
Zoek.exe v5.0.0.0 Updated 13-01-2015
Tool run by Izzy on wo 14-01-2015 at  9:19:36,69.
Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Izzy\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

14-1-2015 9:22:23 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\Program Files\PC Speed Maximizer deleted successfully
C:\Program Files\predm deleted successfully
C:\Program Files\SiteLookup deleted successfully
C:\Program Files\XTab deleted successfully
C:\PROGRA~2\BlueStacksSetup deleted successfully
C:\PROGRA~2\CorelDRAW Graphics Suite X6 deleted successfully
C:\Users\Izzy\AppData\Roaming\FirefoxToolbar deleted successfully
C:\Users\Izzy\AppData\Roaming\mystartsearch deleted successfully
C:\Users\Izzy\AppData\Roaming\systweak deleted successfully
C:\Users\Izzy\AppData\Local\Avg2013 deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1192528611-3500228150-3774287469-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Windows\system32\EscSvc.exe
C:\Program Files\Common Files\EPSON\EPW3 SSRP\E_S60RP7.EXE
C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\OEM04Mon.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Windows\System32\spool\drivers\w32x86\3\E_FATILGE.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
C:\Program Files\Nero\Update\NASvc.exe
C:\Users\Izzy\Desktop\zoek.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServicePeerNet

==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\Izzy\AppData\Roaming\Mozilla\Firefox\Profiles\5wqsjyby.default

user.js not found
---- Lines Techgile removed from prefs.js ----
user_pref("extensions.Techgile.asul", "1421148537423");
user_pref("extensions.Techgile.aul", "1421147095812");
user_pref("extensions.Techgile.irl", true);
user_pref("extensions.Techgile.is", "IM11355lsNL");
user_pref("extensions.Techgile.ug", "C849B595-0371-497D-97D9-95194B106141");
---- Lines {6d0f26ba-45b8-4871-9c07-43ab341d5b73} removed from prefs.js ----
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.config_sm", "1413198894532");
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.daysPassed", "{\"t2d\":true,\"t7d\":true,\"t10d\":true}");
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.installtime", "1409068818.097");
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.is_bundle", "true");
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.isFirstRun", "false");
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.last_version", "");
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.moEnabled", true);
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.server", "https://s7902.webovernet.com");
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.src", "7902");
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.toolbarButtonInstalled", true);
user_pref("{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.user_id", "85AE344C-BB24-414D-8AF5-BDE8929CEA5E");
user_pref("extensions.{6d0f26ba-45b8-4871-9c07-43ab341d5b73}.install-event-fired", true);
---- Lines mystart removed from prefs.js ----
user_pref("browser.search.searchengine.alias", "mystartsearch");
user_pref("browser.search.searchengine.iconURL", "http://www.mystartsearch.com/favicon.ico");
user_pref("browser.search.searchengine.name", "mystartsearch");
user_pref("browser.search.searchengine.url", "http://www.mystartsearch.com/web/?type=ds&ts=1421145077&from=ima&uid=SAMSUNGXHM500JI_S1WFJD0S629005&q={s
user_pref("browser.search.selectedEngine", "mystartsearch");
---- Lines search.net removed from prefs.js ----
user_pref("browser.search.order.1", "default-search.net");
---- Lines quick_start removed from prefs.js ----
user_pref("extensions.quick_start.enable_search1", false);
user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 0);
---- FireFox user.js and prefs.js backups ---- 

prefs_14-01-2015_0937_.backup

==== Deleting Files \ Folders ======================

C:\Users\Izzy\AppData\Roaming\Enigma Software Group not found
C:\Program Files\XTab not found
C:\Users\Izzy\AppData\Roaming\mystartsearch not found
C:\Users\Izzy\AppData\Roaming\Mozilla\Firefox\Profiles\5wqsjyby.default\extensions\jid1-U7omKQ6kQfxMaQ@jetpack deleted
C:\Program Files\Enigma Software Group deleted
C:\ProgramData\4cc3acba000077f2 deleted
C:\Users\Izzy\AppData\Roaming\Booster Web deleted
C:\Program Files\GUT6CE6.tmp deleted
C:\Program Files\GUM6CE5.tmp deleted
C:\PROGRA~2\Package Cache deleted
C:\Windows\system32\config\systemprofile\Searches deleted
C:\Windows\system32\roboot.exe deleted
C:\Windows\system32\GroupPolicy\Machine deleted
C:\Windows\system32\GroupPolicy\gpt.ini deleted
C:\Users\Izzy\Documents\Optimizer Pro deleted
C:\Users\Izzy\Documents\PC Speed Maximizer deleted
C:\Users\Izzy\AppData\Roaming\Mozilla\Firefox\Profiles\5wqsjyby.default\jetpack deleted
"C:\Windows\Installer\5280c6e.msi" deleted

==== System Specs ======================

Windows: Windows 7 Ultimate Edition Service Pack 1 (Build 7601)
Memory (RAM): 2039 MB
CPU Info: Intel(R) Core(TM)2 Duo CPU     T7250  @ 2.00GHz
CPU Speed: 1465,1 MHz
Sound Card: Luidsprekers (2- High Definitio | 
Digitale audio (S/PDIF) (2- Hig | 
Display Adapters: Mobile Intel(R) 965 Express Chipset Family | Mobile Intel(R) 965 Express Chipset Family | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm | 
Screen Resolution: 1280 X 800 - 32 bit
Network: Network Present
Network Adapters: Bluetooth-apparaat (Personal Area Network) | Intel(R) PRO/Wireless 3945ABG Network Connection | Broadcom NetLink (TM) Fast Ethernet
CD / DVD Drives: 1x (E: | ) E: MATSHITADVD+-RW UJ-857G
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 3 Button Wheel Mouse Present
Hard Disks: C:  97,6GB | D:  368,1GB
Hard Disks - Free: C:  59,0GB | D:  352,3GB
Manufacturer *: Dell Inc.
BIOS Info: AT/AT COMPATIBLE | 12/26/08 | DELL   - 27d80c1a
Time Zone: West-Europa (standaardtijd)
Motherboard *: Dell Inc. 0N6705
Country: Nederland 
Language: NLD 

==== System Specs (Software) ======================

Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: avast! Antivirus disabled (Outdated)
Default Browser: Firefox	34.0
Internet Explorer Version: 11.0.9600.17501 
Mozilla Firefox version: 34.0 (x86 nl)
Sun Java version: 1.8.0_25 (32-bit) 
Flash Player version: 15.0.0.246
Shockwave Player version: 12.0.6r147

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-01-13 20:11:28	B59EF013D567E5746F1DEE2565F747ED	43152	----a-w-	C:\Windows\avastSS.scr
====== C:\Users\Izzy\AppData\Local\Temp ====
2015-01-13 11:20:40	EBC629F54B070D89E0C075CC9E0279E4	2485192	----a-w-	C:\Users\Izzy\AppData\Local\Temp\82CA9367-CF6E-4C72-9F40-9C8940C84499\Setup.exe
2015-01-13 11:20:40	9E213942001AD71756DAE483ACC51BBB	1675720	----a-w-	C:\Users\Izzy\AppData\Local\Temp\82CA9367-CF6E-4C72-9F40-9C8940C84499\SetupXML.dll
2015-01-13 11:20:40	705AA55D943D54776CA475256A7B8628	22968	----a-w-	C:\Users\Izzy\AppData\Local\Temp\82CA9367-CF6E-4C72-9F40-9C8940C84499\RMPCUNLR.DLL
2015-01-13 11:20:40	6CF7C0572958BA0CCD60D29254418632	2975688	----a-w-	C:\Users\Izzy\AppData\Local\Temp\82CA9367-CF6E-4C72-9F40-9C8940C84499\Script.dll
2015-01-13 11:20:40	6957B79E687E21F75910D1707F70CBC8	1828264	----a-w-	C:\Users\Izzy\AppData\Local\Temp\82CA9367-CF6E-4C72-9F40-9C8940C84499\SerChckv2.dll
2015-01-13 11:20:40	3DF529BE9A36F057B80CA372559655FC	55224	----a-w-	C:\Users\Izzy\AppData\Local\Temp\82CA9367-CF6E-4C72-9F40-9C8940C84499\DRPCUNLR.DLL
2015-01-13 11:19:26	EDB32310FA84A8F4E2FC45F96E7AC702	513472	----a-w-	C:\Users\Izzy\AppData\Local\Temp\11DB3163-B755-43AB-B289-712F4A64887E\Uninst.exe
2015-01-13 11:08:50	705AA55D943D54776CA475256A7B8628	22968	----a-w-	C:\Users\Izzy\AppData\Local\Temp\F44D0390-7166-4B85-B250-1215CDDEA1F7\RMPCUNLR.DLL
2015-01-13 11:08:50	6957B79E687E21F75910D1707F70CBC8	1828264	----a-w-	C:\Users\Izzy\AppData\Local\Temp\F44D0390-7166-4B85-B250-1215CDDEA1F7\SerChckv2.dll
2015-01-13 11:08:50	3DF529BE9A36F057B80CA372559655FC	55224	----a-w-	C:\Users\Izzy\AppData\Local\Temp\F44D0390-7166-4B85-B250-1215CDDEA1F7\DRPCUNLR.DLL
2015-01-13 11:08:49	EBC629F54B070D89E0C075CC9E0279E4	2485192	----a-w-	C:\Users\Izzy\AppData\Local\Temp\F44D0390-7166-4B85-B250-1215CDDEA1F7\Setup.exe
2015-01-13 11:08:49	9E213942001AD71756DAE483ACC51BBB	1675720	----a-w-	C:\Users\Izzy\AppData\Local\Temp\F44D0390-7166-4B85-B250-1215CDDEA1F7\SetupXML.dll
2015-01-13 11:08:49	6CF7C0572958BA0CCD60D29254418632	2975688	----a-w-	C:\Users\Izzy\AppData\Local\Temp\F44D0390-7166-4B85-B250-1215CDDEA1F7\Script.dll
2015-01-13 11:04:01	18A50BA5BE04A6CA62E97C9AF77F44C6	80094	----a-w-	C:\Users\Izzy\AppData\Local\Temp\tang.exe
2015-01-13 10:58:34	7A10B635441065EB07643694F1419128	61112	----a-w-	C:\Users\Izzy\AppData\Local\Temp\Validate.exe
2015-01-13 10:30:48	5DFA51E6B9C64D62EBEFD5B38E2BE7A4	291424	----a-w-	C:\Users\Izzy\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_76.exe
2015-01-13 10:30:18	FE7FDC8553A75630A39EB95FCB961193	323275	----a-w-	C:\Users\Izzy\AppData\Local\Temp\n7438\VOPackage.exe
2015-01-13 10:30:17	3231435F3F0F543ECD85129F76988F91	5867856	----a-w-	C:\Users\Izzy\AppData\Local\Temp\optprosetup.exe
2015-01-13 10:30:14	AF7B53CF7C42ECB5711E7A9D933DC449	299008	----a-w-	C:\Users\Izzy\AppData\Local\Temp\sdf5F0E.exe
2015-01-13 10:30:13	E18D7AD4482412FEFFC0F72B488E03E7	612602	----a-w-	C:\Users\Izzy\AppData\Local\Temp\n7438\Booster-Web_08_01-9d300263.exe
2015-01-13 10:30:13	28C5AC86ADBA9B6B283FB5A4DD361019	6049272	----a-w-	C:\Users\Izzy\AppData\Local\Temp\n7438\OptimizerProInstaller.exe
2015-01-13 10:30:12	859B2571598147FC05A25A3F9AEA378E	212520	----a-w-	C:\Users\Izzy\AppData\Local\Temp\n7438\MyStartSeach_29_12-55037c5a.exe
2015-01-13 07:35:22	A837887CC9580B0925188776506B963D	177236	------w-	C:\Users\Izzy\AppData\Local\Temp\is45637729\98979909_stp\Generic_vo.exe
2015-01-13 07:35:22	A837887CC9580B0925188776506B963D	177236	------w-	C:\Users\Izzy\AppData\Local\Temp\is45637729\347417_stp\Generic_vo.exe
2015-01-13 07:35:22	A837887CC9580B0925188776506B963D	177236	------w-	C:\Users\Izzy\AppData\Local\Temp\is45637729\102614744_stp\Generic_vo.exe
====== Java Cache =====
2015-01-14 08:14:25	C1BBA7F1278F193AB584FFF460DB5E2A	17878	----a-w-	C:\Users\Izzy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-2c663376
2015-01-14 08:14:17	415FC9732A3F4D89A0E01251CD66E136	646	----a-w-	C:\Users\Izzy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-356f20d4
====== C:\Windows\system32 =====
2015-01-14 08:12:53	742BD1F196FEFC94A6379BA039D3CD00	96680	----a-w-	C:\Windows\System32\WindowsAccessBridge.dll
2015-01-14 07:37:24	2AF481C03C0383ADE09FFEDA0C583140	3971512	----a-w-	C:\Windows\System32\ntkrnlpa.exe
2015-01-14 07:37:22	8A289EF0AE709327D6AA9769E108B5A6	3916728	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-01-14 07:37:12	E284CFD490A1F2E03A8BE0B4C09A3DEE	74240	----a-w-	C:\Windows\System32\TSWbPrxy.exe
2015-01-14 07:37:10	FD9692A3D31E021207D3C2A9DDDC2BE3	164864	----a-w-	C:\Windows\System32\profsvc.dll
2015-01-14 07:37:08	F115C5CD29E512F18BD7138A094B77E5	242688	----a-w-	C:\Windows\System32\nlasvc.dll
2015-01-13 20:11:41	197B2EE973E3BC2B0E32BED69549E41E	291352	----a-w-	C:\Windows\System32\aswBoot.exe
2015-01-05 13:36:46	0481346D0EF668C0D4FF69A7BBEFA846	115712	----a-w-	C:\Windows\System32\ieUnatt.exe
====== C:\Windows\system32\drivers =====
2015-01-14 07:37:06	03F899F521D2AAED1C55008F734DF252	116224	----a-w-	C:\Windows\System32\drivers\mrxdav.sys
2015-01-13 15:43:08	8E2E9CCD873ABF180F48BCAEEEBE347D	114904	----a-w-	C:\Windows\System32\drivers\MBAMSwissArmy.sys
2015-01-13 15:42:33	A3F4391DFDF2F9E9FE4EAD193265A5AD	23256	----a-w-	C:\Windows\System32\drivers\mbam.sys
2015-01-13 15:42:33	9BD41E40039098BF5F8FE878A9A6989E	75480	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2015-01-13 15:42:33	312CD3307F600E7CD340B79B3DCB3A01	51928	----a-w-	C:\Windows\System32\drivers\mwac.sys
====== C:\Windows\Tasks ======
2015-01-06 15:02:43	F51508D1EB7CD638CD2FF160CEC66441	5026	----a-w-	C:\Windows\system32\Tasks\Microsoft Office 15 Sync Maintenance for Izzy-PC-Izzy Izzy-PC
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-01-14 08:13:01	--------	d-----w-	C:\Program Files\Common Files\Java
2015-01-13 21:30:23	--------	d-----w-	C:\Program Files\trend micro
2015-01-13 11:01:46	--------	d-----w-	C:\Program Files\Opera
======= C: =====
====== C:\Users\Izzy\AppData\Roaming ======
2015-01-13 15:19:05	--------	d-----w-	C:\Users\Izzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-01-13 11:02:53	--------	d-----w-	C:\Users\Izzy\AppData\Local\Opera Software
2015-01-13 11:02:49	--------	d-----w-	C:\Users\Izzy\AppData\Roaming\Opera Software
2015-01-13 10:30:37	--------	d-----w-	C:\Users\Izzy\AppData\Local\Bluestacks
2015-01-13 10:30:15	--------	d-----w-	C:\Users\Izzy\AppData\Locallow\Booster Web
====== C:\Users\Izzy ======
2015-01-14 08:12:37	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-01-14 07:33:19	44933ED144874569EB5A43B613CBE88A	638888	----a-w-	C:\Users\Izzy\Desktop\jxpiinstall.exe
2015-01-13 21:29:38	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Izzy\Desktop\RSIT.exe
2015-01-13 20:42:23	--------	d-----w-	C:\Users\Izzy\Start Menu
2015-01-13 19:56:55	DF4E08A68A5FB2D86D1C12A82D435F42	983039	----a-w-	C:\Users\Izzy\Desktop\EFRCSetup.exe
2015-01-13 15:40:38	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Izzy\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-13 12:31:03	BC517DE17DA1B86378312B4EE33CA02C	468	--sha-r-	C:\ProgramData\ntuser.pol
2015-01-12 15:52:55	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3

====== C: exe-files ==
2015-01-14 08:12:40	75D477E868CA51EC1B09D730570F322B	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaw.exe
2015-01-14 08:12:40	691D49FB44EDE9788288CABE4F7E0DAF	0	----a-we	C:\ProgramData\Oracle\Java\javapath\javaws.exe
2015-01-14 08:12:39	AA3520FB0133A56BEE1DB34D74DBEF64	0	----a-we	C:\ProgramData\Oracle\Java\javapath\java.exe
2015-01-14 08:12:31	67F763B09F4BC8689E6FA9761E068D74	159656	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\unpack200.exe
2015-01-14 08:12:31	28FC00F89631B0F6E1E9CA386FADD566	16296	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\tnameserv.exe
2015-01-14 08:12:30	E3E6B18458FFB07CB24D7A0BA77C9FDF	15784	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\pack200.exe
2015-01-14 08:12:30	DC197DCE6325CBAC905DE0D0E3BA3E8E	15784	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\rmid.exe
2015-01-14 08:12:30	A458E2535E46151690E53E2A03FAA711	15784	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\keytool.exe
2015-01-14 08:12:30	9BFAEF308D50779F6B255CB7BA7DCA5A	15784	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\kinit.exe
2015-01-14 08:12:30	7AB1F1B3FB6C3DACA34EA2F988CDF5AC	16296	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\orbd.exe
2015-01-14 08:12:30	75EE99C7F0038C746D82C76221ECA4EF	16296	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\policytool.exe
2015-01-14 08:12:30	57E1F756FAA787623DFCD2C1B2AACC68	51112	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\ssvagent.exe
2015-01-14 08:12:30	4109C4DB4BD48F5BF8115C7523A6B6F8	15784	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\klist.exe
2015-01-14 08:12:30	33D2AF53E209DA3E2BA939EB89801DC0	16296	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\rmiregistry.exe
2015-01-14 08:12:30	29E65AC6AFD8A0A9CAA361FF6F7B4886	16296	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\servertool.exe
2015-01-14 08:12:30	26C7F32186B1F0364CD06EA69227A79D	15784	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\ktab.exe
2015-01-14 08:12:29	B719E0F43166037DF46B5CFBE60A5118	15784	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\jjs.exe
2015-01-14 08:12:29	4367C05B0CF5553E71B34F51003D0615	76200	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\jp2launcher.exe
2015-01-14 08:12:28	AA3520FB0133A56BEE1DB34D74DBEF64	176552	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\java.exe
2015-01-14 08:12:28	75D477E868CA51EC1B09D730570F322B	176552	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\javaw.exe
2015-01-14 08:12:28	74713E9C1B01B152DDD3A1A3519A3647	15784	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\java-rmi.exe
2015-01-14 08:12:28	70E67429D2C011FD0419AF899A8D0D70	68520	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe
2015-01-14 08:12:28	691D49FB44EDE9788288CABE4F7E0DAF	272296	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\javaws.exe
2015-01-14 08:12:27	BB8C890E3E6372F2720709262BD42BF4	30632	----a-w-	C:\Program Files\Java\jre1.8.0_25\bin\jabswitch.exe
2015-01-14 07:37:24	2AF481C03C0383ADE09FFEDA0C583140	3971512	----a-w-	C:\Windows\System32\ntkrnlpa.exe
2015-01-14 07:37:22	8A289EF0AE709327D6AA9769E108B5A6	3916728	----a-w-	C:\Windows\System32\ntoskrnl.exe
2015-01-14 07:37:12	E284CFD490A1F2E03A8BE0B4C09A3DEE	74240	----a-w-	C:\Windows\System32\TSWbPrxy.exe
2015-01-14 07:33:19	44933ED144874569EB5A43B613CBE88A	638888	----a-w-	C:\Users\Izzy\Desktop\jxpiinstall.exe
2015-01-13 21:30:23	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Izzy.exe
2015-01-13 21:29:38	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\Izzy\Desktop\RSIT.exe
2015-01-13 21:13:37	6F968771462D44495296ADBE13F79C75	544	----a-w-	C:\$Recycle.Bin\S-1-5-21-1192528611-3500228150-3774287469-1000\$IPIIBTM.exe
2015-01-13 20:36:57	B4CD9E8513C17C32224C70330A235296	3044736	----a-w-	C:\$Recycle.Bin\S-1-5-21-1192528611-3500228150-3774287469-1000\$RPIIBTM.exe
2015-01-13 20:11:41	197B2EE973E3BC2B0E32BED69549E41E	291352	----a-w-	C:\Windows\System32\aswBoot.exe
2015-01-13 19:56:55	DF4E08A68A5FB2D86D1C12A82D435F42	983039	----a-w-	C:\Users\Izzy\Desktop\EFRCSetup.exe
2015-01-13 15:40:38	3BD59D6C407AB1F6DDD7C5D9BD727469	20447072	----a-w-	C:\Users\Izzy\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-13 15:28:44	5E3D01A47C4696E130A6E9FB7942E0A3	39537	----a-w-	C:\Users\Izzy\AppData\LocalLow\Booster Web\Uninstall\Uninstall.exe
2015-01-13 15:19:07	761102A9B90EC601E8B3071120063D74	87550	----a-w-	C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
2015-01-13 11:20:40	EBC629F54B070D89E0C075CC9E0279E4	2485192	----a-w-	C:\Users\Izzy\AppData\Local\Temp\82CA9367-CF6E-4C72-9F40-9C8940C84499\Setup.exe
2015-01-13 11:19:26	EDB32310FA84A8F4E2FC45F96E7AC702	513472	----a-w-	C:\Users\Izzy\AppData\Local\Temp\11DB3163-B755-43AB-B289-712F4A64887E\Uninst.exe
2015-01-13 11:08:49	EBC629F54B070D89E0C075CC9E0279E4	2485192	----a-w-	C:\Users\Izzy\AppData\Local\Temp\F44D0390-7166-4B85-B250-1215CDDEA1F7\Setup.exe
2015-01-13 11:04:01	18A50BA5BE04A6CA62E97C9AF77F44C6	80094	----a-w-	C:\Users\Izzy\AppData\Local\Temp\tang.exe
2015-01-13 10:58:34	7A10B635441065EB07643694F1419128	61112	----a-w-	C:\Users\Izzy\AppData\Local\Temp\Validate.exe
2015-01-13 10:30:48	5DFA51E6B9C64D62EBEFD5B38E2BE7A4	291424	----a-w-	C:\Users\Izzy\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_76.exe
2015-01-13 10:30:21	3B77916FB8788BB5293117ED991F0075	13444288	----a-w-	C:\Users\Izzy\Desktop\Nieuwe map\BlueStacks-SplitInstaller_native.exe
2015-01-13 10:30:18	FE7FDC8553A75630A39EB95FCB961193	323275	----a-w-	C:\Users\Izzy\AppData\Local\Temp\n7438\VOPackage.exe
2015-01-13 10:30:17	3231435F3F0F543ECD85129F76988F91	5867856	----a-w-	C:\Users\Izzy\AppData\Local\Temp\optprosetup.exe
2015-01-13 10:30:14	AF7B53CF7C42ECB5711E7A9D933DC449	299008	----a-w-	C:\Users\Izzy\AppData\Local\Temp\sdf5F0E.exe
2015-01-13 10:30:13	E18D7AD4482412FEFFC0F72B488E03E7	612602	----a-w-	C:\Users\Izzy\AppData\Local\Temp\n7438\Booster-Web_08_01-9d300263.exe
2015-01-13 10:30:13	28C5AC86ADBA9B6B283FB5A4DD361019	6049272	----a-w-	C:\Users\Izzy\AppData\Local\Temp\n7438\OptimizerProInstaller.exe
2015-01-13 10:30:12	859B2571598147FC05A25A3F9AEA378E	212520	----a-w-	C:\Users\Izzy\AppData\Local\Temp\n7438\MyStartSeach_29_12-55037c5a.exe
2015-01-13 07:35:22	A837887CC9580B0925188776506B963D	177236	------w-	C:\Users\Izzy\AppData\Local\Temp\is45637729\98979909_stp\Generic_vo.exe
2015-01-13 07:35:22	A837887CC9580B0925188776506B963D	177236	------w-	C:\Users\Izzy\AppData\Local\Temp\is45637729\347417_stp\Generic_vo.exe
2015-01-13 07:35:22	A837887CC9580B0925188776506B963D	177236	------w-	C:\Users\Izzy\AppData\Local\Temp\is45637729\102614744_stp\Generic_vo.exe
2015-01-12 15:56:00	5A416D83F6BF8BA68B409A9A69FB96C5	17385800	---ha-w-	C:\Program Files\Google\Picasa3\setup.exe
2015-01-12 15:52:55	6DE5B13C5BFCD14DFA33BF5CBB73FEE2	171419	----a-w-	C:\Program Files\Google\Picasa3\Uninstall.exe
2015-01-12 15:52:43	C1B577B2169900F4CF7190C39F085794	136120	----a-w-	C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
=== C: other files ==
2015-01-14 08:12:31	CE44A9D4918DCDC7CCCF5503BF4D7A3D	14130	----a-w-	C:\Program Files\Java\jre1.8.0_25\lib\deploy\ffjcext.zip
2015-01-14 08:04:13	DE0983FE4B830699312D35A990B3AE1B	1945	----a-w-	C:\Users\Izzy\AppData\Local\Temp\_MEI40082\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx
2015-01-14 08:04:13	82F5C942549405F61A8808D0EA0FA9E2	25575	----a-w-	C:\Users\Izzy\AppData\Local\Temp\_MEI40082\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx
2015-01-14 07:37:06	03F899F521D2AAED1C55008F734DF252	116224	----a-w-	C:\Windows\System32\drivers\mrxdav.sys
2015-01-13 15:43:08	8E2E9CCD873ABF180F48BCAEEEBE347D	114904	----a-w-	C:\Windows\System32\drivers\MBAMSwissArmy.sys
2015-01-13 15:42:33	A3F4391DFDF2F9E9FE4EAD193265A5AD	23256	----a-w-	C:\Windows\System32\drivers\mbam.sys
2015-01-13 15:42:33	9BD41E40039098BF5F8FE878A9A6989E	75480	----a-w-	C:\Windows\System32\drivers\mbamchameleon.sys
2015-01-13 15:42:33	312CD3307F600E7CD340B79B3DCB3A01	51928	----a-w-	C:\Windows\System32\drivers\mwac.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1192528611-3500228150-3774287469-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="C:\Program Files\Google\Drive\googledrivesync.exe /autostart"
"EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATILGE.EXE /EPT EPLTarget\P0000000000000000 /M XP-215 217 Series"
"smoother"="C:\Users\Izzy\AppData\Roaming\Booster Web\Booster Web-Installer.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"OEM04Mon.exe"="C:\Windows\OEM04Mon.exe"
"TrueImageMonitor.exe"="C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe"
"AcronisTibMounterMonitor"="C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe"
"Acronis Scheduler2 Service"="C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"Adobe Creative Cloud"="C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true"
"EEventManager"="C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="C:\Program Files\Google\Drive\googledrivesync.exe /autostart"
"EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATILGE.EXE /EPT EPLTarget\P0000000000000000 /M XP-215 217 Series"
"smoother"="C:\Users\Izzy\AppData\Roaming\Booster Web\Booster Web-Installer.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR"

==== Startup Folders ======================

2013-12-01 07:16:12	289	----a-w-	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUN.CMD
2013-12-01 07:16:12	289	----a-w-	C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUN.CMD

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10-12-2014 08:02]
C:\Windows\tasks\EPSON XP-215 217 Series Invitation {F2EB0DA9-EB92-4245-8F98-A0ADEF01FA36}.job --a------ C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FTSLGE.exe [28-02-2013 01:20]
C:\Windows\tasks\EPSON XP-215 217 Series Update {F2EB0DA9-EB92-4245-8F98-A0ADEF01FA36}.job --a------ C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FTSLGE.exe [28-02-2013 01:20]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [15-03-2014 16:24]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:v0C:\ProgramC:Files\Google\Update\GoogleUpdate.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\system32\tasks\EPSON XP-215 217 Series Invitation {F2EB0DA9-EB92-4245-8F98-A0ADEF01FA36}" [C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FTSLGE.EXE]
"C:\Windows\system32\tasks\EPSON XP-215 217 Series Update {F2EB0DA9-EB92-4245-8F98-A0ADEF01FA36}" [C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FTSLGE.EXE]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Izzy\AppData\Roaming\Mozilla\Firefox\Profiles\5wqsjyby.default
user_pref("browser.startup.homepage", "about:home");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [13-01-2015 21:11]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Izzy\AppData\Roaming\Mozilla\Firefox\Profiles\5wqsjyby.default
- Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
- Undetermined - wrc@avast.com

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Izzy\AppData\Roaming\Mozilla\Firefox\Profiles\5wqsjyby.default
E7006BB5611298DBDD03FE3519C19AC2	- C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll -	Java(TM) Platform SE 8 U25
238F239EAEFF7E3E782913D599084E18	- C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npdeployJava1.dll -	Java Deployment Toolkit 8.0.250.18
9860727E477F17B88E39AF8B69B0407A	- C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_246.dll -	Shockwave Flash
D2377C9458EFEB094E38B8C874AA214C	- C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll -	Google Update
9419AA8A2799526EC32B473C2BB7A10D	- C:\Program Files\Google\Picasa3\npPicasa3.dll -	Picasa
0CA4180B21C6B728578F3B0433BB740E	- C:\Program Files\VideoLAN\VLC\npvlc.dll -	VLC Web Plugin
2D389D314D1928AA30778229090F9AD3	- C:\Windows\system32\Adobe\Director\np32dsw.dll -	Shockwave for Director / Shockwave for Director
D6ED6EB98E759460AD8C66DE23070132	- C:\Program Files\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll -	Microsoft Office 2013
209F58DECE7A511BB81A7A172F4346E8	- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll -	Foxit Reader Plugin for Mozilla


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[13-01-2015 21:10]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.com/?trackid=sp-006"
"Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.com/?trackid=sp-006"
"Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo  Url="http://www.google.com/search?q={sear"
{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} Google  Url="https://www.google.com/search?trackid=sp-006&q={searchTerms}"

==== shortcuts on Users Desktops ======================

C:\Users\Izzy\Desktop\Google Drive.lnk - C:\Users\Izzy\Google Drive 
C:\Users\Izzy\Desktop\Revo Uninstaller.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe 
C:\Users\Izzy\Desktop\Nieuwe map\Advanced-System Protector.lnk - C:\Program Files\ASP\AdvancedSystemProtector.exe 
C:\Users\Izzy\Desktop\Nieuwe map\Continue Picsart.lnk - C:\Users\Izzy\Downloads\Picsart.exe 
C:\Users\Izzy\Desktop\Nieuwe map\Opera.lnk - C:\Program Files\Opera\launcher.exe 
C:\Users\Izzy\Desktop\Nieuwe map\Optimizer Pro.lnk - C:\Program Files\Optimizer Pro 3.29\OptimizerPro.exe 
C:\Users\Izzy\Desktop\Nieuwe map\PC Speed Maximizer.lnk - C:\Program Files\PC Speed Maximizer\PCSpeedMaximizer.exe 
C:\Users\Izzy\Desktop\Nieuwe map\RegClean Pro.lnk - C:\Program Files\RCP\RegCleanPro.exe 

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Avast Free Antivirus.lnk - C:\Program Files\AVAST Software\Avast\avastui.exe 
C:\Users\Public\Desktop\Bitstream Font Navigator.lnk - C:\Program Files\Corel\CorelDRAW Graphics Suite X6\FontNav\FontNav.exe 
C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe 
C:\Users\Public\Desktop\Google Docs.lnk - C:\Program Files\Google\Drive\googledrivesync.exe --new_document
C:\Users\Public\Desktop\Google Sheets.lnk - C:\Program Files\Google\Drive\googledrivesync.exe --new_spreadsheet
C:\Users\Public\Desktop\Google Slides.lnk - C:\Program Files\Google\Drive\googledrivesync.exe --new_presentation
C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\mbam.exe 
C:\Users\Public\Desktop\Picasa 3.lnk - C:\Program Files\Google\Picasa3\Picasa3.exe 

==== shortcuts in Users Start Menu ======================

C:\Users\Izzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1421145077&from=ima&uid=SAMSUNGXHM500JI_S1WFJD0S629005
C:\Users\Izzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1421145077&from=ima&uid=SAMSUNGXHM500JI_S1WFJD0S629005
C:\Users\Izzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Run Hunter Mode.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe -hunter
C:\Users\Izzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Uninstall.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Website.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller\Revo Uninstaller.url 

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe http://www.mystartsearch.com/?type=sc&ts=1421145077&from=ima&uid=SAMSUNGXHM500JI_S1WFJD0S629005
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Docs.lnk - C:\Program Files\Google\Drive\googledrivesync.exe --new_document
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Drive.lnk - C:\Program Files\Google\Drive\googledrivesync.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Sheets.lnk - C:\Program Files\Google\Drive\googledrivesync.exe --new_spreadsheet
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Slides.lnk - C:\Program Files\Google\Drive\googledrivesync.exe --new_presentation
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk - C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe -tab about
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk - C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe -tab update
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk - C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Get Help.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Visit Java.com.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\mbam.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes Anti-Malware\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\accicons.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\xlicons.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Lync 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\lyncicon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\grv_icons.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\joticon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\outicon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\pptico.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Verzenden naar OneNote 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\joticon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\wordicon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\lyncicon.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3\Installatie ongedaan maken.lnk - C:\Program Files\Google\Picasa3\Uninstall.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3\Picasa 3.lnk - C:\Program Files\Google\Picasa3\Picasa3.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3\Picasa-fotoviewer configureren.lnk - C:\Program Files\Google\Picasa3\PicasaPhotoViewer.exe /reconfig

==== shortcuts in Quick Launch ======================

C:\Users\bo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\bo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk - C:\Program Files\Google\Picasa3\Picasa3.exe 
C:\Users\bo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\bo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\bo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\bo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe 
C:\Users\bo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit Reader.lnk - C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1421145077&from=ima&uid=SAMSUNGXHM500JI_S1WFJD0S629005
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk - C:\Program Files\Google\Picasa3\Picasa3.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Excel 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\xlicons.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Nero Burning ROM.lnk - C:\Windows\Installer\{F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}\ARPPRODUCTICON.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Outlook 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\outicon.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Windows Explorer.lnk - C:\Windows\explorer.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Word 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-0000-0000000FF1CE}\wordicon.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe http://www.mystartsearch.com/?type=sc&ts=1421145077&from=ima&uid=SAMSUNGXHM500JI_S1WFJD0S629005
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Picasa 3.lnk - C:\Program Files\Google\Picasa3\Picasa3.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1

==== shortcuts After Repair ======================

C:\Users\Izzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe -extoff
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 
C:\Users\Izzy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files\Mozilla Firefox\firefox.exe 

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F274703B9DB704042955ECD6A611693A deleted successfully
HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\TVWiz deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B307472F-7BD9-4040-9255-CE6D6A1196A3} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\F274703B9DB704042955ECD6A611693A deleted successfully

==== HijackThis Entries ======================

O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [OEM04Mon.exe] C:\Windows\OEM04Mon.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [AcronisTibMounterMonitor] C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATILGE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-215 217 Series"
O4 - HKCU\..\Run: [smoother] C:\Users\Izzy\AppData\Roaming\Booster Web\Booster Web-Installer.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - .DEFAULT User Startup: RUN.CMD (User 'Default user')
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Seiko Epson Corporation - C:\Windows\system32\EscSvc.exe
O23 - Service: EPSON V3 Service4(06) (EPSON_PM_RPCV4_06) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RP7.EXE
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Corporation - C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe

==== Empty IE Cache ======================

C:\Users\bo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Izzy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Izzy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Izzy\AppData\Local\Mozilla\Firefox\Profiles\5wqsjyby.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

No Chrome Cache found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=142 folders=40 173624471 bytes)

==== Empty Temp Folders ======================

C:\Users\bo\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Izzy\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Izzy\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\MpCmdRun.log" not found

==== EOF on wo 14-01-2015 at  9:49:35,50 ======================