
Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Faiza on do 06/08/2015 at 23:14:14,68.
Microsoft Windows 8.1 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Faiza\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

6/08/2015 23:16:49 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Sigil deleted successfully
C:\Users\Gast\AppData\Roaming\Apple Computer deleted successfully
C:\Users\Faiza\AppData\Local\Adobe deleted successfully
C:\Users\Faiza\AppData\Local\EmieSiteList deleted successfully
C:\Users\Faiza\AppData\Local\EmieUserList deleted successfully
C:\Users\Gast\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1307046899-3837986291-3508965061-1001\Software\Microsoft\Internet Explorer\SearchScopes\{DEF21ADA-85A6-4F04-927F-0E8B4EF1C965} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{DEF21ADA-85A6-4F04-927F-0E8B4EF1C965} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DEF21ADA-85A6-4F04-927F-0E8B4EF1C965} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\0307911437782798mcinstcleanup deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Faiza\AppData\Roaming\Mozilla\Firefox\Profiles\qmudvba9.default

user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- FireFox user.js and prefs.js backups ---- 

prefs_20150608_2334_.backup

ProfilePath: C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\rm8hya98.default

user.js not found
---- FireFox user.js and prefs.js backups ---- 

prefs_20150608_2334_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Sigil not found
C:\Users\Faiza\AppData\Roaming\Mozilla\Firefox\Profiles\qmudvba9.default\extensions\foxmarks@kei.com deleted
C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 deleted
C:\Users\Gast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Start Menu.lnk deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Default\AppData\Local\Pokki deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Faiza\AppData\Roaming\Mozilla\Firefox\Profiles\qmudvba9.default\jetpack deleted
"C:\windows\Installer\181d45.msi" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-07-30 16:00:23	B58952E67FC2FA0E689F4F0F4E3091E6	43112	----a-w-	C:\Windows\avastSS.scr
====== C:\Users\Faiza\AppData\Local\Temp ====
2015-08-03 15:46:18	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Faiza\AppData\Local\Temp\SDIAG_c82cc0a7-eb68-4664-851e-d1f24949c4b5\NetworkDiagnosticSnapIn.dll
2015-08-03 15:46:18	4880D520A552D60E4D5754F6FBA7DA04	489472	----a-w-	C:\Users\Faiza\AppData\Local\Temp\SDIAG_c82cc0a7-eb68-4664-851e-d1f24949c4b5\DiagPackage.dll
2015-08-03 10:50:36	E0DC8C6BBC787B972A9A468648DBFD85	1008128	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\libiconv2.dll
2015-08-03 10:50:36	D34DE397C882E8E71FB0966D28F07CB1	71992	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\CreateRestorePoint.exe
2015-08-03 10:50:36	D202BAA425176287017FFE1FB5D1B77C	103424	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\libintl3.dll
2015-08-03 10:50:36	57CAC848FA14AE38F14F9441F8933282	140288	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\pcre3.dll
2015-08-03 10:50:36	547C43567AB8C08EB30F6C6BACB479A3	79360	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\regex2.dll
2015-08-03 10:50:36	2F9C7FDA92C346CB5AA32091536AE0CB	43520	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2015-07-30 20:20:59	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Faiza\AppData\Local\Temp\SDIAG_cf09bbad-28b9-4ac7-a2d3-807abdcdc81a\NetworkDiagnosticSnapIn.dll
2015-07-30 20:20:59	4880D520A552D60E4D5754F6FBA7DA04	489472	----a-w-	C:\Users\Faiza\AppData\Local\Temp\SDIAG_cf09bbad-28b9-4ac7-a2d3-807abdcdc81a\DiagPackage.dll
2015-07-30 16:20:27	474F38440359E2932EAFA501691CAB13	953656	----a-w-	C:\Users\Faiza\AppData\Local\Temp\HPWarrantyChecker\HPWarrantyCheck\HPWarrantyChecker.exe
2015-07-30 14:22:17	FAB98BB4212A8B6F68772870016D7166	883816	----a-w-	C:\Users\Faiza\AppData\Local\Temp\SP67148.exe
2015-07-28 16:45:59	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Faiza\AppData\Local\Temp\SDIAG_d605a5f3-7d9d-4296-9eca-89e9ac9fad70\NetworkDiagnosticSnapIn.dll
2015-07-27 16:24:55	E3A25C80E2375B2D42C3D4729769BDF3	10240	----a-w-	C:\Users\Faiza\AppData\Local\Temp\SDIAG_0e8b1fc3-0725-4799-a8a1-3d95eda9af5b\NetworkDiagnosticSnapIn.dll
2015-07-27 16:24:55	6A4063772125F2A8B4E111BC0E4F2755	489472	----a-w-	C:\Users\Faiza\AppData\Local\Temp\SDIAG_0e8b1fc3-0725-4799-a8a1-3d95eda9af5b\DiagPackage.dll
2015-07-24 11:46:20	171F1BB73D0238A7A56126D3459ECDCD	50432	----a-r-	C:\Users\Faiza\AppData\Local\Temp\Extract.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-07-30 16:00:52	A4DDD3B3A0B3EB00EC64D90CDF5405DD	378880	----a-w-	C:\Windows\Sysnative\aswBoot.exe
2015-07-28 19:00:51	8A973B47CAC256D9882E093490692B7B	1084928	----a-w-	C:\Windows\Sysnative\appraiser.dll
====== C:\Windows\Sysnative\drivers =====
2015-07-25 14:52:05	C85B35201A253B99199C0A9F5B98FC18	274808	----a-w-	C:\Windows\Sysnative\drivers\aswVmm.sys
2015-07-25 14:52:05	C43A0929DE32035499D6BB39A7F44439	447944	----a-w-	C:\Windows\Sysnative\drivers\aswSP.sys
2015-07-25 14:52:05	76D585093398DB973470BB83FCF0CE52	90968	----a-w-	C:\Windows\Sysnative\drivers\aswMonFlt.sys
2015-07-25 14:52:05	763C27EA21875F54615A0174EEC78FC4	150672	----a-w-	C:\Windows\Sysnative\drivers\aswStm.sys
2015-07-25 14:52:05	719FF5568B5E71832541636E2A7DFE27	93528	----a-w-	C:\Windows\Sysnative\drivers\aswRdr2.sys
2015-07-25 14:52:05	5B6A864A2CE292992040CEBAFC8F746A	1048856	----a-w-	C:\Windows\Sysnative\drivers\aswSnx.sys
2015-07-25 14:52:05	525F5989C095F5757414E1F4B39175B2	28656	----a-w-	C:\Windows\Sysnative\drivers\aswHwid.sys
2015-07-25 14:52:05	21C13E3C9B801C8AE172FABBD235221E	65224	----a-w-	C:\Windows\Sysnative\drivers\aswRvrt.sys
2015-07-19 00:37:07	8F22037D3F5A6BB676525D825A1388B9	113880	----a-w-	C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2015-07-19 00:34:50	E681CE4AE5C09651D53CB4387CA3560E	109272	----a-w-	C:\Windows\Sysnative\drivers\mbamchameleon.sys
2015-07-19 00:34:50	A8D28D5B3E2A528D1EF0E338E44F2820	25816	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2015-07-19 00:34:50	85CFE7AB85B43B6B7AC7961AA3983A9F	64216	----a-w-	C:\Windows\Sysnative\drivers\mwac.sys
2015-07-14 23:58:56	5917AFE4A3F695A54B99C1849C8207FE	59712	----a-w-	C:\Windows\Sysnative\drivers\kbdclass.sys
2015-07-14 23:58:56	49EE0AE9E5B64FFBBD06D55C4984B598	108544	----a-w-	C:\Windows\Sysnative\drivers\i8042prt.sys
2015-07-14 23:58:56	08374E4E5B8914DE6067CBA99F61E930	51008	----a-w-	C:\Windows\Sysnative\drivers\mouclass.sys
2015-07-14 23:58:55	DC66AE45816614D2999DCD3834DCCC4E	167424	----a-w-	C:\Windows\Sysnative\drivers\rfcomm.sys
2015-07-14 23:58:55	8CD840A062F6BDF41DDE3ACB96164B72	32256	----a-w-	C:\Windows\Sysnative\drivers\kbdhid.sys
2015-07-14 23:58:55	5FCBAB60598AE119E02B4C27DE6B99EA	30208	----a-w-	C:\Windows\Sysnative\drivers\mouhid.sys
2015-07-14 23:58:55	42F88B57CAE42FC10059C887B3FCFCEA	97792	----a-w-	C:\Windows\Sysnative\drivers\hidbth.sys
2015-07-14 23:58:55	312BB35275EB15145F4B6D1FFCE56C50	20992	----a-w-	C:\Windows\Sysnative\drivers\usb8023.sys
2015-07-14 23:58:55	148195AE95D9BC7375A08846439FDAC1	26112	----a-w-	C:\Windows\Sysnative\drivers\sermouse.sys
2015-07-14 23:58:55	0CC00ADC1B84C93FB46E1A0974E956E1	1201664	----a-w-	C:\Windows\Sysnative\drivers\bthport.sys
2015-07-14 20:52:34	BCBD64220AD85C26823453FF1DC3EFBD	284672	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-07-14 20:52:34	6FBDF2B1B025A8E6E069234362FFFFB7	401408	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb.sys
2015-07-14 20:52:34	57C2473D501331211D6885FD59F3E44B	202240	----a-w-	C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-07-14 20:52:33	46711F40D0F9E63F786ED23F9BD5215E	178008	----a-w-	C:\Windows\Sysnative\drivers\ksecpkg.sys
====== C:\Windows\Tasks ======
2015-07-25 14:52:21	F8E4E1EFCB14DBE7B6E0076E7FD72811	4182	----a-w-	C:\Windows\Sysnative\Tasks\avast! Emergency Update
2015-07-24 11:44:53	CCABA2FE740D80FAABD5AE575BD48823	342	----a-w-	C:\Windows\Tasks\HPCeeScheduleForFaiza.job
2015-07-24 11:44:53	9A887273E3A7064D2CA7799E3C4BDB61	3156	----a-w-	C:\Windows\Sysnative\Tasks\HPCeeScheduleForFaiza
2015-07-18 23:34:31	--------	d-----w-	C:\Windows\Sysnative\Tasks\Safer-Networking
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-08-06 18:20:21	--------	d-----w-	C:\Program Files\trend micro
2015-08-03 20:13:02	--------	d-----w-	C:\Program Files\Speccy
2015-07-25 15:07:34	--------	d-----w-	C:\Program Files\iPod
2015-07-25 15:07:33	--------	d-----w-	C:\Program Files\iTunes
2015-07-25 14:56:25	--------	d-----w-	C:\Program Files\7-Zip
======= C:\PROGRA~2 =====
2015-08-03 15:52:31	--------	d-----w-	C:\PROGRA~2\HD Tune
2015-07-25 15:07:34	--------	d-----w-	C:\PROGRA~2\iTunes
2015-07-21 21:03:07	--------	d-----w-	C:\PROGRA~2\OpenOffice 4
======= C: =====
2015-07-18 23:00:01	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\dummy.htm
====== C:\Users\Faiza\AppData\Roaming ======
2015-08-06 21:24:53	--------	d-----w-	C:\Users\Faiza\AppData\Roaming\WildTangent
2015-08-03 20:13:14	--------	d-----w-	C:\Windows\serviceprofiles\Localservice\AppData\Roaming\PeerNetworking
2015-07-30 23:21:11	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Roaming\Hewlett-Packard
2015-07-26 19:19:27	--------	d-s---w-	C:\Windows\serviceprofiles\Localservice\AppData\Locallow\Microsoft
2015-07-21 21:08:03	--------	d-----w-	C:\Users\Faiza\AppData\Roaming\OpenOffice
2015-07-18 23:40:25	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Programs
2015-07-18 23:01:34	--------	d-----w-	C:\Users\Faiza\AppData\Local\sigil-ebook
2015-07-18 22:52:07	--------	d-----w-	C:\Users\Faiza\AppData\Local\Programs
2015-07-18 22:49:35	--------	d-----w-	C:\Users\Faiza\AppData\Roaming\DesktopIconGoodgame
2015-07-18 22:48:23	--------	d-----w-	C:\Users\Faiza\AppData\Locallow\Evernote
2015-07-18 22:48:23	--------	d-----w-	C:\Users\Faiza\AppData\Local\Evernote
2015-07-16 01:31:37	--------	d-----w-	C:\Users\Faiza\AppData\Local\Intel_Corporation
2015-07-11 22:14:14	--------	d-----w-	C:\Users\Gast\AppData\Roaming\Mozilla
2015-07-11 22:14:14	--------	d-----w-	C:\Users\Gast\AppData\Local\Mozilla
2015-07-11 22:13:29	--------	d-----w-	C:\Users\Gast\AppData\Local\Hewlett-Packard
2015-07-11 22:13:12	--------	d-----w-	C:\Windows\SysNative\config\systemprofile\AppData\Local\CrashDumps
2015-07-11 22:13:07	--------	d-----r-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2015-07-11 22:13:07	--------	d-----r-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2015-07-11 22:13:03	--------	d-----w-	C:\Users\Gast\AppData\Locallow\Microsoft
2015-07-11 22:13:01	--------	d-----w-	C:\Users\Gast\AppData\Roaming\Adobe
2015-07-11 22:12:56	--------	d-----w-	C:\Users\Gast\AppData\Local\Google
2015-07-11 22:12:51	--------	d-----w-	C:\Users\Gast\AppData\Roaming\Synaptics
2015-07-11 22:12:50	--------	d-----w-	C:\Users\Gast\AppData\Local\Packages
2015-07-11 22:12:06	--------	d-----w-	C:\Users\Gast\AppData\Local\Temp
2015-07-11 22:12:06	--------	d-----w-	C:\Users\Gast\AppData\Local\Microsoft
2015-07-11 22:12:05	--------	d-s---w-	C:\Users\Gast\AppData\Roaming\Microsoft
2015-07-11 22:12:05	--------	d-----w-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-09 21:37:57	--------	d-----w-	C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft
====== C:\Users\Faiza ======
2015-08-06 21:25:21	--------	d-----w-	C:\ProgramData\BlueStacks
2015-08-06 18:19:29	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Faiza\Desktop\RSITx64.exe
2015-08-06 18:12:45	1F2CF72AA306E98927ECCFB586FFF8FD	2732864	----a-w-	C:\Users\Faiza\Desktop\CrystalDiskInfoPortable_6.3.0.paf.exe
2015-08-03 20:13:03	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2015-08-03 20:12:12	678AB0E8665345E72D11149A36F965BE	5127432	----a-w-	C:\Users\Faiza\Desktop\spsetup128.exe
2015-08-03 15:52:31	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2015-08-03 15:50:29	088812A121E0A9CEB40CE9C808C8A90C	642632	----a-w-	C:\Users\Faiza\Desktop\hdtune_255.exe
2015-07-25 15:08:12	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-07-25 14:56:25	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-07-25 14:11:52	AE910107E13CBA548182946B5C095507	159325656	----a-w-	C:\Users\Faiza\Desktop\avast_free_antivirus_setup.exe
2015-07-21 21:03:53	--------	d-s---w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-07-19 00:59:24	--------	d-----w-	C:\ProgramData\HitmanPro
2015-07-11 22:13:07	--------	d-----r-	C:\Users\Gast\Searches
2015-07-11 22:13:07	--------	d-----r-	C:\Users\Gast\Contacts
2015-07-11 22:12:48	6FC234AD3752E1267B34FB12BCD6718B	20	--sha-w-	C:\Users\Gast\ntuser.ini
2015-07-11 22:12:05	--------	d--h--w-	C:\Users\Gast\AppData
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\Videos
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\Saved Games
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\Pictures
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\Music
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\Links
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\Favorites
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\Downloads
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\Documents
2015-07-11 22:12:05	--------	d-----r-	C:\Users\Gast\Desktop
2015-07-09 00:50:51	--------	d-----w-	C:\ProgramData\BlueStacksSetup

====== C: exe-files ==
2015-08-06 21:25:01	D14C7A610629A7724EE2CFBBADAFA0F2	49824	----a-w-	C:\Users\Faiza\AppData\Roaming\WildTangent\Updater\GameConsole\Park-{852cb900-4bea-4b4d-8cd9-095594a104df}.exe
2015-08-06 21:24:57	34563BCEAC40800967EF2B8ED3850A15	5299232	----a-w-	C:\Users\Faiza\AppData\Roaming\WildTangent\Updater\GameConsole\GameConsole-4.3.0.9.exe
2015-08-06 21:24:56	5B8F83A8234166CD60226EC417EA4427	572064	----a-w-	C:\Users\Faiza\AppData\Roaming\WildTangent\WildTangent Games\App\Update\Updater.exe
2015-08-06 18:20:22	9A2347903D6EDB84C10F288BC0578C1C	388608	----a-w-	C:\Program Files\trend micro\Faiza.exe
2015-08-06 18:19:29	8045ABB21A3BDD66A48E1ED5C0F0EF6A	1222144	----a-w-	C:\Users\Faiza\Desktop\RSITx64.exe
2015-08-06 18:12:45	1F2CF72AA306E98927ECCFB586FFF8FD	2732864	----a-w-	C:\Users\Faiza\Desktop\CrystalDiskInfoPortable_6.3.0.paf.exe
2015-08-05 17:29:19	1DEEF4A41F33D307E6EE2FBE8B179BE2	959568	----a-w-	C:\Program Files (x86)\Google\Update\Install\{B4CEA04F-A7E3-41E0-A441-9F1F09F94443}\44.0.2403.130_44.0.2403.125_chrome_updater.exe
2015-08-05 17:29:19	1DEEF4A41F33D307E6EE2FBE8B179BE2	959568	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\44.0.2403.130\44.0.2403.130_44.0.2403.125_chrome_updater.exe
2015-08-05 15:59:25	B1B97114D180B5B1B05EB84F50441091	140464	----a-w-	C:\Windows\Temp\C93FBE54-533A-40E2-B3E5-699BA8A03311\DismHost.exe
2015-08-03 20:12:12	678AB0E8665345E72D11149A36F965BE	5127432	----a-w-	C:\Users\Faiza\Desktop\spsetup128.exe
2015-08-03 15:52:31	F8FC2D14DF813CC920A39B3CB7E59CBC	401408	----a-w-	C:\Program Files (x86)\HD Tune\HDTune.exe
2015-08-03 15:52:31	CEFC20D14D9940D53505E9B9769139E7	682266	----a-w-	C:\Program Files (x86)\HD Tune\unins000.exe
2015-08-03 15:50:29	088812A121E0A9CEB40CE9C808C8A90C	642632	----a-w-	C:\Users\Faiza\Desktop\hdtune_255.exe
2015-08-03 10:50:36	D34DE397C882E8E71FB0966D28F07CB1	71992	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\CreateRestorePoint.exe
2015-08-03 10:50:36	2F9C7FDA92C346CB5AA32091536AE0CB	43520	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\nfo\nircmdc.exe
2015-08-01 19:48:07	AB9990DB80EA3DAC0EAE50C906EF7ECA	1693024	----a-w-	C:\Users\Faiza\AppData\Roaming\uTorrent\updates\3.4.3_40760.exe
2015-07-30 22:45:34	94E335F4C266ED19B0A3A597CDA0121D	6734648	----a-w-	C:\SWSetup\sp67148\rebecca.exe
2015-07-30 22:45:34	3997F2F39CD8021FE176A6DAF8B77BC8	33792	----a-w-	C:\SWSetup\sp67148\RMApp.exe
2015-07-30 22:45:34	1D66FA205FA9D9433D38D4D2495054C2	213816	----a-w-	C:\SWSetup\sp67148\HPSetup.exe
=== C: other files ==
2015-08-03 10:50:36	FCEB5D2ECAB2DCD63628CC2B95248A0A	31220	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\iexplore.bat
2015-08-03 10:50:36	F836546B0C268B8930447AD51C19B683	1568	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\delfolders.bat
2015-08-03 10:50:36	E0A0B0442A4ED95A003A1C0F0AE63E2B	4910	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\chrome_pref.bat
2015-08-03 10:50:36	D03318CDF4C5F7C2C7A793C2AEC159D0	7901	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\runvalues.bat
2015-08-03 10:50:36	CA495C330AF9FB8D8608A536D6377909	7910	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\chrome.bat
2015-08-03 10:50:36	C80D16762A60152379C2A7ADBB8248AA	9239	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\searchlnk.bat
2015-08-03 10:50:36	C74DACC98CBDA29BA34D82665E6C43FF	2245	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\medfos.bat
2015-08-03 10:50:36	B80B4855691192AE466736027A332B11	17571	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\get.bat
2015-08-03 10:50:36	B3E4F4259E131A833B332C9B05CA8774	149490	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\misc.bat
2015-08-03 10:50:36	B23B16209341AEAE62A7D32117A36F55	1192	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\TDL4.bat
2015-08-03 10:50:36	A8F5541C419593F3ECAC0E0A3FB0F2BA	1162	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\surfvox.bat
2015-08-03 10:50:36	93A6196509429319C854A941F14F1E7C	252	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\ev_clear.bat
2015-08-03 10:50:36	9246BABAAAE2978EABF6F0D784B0683D	34543	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\prelim.bat
2015-08-03 10:50:36	81F82F01664FD84D77EF8521A2C39463	23026	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\ask.bat
2015-08-03 10:50:36	7C2536139B5D838D88D3E0082F9A77FC	167302	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\firefox.bat
2015-08-03 10:50:36	3FF35FA6DEAAE10308284F654477F10D	17100	----a-w-	C:\Users\Faiza\AppData\Local\Temp\jrt\mws.bat
2015-07-30 22:51:49	1B37CC177660DA11B313DEFE5A80809C	2239272	----a-w-	C:\Users\Faiza\Desktop\Books\New ebook packs for April,May,June 2015\New ebook packs LINKS 2003-2014.zip
2015-07-30 22:45:34	DC739EAC1B76489109B442BFD5AC063F	72	----a-w-	C:\SWSetup\sp67148\60_MessageBox.vbs
2015-07-30 22:45:34	D94CE89DD3FA94F68083DFC0FB17CB7D	950	----a-w-	C:\SWSetup\sp67148\20_OSCheck.vbs
2015-07-30 22:45:34	90DD67DEA7AD27DE016C563706D83501	1035	----a-w-	C:\SWSetup\sp67148\30_CycleCheck.vbs
2015-07-30 22:45:34	837252954B79742BF9B815EFE4F20B67	733	----a-w-	C:\SWSetup\sp67148\40_SingleCheck.vbs
2015-07-30 22:45:34	6E0356EDF3273D931776CFDC4E4A892F	2723	----a-w-	C:\SWSetup\sp67148\50_FileReplace.vbs
2015-07-30 22:45:34	521957A8570A1930F394DFFC758CA501	1887	----a-w-	C:\SWSetup\sp67148\10_DtFileReplace.vbs
2015-07-30 22:45:33	97B37AA90C3C1C16C2C5FFD1887026A6	1601	----a-w-	C:\SWSetup\sp67148\00_FileCheck.vbs

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1307046899-3837986291-3508965061-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"WordWeb"="C:\Program Files (x86)\WordWeb\wweb32.exe -startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AccelerometerSysTrayApplet"="C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe"
"HPMessageService"="C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe"
"BlueStacks Agent"="C:\Program Files (x86)\BlueStacks\HD-Agent.exe"
"SDTray"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WordWeb"="C:\Program Files (x86)\WordWeb\wweb32.exe -startup"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s"
"SimplePass"="C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe /hideui"
"OPBHOBroker"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe"
"OPBHOBrokerDesktop"="C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2014-05-07 18:34:45	2077	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [16/07/2015 00:35]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27/06/2015 13:47]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27/06/2015 13:47]
C:\Windows\tasks\HPCeeScheduleForFaiza.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [15/07/2011 04:43]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForFaiza" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\YCMServiceAgent" [C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" [C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe]
"C:\Windows\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates" ["C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe"]
"C:\Windows\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization" ["C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe"]
"C:\Windows\SysNative\tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system" ["C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe"]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [30/07/2015 18:00]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"wcapturex@deskperience.com"="C:\Program Files (x86)\WordWeb\WCaptureMoz" [27/06/2015 04:18]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Faiza\AppData\Roaming\Mozilla\Firefox\Profiles\qmudvba9.default
- WordWeb one-click lookup - C:\Program Files (x86)\WordWeb\WCaptureMoz
- Location Guard - %ProfilePath%\extensions\jid1-HdwPLukcGQeOSh@jetpack.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
- DownThemAll - %ProfilePath%\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Faiza\AppData\Roaming\Mozilla\Firefox\Profiles\qmudvba9.default
0C0C5C207121C7A78414A8250E8E099A	- C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll -	Shockwave for Director / Shockwave for Director
FD82108FD60B63010325D9AF6F00AF99	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll -	Shockwave Flash


==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Gast\AppData\Local\Google\Chrome deleted

==== Chromium Look ======================

Google Chrome Version: 44.0.2403.130

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx[25/07/2015 16:51]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[25/07/2015 16:51]

Google Docs - Faiza\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Faiza\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Faiza\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Faiza\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Avast SafePrice - Faiza\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Avast Online Security - Faiza\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Chrome Web Store Payments - Faiza\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Faiza\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\Faiza\AppData\Local\Google\Chrome\User Data\Default\Preferences
3145201241471","location":1,"manifest":{"app":{"launch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"nl","default_locale":"en","description":"Een snelle, doorzoekbare e-mailfunctie met minder spam.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/update2/crx","version":"8.1"},"page_ordinal":"n","path":"pjkljhegncpnkpknbcohdijeoejaedia\\8.1_0","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":true,"was_installed_by_oem":false}}},"pinned_tabs":[],"protection":{"macs":{"browser":{"show_home_button":"85632B0FB0F90A339953975F0EC23FF5C8A8435506EE848A5F0F081EBB23E125"},"default_search_provider":{"keyword":"5CDFCE6EACC1CD08223BF028AE21B9576A83A7971660B7B495304DC8A37ACE78","name":"7E39EEBFD6B6594297F321050C4D56E212FF10CF7B4A4F0FB3742B66389EA239","search_url":"0E6229198350BB1B6EFAA7FF83F48FA773A6A17D3E18BC95FB76794E1CE8494D"},"default_search_provider_data":{"template_url_data":"13792AABEA7BA6501B713732EC85F4482CD38255C22E98475CD5146DD39416D7"},"extensions":{"settings":{"aapocclcgogkmnckokdopfmhonfmgoek":"4511AB98F1F84BCE21C0F8CF6E111F12CC1632029AC7FEB92091B7183D473257","ahfgeienlihckogmohjhadlkjgocpleb":"C696DAD6370E331DA06F65C951E4A6A6F54B066A745BE2FE4BE1443E529B730E","aohghmighlieiainnegkcijnfilokake":"D1BA303F8E8FD7B20632F69FFA28D45553EF245CDEC46BC4261816DA721827BC","apdfllckaahabafndbhieahigkjlhalf":"953B0D565378F6208D422F106331F021881001603CC4B9B3D3399DA3259B2EB7","bepbmhgboaologfdajaanbcjmnhjmhfn":"F1BDF26CBEC28FECA618B759D205FC2EE786EE9210AD5DFC63E736D311A6B891","blpcfgokakmgnkcojhhkbfbldkacnbeo":"5E501E6A9E0853DBA83E34013C6172DC4BAF567566FE46C016498C773AB312CB","coobgpohoikkiipiblmjeljniedjpjpf":"6E84A1C2E79D8DDD2B8D29941307BF65A64A4BF8BD8929143DC149B1FD7C71BF","eemcgdkfndhakfknompkggombfjjjeno":"C512B692D9B519894519A05FBB3E806BFDAAA62E0033BE816C29D5E8B7DAA40C","ennkphjdgehloodpbhlhldgbnhmacadg":"438E1824E2188AC3E517D0F84D4F591817D24B5CE2FC0A1298A53B0B19758171","eofcbnmajmjmplflapaojjnihcjkigck":"668D9FE6194D716CD0A144422BC026A822140A3E4B7D13F63809DAC2A965434C","felcaaldnbdncclmgdcncolpebgiejap":"11D0611872BE9E18862B4FC28FE6F3BB726A1229B3A0B32422F16B02DCF87E2A","gfdkimpbcpahaombhbimeihdjnejgicl":"0D494C5A0E6D980D0C6D3E8A8FAA7BF6D1A3B4CD52AF3955D5F4E6B0AFC8E236","gomekmidlodglbbmalcneegieacbdmki":"F1BAFD28067CEDFACD01089764E154B3429C0C475401AADA6DBE25F792206B3D","kmendfapggjehodndflmmgagdbamhnfd":"74CB056320A78EF399A0963A7DE32BA3DAB6036254680131DBE2B040F0ABD881","mfehgcgbbipciphmccgaenjidiccnmng":"3BDB14245C6099379E2A514E349603C030F54EECFF01B9C3892A11154E4C3A88","mfffpogegjflfpflabcdkioaeobkgjik":"5A9A05A75D605E58BC09AAC11C6859416290FDF9C6523B1493C3E7D7068B5BC2","mgndgikekgjfcpckkfioiadnlibdjbkf":"052CD7D525EB21005F79FFCCED1F8E02C23863470D2AEDD60CCA1D9BC9431730","mhjfbmdgcfjbbpaeojofohoefgiehjai":"7742177CBC8346EE4B44D273F81194E8AC77D43A0E6758678F5087192D1CAF9B","neajdppkdcdipfabeoofebfddakdcjhd":"4DA810F608732993D36AAD34C6890D57CD84C8BA37A5C7AAC8AA8C4444B07FBC","nkeimhogjdpnpccoofpliimaahmaaome":"E8493A1454A58E37741BAAA5EEBC3AD665F275595369692CB0422D21EA98008D","nmmhkkegccagdldgiimedpiccmgmieda":"C42494C277B6CC06C71F65234E4A63442D08C17AA8E80113D13116863B2C2602","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"512846CDC179C853C7156435AB4E212690EC5A4126A43D9EC852EE748A735A39","pjkljhegncpnkpknbcohdijeoejaedia":"6FF8DE1B0853A910731CA4403556C630E72E11D9B82AF70D4B49BD20FE758B5C"}},"google":{"services":{"account_id":"9B0388A1AB99C5536D32AE5A24518FA5EBDDC1E48B748D0F896555E1417909EB","last_username":"67019957BDFF70BB8E3641434F7BEA197E770D99A08B36691274703D4D9AE24D","username":"F0AACA4A06480CB071E2F690208959181630F63099698C2AD9C99AF69475AE71"}},"homepage":"1841EC863E1CB320144E5E7095AD9761E577D55C9808AE8A4A9C02D9D8F4678A","homepage_is_newtabpage":"CDD3C6FE0816A5ECF6293616A6A4682A7856BB1D35D51BB14B459C05B302E1C2","pinned_tabs":"DA204C7EE67A63559C27C1A3BA3C66610B612A95AA9882A1D132B949090E1BE5","prefs":{"preference_reset_time":"E75E2206BDF7718DB652FA2D10A815B47976945ED728D0CF85E2093B4E621CC7"},"profile":{"reset_prompt_memento":"460E87AB3E4221A32D01DF580376C68D80A48AB6F41C347D3384249B0A2AE8CB"},"safebrowsing":{"incidents_sent":"C285939DB4118BBED7BD500F9D21228199426B9F2A71D51729466A2CB5A94699"},"search_provider_overrides":"101D06B6383DF9D1155358C4E9616D5DAEA05B97CDD24CDBD159A934B99C4069","session":{"restore_on_startup":"58BD30E54E3BCBBF8231CFE62DE25C6C831A9BD0F05F3291418D77D0213E200B","startup_urls":"B675A6A433B4A3BAC001BCFA2D300D4D41431B87C43FEB2ADFB59845E0690ED4"},"software_reporter":{"prompt_reason":"F4E2F3AA734F7DF0A65DECD81306C49817EB1BF42398F45D9865AFF093D1AF84","prompt_seed":"91E96854CE5B2326392A4ED4300AF414265F66764689F02000D32ACAD8864814","prompt_version":"489B6FDB62E948573C13B975F5B158FC803C5277701DCA93F96797CFF7DEEB2F"},"sync":{"remaining_rollback_tries":"5466EC8E56AABB7C41E5A10AE4CDBD68FBA4FCDEBC3A49329253B6115D184118"}},"super_mac":"AE1E05F78BC99F030B25B0AD604113D9B2A0B9F45B3FF54957FC0FD3AB6B6E25"}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\2C0D8C2E79C150C439A9B5310AEF56C5 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E2C8D0C2-1C97-4C05-939A-5B13A0FE655C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2C0D8C2E79C150C439A9B5310AEF56C5 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Faiza\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Faiza\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Faiza\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Faiza\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Users\Gast\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Faiza\AppData\Local\Mozilla\Firefox\Profiles\qmudvba9.default\cache2 emptied successfully
C:\Users\Faiza\AppData\Roaming\Mozilla\Firefox\Profiles\qmudvba9.default\cache2 emptied successfully
C:\Users\Gast\AppData\Local\Mozilla\Firefox\Profiles\rm8hya98.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Faiza\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=6419 folders=184 292805780 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Faiza\AppData\Local\Temp will be emptied at reboot
C:\Users\Gast\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Faiza\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on do 06/08/2015 at 23:43:08,94 ======================