:24 871B316509279AE38C8F75A214F37C92 1321 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\89ff040-13fd729e 2014-06-09 16:29:30 BCE95940AAED2F83BA0EDDBF1B8594F9 1074 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\a260241-402e8e75 2014-06-09 16:19:23 E0A8CB2BA36908122406FAF2E3501A3A 4935 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\78f3aa8b-6e1459f3 2014-06-09 16:19:24 CDFF74F4258E00E06B4D4B51B859829D 1673 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\66e8c98c-3d396ccf 2014-06-09 16:29:30 EA979ED391BEB108A9B8295A654D5D10 4624 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\6b096d4e-58db35c3 2014-06-09 16:19:17 C353ACD921CD48A17EA163A63A3B69EB 829 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\427fafd0-7ec1cdb6 2014-06-09 16:19:00 9A660A778FC06AADB39B5C13D7748959 94 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\2f55db91-4b55dd933150b12cd5d19b6c7c95ab4e38bce2871a1f200a36ac4cabd74e2403-6.0.lap 2014-06-09 16:19:24 80E1BD7B118E62FFC62B536150B273E7 1367 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\587c6091-63d6afa8 2014-06-09 16:30:13 FE48A3AE721C9C70DA980A774D13C4FA 94 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\1af2a2d5-053d66965d97981ca6565cbac35d845c70da9a3299b7a3b3999f6be56e3744ef-6.0.lap 2014-06-09 16:19:00 9A660A778FC06AADB39B5C13D7748959 94 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\232bb216-8af4f2aaac50f880b002a6471a1a04f5b42099713903aaa171aec30863ab753c-6.0.lap 2014-06-09 16:19:17 F8E47D1839057B42064042E76579EB2F 719 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\3e8b70d6-7a091b44 2014-06-09 16:29:32 6ECC66D4E1CE8D8D4DE97167B0744307 689 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\454ce4d6-70411ebc 2014-06-09 16:19:22 3E67CFCC10CB17C95B4F526AE3256383 246046 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\7aca3158-68179217 2014-06-09 16:30:14 D353EDD533753FF0197C8ABC06361812 9638 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\4bd3e99c-4d555e5f 2014-06-09 16:19:20 803456D42B0749D92F072E9DB10D04A3 57694 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\20ad0483-226eee7f 2014-06-09 16:29:28 F907A2B9CCDD013A36F77CB0916EDD4F 94 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\7ce67183-e13a576a77e20e1c6e2f59962f31fff1248b16d682e4de54378e2cda2f7da404-6.0.lap 2014-06-09 16:29:31 38336969CB432A75C824D71EC866A328 14810 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\6191a65f-4202cb56 2014-06-09 16:29:30 DCFFB558248296504BC47807885DBEE9 3825 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\246f4d60-54819f55 2014-06-09 16:19:24 42F578483B30DE5217E724884242C75F 3150 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\69e099a6-20b18728 2014-06-09 16:19:00 6EE40B3E96A82DF155BC6BEDB84081C6 94 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\1cfc61e7-f4dc192108fb693e12d99aa90cf43ab92e7491fc090fc389a8e30924b6098baf-6.0.lap 2014-06-09 16:29:31 B5E929ACE1A59A0B2C9FED8B4FA88A7A 922 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\17f6f8e8-7c80133b 2014-06-09 16:29:32 7B8128911E2D9195F348EFFA9582D2E7 8964 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\19a8d168-5af8d7a2 2014-06-09 16:19:24 70CA098C1458CA786EA79E921B8D7891 1716 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\275f48aa-216c9101 2014-06-09 16:09:21 E4736CD19D3082F0BC52A624C4B5E8B7 7010 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\100426ab-14cc8807 2014-06-09 16:27:13 E065C3BEEB78DAB6CFC8B9FEADA2F67C 622222 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\698832ab-4d2a5eff-temp 2014-06-09 16:27:29 D99EEE46850CBE61D5A022344C4EB510 829854 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\698832ab-62e7013f 2014-06-09 16:19:07 AA3A0A2B2F8339117BED7910B5549D75 438 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\dda76ac-6ad52e83 2014-06-09 16:19:25 8A027C8F1D6E6D7CA1EFB5922183B583 3614 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\4b4d41ed-5a09cd8c 2014-06-09 16:19:00 9A660A778FC06AADB39B5C13D7748959 94 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\74d816ad-2556adf9016d7efbba8d5aa17da9879e290aea0068ec78f95be58b26b6425568-6.0.lap 2014-06-09 16:07:42 338FF0BBCD96F62A21017FE78F474B4B 265357 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\7e60542d-5fe2c110 2014-06-09 16:19:21 885C2A015D1930B6C28969DBBF1262F8 199074 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\7e91326e-30e7faf3 2014-06-09 16:19:24 B1321137A2BD359B2BA7314B809419FA 4485 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\5813a3ef-40dbab40 2014-06-09 16:19:16 BE41AD108EE015BB5D1AB64AA34DF7F1 4675 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\23060b1-4e0da36e 2014-06-09 16:19:24 D70A26FCE02DBF7DC0FA149C0C582517 220 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\3a0f75c5-61ee582a 2014-06-09 16:19:17 9F027F900CE6E8B368BEB4A8C5853571 43527 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\45acef85-3067464d 2014-06-09 16:19:23 C7FB1B6A923A76D5D185F8FF7E8B53DA 2063 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\530e9eb2-70c8695a 2014-06-09 16:19:17 1198CC99308A1D648EE8841FA0847A33 173 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\141bd073-11f59702 2014-06-09 16:19:23 F2CB5BE73D72289CA716095B182C341B 1885 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\2fbb7fb3-473bc60e 2014-06-09 16:19:23 1C86964223FCF2B0589F96A0783BF0DE 5230 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\3570b4f3-66982081 2014-06-09 16:19:23 61D9B21DE2DB978CEEB83C6C7339A9DD 2079 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\6aa0ef33-399acaeb 2014-06-09 16:19:25 FC7A4A0594A699DBB2A6791B24614A45 1416 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\3deafdf4-49c9f638 2014-06-09 16:30:13 FE48A3AE721C9C70DA980A774D13C4FA 94 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\557970b4-199994c628c45e265dbd50c1c5d776880c94aea5538fd50c37ac4ec04c0b177b-6.0.lap 2014-06-09 16:19:18 3B25F87BD3DF52DC596BE5B3F8E1812C 195976 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\60553ef4-54def7aa 2014-06-09 16:19:07 7EC90560A22492244FF27E570C1B78E8 1738 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\6f5b4134-146728ee 2014-06-09 16:09:20 3278E1815D6946F278B9E997C18BFEB9 439 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\78c925f4-4a68b432caf243cd5a104cd0ed3241e1bb64474bfe29191ecec828b16c131799-6.0.lap 2014-06-09 16:19:17 3A917BECF1D635B6CAD775CA20382035 853 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\1cec5f77-5af5dbd7 2014-06-09 16:19:07 476BDC913E664AAEFA904EFDD4AB1795 579 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\1cec8b37-503fff1e 2014-06-09 16:29:31 E988C15D266A117EB9B49179C54B01C2 987 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\22779d37-2ebe9984 2014-06-09 16:19:24 2305C5E1AF3B9DA9D9547CD3162A7C43 22609 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\62bc9679-7181a2b8 2014-06-09 16:19:16 09AFCD853F9E2AD4A8E87B62D246BFB3 7494 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\23ddc6ba-40df1770 2014-06-09 16:07:40 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-5c66ba3f 2014-06-09 16:27:30 0A0E0619BBF41CF97E6DE6EEDA6788E5 1690 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\29e71386-74ee1046 2014-06-09 16:19:23 BBD47EA90CFDE28A08408D47CAA8953B 5232 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\5740adbc-2f91378c 2014-06-09 16:18:22 16FF28B7EBB5B778B77251FF226BCF9E 3490111 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\49cdfa3d-414aa291 2014-06-09 16:19:17 4B83C558A887238F35479A7B32F9DF1C 596 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\2c24ab7e-494b18e8 2014-06-09 16:19:28 2DA5EAA18691CCB9A5953AB904780614 1328 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\31a7473e-27ecbd85 2014-06-09 16:26:15 763BE12336AD0B0AD01BFBD6239C4627 94 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\4311f2ff-84e264cf17e72b4c14c4b68728f9e87bd2eee091207b81738aea91c0b1c92185-6.0.lap 2014-06-09 16:19:05 AC449EB8536CB4C24F3E7A407F9D574B 315 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\92531ff-1ee986f3 2014-06-09 16:07:42 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-48277944 2014-06-09 16:07:42 1A327E366835C400825B19AC2992F537 445 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-e2e4c8970372d2fb4193a7ef29d16f6c3f08527947fcb9208b3a0e48820369fd-6.0.lap 2014-06-09 16:19:19 613850EF780CFB7DB78EEF083755EFC2 561 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\3763b489-3a044cdc 2014-06-09 16:19:16 A58B044051DAB18A3B0ADBA988AA3ED1 10406 ----a-w- C:\Users\Flore\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\67d0b649-2b398902 ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== 2014-06-18 08:42:52 C067D1989D3CED638C3821CF866AA848 19968 ------r- C:\Windows\SysWOW64\drivers\RtsUIr.sys 2014-06-18 08:42:52 5C62508A344A2A13F6A7A85286AE8F62 50176 ------r- C:\Windows\SysWOW64\drivers\RtsUCcid.sys ====== C:\Windows\Sysnative ===== 2014-07-05 14:58:21 B46B41CE922CE5B7B055A28226DE2D79 307344 ----a-w- C:\Windows\Sysnative\aswBoot.exe ====== C:\Windows\Sysnative\drivers ===== 2014-07-05 14:58:27 B8FDEDE963B82CFD23B3A53A3084666D 1041168 ----a-w- C:\Windows\Sysnative\drivers\aswSnx.sys 2014-07-05 14:58:27 48DED912CDE54FC0923B9858512366E1 92008 ----a-w- C:\Windows\Sysnative\drivers\aswStm.sys 2014-07-05 14:58:27 471A311745848B80339436688A8286E6 224896 ----a-w- C:\Windows\Sysnative\drivers\aswVmm.sys 2014-07-05 14:58:26 FF1E537A3632CBB9A0BF72B9FD0878D5 79184 ----a-w- C:\Windows\Sysnative\drivers\aswMonFlt.sys 2014-07-05 14:58:26 D95E64416A4A3ED6986E0F474DA934BD 29208 ----a-w- C:\Windows\Sysnative\drivers\aswHwid.sys 2014-07-05 14:58:26 645D97385F3F284FB5604F9B970F4D24 65776 ----a-w- C:\Windows\Sysnative\drivers\aswRvrt.sys 2014-07-05 14:58:26 0DEDC041DF594AEC2C3BD00417CFAF60 427360 ----a-w- C:\Windows\Sysnative\drivers\aswsp.sys 2014-07-05 14:58:25 A5757DE5F9C83AB40667A53D5126EA40 93568 ----a-w- C:\Windows\Sysnative\drivers\aswRdr2.sys 2014-06-20 12:43:59 E9981ECE8D894CEF7038FD1D040EB426 56832 ----a-w- C:\Windows\Sysnative\drivers\TsUsbFlt.sys 2014-06-20 10:27:09 05A0C2744CEAC6F1B723EC469B650EF0 47632 ----a-w- C:\Windows\Sysnative\drivers\PSKMAD.sys 2014-06-18 08:48:41 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf 2014-06-11 12:37:36 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2014-06-11 12:37:36 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys ====== C:\Windows\Tasks ====== 2014-07-05 15:00:42 8A1D2788F84BE7169905BDB1182E002D 4182 ----a-w- C:\Windows\Sysnative\Tasks\avast! Emergency Update 2014-06-20 10:46:12 C114E5A34BAE66D843524BE91CC25FB8 3152 ----a-w- C:\Windows\Sysnative\Tasks\{7646674F-F251-4DCD-9FAD-2D1D504033B1} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-07-08 09:55:23 -------- d-----w- C:\Program Files\trend micro 2014-06-15 09:28:41 -------- d-----w- C:\Program Files\iPod 2014-06-15 09:28:40 -------- d-----w- C:\Program Files\iTunes ======= C:\PROGRA~2 ===== 2014-07-04 20:26:12 -------- d-----w- C:\PROGRA~2\VideoLAN 2014-06-19 16:05:58 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype 2014-06-18 08:53:51 -------- d-----w- C:\PROGRA~2\Belgium Identity Card 2014-06-15 17:07:18 -------- d-----w- C:\PROGRA~2\MetaGeek 2014-06-09 16:05:25 -------- d-----w- C:\PROGRA~2\COMMON~1\Java ======= C: ===== ====== C:\Users\Flore\AppData\Roaming ====== 2014-07-06 19:36:28 -------- d-----w- C:\Users\Flore\AppData\Roaming\vlc 2014-07-05 15:09:31 -------- d-----w- C:\Users\Flore\AppData\Roaming\DropboxMaster 2014-07-05 15:09:20 -------- d-----w- C:\Users\Flore\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-07-05 15:07:32 -------- d-----w- C:\Users\Flore\AppData\Roaming\Dropbox 2014-06-20 11:45:08 -------- d-----w- C:\Users\Flore\AppData\Roaming\QuickScan 2014-06-20 09:46:45 -------- d-sh--w- C:\Users\Flore\AppData\Locallow\EmieUserList 2014-06-20 08:52:54 -------- d-----w- C:\Users\Flore\AppData\Local\com 2014-06-20 08:52:47 -------- d-sh--w- C:\Users\Flore\AppData\Local\EmieUserList 2014-06-20 08:52:47 -------- d-sh--w- C:\Users\Flore\AppData\Local\EmieSiteList 2014-06-17 07:50:49 -------- d-sh--w- C:\Users\Flore\AppData\Locallow\EmieSiteList 2014-06-15 17:08:30 -------- d-----w- C:\Users\Flore\AppData\Local\MetaGeek,_LLC 2014-06-09 16:08:25 -------- d-----w- C:\Windows\SysNative\config\systemprofile\AppData\Locallow\Sun 2014-06-09 16:07:50 -------- d-----w- C:\Users\Flore\AppData\Roaming\Oracle ====== C:\Users\Flore ====== 2014-07-08 10:00:29 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Flore\Downloads\RSITx64 (2).exe 2014-07-08 09:58:12 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Flore\Downloads\RSITx64 (1).exe 2014-07-08 09:55:06 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Flore\Downloads\RSITx64.exe 2014-07-08 08:53:53 EF65B69EDA22962698904A48B30498BE 779704 ----a-w- C:\Users\Flore\Downloads\Setup (2).exe 2014-07-08 08:52:52 EF65B69EDA22962698904A48B30498BE 779704 ----a-w- C:\Users\Flore\Downloads\Setup (1).exe 2014-07-05 15:01:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast 2014-07-05 14:54:18 4AF4D1D156DF61FC7364D1193862A068 4862664 ----a-w- C:\Users\Flore\Downloads\avast_free_antivirus_setup_online.exe 2014-07-04 21:55:38 EF65B69EDA22962698904A48B30498BE 779704 ----a-w- C:\Users\Flore\Downloads\Setup.exe 2014-07-04 21:27:47 1190CA7387EB0B28A5ED19B197CD6846 5123440 ----a-w- C:\Users\Flore\Downloads\F-SecureOnlineScanner (2).exe 2014-07-04 21:27:45 1190CA7387EB0B28A5ED19B197CD6846 5123440 ----a-w- C:\Users\Flore\Downloads\F-SecureOnlineScanner (1).exe 2014-07-04 21:26:39 436372F287FD2DB452832F4DB7139FB7 185424 ----a-w- C:\Users\Flore\Downloads\kss12.0.1.117abRU_EN_DE_FR_ES_IT_JA_PT_ZH_4296.exe 2014-07-04 21:17:29 BD716BB7C2364516E71A1DD118CD04EC 30418128 ----a-w- C:\Users\Flore\Downloads\PandaCloudCleaner (1).exe 2014-07-04 20:26:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2014-07-04 20:25:03 DF463B4C69C1531D1DA7DA3E30E7F8B5 24677393 ----a-w- C:\Users\Flore\Downloads\vlc-2.1.3-win32.exe 2014-06-20 11:48:20 -------- d-----w- C:\ProgramData\F-Secure 2014-06-20 10:18:54 -------- d-----w- C:\ProgramData\Sony 2014-06-20 08:43:18 075B0DA82E23780FA2DD7F2EA0464FD4 258 --sha-r- C:\ProgramData\ntuser.pol 2014-06-19 16:05:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-06-18 08:54:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID 2014-06-18 08:43:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 Card Reader Software 2014-06-15 17:07:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetaGeek 2014-06-15 09:29:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-06-15 09:28:40 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 ====== C: exe-files == 2014-07-08 10:00:29 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Flore\Downloads\RSITx64 (2).exe 2014-07-08 09:58:12 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Flore\Downloads\RSITx64 (1).exe 2014-07-08 09:55:24 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Flore.exe 2014-07-08 09:55:09 9A821D8D62F4C60232B856E98CBA7E4F 96768 ----a-w- C:\Users\Flore\AppData\Local\Temp\05EF77BC-CF25-45C6-BAF2-EB73CC48FBF2\DismHost.exe 2014-07-08 09:55:06 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Flore\Downloads\RSITx64.exe 2014-07-08 08:53:53 EF65B69EDA22962698904A48B30498BE 779704 ----a-w- C:\Users\Flore\Downloads\Setup (2).exe 2014-07-08 08:53:04 55D95CF2C2164EA7F95C089C1015036F 358752 ----a-w- C:\Users\Flore\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PH9UKIVF\SymInstallStub[2].exe 2014-07-08 08:52:52 EF65B69EDA22962698904A48B30498BE 779704 ----a-w- C:\Users\Flore\Downloads\Setup (1).exe 2014-07-05 14:58:21 B46B41CE922CE5B7B055A28226DE2D79 307344 ----a-w- C:\Windows\System32\aswBoot.exe 2014-07-05 14:54:18 4AF4D1D156DF61FC7364D1193862A068 4862664 ----a-w- C:\Users\Flore\Downloads\avast_free_antivirus_setup_online.exe 2014-07-04 23:09:01 20431A2080ACE6519C8102AAF6C8EC52 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-818228490-3543105937-2819727540-1000\$I49VRI0.exe 2014-07-04 22:43:26 97E8867F458230ED2382910A629726B6 1099248 ------w- C:\Users\Flore\AppData\Local\Temp\{397E31AA-0D78-4649-A01C-339D73A2ED35}_NSS_14182.exe 2014-07-04 21:56:43 0A2CBA6BF5052F9C4DFEEF2DBF2794F6 343992 ----a-w- C:\Users\Flore\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PH9UKIVF\SymInstallStub[1].exe 2014-07-04 21:55:38 EF65B69EDA22962698904A48B30498BE 779704 ----a-w- C:\Users\Flore\Downloads\Setup.exe 2014-07-04 21:27:47 1190CA7387EB0B28A5ED19B197CD6846 5123440 ----a-w- C:\Users\Flore\Downloads\F-SecureOnlineScanner (2).exe 2014-07-04 21:27:45 1190CA7387EB0B28A5ED19B197CD6846 5123440 ----a-w- C:\Users\Flore\Downloads\F-SecureOnlineScanner (1).exe 2014-07-04 21:26:39 436372F287FD2DB452832F4DB7139FB7 185424 ----a-w- C:\Users\Flore\Downloads\kss12.0.1.117abRU_EN_DE_FR_ES_IT_JA_PT_ZH_4296.exe 2014-07-04 21:17:29 BD716BB7C2364516E71A1DD118CD04EC 30418128 ----a-w- C:\Users\Flore\Downloads\PandaCloudCleaner (1).exe 2014-07-04 20:29:50 4CB215ABD1C07C209003366AB8876E74 165112 ----a-w- C:\Users\Flore\AppData\Local\Temp\PCloudCleanerUpdater.exe 2014-07-04 20:26:46 C7381EEC1332559C3582B40A41221904 233566 ----a-w- C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe 2014-07-04 20:25:03 DF463B4C69C1531D1DA7DA3E30E7F8B5 24677393 ----a-w- C:\Users\Flore\Downloads\vlc-2.1.3-win32.exe === C: other files == 2014-07-05 14:58:27 B8FDEDE963B82CFD23B3A53A3084666D 1041168 ----a-w- C:\Windows\System32\drivers\aswSnx.sys 2014-07-05 14:58:27 48DED912CDE54FC0923B9858512366E1 92008 ----a-w- C:\Windows\System32\drivers\aswStm.sys 2014-07-05 14:58:27 471A311745848B80339436688A8286E6 224896 ----a-w- C:\Windows\System32\drivers\aswVmm.sys 2014-07-05 14:58:26 FF1E537A3632CBB9A0BF72B9FD0878D5 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys 2014-07-05 14:58:26 D95E64416A4A3ED6986E0F474DA934BD 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys 2014-07-05 14:58:26 645D97385F3F284FB5604F9B970F4D24 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys 2014-07-05 14:58:26 0DEDC041DF594AEC2C3BD00417CFAF60 427360 ----a-w- C:\Windows\System32\drivers\aswsp.sys 2014-07-05 14:58:25 A5757DE5F9C83AB40667A53D5126EA40 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" "ISBMgr.exe"="C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" "PMBVolumeWatcher"="C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe" "MarketingTools"="C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe" "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "AvgUninstallURL"="cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-appf?lic=OQBBAFYARgBSAEUARQAtAFYASwBQAEMAQgAtADYAQgBXAEYATQAtAFQAUgBMAFEAUgAtAEIAUgBVAEgAUAAtAEMAUAA4ADYARwA&inst=NwA3AC0AMQA2ADcANgA2ADMANQA2ADgAMgAtAEIAMgAtAFQAQgA5ACsAMgAtAEYATAArADkALQBGADkATQA3AEIAKwA1AC0ARABEAFQAKwAwAC0AUwBUADkAMABGAEEAUABQACsAMQA&prod=90&ver=9.0.914" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "Apoint"="%ProgramFiles%\Apoint\Apoint.exe " ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EADM] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="EADM" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Origin\\Origin.exe\" -AutoStart" ==== Startup Folders ====================== 2009-12-25 21:49:38 834 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk 2012-02-24 14:28:33 2653 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [07/07/2014 19:25] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24/01/2010 04:49] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [24/01/2010 04:49] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\USER_ESRV_SVC" ["C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Sony\VAIO Care\ESRV\task.vbs"] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{0E626F3C-8A24-4FFB-84FD-07195C3D7244}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{719B40EA-FB73-4609-9493-C971744BBBBA}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\{188D26AC-5AC0-4E68-9333-8FE504AE25DA}" [C:\Program Files (x86)\Ion Audio\EZ Vinyl Tape Converter\EZAudioConverter.exe] "C:\Windows\SysNative\tasks\{60E2CB50-BDF7-41CC-9B8B-2C113B696DF2}" [C:\Program Files (x86)\Jojo's Fashion Show - World Tour\drdmrzs.exe] "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\Windows\SysNative\tasks\SONY\SUS-BCF\Level4Daily" [C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe] "C:\Windows\SysNative\tasks\SONY\SUS-BCF\Level4Month" [C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe] "C:\Windows\SysNative\tasks\SONY\VAIO Gate\VAIO Gate" [C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe] "C:\Windows\SysNative\tasks\SONY\VAIO Power Management\VPM Logon Start" [C:\Program Files\Sony\VAIO Power Management\SPMgr.exe] "C:\Windows\SysNative\tasks\SONY\VAIO Power Management\VPM Session Change" [C:\Program Files\Sony\VAIO Power Management\SPMgr.exe] "C:\Windows\SysNative\tasks\SONY\VAIO Power Management\VPM Unlock" [C:\Program Files\Sony\VAIO Power Management\SPMgr.exe] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\CheckSystemInfo" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\DeployCRMflag" ["%ProgramFiles%\Sony\VAIO Care\DeployCRMflag.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\GetPOTInfo" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\UpdateSolution" ["%ProgramFiles%\Sony\VAIO Care\Solution.Updater.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\UploadPOT" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\VAIO Care" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\VCCheckIolo" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\VCMetrics" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\VCOneClick" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\VCRLog" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Care\VCSelfHeal" ["%ProgramFiles%\Sony\VAIO Care\VCSystemTray.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Update\VAIO Update" ["C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe"] "C:\Windows\SysNative\tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair" [C:\Program Files\Sony\VAIO Update\VUSR.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [05/07/2014 16:58] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be - Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Flore\AppData\Roaming\Mozilla\Firefox\Profiles\7d1qzl9g.default 546A28FBC44B984FD92530227BF6F5C2 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll - Shockwave for Director / Shockwave for Director FC5866F7793AF2CBCD425CC4B8D32A9E - C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll - Zylom Plugin ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions aaaailpifkkekipiachodfkfmgmiapmp - C:\ProgramData\AskPartnerNetwork\Toolbar\SGT-V7\CRX\ToolbarCR.crx[] gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[05/07/2014 16:57] Google Docs - Flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Google Voice Search Hotword (Beta) - Flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn YouTube - Flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf ICE Quick Stream - Flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpioikmjnfipgphjldakcaocbbpnfabl Google Wallet - Flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Bitdefender QuickScan - Flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie Gmail - Flore\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://nl.msn.com/?ocid=U218DHP&pc=U218" "Default_Page_URL"="http://www.google.com/ig/redirectdomain?brand=SVEC&bmod=EU01" "Use Search Asst"="yes" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fR3s5PAVMZpZbM61lWNTdgwQHuH_gBTMti9ujU-zgs4G4gjEsfCxUp3tdewdgMKet2zVwrPjJBkU9-PNx_bv5G9aqRBcx7oLYDWzX78HwoT6KKb8lHLJ5wv93ilOpS8opC0fPnDxTwDh4Sn7nOnC0XLvbi3QVBzmxFeag8e1&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "Default"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fR3s5PAVMZpZbM61lWNTdgwQHuH_gBTMti9ujU-zgs4G4gjEsfCxUp3tdewdgMKet2zVwrPjJBkU9-PNx_bv5G9aqRBcx7oLYDWzX78HwoT6KKb8lHLJ5wv93ilOpS8opC0fPnDxTwDh4Sn7nOnC0XLvbi3QVBzmxFeag8e1&q={searchTerms}" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "Default"="http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPAMW02fR3s5PAVMZpZbM61lWNTdgwQHuH_gBTMti9ujU-zgs4G4gjEsfCxUp3tdewdgMKet2zVwrPjJBkU9-PNx_bv5G9aqRBcx7oLYDWzX78HwoT6KKb8lHLJ5wv93ilOpS8opC0fPnDxTwDh4Sn7nOnC0XLvbi3QVBzmxFeag8ey&q={searchTerms}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://nl.msn.com/?ocid=U218DHP&pc=U218" "Use Search Asst"="no" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{006ee092-9658-4fd6-bd8e-a21a348e59f5}" {006ee092-9658-4fd6-bd8e-a21a348e59f5} Bing Url="http://www.bing.com/search?FORM=U218DF&PC=U218&q={searchTerms}&src=IE-SearchBox" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-818228490-3543105937-2819727540-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F60730A4A66673047777F5728467D401 deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaailpifkkekipiachodfkfmgmiapmp deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\F60730A4A66673047777F5728467D401 deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe O4 - HKLM\..\Run: [MarketingTools] C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-appf?lic=OQBBAFYARgBSAEUARQAtAFYASwBQAEMAQgAtADYAQgBXAEYATQAtAFQAUgBMAFEAUgAtAEIAUgBVAEgAUAAtAEMAUAA4ADYARwA"&"inst=NwA3AC0AMQA2ADcANgA2ADMANQA2ADgAMgAtAEIAMgAtAFQAQgA5ACsAMgAtAEYATAArADkALQBGADkATQA3AEIAKwA1AC0ARABEAFQAKwAwAC0AUwBUADkAMABGAEEAUABQACsAMQA"&"prod=90"&"ver=9.0.914 O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: Bluetooth.lnk = ? O4 - Global Startup: vpngui.exe.lnk = ? O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll O9 - Extra 'Tools' menuitem: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx O17 - HKLM\System\CCS\Services\Tcpip\..\{6DD0B22D-C026-4940-9700-1362E8BA5673}: NameServer = 192.168.1.1 O18 - Protocol: avgsecuritytoolbar - (no CLSID) - (no file) O18 - Protocol: dssrequest - (no CLSID) - (no file) O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: sacore - (no CLSID) - (no file) O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe (file missing) O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Energy Server Service (ESRV_SVC) - Intel Corporation - C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe (file missing) O23 - Service: McAfee Security Scan Component Host Service for Sony (McComponentHostServiceSony) - McAfee, Inc. - C:\Program Files\Sony\MSS\3.8.141\McCHSvc.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NitroPDFReaderDriverCreatorReadSpool2 (NitroReaderDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Intel(R) System Behavior Tracker Collector Service (SampleCollector) - Intel Corporation - C:\Program Files\Sony\VAIO Care\VCPerfService.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: User Energy Server Service (USER_ESRV_SVC) - Intel Corporation - C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe O23 - Service: VCService - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCService.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update\vuagent.exe O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Flore\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Flore\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Flore\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Flore\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=272 folders=137 67179785 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Flore\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Flore\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on di 08/07/2014 at 14:03:08,81 ======================