
Zoek.exe v5.0.0.0 Updated 14-December-2014
Tool run by Farrah on di 16-12-2014 at 17:57:28,79.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Farrah\Downloads\zoek (2).exe [Scan all users] [Script inserted] [Checkboxes used]

==== Older Logs ======================

C:\zoek-results2014-12-16-165505.log	50063 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\ProgramData\IHProtectUpDate not found
C:\Program Files (x86)\Stab not found
C:\Program Files (x86)\4d8925c7-a90f-42de-83b0-07ae65cd4f95 not found
C:\ProgramData\phfidplckgappccgloedndkafjgfjalh not found
C:\Program Files (x86)\BBuyNsiave deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-12-16 14:43:22	B59EF013D567E5746F1DEE2565F747ED	43152	----a-w-	C:\Windows\avastSS.scr
====== C:\Users\Farrah\AppData\Local\Temp ====
2014-12-16 16:55:30	97511FE2CA09CC2E06C3CD6519C3494E	43008	----a-w-	C:\Users\Farrah\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpz629eb.dll
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-12-10 12:55:00	FF0A6E76FAE624AC74780AB008752F98	3209728	----a-w-	C:\Windows\SysWOW64\mf.dll
2014-12-10 12:55:00	D17954CA6343F43B62637F51996B4E95	23040	----a-w-	C:\Windows\SysWOW64\mfpmp.exe
2014-12-10 12:55:00	60FBCF033FF42A40C916C01A962A8802	50176	----a-w-	C:\Windows\SysWOW64\rrinstaller.exe
2014-12-10 12:55:00	52096F5F476733F2E2725CF346FF373B	2048	----a-w-	C:\Windows\SysWOW64\mferror.dll
2014-12-10 12:55:00	20257A0BFB824B49055A6EEC29C72C03	103424	----a-w-	C:\Windows\SysWOW64\mfps.dll
2014-12-09 23:58:53	E1456E7396022EBE4E5434188D1AC8B0	1230336	----a-w-	C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-09 23:58:36	F25284C763E728E4DAC248C211D1FC5B	76288	----a-w-	C:\Windows\SysWOW64\mshtmled.dll
2014-12-09 23:58:36	BB25F69463AD8E7E51B5D9D158B5F8DF	30720	----a-w-	C:\Windows\SysWOW64\iernonce.dll
2014-12-09 23:58:36	2EADED07BDA52C1FC5A6D4E1CC5858F0	47616	----a-w-	C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-09 23:58:35	F98B3860BB47089EA8C1504F043E90E9	342200	----a-w-	C:\Windows\SysWOW64\iedkcs32.dll
2014-12-09 23:58:35	F34F6DC38A21FCDBB50CDD1EE97B1EA3	1307136	----a-w-	C:\Windows\SysWOW64\urlmon.dll
2014-12-09 23:58:35	D7A98A4CEA2E89F544065A00BF37FC10	688640	----a-w-	C:\Windows\SysWOW64\msfeeds.dll
2014-12-09 23:58:35	69AC6FD5B0B4DC963723E1EBDEE10A2C	285696	----a-w-	C:\Windows\SysWOW64\dxtrans.dll
2014-12-09 23:58:35	2ABC5587D582ACCEA30B4CF968C2A4A5	60416	----a-w-	C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-09 23:58:35	220505B0B3E96C857DD01729AF0CD369	19749376	----a-w-	C:\Windows\SysWOW64\mshtml.dll
2014-12-09 23:58:34	F0BCBD8FCDA145EED53ED66C45CC378B	62464	----a-w-	C:\Windows\SysWOW64\iesetup.dll
2014-12-09 23:58:34	DEB9476A3CD1A5819DD4504BB7C6BA66	2724864	----a-w-	C:\Windows\SysWOW64\mshtml.tlb
2014-12-09 23:58:34	543ADCEA31CF9C2B4EEB900D4AAFD0F9	2052096	----a-w-	C:\Windows\SysWOW64\inetcpl.cpl
2014-12-09 23:58:34	41AFA61E061E98E97272AC02184C8C2C	710144	----a-w-	C:\Windows\SysWOW64\ieapfltr.dll
2014-12-09 23:58:33	EC5A3E4E21079B9D423AA0760828D678	620032	----a-w-	C:\Windows\SysWOW64\jscript9diag.dll
2014-12-09 23:58:33	01777AB557997E98691E322225314E57	2277888	----a-w-	C:\Windows\SysWOW64\iertutil.dll
2014-12-09 23:58:32	D90585C3BE942DAAFBDC868FDC061844	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2014-12-09 23:58:32	759E2FAD5371512C6679FA346719493E	47104	----a-w-	C:\Windows\SysWOW64\jsproxy.dll
2014-12-09 23:58:31	CF9D05678B02B44FBC8D8AD8C9F30D58	478208	----a-w-	C:\Windows\SysWOW64\ieui.dll
2014-12-09 23:58:31	B59E370277EDB6643083B62297175628	12836864	----a-w-	C:\Windows\SysWOW64\ieframe.dll
2014-12-09 23:58:31	35BD045804B67E78F4CAB72CB820AF7F	418304	----a-w-	C:\Windows\SysWOW64\dxtmsft.dll
2014-12-09 23:58:29	2E9E105037AC1274656C3D1125323352	1155072	----a-w-	C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-09 23:58:28	F728E7E9937117E0F32F39840EB6D737	4299264	----a-w-	C:\Windows\SysWOW64\jscript9.dll
2014-12-09 23:58:28	37F078B5B435AFC6BF316F2AD14B469A	501248	----a-w-	C:\Windows\SysWOW64\vbscript.dll
2014-12-09 23:58:27	930F63D6BC43D4BCD937DFCECDA95F82	168960	----a-w-	C:\Windows\SysWOW64\msrating.dll
2014-12-09 23:58:27	5E4E0E43E0A5BF9F089696DFA7A3D677	1888256	----a-w-	C:\Windows\SysWOW64\wininet.dll
2014-12-09 23:58:27	29CED1A4777A43526A4ED8A7B6936883	64000	----a-w-	C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-09 23:58:17	9EA3783672D21817B9DF1061B54C3B3C	155136	----a-w-	C:\Windows\SysWOW64\charmap.exe
2014-12-09 23:58:08	B975C202F590BBC5AA63225FBD148791	198656	----a-w-	C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-09 23:58:08	B6AC69FFBAA159DD5CEED814245A286D	214016	----a-w-	C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-09 23:58:08	5D9A1A3E5824CECE65871C60E5A08A1A	145920	----a-w-	C:\Windows\SysWOW64\WsmAuto.dll
2014-12-09 23:58:08	2C28FEC61C4AC68480A99CB7AA197FA9	248832	----a-w-	C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-09 23:58:08	1DE9BD23AFA36150586C732D876D9B74	1177088	----a-w-	C:\Windows\SysWOW64\WsmSvc.dll
2014-12-09 23:58:00	50C73E54062BA252350F3F29580E28DA	2048	----a-w-	C:\Windows\SysWOW64\tzres.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-12-16 14:43:33	6663B30328C239D2AB10D2583054CF2E	364512	----a-w-	C:\Windows\Sysnative\aswBoot.exe
2014-12-10 12:55:00	AB2EB93A982A2C26BA3E4D2D65328804	24576	----a-w-	C:\Windows\Sysnative\mfpmp.exe
2014-12-10 12:55:00	9797A23F773C0782A0D91BEC44054166	206848	----a-w-	C:\Windows\Sysnative\mfps.dll
2014-12-10 12:55:00	68E09E7CD4DC52F132A4B492ACE8C243	55808	----a-w-	C:\Windows\Sysnative\rrinstaller.exe
2014-12-10 12:55:00	63578DB847FCC40883CB8F303E785D46	2048	----a-w-	C:\Windows\Sysnative\mferror.dll
2014-12-10 12:54:59	6E1DDE0E72FB8268F42F6777CE4C5036	4121600	----a-w-	C:\Windows\Sysnative\mf.dll
2014-12-09 23:59:03	F0356290BA3940F31AFF5566501495F7	192000	----a-w-	C:\Windows\Sysnative\aepic.dll
2014-12-09 23:59:03	E00981CF227CEEBE7B5A8D99C76D1116	741376	----a-w-	C:\Windows\Sysnative\invagent.dll
2014-12-09 23:59:03	D257AF48934D2167BE15AA4008176381	1083392	----a-w-	C:\Windows\Sysnative\aeinv.dll
2014-12-09 23:59:03	985558125FEEC89AB4AD142158B066D7	830976	----a-w-	C:\Windows\Sysnative\appraiser.dll
2014-12-09 23:59:03	8E64BB62AB3810D3C29ED50C405AD3BD	1232040	----a-w-	C:\Windows\Sysnative\aitstatic.exe
2014-12-09 23:59:02	DAF13A81A5FC895D68B1D9A72F65F4CB	413184	----a-w-	C:\Windows\Sysnative\generaltel.dll
2014-12-09 23:59:02	5CD6E919CE938A98AB25A2EA2C8C4EDA	227328	----a-w-	C:\Windows\Sysnative\aepdu.dll
2014-12-09 23:59:02	4253086737D81D7C9C160FDE6C037F44	396800	----a-w-	C:\Windows\Sysnative\devinv.dll
2014-12-09 23:58:54	A9A0BFD706B3A24C403EEFEB0790D011	1424384	----a-w-	C:\Windows\Sysnative\WindowsCodecs.dll
2014-12-09 23:58:36	D471F7A428C21DB04D810445D12D68E0	48640	----a-w-	C:\Windows\Sysnative\ieetwproxystub.dll
2014-12-09 23:58:36	0FABE2AB8CA2D5CC7C95798533B4D057	114688	----a-w-	C:\Windows\Sysnative\ieetwcollector.exe
2014-12-09 23:58:36	077AEB068A51B396F25BBCAB0944FC3A	2724864	----a-w-	C:\Windows\Sysnative\mshtml.tlb
2014-12-09 23:58:35	F987718A5CA053DC23E94A531F1754A4	34304	----a-w-	C:\Windows\Sysnative\iernonce.dll
2014-12-09 23:58:35	9F07E8FC75C5F98A783ABFD3005EFC22	77824	----a-w-	C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2014-12-09 23:58:35	39B512C643812FC2D4843C0D4206C759	718848	----a-w-	C:\Windows\Sysnative\ie4uinit.exe
2014-12-09 23:58:34	E7A2061ADF0F4D430FECDA1E8D6B7BA6	1548288	----a-w-	C:\Windows\Sysnative\urlmon.dll
2014-12-09 23:58:34	5BF0BAA1E5EF724287565E97C9219254	389296	----a-w-	C:\Windows\Sysnative\iedkcs32.dll
2014-12-09 23:58:33	B4E481E9498CE22113628C4E9EA24427	4096	----a-w-	C:\Windows\Sysnative\ieetwcollectorres.dll
2014-12-09 23:58:31	EBC8C9F61F4C148B8C6A28EDE80C51E4	968704	----a-w-	C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2014-12-09 23:58:31	14BA910E7731FC84EB85328BD0F1EE81	800768	----a-w-	C:\Windows\Sysnative\msfeeds.dll
2014-12-09 23:58:31	0AF0AEF0BA9EF6169E61C78504DCAE55	316928	----a-w-	C:\Windows\Sysnative\dxtrans.dll
2014-12-09 23:58:30	EFBA893429814EA3244C87C2D1256618	800768	----a-w-	C:\Windows\Sysnative\ieapfltr.dll
2014-12-09 23:58:30	23AE7A3B44D5C550B81347288CE3230E	66560	----a-w-	C:\Windows\Sysnative\iesetup.dll
2014-12-09 23:58:29	982B871A25B5078093FAD82D0AB0E3FC	2885120	----a-w-	C:\Windows\Sysnative\iertutil.dll
2014-12-09 23:58:29	3FE71E2A5BD3EC652E64FC8BCEFEDD2C	2125312	----a-w-	C:\Windows\Sysnative\inetcpl.cpl
2014-12-09 23:58:27	F7CCA58B973FB5EAED8D1F12DD3E51F6	490496	----a-w-	C:\Windows\Sysnative\dxtmsft.dll
2014-12-09 23:58:27	DFECAE6D925FBC9078870E16F98C471F	54784	----a-w-	C:\Windows\Sysnative\jsproxy.dll
2014-12-09 23:58:27	8EF01E2EF21D41A23FF70B28179F9ABE	633856	----a-w-	C:\Windows\Sysnative\ieui.dll
2014-12-09 23:58:27	5F24313333AB409251152CAFADA40015	144384	----a-w-	C:\Windows\Sysnative\ieUnatt.exe
2014-12-09 23:58:27	556D271F4243B273EDA353512BF3608A	14412800	----a-w-	C:\Windows\Sysnative\ieframe.dll
2014-12-09 23:58:26	DB10D681314714E0D4623E4C0CF6654A	92160	----a-w-	C:\Windows\Sysnative\mshtmled.dll
2014-12-09 23:58:26	8D64466AD12CA5677CD0099C43C58569	6039552	----a-w-	C:\Windows\Sysnative\jscript9.dll
2014-12-09 23:58:26	7AC115968B8856004920057B2271224C	1359360	----a-w-	C:\Windows\Sysnative\mshtmlmedia.dll
2014-12-09 23:58:26	021DFF3CB0ADCD19B3AAA00A650FDEE2	814080	----a-w-	C:\Windows\Sysnative\jscript9diag.dll
2014-12-09 23:58:25	4AF089160FE082E5EA5C4AA72782DCA2	2358272	----a-w-	C:\Windows\Sysnative\wininet.dll
2014-12-09 23:58:25	1D294810D3A8A8F722E86AA001F54DCC	580096	----a-w-	C:\Windows\Sysnative\vbscript.dll
2014-12-09 23:58:23	D478A4CF07FB8ADF72FB16B88E8030B8	25059840	----a-w-	C:\Windows\Sysnative\mshtml.dll
2014-12-09 23:58:23	89296EF4A3729A049DA25B7D67A04078	199680	----a-w-	C:\Windows\Sysnative\msrating.dll
2014-12-09 23:58:23	17A157A4225CF562202AC71DB8103177	88064	----a-w-	C:\Windows\Sysnative\MshtmlDac.dll
2014-12-09 23:58:17	36E5E9D0400475230A7F57F274B88321	165888	----a-w-	C:\Windows\Sysnative\charmap.exe
2014-12-09 23:58:08	FDEB5EE2E4DB9DE9251DDAF6A5BCA070	346624	----a-w-	C:\Windows\Sysnative\WSManMigrationPlugin.dll
2014-12-09 23:58:08	D929ABD465A2DED963DA8B30946A8D5C	2020352	----a-w-	C:\Windows\Sysnative\WsmSvc.dll
2014-12-09 23:58:08	9B44CABE3536D0E3BF627176318AAFC9	181248	----a-w-	C:\Windows\Sysnative\WsmAuto.dll
2014-12-09 23:58:08	5C642B7B0365305451D579F3EFAD57D4	310272	----a-w-	C:\Windows\Sysnative\WsmWmiPl.dll
2014-12-09 23:58:08	41457C1909F6D1100C0F9B9CFF7960FC	266240	----a-w-	C:\Windows\Sysnative\WSManHTTPConfig.exe
2014-12-09 23:58:01	A026998E927FD2095505154CBD72F35B	2048	----a-w-	C:\Windows\Sysnative\tzres.dll
====== C:\Windows\Sysnative\drivers =====
2014-12-16 14:43:49	B1881A01E301990B671694CA1623F1B6	436624	----a-w-	C:\Windows\Sysnative\drivers\aswSP.sys
2014-12-16 14:43:49	7509F07BA6F84C1E3B2C0D78A1F6F782	116728	----a-w-	C:\Windows\Sysnative\drivers\aswStm.sys
2014-12-16 14:43:49	1A5BDDE65B648DC3AD48B6ECAA3AE9C8	267632	----a-w-	C:\Windows\Sysnative\drivers\aswVmm.sys
2014-12-16 14:43:49	1323269A92645705DEFA053F3596829D	65776	----a-w-	C:\Windows\Sysnative\drivers\aswRvrt.sys
2014-12-16 14:43:48	9BE9F2B83DE80E2752B1405CC427E2EC	29208	----a-w-	C:\Windows\Sysnative\drivers\aswHwid.sys
2014-12-16 14:43:48	4750016EF9CC1DEC6DA3FE5AF9A7F095	93568	----a-w-	C:\Windows\Sysnative\drivers\aswRdr2.sys
2014-12-16 14:43:48	2DA1C1AEDF454F8E32A863A1AEACDD8C	83280	----a-w-	C:\Windows\Sysnative\drivers\aswMonFlt.sys
2014-12-16 14:43:43	E74FD717476B30E23F45354B8F3ACB30	1050432	----a-w-	C:\Windows\Sysnative\drivers\aswsnx.sys
2014-12-14 18:33:58	26C43960C99EE861A5D0EDC4DCF3B1C3	129752	----a-w-	C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-12-14 18:33:48	CA43F8904E24BBE49982E4C0B29E6579	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2014-12-14 18:33:48	A646C2DDB8C46E9B20A326FAF566646C	63704	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2014-12-14 18:33:48	478CC94C937D235CB0A96AB8F2359D81	93400	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-12-09 23:58:45	70988118145F5F10EF24720B97F35F65	119296	----a-w-	C:\Windows\Sysnative\drivers\tdx.sys
====== C:\Windows\Tasks ======
2014-12-16 14:44:05	74C7B69BA57C3E7B41E1C61E7694401D	4182	----a-w-	C:\Windows\Sysnative\Tasks\avast! Emergency Update
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\Farrah\AppData\Roaming ======
2014-12-16 16:52:33	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2014-12-16 16:52:33	--------	d-----w-	C:\Users\Public\AppData\Local\temp
2014-12-16 16:52:33	--------	d-----w-	C:\Users\Farrah\AppData\Local\Temp
2014-12-16 16:52:33	--------	d-----w-	C:\Users\Default\AppData\Local\temp
2014-12-16 16:52:33	--------	d-----w-	C:\Users\Default User\AppData\Local\temp
2014-11-30 20:24:17	--------	d-----w-	C:\Users\Farrah\AppData\Local\Popcorn-Time
2014-11-30 20:23:52	--------	d-----w-	C:\Users\Farrah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2014-11-30 20:23:02	--------	d-----w-	C:\Users\Farrah\AppData\Local\Popcorn Time
====== C:\Users\Farrah ======
2014-12-16 15:50:50	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Farrah\Downloads\RSITx64 (1).exe
2014-12-16 15:50:15	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Farrah\Downloads\RSITx64.exe
2014-12-16 14:47:51	7AC98BE8593253FDDF8293E1C60B04BA	2166272	----a-w-	C:\Users\Farrah\Downloads\adwcleaner_4.105.exe
2014-12-16 14:41:17	1AC91AB0DC51CD0B8258945CDED565DB	5006864	----a-w-	C:\Users\Farrah\Downloads\avast_free_antivirus_setup_online.exe
2014-12-14 18:32:27	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Farrah\Downloads\mbam-setup-2.0.4.1028 (1).exe
2014-12-14 18:18:15	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Farrah\Downloads\mbam-setup-2.0.4.1028.exe
2014-12-14 18:06:41	--------	d-----w-	C:\Users\Farrah\Start Menu
2014-12-10 17:18:10	568603FCF46B939F094D3C9689DFB2EE	466456	----a-w-	C:\Users\Farrah\Downloads\OC,_The_season_1.exe
2014-12-10 17:16:15	568603FCF46B939F094D3C9689DFB2EE	466456	----a-w-	C:\Users\Farrah\Downloads\The_OC_The_Complete_First_Season_S1_D4_PAL_DVD_R.exe
2014-12-10 17:15:14	568603FCF46B939F094D3C9689DFB2EE	466456	----a-w-	C:\Users\Farrah\Downloads\The_OC_The_Complete_First_Season_S1_D4_PAL_DVD_R (1).exe
2014-12-10 16:54:41	09C3B667D7D44C7736CF07420B478C80	1013248	----a-w-	C:\Users\Farrah\Downloads\The O.C. Complete Series [all episodes] DVDRip + HDTV.exe

====== C: exe-files ==
2014-12-16 16:56:00	450BDEE760894CE151404E41819E964F	1097808	----a-w-	C:\Program Files (x86)\Google\Update\Install\{EFD25610-A41F-4EFB-A5BC-1A9683C65872}\39.0.2171.95_39.0.2171.71_chrome_updater.exe
2014-12-16 16:56:00	450BDEE760894CE151404E41819E964F	1097808	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\39.0.2171.95\39.0.2171.95_39.0.2171.71_chrome_updater.exe
2014-12-16 15:50:50	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Farrah\Downloads\RSITx64 (1).exe
2014-12-16 15:50:15	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Farrah\Downloads\RSITx64.exe
2014-12-16 14:47:51	7AC98BE8593253FDDF8293E1C60B04BA	2166272	----a-w-	C:\Users\Farrah\Downloads\adwcleaner_4.105.exe
2014-12-16 14:43:33	6663B30328C239D2AB10D2583054CF2E	364512	----a-w-	C:\Windows\System32\aswBoot.exe
2014-12-16 14:41:17	1AC91AB0DC51CD0B8258945CDED565DB	5006864	----a-w-	C:\Users\Farrah\Downloads\avast_free_antivirus_setup_online.exe
2014-12-14 18:32:27	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Farrah\Downloads\mbam-setup-2.0.4.1028 (1).exe
2014-12-14 18:18:15	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Farrah\Downloads\mbam-setup-2.0.4.1028.exe
2014-12-11 11:16:08	7543EB509DCAAD14441E6D6E1A9D815C	80008	----a-w-	C:\Program Files\Microsoft Silverlight\5.1.31211.0\coregen.exe
2014-12-11 11:16:08	6368E5F574AAA4F005D44A0E0F10BA66	523920	----a-w-	C:\Program Files\Microsoft Silverlight\sllauncher.exe
2014-12-11 11:16:08	48344819D332CD91444DB4684BF30CF9	304816	----a-w-	C:\Program Files\Microsoft Silverlight\5.1.31211.0\Silverlight.Configuration.exe
2014-12-11 11:16:08	0249C742BD0AE0F70C9A1E82D00E0D96	17544	----a-w-	C:\Program Files\Microsoft Silverlight\5.1.31211.0\agcp.exe
2014-12-11 10:53:12	B76732459011D66823BC19318409E162	237232	----a-w-	C:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\Silverlight.Configuration.exe
2014-12-11 10:53:12	9DDBAFE6EA118A0AFBA2AE79A673778E	16520	----a-w-	C:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\agcp.exe
2014-12-11 10:53:12	937A5E0B86C60CDFA83BD0CCB66CE4FD	68744	----a-w-	C:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\coregen.exe
2014-12-11 10:53:12	40B5F7A9ABE0BF6AD9CDC53418B33642	387216	----a-w-	C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe
2014-12-10 17:18:10	568603FCF46B939F094D3C9689DFB2EE	466456	----a-w-	C:\Users\Farrah\Downloads\OC,_The_season_1.exe
2014-12-10 17:16:15	568603FCF46B939F094D3C9689DFB2EE	466456	----a-w-	C:\Users\Farrah\Downloads\The_OC_The_Complete_First_Season_S1_D4_PAL_DVD_R.exe
2014-12-10 17:15:14	568603FCF46B939F094D3C9689DFB2EE	466456	----a-w-	C:\Users\Farrah\Downloads\The_OC_The_Complete_First_Season_S1_D4_PAL_DVD_R (1).exe
2014-12-10 17:13:49	0F901EE41FF20347C106D663F24931F9	679752	----a-w-	C:\Users\Farrah\AppData\Local\Google\Chrome\User Data\SwReporter\2.6.2\software_reporter_tool.exe
2014-12-10 16:54:41	09C3B667D7D44C7736CF07420B478C80	1013248	----a-w-	C:\Users\Farrah\Downloads\The O.C. Complete Series [all episodes] DVDRip + HDTV.exe
2014-12-10 12:55:00	D17954CA6343F43B62637F51996B4E95	23040	----a-w-	C:\Windows\SysWOW64\mfpmp.exe
2014-12-10 12:55:00	AB2EB93A982A2C26BA3E4D2D65328804	24576	----a-w-	C:\Windows\System32\mfpmp.exe
2014-12-10 12:55:00	68E09E7CD4DC52F132A4B492ACE8C243	55808	----a-w-	C:\Windows\System32\rrinstaller.exe
2014-12-10 12:55:00	60FBCF033FF42A40C916C01A962A8802	50176	----a-w-	C:\Windows\SysWOW64\rrinstaller.exe
2014-12-09 23:59:03	8E64BB62AB3810D3C29ED50C405AD3BD	1232040	----a-w-	C:\Windows\System32\aitstatic.exe
2014-12-09 23:59:03	65536EB5F53B76562BBE0DE332A8BA3C	66216	----a-w-	C:\Windows\System32\CompatTel\diagtrackrunner.exe
2014-12-09 23:59:02	CCEE34CF7D700825AD839FAB298A0129	46760	----a-w-	C:\Windows\System32\CompatTel\wicainventory.exe
2014-12-09 23:59:02	A192555B09BD2A45940D7E449F311AF6	161960	----a-w-	C:\Windows\System32\CompatTel\QueryAppBlock.exe
2014-12-09 23:58:36	0FABE2AB8CA2D5CC7C95798533B4D057	114688	----a-w-	C:\Windows\System32\ieetwcollector.exe
2014-12-09 23:58:35	A8A8FD02E3A9264A603892DE1F522166	221184	----a-w-	C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2014-12-09 23:58:35	39B512C643812FC2D4843C0D4206C759	718848	----a-w-	C:\Windows\System32\ie4uinit.exe
2014-12-09 23:58:34	B7BCC767AC0E76384BCDC292184DD8C8	222720	----a-w-	C:\Program Files\Internet Explorer\ielowutil.exe
2014-12-09 23:58:34	43CE0C99DBC0F96DB2B7259B0BE0930E	468992	----a-w-	C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2014-12-09 23:58:33	A24BFBAE8B50A6780B68FF3673FAB52F	815280	----a-w-	C:\Program Files (x86)\Internet Explorer\iexplore.exe
2014-12-09 23:58:32	D90585C3BE942DAAFBDC868FDC061844	115712	----a-w-	C:\Windows\SysWOW64\ieUnatt.exe
2014-12-09 23:58:31	EBC8C9F61F4C148B8C6A28EDE80C51E4	968704	----a-w-	C:\Windows\System32\MsSpellCheckingFacility.exe
2014-12-09 23:58:29	C3D17F3199D39A2AB85956A63731F188	484352	----a-w-	C:\Program Files\Internet Explorer\ieinstal.exe
2014-12-09 23:58:29	2A9DA9E7462EBA3F6D2036E8D18FF773	813744	----a-w-	C:\Program Files\Internet Explorer\iexplore.exe
2014-12-09 23:58:27	5F24313333AB409251152CAFADA40015	144384	----a-w-	C:\Windows\System32\ieUnatt.exe
2014-12-09 23:58:17	9EA3783672D21817B9DF1061B54C3B3C	155136	----a-w-	C:\Windows\SysWOW64\charmap.exe
2014-12-09 23:58:17	36E5E9D0400475230A7F57F274B88321	165888	----a-w-	C:\Windows\System32\charmap.exe
2014-12-09 23:58:08	B975C202F590BBC5AA63225FBD148791	198656	----a-w-	C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-09 23:58:08	41457C1909F6D1100C0F9B9CFF7960FC	266240	----a-w-	C:\Windows\System32\WSManHTTPConfig.exe
2014-12-09 23:58:02	BE8F985609BE0809B7E29960AC997511	49664	----a-w-	C:\Windows\servicing\GC64\tzupd.exe
=== C: other files ==
2014-12-16 14:45:06	EDC6E9C057C9D7F83EEA22B4CEF5DCAD	145792	----a-w-	C:\Windows\System32\vbox\E1G6032E.sys
2014-12-16 14:45:04	6EC1453C5049470D4E7EE0402D7DD9CA	368048	----a-w-	C:\Windows\System32\vbox\VBoxVideoWddm.sys
2014-12-16 14:45:04	5F81A8BD7D6BBD599A34315AF48154DC	146080	----a-w-	C:\Windows\System32\vbox\VBoxVideo.sys
2014-12-16 14:45:04	5E0F78391D5A93592FEB62B56DFE8A3B	372680	----a-w-	C:\Windows\System32\vbox\VBoxVideoW8.sys
2014-12-16 14:45:04	2F2C8D72AF8B502BF23E970EB23724DE	123432	----a-w-	C:\Windows\System32\vbox\VBoxMouse.sys
2014-12-16 14:45:03	07399D74C7FE4D087FDBB6D3143ED007	155880	----a-w-	C:\Windows\System32\vbox\VBoxGuest.sys
2014-12-16 14:43:49	B1881A01E301990B671694CA1623F1B6	436624	----a-w-	C:\Windows\System32\drivers\aswSP.sys
2014-12-16 14:43:49	7509F07BA6F84C1E3B2C0D78A1F6F782	116728	----a-w-	C:\Windows\System32\drivers\aswStm.sys
2014-12-16 14:43:49	1A5BDDE65B648DC3AD48B6ECAA3AE9C8	267632	----a-w-	C:\Windows\System32\drivers\aswVmm.sys
2014-12-16 14:43:49	1323269A92645705DEFA053F3596829D	65776	----a-w-	C:\Windows\System32\drivers\aswRvrt.sys
2014-12-16 14:43:48	9BE9F2B83DE80E2752B1405CC427E2EC	29208	----a-w-	C:\Windows\System32\drivers\aswHwid.sys
2014-12-16 14:43:48	4750016EF9CC1DEC6DA3FE5AF9A7F095	93568	----a-w-	C:\Windows\System32\drivers\aswRdr2.sys
2014-12-16 14:43:48	2DA1C1AEDF454F8E32A863A1AEACDD8C	83280	----a-w-	C:\Windows\System32\drivers\aswMonFlt.sys
2014-12-16 14:43:43	E74FD717476B30E23F45354B8F3ACB30	1050432	----a-w-	C:\Windows\System32\drivers\aswsnx.sys
2014-12-14 18:33:58	26C43960C99EE861A5D0EDC4DCF3B1C3	129752	----a-w-	C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-14 18:33:48	CA43F8904E24BBE49982E4C0B29E6579	25816	----a-w-	C:\Windows\System32\drivers\mbam.sys
2014-12-14 18:33:48	A646C2DDB8C46E9B20A326FAF566646C	63704	----a-w-	C:\Windows\System32\drivers\mwac.sys
2014-12-14 18:33:48	478CC94C937D235CB0A96AB8F2359D81	93400	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-09 23:58:45	70988118145F5F10EF24720B97F35F65	119296	----a-w-	C:\Windows\System32\drivers\tdx.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"TOPI.EXE"="C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP"

[HKEY_USERS\S-1-5-21-42155945-465681657-1933999473-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Gadwin PrintScreen"="C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"TOPI.EXE"="C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP"

[HKEY_USERS\S-1-5-21-42155945-465681657-1933999473-1000\Software\Microsoft\Windows\CurrentVersion\runonce]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Gadwin PrintScreen"="C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\\windows\\syswow64\\guard32.dll"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"="C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t"
"TosNC"="%ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe "
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Gadwin PrintScreen]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Gadwin PrintScreen"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Gadwin Systems\\PrintScreen\\PrintScreen.exe /nosplash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HSON]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HSON"
"hkey"="HKLM"
"command"="%ProgramFiles%\\TOSHIBA\\TBS\\HSON.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TCrdMain]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TCrdMain"
"hkey"="HKLM"
"command"="%ProgramFiles%\\TOSHIBA\\FlashCards\\TCrdMain.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Teco]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Teco"
"hkey"="HKLM"
"command"="\"%ProgramFiles%\\TOSHIBA\\TECO\\Teco.exe\" /r"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TOPI.EXE]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TOPI.EXE"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\TOSHIBA\\TOSHIBA Online Product Information\\topi.exe /STAR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Toshiba Registration]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Toshiba Registration"
"hkey"="HKLM"
"command"="C:\\Program Files\\TOSHIBA\\Registration\\ToshibaReminder.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Toshiba TEMPRO]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Toshiba TEMPRO"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Toshiba TEMPRO\\TemproTray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ToshibaServiceStation]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ToshibaServiceStation"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\TOSHIBA\\TOSHIBA Service Station\\ToshibaServiceStation.exe\" /hide:60"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TosReelTimeMonitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TosReelTimeMonitor"
"hkey"="HKLM"
"command"="%ProgramFiles%\\TOSHIBA\\ReelTime\\TosReelTimeMonitor.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TosSENotify]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TosSENotify"
"hkey"="HKLM"
"command"="C:\\Program Files\\TOSHIBA\\TOSHIBA HDD SSD Alert\\TosWaitSrv.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TosVolRegulator]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TosVolRegulator"
"hkey"="HKLM"
"command"="C:\\Program Files\\TOSHIBA\\TosVolRegulator\\TosVolRegulator.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TosWaitSrv]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TosWaitSrv"
"hkey"="HKLM"
"command"="%ProgramFiles%\\TOSHIBA\\TPHM\\TosWaitSrv.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TPwrMain]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TPwrMain"
"hkey"="HKLM"
"command"="%ProgramFiles%\\TOSHIBA\\Power Saver\\TPwrMain.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TSleepSrv]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TSleepSrv"
"hkey"="HKLM"
"command"="%ProgramFiles(x86)%\\TOSHIBA\\TOSHIBA Sleep Utility\\TSleepSrv.exe"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Toshiba Places Icon Utility.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Toshiba Places Icon Utility.lnk"
"backup"="C:\\Windows\\pss\\Toshiba Places Icon Utility.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~1\\TOSHIBA\\TOSHIB~3\\TOSDIM~1.EXE "
"item"="Toshiba Places Icon Utility"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Farrah^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
"path"="C:\\Users\\Farrah\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Dropbox.lnk"
"backup"="C:\\Windows\\pss\\Dropbox.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\Users\\Farrah\\AppData\\Roaming\\Dropbox\\bin\\Dropbox.exe /systemstartup"
"item"="Dropbox"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Farrah^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk]
"path"="C:\\Users\\Farrah\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OneNote 2010 Screen Clipper and Launcher.lnk"
"backup"="C:\\Windows\\pss\\OneNote 2010 Screen Clipper and Launcher.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~2\\MICROS~1\\Office14\\ONENOTEM.EXE /tsr"
"item"="OneNote 2010 Screen Clipper and Launcher"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Farrah^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3 .lnk]
"path"="C:\\Users\\Farrah\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OpenOffice.org 3.3 .lnk"
"backup"="C:\\Windows\\pss\\OpenOffice.org 3.3 .lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~2\\OPENOF~1.ORG\\program\\QUICKS~1.EXE "
"item"="OpenOffice.org 3.3 "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Farrah^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.lnk]
"path"="C:\\Users\\Farrah\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OpenOffice.org 3.4.lnk"
"backup"="C:\\Windows\\pss\\OpenOffice.org 3.4.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~2\\OPENOF~1.ORG\\program\\QUICKS~1.EXE "
"item"="OpenOffice.org 3.4"


==== Startup Folders ======================

2011-08-03 10:04:34	1258	----a-w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
2011-08-03 10:04:34	1258	----a-w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
2014-07-15 21:34:44	1149	----a-w-	C:\Users\Farrah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [10-12-2014 01:02]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-10-2014 13:54]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28-10-2014 13:54]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\ConfigFree Startup Programs" [C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\Nero\Nero Info" [C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [16-12-2014 15:43]

==== Chromium Look ======================

Google Chrome Version: 39.0.2171.95 (Up to date, latest Stable version: 39.0.2171.95)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[16-12-2014 15:43]

Google Drive - Farrah\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Farrah\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Farrah\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Avast Online Security - Farrah\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Google Wallet - Farrah\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Farrah\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\Farrah\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.nl/",
"startup_urls": [ "http://www.google.nl/" ],


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Farrah\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Farrah\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Farrah\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=58 folders=12 5406603 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Farrah\AppData\Local\Temp will be emptied at reboot
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Farrah\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on di 16-12-2014 at 18:16:37,71 ======================