
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by David on do 06/08/2015 at 21:15:56,20.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\David\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

6/08/2015 21:16:53 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\0febf799-63ab-4360-8471-4e0dc8675020 deleted successfully
C:\PROGRA~2\5d1b3484-5fea-4f9b-b754-2a702b7a85d1 deleted successfully
C:\PROGRA~2\fb86273a-1e37-4cbe-ba27-848a41292a35 deleted successfully
C:\PROGRA~2\mbot_be_014010003 deleted successfully
C:\PROGRA~2\RelayDefender deleted successfully
C:\PROGRA~2\SeekerGeneration deleted successfully
C:\PROGRA~2\SustainerPlus deleted successfully
C:\PROGRA~2\trend micro deleted successfully
C:\PROGRA~2\TroubleFix deleted successfully
C:\PROGRA~3\8c44bc7000007905 deleted successfully
C:\Users\David\AppData\Roaming\hpqlog deleted successfully
C:\Users\David\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\David\AppData\Local\EmieSiteList deleted successfully
C:\Users\David\AppData\Local\EmieUserList deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-70853144-677150093-1054592515-1001\Software\Microsoft\Internet Explorer\SearchScopes\{B933E5BA-57E5-4601-A3BD-26840C2DA89B} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B933E5BA-57E5-4601-A3BD-26840C2DA89B} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B933E5BA-57E5-4601-A3BD-26840C2DA89B} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command]
@="C:\\Program Files\\Internet Explorer\\iexplore.exe"

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{08F90EFB-9830-4DCD-8AF8-C82686DD4D9F}] 

==== Deleting Files \ Folders ======================

C:\PROGRA~2\0febf799-63ab-4360-8471-4e0dc8675020 not found
C:\PROGRA~2\5d1b3484-5fea-4f9b-b754-2a702b7a85d1 not found
C:\PROGRA~2\fb86273a-1e37-4cbe-ba27-848a41292a35 not found
C:\PROGRA~2\mbot_be_014010003 not found
C:\PROGRA~2\RelayDefender not found
C:\PROGRA~2\SeekerGeneration not found
C:\PROGRA~2\SustainerPlus not found
C:\PROGRA~2\trend micro not found
C:\PROGRA~2\TroubleFix not found
C:\ProgramData\8c44bc7000007905 not found
C:\PROGRA~2\BBitSaverr deleted
C:\PROGRA~2\DDisucOunotExtENsi deleted
C:\PROGRA~2\EnjoyoCoouponu deleted
C:\PROGRA~2\ExstraaCouPon deleted
C:\PROGRA~2\FeuN2SiaVe deleted
C:\PROGRA~2\FFunDeals deleted
C:\PROGRA~2\FUnaDealss deleted
C:\PROGRA~2\NeawSaveRR deleted
C:\PROGRA~2\PriceoMiNus deleted
C:\PROGRA~2\PrriceeMiinnus deleted
C:\PROGRA~2\RoboSAveir deleted
C:\PROGRA~2\TremeNdiousSAle deleted
C:\PROGRA~2\LibrarianProc deleted
C:\PROGRA~2\Diminutive Scratch deleted
C:\PROGRA~2\DiscountSmasher deleted
C:\PROGRA~2\ExsTroaCCoupoN deleted
C:\PROGRA~2\Facebook Color Changer Enhancer deleted
C:\PROGRA~2\FUnDeals deleted
C:\PROGRA~2\NeowSaver deleted
C:\PROGRA~2\SAlaePPlus deleted
C:\PROGRA~2\Send to OmniFocus deleted
C:\PROGRA~2\Sri Sri Ravi Shankar deleted
c:\programdata\{1538fa96-deaa-7f6e-1538-8fa96deaea5b} deleted
C:\zoek_backup deleted
C:\Users\David\AppData\Roaming\TuneUp Software deleted
C:\ProgramData\12764662185846729320 deleted
C:\ProgramData\{1c27c53d-e689-5550-1c27-7c53de6814f7} deleted
C:\PROGRA~3\bdchojefklcgomoafnbknjbgkkfnhplb deleted
C:\PROGRA~3\jgohajehjieahcapfhhdhjbblebnolij deleted
C:\windows\SysNative\Tasks\PointerInspector deleted
C:\PROGRA~3\{3dfcda5a-a75b-8c40-3dfc-cda5aa75696a} deleted
C:\PROGRA~3\{5d85d29e-13f2-5815-5d85-5d29e13f4a78} deleted
C:\PROGRA~3\{6ff86c85-e9d5-ebd3-6ff8-86c85e9db217} deleted
C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\Download Vikings S03E07 720p HDTV x265 HEVC 125MB English Subtitles Torrent - KickassTorrents.lnk deleted
C:\PROGRA~2\TheTorntvs V11-1 deleted
C:\PROGRA~2\pricesparrow deleted
C:\PROGRA~2\ver5BetterMarkIt deleted
C:\PROGRA~2\TornPlusTV_version1.11 deleted
C:\Users\Public\Pokki deleted
C:\Users\David\AppData\Roaming\appdataFr3.bin deleted
C:\Users\David\AppData\Roaming\TornTV.com deleted
C:\Users\David\AppData\Roaming\Optimizer Pro deleted
C:\Users\David\AppData\Roaming\OpenCandy deleted
C:\PROGRA~3\APN deleted
C:\PROGRA~3\The AdBlocker deleted
C:\PROGRA~3\IHProtectUpDate deleted
C:\PROGRA~3\WindowsMangerProtect deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\David\AppData\Local\globalUpdate deleted
C:\Users\David\AppData\Local\cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\windows\SysNative\tasks\pricesparrowSWU deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\David\Documents\Optimizer Pro deleted
C:\PROGRA~3\uninstall2813685.exe deleted
"C:\Windows\tasks\PointerInspector.job" deleted
"C:\windows\Installer\126c7c.msi" deleted
"C:\Users\David\AppData\Roaming\HHXKMEX" deleted
"C:\Users\David\AppData\Roaming\PGTZG" deleted
"C:\PROGRA~3\{b895d42e-5a27-7a54-b895-5d42e5a250b9}\364acdce5468b20d" not deleted
"C:\PROGRA~3\{b895d42e-5a27-7a54-b895-5d42e5a250b9}\Download Vikings S03E07 720p HDTV x265 HEVC 125MB English Subtitles Torrent - KickassTorrents.exe" deleted
"C:\PROGRA~3\{b895d42e-5a27-7a54-b895-5d42e5a250b9}\fbb76b9b73bc55d9" not deleted
"C:\PROGRA~3\{f9f5fd23-d9c0-e476-f9f5-5fd23d9cf48f}\423d0474ffa45dd5" not deleted
"C:\PROGRA~3\{f9f5fd23-d9c0-e476-f9f5-5fd23d9cf48f}\8fc0a221d870ba01" not deleted
"C:\PROGRA~3\{f9f5fd23-d9c0-e476-f9f5-5fd23d9cf48f}\Download Vikings S03E07 FASTSUB VOSTFR HDTV XviD-ADDiCTiON avi [ D3K0 ] Torrent - KickassTorrents.exe" deleted
"C:\PROGRA~3\{b895d42e-5a27-7a54-b895-5d42e5a250b9}" not deleted
"C:\PROGRA~3\{f9f5fd23-d9c0-e476-f9f5-5fd23d9cf48f}" not deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\David\AppData\Local\Temp ====
2015-08-06 12:48:28	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-324a69a0-3ce3-41b4-93d6-8f4f8c1a6921\Uninstaller.exe
2015-08-06 12:48:26	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-cd7be8f5-d45f-4715-8449-95fbd932ecf7\Uninstaller.exe
2015-08-06 12:48:22	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-25a385d5-2b27-4a75-ad8d-e92d0f5cd76d\Uninstaller.exe
2015-08-06 12:48:19	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-557a0fe2-e97c-4492-b05c-d5c67b3e69dc\Uninstaller.exe
2015-08-06 12:48:17	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-b95e99e0-0d41-4600-9972-7772df8b2ee1\Uninstaller.exe
2015-08-06 12:48:14	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-dc02b952-7fea-4b6f-b731-51ed8871591d\Uninstaller.exe
2015-08-06 12:48:11	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-a4a22d5c-eaac-4ca5-8390-bc8de58aca6a\Uninstaller.exe
2015-08-06 12:48:08	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-30095c2d-3808-4575-ac37-844202cce1d6\Uninstaller.exe
2015-08-06 12:48:06	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-82c41a17-5b28-4329-899d-ae8a6e2f473d\Uninstaller.exe
2015-08-06 12:48:02	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-0e1799ab-88a4-4f72-b1cb-f6e12210046b\Uninstaller.exe
2015-08-06 12:48:00	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-ad43bc31-f7e8-451f-8333-b00661b643d0\Uninstaller.exe
2015-08-06 12:47:55	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-69fa4b43-91a9-468a-9f7b-7bfb7fc46ba9\Uninstaller.exe
2015-08-06 12:47:53	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-6f420d98-af5c-4919-b411-d9116aad521f\Uninstaller.exe
2015-08-06 12:47:49	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-497494bb-293a-445c-b2fd-d8daf4d75d62\Uninstaller.exe
2015-08-06 12:47:38	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-5cec228b-b4eb-48d1-9c6e-4b9cd74cc4a8\Uninstaller.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2015-08-06 12:43:13	902EEBC81CF2B944ACE35E26C9772A5D	55168	----a-w-	C:\Windows\Sysnative\drivers\lzzyxymf.sys
2015-07-28 09:02:14	0CC611CDA005070B9F5A496352124EFF	312752	----a-w-	C:\Windows\Sysnative\drivers\avgidsdrivera.sys
2015-07-28 09:01:38	39B8968350B71EEF6A0E0F9C6C2D61FD	245680	----a-w-	C:\Windows\Sysnative\drivers\avgmfx64.sys
2015-07-19 10:16:19	49EE0AE9E5B64FFBBD06D55C4984B598	108544	-c--a-w-	C:\Windows\Sysnative\drivers\i8042prt.sys
2015-07-19 10:16:18	8CD840A062F6BDF41DDE3ACB96164B72	32256	-c--a-w-	C:\Windows\Sysnative\drivers\kbdhid.sys
2015-07-19 10:16:18	5FCBAB60598AE119E02B4C27DE6B99EA	30208	-c--a-w-	C:\Windows\Sysnative\drivers\mouhid.sys
2015-07-19 10:16:18	5917AFE4A3F695A54B99C1849C8207FE	59712	-c--a-w-	C:\Windows\Sysnative\drivers\kbdclass.sys
2015-07-19 10:16:18	148195AE95D9BC7375A08846439FDAC1	26112	-c--a-w-	C:\Windows\Sysnative\drivers\sermouse.sys
2015-07-19 10:16:18	08374E4E5B8914DE6067CBA99F61E930	51008	-c--a-w-	C:\Windows\Sysnative\drivers\mouclass.sys
2015-07-19 10:16:15	0CC00ADC1B84C93FB46E1A0974E956E1	1201664	-c--a-w-	C:\Windows\Sysnative\drivers\bthport.sys
2015-07-19 10:16:14	312BB35275EB15145F4B6D1FFCE56C50	20992	----a-w-	C:\Windows\Sysnative\drivers\usb8023.sys
2015-07-17 15:51:51	BCBD64220AD85C26823453FF1DC3EFBD	284672	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-07-17 15:51:51	6FBDF2B1B025A8E6E069234362FFFFB7	401408	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2015-07-17 15:51:51	57C2473D501331211D6885FD59F3E44B	202240	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-07-17 15:51:50	46711F40D0F9E63F786ED23F9BD5215E	178008	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-07-10 05:31:52	A648902305DC869C43A9346BCFB99F0A	296896	----a-w-	C:\Windows\Sysnative\drivers\avgwfpa.sys
2015-07-09 05:11:56	F5C6FDB62261A7CF9E5BC59BA2D91A43	77760	----a-w-	C:\Windows\Sysnative\drivers\avgfwd6a.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-08-06 13:29:16	--------	d-----w-	C:\Program Files\Common Files\AV
======= C:\PROGRA~2 =====
2015-08-06 15:06:01	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2015-08-06 13:27:37	--------	d-----w-	C:\PROGRA~2\AVG
======= C: =====
====== C:\Users\David\AppData\Roaming ======
2015-08-06 13:29:57	--------	d-----w-	C:\Users\David\AppData\Roaming\AVG2015
2015-08-06 13:29:24	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\AVG2015
2015-08-06 13:28:58	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Avg2015
2015-08-06 13:27:37	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\Avg2015
2015-08-06 13:10:52	--------	d-----w-	C:\Users\David\AppData\Local\Avg2015
2015-08-06 12:50:52	--------	d-----w-	C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup
2015-08-06 12:47:36	--------	d-----w-	C:\Users\David\AppData\Roaming\WildTangent
2015-08-01 07:02:53	--------	d-----w-	C:\Users\David\AppData\Locallow\Temp
2015-07-22 21:22:29	--------	d-----w-	C:\Users\David\AppData\Local\GWX
2015-07-12 20:33:26	--------	d-----w-	C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
====== C:\Users\David ======
2015-08-06 16:01:56	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\David\Downloads\RSIT.exe
2015-08-06 13:28:57	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-08-06 13:28:00	--------	d-----w-	C:\ProgramData\AVG2015
2015-08-06 13:10:52	--------	d--h--w-	C:\ProgramData\Common Files
2015-08-06 13:03:01	48D1A0DB6793B510964B5822BAA42CD2	6611176	----a-w-	C:\Users\David\Downloads\ccsetup508pro.exe

====== C: exe-files ==
2015-08-06 16:01:56	8685FAF50C04F9A9C2F56FF64B0B7ACB	1107968	----a-w-	C:\Users\David\Downloads\RSIT.exe
2015-08-06 15:09:39	B1798BC27E40983B12FEFD0D85C05B3F	873800	----a-w-	C:\Users\David\AppData\Local\Google\Chrome\User Data\SwReporter\4.28.1\software_reporter_tool.exe
2015-08-06 13:34:16	D1626DE55E67DC4A41E499D694D30A44	474344	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dwtrig20.exe
2015-08-06 13:34:16	ABAA98078E119B66D7C3B982F8D9AD57	1134296	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\olicenseheartbeat.exe
2015-08-06 13:34:16	4DF787FDC8EE099467F4D5BE2E8E2205	39592	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\appsharinghookcontroller64.exe
2015-08-06 13:34:15	ED2228CB35C006DB8C3688D0396E40FE	7911128	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\CMigrate.exe
2015-08-06 13:34:15	9A47F14F1A20954A232CDA5393C49BF6	550584	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\msosqm.exe
2015-08-06 13:34:15	99A1CEF3ED1DD8DB034E5990B6E56795	16064	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\Smart Tag\smarttaginstall.exe
2015-08-06 13:34:15	5A70E39B4E2ACC213E34D35A846ED7E5	5788376	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CMigrate.exe
2015-08-06 13:34:15	2A10E6C6DB5952A57B1786B581D55944	84208	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
2015-08-06 13:34:11	3BCAE6A4CC4808A24B2B8C2FBF257D3F	842448	----a-w-	C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dw20.exe
2015-08-06 13:33:23	6A2CB7C7D0200E3526E31E5D4AA823A1	1923232	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\winword.exe
2015-08-06 13:33:22	928BEA8536119B5FE27C37C4600C84E6	528584	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\vpreview.exe
2015-08-06 13:33:20	F8F2890B757606814530CDE597761380	911016	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ucmapi.exe
2015-08-06 13:32:21	F56CD75209F9F254AE709CBB2B037361	874160	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe
2015-08-06 13:32:21	986770743B6D48F08BDFD685CA1CA893	480984	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\selfcert.exe
2015-08-06 13:30:59	E1B97CE23930787BAFCAA4410DA83658	9602736	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\pdfreflow.exe
2015-08-06 13:30:58	1AAA48EFC765BD243FB4F9A1695A9229	18996392	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\outlook.exe
2015-08-06 13:30:55	DC271C3AADB4A102748716047BB0E3D3	517360	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\iecontentservice.exe
2015-08-06 13:30:55	C02AA160A566A61DC348A848F73EEAF4	4522176	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\graph.exe
2015-08-06 13:30:55	159895AFFEEFC8A55BC4067464265DD7	8718016	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\groove.exe
2015-08-06 13:30:53	3B309F218CE8C6499F5983D1A9D0C0AC	449216	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\msosync.exe
2015-08-06 13:30:52	C6489F967C050EC12E45D93DFCE8BE81	1764008	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\onenote.exe
2015-08-06 13:30:52	A8CEE2AE31E5B4693781E414F2577FB4	1544408	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ocpubmgr.exe
2015-08-06 13:30:52	55037150C04CA7097DFBAEB8E918C7CC	10760360	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\mspub.exe
2015-08-06 13:30:51	BAD06E1BE96BE7CB0EA9F341CAC2537E	15519912	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\msaccess.exe
2015-08-06 13:30:50	0025E88AD8B268990960DB776FC9B219	6736552	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\lynchtmlconv.exe
2015-08-06 13:30:48	98576F8EAD0E28D379F35C2DA8C1AFFE	24048808	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\lync.exe
2015-08-06 13:30:48	41A0B1159610FD2EB64963834A33CC5B	1784488	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\infopath.exe
2015-08-06 13:30:47	F8624EB8DFEC28C0AA700F26B17BE0C4	990376	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\firstrun.exe
2015-08-06 13:30:46	C21F6047172540866318DD7F5E1ECDBF	25723040	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\excel.exe
2015-08-06 13:30:46	47698F9C6F7618ACD22656E6B4D58258	21939360	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe
2015-08-06 13:30:12	DB7A32ADE19BB39E4FB868818178109C	153768	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\cnfnot32.exe
2015-08-06 13:30:11	5836D469BB8D2F393BC767A280BC64B2	33448	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\appsharinghookcontroller.exe
2015-08-06 13:30:07	E5B15D22C9B9F17C6FF17D0DB75B033A	627920	----a-w-	C:\Program Files\Microsoft Office 15\root\Integration\integrator.exe
2015-08-06 13:30:06	A094E75A61A43CE3A97D8B83C3ADE87B	280744	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\DCF\DATABASECOMPARE.EXE
2015-08-06 13:29:18	639205BA1E384B7295DB070E68036E62	498880	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\MSOUC.EXE
2015-08-06 13:29:17	6DB90BFDE830916465C9E9D3F4502152	569592	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\ORGCHART.EXE
2015-08-06 13:27:49	A28AF69B42B59AA4574FCDC060212040	350120	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgndisa.exe
2015-08-06 13:03:01	48D1A0DB6793B510964B5822BAA42CD2	6611176	----a-w-	C:\Users\David\Downloads\ccsetup508pro.exe
2015-08-06 12:48:28	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-324a69a0-3ce3-41b4-93d6-8f4f8c1a6921\Uninstaller.exe
2015-08-06 12:48:26	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-cd7be8f5-d45f-4715-8449-95fbd932ecf7\Uninstaller.exe
2015-08-06 12:48:22	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-25a385d5-2b27-4a75-ad8d-e92d0f5cd76d\Uninstaller.exe
2015-08-06 12:48:19	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-557a0fe2-e97c-4492-b05c-d5c67b3e69dc\Uninstaller.exe
2015-08-06 12:48:17	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-b95e99e0-0d41-4600-9972-7772df8b2ee1\Uninstaller.exe
2015-08-06 12:48:14	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-dc02b952-7fea-4b6f-b731-51ed8871591d\Uninstaller.exe
2015-08-06 12:48:11	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-a4a22d5c-eaac-4ca5-8390-bc8de58aca6a\Uninstaller.exe
2015-08-06 12:48:08	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-30095c2d-3808-4575-ac37-844202cce1d6\Uninstaller.exe
2015-08-06 12:48:06	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-82c41a17-5b28-4329-899d-ae8a6e2f473d\Uninstaller.exe
2015-08-06 12:48:02	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-0e1799ab-88a4-4f72-b1cb-f6e12210046b\Uninstaller.exe
2015-08-06 12:48:00	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-ad43bc31-f7e8-451f-8333-b00661b643d0\Uninstaller.exe
2015-08-06 12:47:55	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-69fa4b43-91a9-468a-9f7b-7bfb7fc46ba9\Uninstaller.exe
2015-08-06 12:47:53	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-6f420d98-af5c-4919-b411-d9116aad521f\Uninstaller.exe
2015-08-06 12:47:49	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-497494bb-293a-445c-b2fd-d8daf4d75d62\Uninstaller.exe
2015-08-06 12:47:38	3616AB4898E6880F3D1DD128A3FE858C	352496	----a-w-	C:\Users\David\AppData\Local\Temp\uninstaller-WTA-5cec228b-b4eb-48d1-9c6e-4b9cd74cc4a8\Uninstaller.exe
2015-08-06 12:44:22	44A6D3A62B117CD8CC9685A46898EB3F	2669176	----a-w-	C:\Users\David\AppData\Local\Google\Update\Install\{64060C02-F59E-4387-A764-76E2F86F6F9A}\gpbackup_1.1.0.239_omo_dtextezptxt8hyki0ka-dsq.exe
2015-08-06 12:44:11	44A6D3A62B117CD8CC9685A46898EB3F	2669176	----a-w-	C:\Users\David\AppData\Local\Google\Update\Download\{191B666E-DE99-4C18-993A-35F394473116}\0.0.0.0\gpbackup_1.1.0.239_omo_dtextezptxt8hyki0ka-dsq.exe
2015-08-06 12:38:35	E6C65AADF8BED9D5CA7F351534DC18E1	413696	----a-w-	C:\Windows\System32\GWX\GWXUX.exe
2015-08-06 12:38:35	B256D64EDBD6224B3DFFADB626D9BE32	512512	----a-w-	C:\Windows\System32\GWX\GWX.exe
2015-08-06 12:38:35	67FF60BCCAFC831A41EC040466AF6E4E	438272	----a-w-	C:\Windows\SysWOW64\GWX\GWX.exe
2015-08-06 12:38:35	445A858FD648724890E0324F84DACD42	691712	----a-w-	C:\Windows\System32\GWX\GWXConfigManager.exe
2015-08-06 12:38:35	3E2CA7BE05B7FA464A9A9C174058AB1A	382768	----a-w-	C:\Windows\System32\GWX\GWXUXWorker.exe
2015-08-06 12:38:35	2BA797A8FF0866CBD4881B7923A3A8A4	343040	----a-w-	C:\Windows\System32\GWX\GWXDetector.exe
2015-08-06 12:37:21	2A82519355D5E648747A6FF32ACC89CD	90280	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\perfboost.exe
2015-07-31 13:04:08	C0CD3BB0DC07637D5070DD716C6C1BD6	3633576	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
2015-07-31 13:01:40	52E2B86E7C70C1FF8AB1F9A6FC029FF5	7064232	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
2015-07-31 13:01:16	DA730213087848FFAD75AA5BBAC3BBBF	3780520	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgui.exe
2015-07-31 13:01:00	12863EC25C1C46D6CEA1236BA1A3E2D5	1560592	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
2015-07-31 13:00:22	FEAF59FD37A5EAB594929B4CD9A13B79	459768	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgwsc.exe
2015-07-31 12:59:58	B00773539CBE0322991C4E3C6F67099A	825768	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcsrvx.exe
2015-07-31 12:59:56	024023273F582E9906C63B2F8EC88B67	785320	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgntdumpx.exe
2015-07-31 12:59:54	AED13A4B5E0904971DC60A8E27A7D358	255400	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcmgr.exe
2015-07-31 12:58:38	4529F9C88BBAEDB300A91DD6F0BB3A4A	3631528	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
2015-07-31 12:58:26	8D26534D834389148DDA8CFA57720AE4	4281768	----a-w-	C:\Program Files (x86)\AVG\AVG2015\upgrade.exe
2015-07-31 12:58:22	A89705D63F35DD9D7B7EEA1FE80FE6EF	881064	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
2015-07-31 12:58:14	3B4104191A578BD44ABCB1DFE02250CD	1544104	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
2015-07-31 12:58:12	787D807FA14C2C6B62348F50359F6809	380840	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcfgex.exe
2015-07-31 12:58:04	D55AA605896AAF6C35D7BC0E7B4C337F	1215400	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
2015-07-31 12:58:02	D070EE28E86237BB9F996A040042469A	802096	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgdumpx.exe
2015-07-31 12:58:00	907913EDA2E3FE718D2B5B8DA280B73D	965032	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgntdumpa.exe
2015-07-31 12:56:28	CB15E4ABDC8E33F28FB7D4457B343A73	988088	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgdumpa.exe
2015-07-31 12:54:56	7D3573EC6E2EDA17B822310D683ACB28	372136	----a-w-	C:\Program Files (x86)\AVG\AVG2015\fixcfg.exe
2015-07-31 12:54:08	59E94810343F06F1FFD718EEFB509263	335656	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
2015-07-31 12:53:58	ED9C703EFFB6C59BF115795DA248D03C	423848	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcomdlga.exe
2015-07-31 12:53:44	AD27FA48AD24FA89A09C1C97C7C39935	436136	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgscanx.exe
2015-07-31 12:53:14	5EAD0F7368F9B286133DDD16F0D7FFE6	1022888	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
2015-07-31 12:52:46	DC1EED46F16D23D296748314FD290D95	509352	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgscana.exe
2015-07-31 12:51:16	89B82893963A8B7A2B4649B6106DD202	71592	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avguirux.exe
2015-07-31 12:51:16	0062D7D5CB49FB42703FB923F69BAC29	25512	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtesta.exe
2015-07-31 12:51:14	D682BFC2E27E82D42C2ABCAC52DC980B	24488	----a-w-	C:\Program Files (x86)\AVG\AVG2015\avgrdtestx.exe
2015-07-31 12:49:46	EDB6E7C7379BF6A259E4A623DD53BEC7	338744	----a-w-	C:\Program Files (x86)\AVG\AVG2015\Tuneup\TUMicroScanner.exe
=== C: other files ==
2015-08-06 15:00:55	D5693830EEFBE4A5DA70ADEEFA84673E	86681	----a-w-	C:\Program Files\Microsoft Office 15\root\office15\Microsoft.Lync.Model.zip
2015-08-06 13:25:42	6D93008DAB18953F2BD3B7186385A511	67800	----a-w-	C:\Windows\LastGood\system32\DRIVERS\nettap630.sys
2015-08-06 12:43:13	902EEBC81CF2B944ACE35E26C9772A5D	55168	----a-w-	C:\Windows\System32\drivers\lzzyxymf.sys
2015-07-31 13:05:18	A4942579209EFA3CA49229A22461A4E2	1205445	----a-w-	C:\Program Files (x86)\AVG\AVG2015\banners\banners.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"

[HKEY_USERS\S-1-5-21-70853144-677150093-1054592515-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Google Update"="C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Akamai NetSession Interface"="C:\Users\David\AppData\Local\Akamai\netsession_win.exe"
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AccelerometerSysTrayApplet"="C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe"
"mcpltui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"
"HPMessageService"="C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"CanonQuickMenu"="C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"Google Update"="C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Akamai NetSession Interface"="C:\Users\David\AppData\Local\Akamai\netsession_win.exe"
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"SimplePass"="C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe /hideui"
"OPBHOBroker"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe"
"OPBHOBrokerDesktop"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe"
"cpuminer"="C:\Windows\system32\cpuminer-gw64.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2015-01-03 10:29:48	1063	----a-w-	C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk
2014-06-17 02:47:04	2077	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-70853144-677150093-1054592515-1001Core.job --a-------- C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [23/12/2014 13:12]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-70853144-677150093-1054592515-1001UA.job --a-------- C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [23/12/2014 13:12]
C:\Windows\tasks\HPCeeScheduleForDavid.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [15/07/2011 04:43]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-70853144-677150093-1054592515-1001Core" [C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-70853144-677150093-1054592515-1001UA" [C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForDavid" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" [C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe]
"C:\Windows\SysNative\tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon" ["C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe"]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{2ABEFB5E-1690-4B2F-B2B8-E58E5B55A6C0}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\YCMServiceAgent" [C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]

==== Chromium Look ======================

YouTube - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Sri Sri Ravi Shankar - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\epicpeiknnbgaljefpcffpgligibjbmi
BetaFish Adblocker - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Last updated at time on date - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd
Rock Hand - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ledmjlnkdlappilhaaihfhanlpdjjalm
Gmail - David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Preferences
BB3114E37B4720D7D0CBE3E700179BDCA256A98FD421E94544B22B98B"},"safebrowsing":{"incidents_sent":"A5D53476A359B00FA7046F333979839535A4895CE072E81A1CD2EE3D87EE9E3A"},"search_provider_overrides":"C9A8FF91304644BAF1119E1E1A407CD8540D7A52557C9C8E6655FC85FFABB5CE","session":{"restore_on_startup":"746299C1FC8208D70F9DBFC7DB41AF6095CF05B8949A512A9DDAF87B0B7F3558","startup_urls":"451C981E871D2841F1EA01E9294CEC13FF4DC2F0B3D3264CC5744134425D91D9"},"software_reporter":{"prompt_reason":"4F3F2D26612012C407182D5B75D805DAEA90ED87A5FA8648F8ECA83B7E311186","prompt_seed":"850241705BCA3AC0BE25D66DF07267528D7A9FF89B03D34A7D50B3762BD12444","prompt_version":"93DA7B5BE32BDF8EC5FF818983CB5E6CE5EB7A396579ADCCEC38F5D838886B23"},"sync":{"remaining_rollback_tries":"26F0AEEA33536D50AAD9EE75536F4CCD8220D53B0F20762BFE615CBE460496FA"}},"super_mac":"1F7383217B50F3E8FD9EADA7C3E9D713EB46C77EC4FCEE2218C796F9E4F2FC95"},"safebrowsing":{"incidents_sent":{"2":{"chrome.dll":"3774509266","chrome_child.dll":"3743713718"},"6":{"script_request_incident":"42"}}},"session":{"restore_on_startup":4,"startup_urls":["http://isearch.omiga-plus.com/?type=hp&ts=1423345764&from=ild&uid=ST500LT012-1DG142_S3P8VYMZ","http://isearch.omiga-plus.com/?type=hp&ts=1423424801&from=ild&uid=ST500LT012-1DG142_S3P8VYMZ","http://isearch.omiga-plus.com/?type=hppp&ts=1423424815&from=ild&uid=ST500LT012-1DG142_S3P8VYMZ","https://www.google.be/","http://www.oursurfing.com/?type=hp&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ"]},"software_reporter":{"prompt_reason":0,"prompt_seed":"20150601","prompt_version":"3.21.0"},"sync":{"remaining_rollback_tries":0}}


==== Chromium Fix ======================

C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_isearch.omiga-plus.com_0.localstorage deleted successfully
C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_isearch.omiga-plus.com_0.localstorage-journal deleted successfully
C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\epicpeiknnbgaljefpcffpgligibjbmi deleted successfully
C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_epicpeiknnbgaljefpcffpgligibjbmi_0.localstorage deleted successfully
C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_epicpeiknnbgaljefpcffpgligibjbmi_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/?pc=MSE1"
"Default_Page_URL"="http://www.oursurfing.com/?type=hp&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ"
"Search Page"="http://www.oursurfing.com/web/?type=ds&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ&q={searchTerms}"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.oursurfing.com/web/?type=ds&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.oursurfing.com/web/?type=ds&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ&q={searchTerms}"
"Default_Page_URL"="http://www.oursurfing.com/?type=hp&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ"
"Search Page"="http://www.oursurfing.com/web/?type=ds&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.oursurfing.com/web/?type=ds&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ&q={searchTerms}"
"Default_Page_URL"="http://www.oursurfing.com/?type=hp&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ"
"Search Page"="http://www.oursurfing.com/web/?type=ds&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ&q={searchTerms}"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.msn.com/?pc=MSE1"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=HPNTDFJS"
{33BB0A4E-99AF-4226-BDF6-49120163DE86} oursurfing  Url="http://www.oursurfing.com/web/?type=ds&ts=1434405921&z=138d68d4939185d80631212g6zcc9z7zfe4wdtbc1e&from=amt&uid=ST500LT012-1DG142_S3P8VYMZ&q={searchTerms}"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo  Url="http://www.google.com/search?q={sear"
{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} Bing  Url="http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\2C0D8C2E79C150C439A9B5310AEF56C5 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{478472F9-9E09-492A-BDAB-42EE595EF1AD} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f8e35935} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E2C8D0C2-1C97-4C05-939A-5B13A0FE655C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2C0D8C2E79C150C439A9B5310AEF56C5 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\David\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\David\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\David\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\David\AppData\Local\Microsoft\Windows\INetCache\IE\WB4H64DM will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=10 folders=2 368556 bytes)

==== Empty Temp Folders ======================

C:\Users\David\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\David\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~3\{b895d42e-5a27-7a54-b895-5d42e5a250b9}\364acdce5468b20d"  not found
"C:\PROGRA~3\{b895d42e-5a27-7a54-b895-5d42e5a250b9}\fbb76b9b73bc55d9"  not found
"C:\PROGRA~3\{f9f5fd23-d9c0-e476-f9f5-5fd23d9cf48f}\423d0474ffa45dd5"  not found
"C:\PROGRA~3\{f9f5fd23-d9c0-e476-f9f5-5fd23d9cf48f}\8fc0a221d870ba01"  not found
"C:\PROGRA~3\{b895d42e-5a27-7a54-b895-5d42e5a250b9}"  not found
"C:\PROGRA~3\{f9f5fd23-d9c0-e476-f9f5-5fd23d9cf48f}"  not found
"C:\Users\David\AppData\Local\Microsoft\Windows\INetCache\IE\WB4H64DM" not found

==== EOF on do 06/08/2015 at 21:45:40,31 ======================