Zoek.exe v5.0.0.1 Updated 28-November-2015 Tool run by Eva on za 28/11/2015 at 22:29:00,01. Microsoft Windows 10 Home 10.0.10240 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Eva\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 28/11/2015 22:37:02 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AGEIA Technologies deleted successfully C:\Program Files\Common Files\AV deleted successfully C:\PROGRA~3\Comms deleted successfully C:\PROGRA~3\ZoomBrowser deleted successfully C:\Users\UpdatusUser\AppData\LocalLow deleted successfully C:\Users\Eva\AppData\Local\CrashDumps deleted successfully C:\Users\Eva\AppData\Local\EmieSiteList deleted successfully C:\Users\Eva\AppData\Local\EmieUserList deleted successfully C:\Users\Eva\AppData\Local\MediaShow deleted successfully C:\Users\Eva\AppData\Local\NetworkTiles deleted successfully C:\Users\evawo_000\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2123528701-1330138130-21175238-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-2123528701-1330138130-21175238-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_USERS\S-1-5-21-2123528701-1330138130-21175238-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_USERS\S-1-5-21-2123528701-1330138130-21175238-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_USERS\S-1-5-21-2123528701-1330138130-21175238-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_CLASSES_ROOT\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_CLASSES_ROOT\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2123528701-1330138130-21175238-1005\SOFTWARE\Microsoft\Internet Explorer\Approved Extensions\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully ==== Installed Programs ====================== abDocs abDocs Office AddIn abMedia abPhoto Acer Explorer Agent Acer Launch Manager Acer Portal Acer Power Management Acer Quick Access Acer Recovery Management Acer Remote Files Acer User Experience Improvement Program App Monitor Plugin Acer User Experience Improvement Program Framework Acer Video Player Adobe Flash Player 19 NPAPI Adobe Reader XI (11.0.13) MUI Adobe Refresh Manager AOP Framework Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update Audacity 2.0.6 AVG AVG 2016 AVG Protection Bonjour Canon G.726 WMP-Decoder CANON iMAGE GATEWAY Task for ZoomBrowser EX Canon Internet Library for ZoomBrowser EX Canon MovieEdit Task for ZoomBrowser EX Canon RAW Image Task for ZoomBrowser EX Canon Utilities CameraWindow Canon Utilities CameraWindow DC Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX Canon Utilities MyCamera Canon Utilities MyCamera DC Canon Utilities PhotoStitch Canon Utilities RemoteCapture Task for ZoomBrowser EX Canon Utilities ZoomBrowser EX Canon ZoomBrowser EX Memory Card Utility CCleaner CyberLink PhotoDirector 3 CyberLink PowerDirector 10 CyberLink PowerDVD 12 D3DX10 Dropbox FMW 1 HiJackThis Identity Card Intel(R) Management Engine Components Intel(R) Processor Graphics Intel(R) Serial IO Intel© Trusted Connect Service Client IrfanView (remove only) iTunes Java 8 Update 65 Java Auto Updater Junk Mail filter update Kruidvat fotoservice Live Updater McAfee SiteAdvisor Microsoft Application Error Reporting Microsoft Office 2013 voor Thuisgebruik en Studenten - nl-nl Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Movie Maker Mozilla Firefox 42.0 (x86 nl) Mozilla Maintenance Service MSVCRT MSVCRT_amd64 MSVCRT110 MSVCRT110_amd64 Nero BackItUp Nero BackItUp 12 Essentials OEM.a01 Nero BackItUp Help (CHM) Nero ControlCenter Nero ControlCenter Help (CHM) Nero Core Components Nero Launcher Nero RescueAgent Nero RescueAgent Help (CHM) Nero Update NVIDIA-configuratiescherm 353.54 NVIDIA Graphics Driver 332.35 NVIDIA Install Application NVIDIA Optimus 1.15.2 NVIDIA PhysX NVIDIA PhysX System Software 9.13.0927 NVIDIA Update 1.15.2 NVIDIA Update Components Office 15 Click-to-Run Extensibility Component Office 15 Click-to-Run Licensing Component Office 15 Click-to-Run Localization Component Photo Common Photo Gallery Prerequisite installer PrimoPDF -- brought to you by Nitro PDF Software Qualcomm Atheros Bluetooth Suite (64) Qualcomm Atheros WLAN and Bluetooth Client Installation Program Realtek Card Reader Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader SkypeT 7.14 Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD Update for CHS Microsoft IME HAP Dictionary Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables Visual Studio C++ 10.0 Runtime VLC media player Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Mail Windows Live Messenger Windows Live MIME IFilter Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources ==== Running Processes ====================== C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Nero\Update\NASvc.exe C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe C:\Users\Eva\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Users\Eva\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\AVG\Av\avgui.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\AVG\Framework\Common\avguix.exe C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe C:\WINDOWS\SysWOW64\ctfmon.exe C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe C:\Program Files\Microsoft Office 15\root\office15\POWERPNT.EXE C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\Eva\Downloads\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\McAfee SiteAdvisor Service deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}] ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}] ==== Deleting Files \ Folders ====================== C:\PROGRA~2\AGEIA Technologies not found C:\ProgramData\Avg_Update_1114av deleted C:\ProgramData\Avg_Update_1214av deleted C:\ProgramData\Avg_Update_1015av deleted c:\PROGRA~2\mcafee deleted C:\windows\SysNative\Tasks\1114avUpdateInfo deleted C:\windows\SysNative\Tasks\1214avUpdateInfo deleted C:\WINDOWS\tasks\1114avUpdateInfo.job deleted C:\WINDOWS\tasks\1214avUpdateInfo.job deleted C:\PROGRA~2\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml deleted C:\Users\Public\Pokki deleted C:\PROGRA~3\Avg_Update_0215tb deleted C:\PROGRA~3\AVG Security Toolbar deleted C:\PROGRA~3\{EB5F5A55-037A-4E47-806B-2C8AA9374701} deleted C:\Users\Default\AppData\Local\Pokki deleted C:\Users\Eva\AppData\Local\simedit.log deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted "C:\Windows\Installer\18fea.msi" deleted "C:\Windows\Installer\2c341.msi" deleted ==== Folders Found In C:\88675a89421352e922 ====================== 2015-11-03 14:45:25 d-----w- C:\88675A~1\1025 --- C:\88675a89421352e922\1025 2015-11-03 14:45:25 d-----w- C:\88675A~1\1028 --- C:\88675a89421352e922\1028 2015-11-03 14:45:25 d-----w- C:\88675A~1\1030 --- C:\88675a89421352e922\1030 2015-11-03 14:45:25 d-----w- C:\88675A~1\1031 --- C:\88675a89421352e922\1031 2015-11-03 14:45:25 d-----w- C:\88675A~1\1033 --- C:\88675a89421352e922\1033 2015-11-03 14:45:25 d-----w- C:\88675A~1\1035 --- C:\88675a89421352e922\1035 2015-11-03 14:45:25 d-----w- C:\88675A~1\1036 --- C:\88675a89421352e922\1036 2015-11-03 14:45:25 d-----w- C:\88675A~1\1037 --- C:\88675a89421352e922\1037 2015-11-03 14:45:25 d-----w- C:\88675A~1\1040 --- C:\88675a89421352e922\1040 2015-11-03 14:45:25 d-----w- C:\88675A~1\1041 --- C:\88675a89421352e922\1041 2015-11-03 14:45:25 d-----w- C:\88675A~1\1042 --- C:\88675a89421352e922\1042 2015-11-03 14:45:25 d-----w- C:\88675A~1\1043 --- C:\88675a89421352e922\1043 2015-11-03 14:45:25 d-----w- C:\88675A~1\1044 --- C:\88675a89421352e922\1044 2015-11-03 14:45:25 d-----w- C:\88675A~1\1045 --- C:\88675a89421352e922\1045 2015-11-03 14:45:25 d-----w- C:\88675A~1\1046 --- C:\88675a89421352e922\1046 2015-11-03 14:45:25 d-----w- C:\88675A~1\1049 --- C:\88675a89421352e922\1049 2015-11-03 14:45:25 d-----w- C:\88675A~1\1053 --- C:\88675a89421352e922\1053 2015-11-03 14:45:25 d-----w- C:\88675A~1\2052 --- C:\88675a89421352e922\2052 2015-11-03 14:45:25 d-----w- C:\88675A~1\3082 --- C:\88675a89421352e922\3082 2015-11-03 14:45:25 d-----w- C:\88675A~1\Graphics --- C:\88675a89421352e922\Graphics 2015-11-03 14:45:25 d-----w- C:\88675A~1\VC_RED~1 --- C:\88675a89421352e922\VC_Red_x86 2015-11-03 14:45:25 d-----w- C:\88675A~1\VC_RED~2 --- C:\88675a89421352e922\VC_Red_x64 2015-11-03 14:45:25 d-----w- C:\88675A~1\vstor40 --- C:\88675a89421352e922\vstor40 ==== Files Found In C:\88675a89421352e922 ====================== 2014-09-02 23:33:44 2712208 ----a-w- 9A8790A98F39619BB6C17B83A13E8363 C:\88675A~1\vstor40\VSTOR4~2.EXE --- C:\88675a89421352e922\vstor40\vstor40_x64.exe 2014-09-02 23:42:50 2426000 ----a-w- D18B19A55F1D3F8F6CD5F3C699912E50 C:\88675A~1\vstor40\VSTOR4~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_x86.exe 2014-09-02 23:51:14 538808 ----a-w- 09F9CBF8E0EBB6A18BDCEE8125A076AC C:\88675A~1\vstor40\VSB0B3~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_sve.exe 2014-09-02 23:57:18 478384 ----a-w- 866C27F2F68A2163F1DE05E9594213E8 C:\88675A~1\vstor40\VSC5C6~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_sve.exe 2014-09-03 00:06:02 549552 ----a-w- 47769D17FF4E2271C5DC06653F83780C C:\88675A~1\vstor40\VS2432~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_rus.exe 2014-09-03 00:11:30 489648 ----a-w- 53A2B0CF8829E1BB7E0B47B73B0920D3 C:\88675A~1\vstor40\VSC2E4~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_rus.exe 2014-09-03 00:18:54 544432 ----a-w- 277F05A5FEADAA00A52927FDB0A90F7F C:\88675A~1\vstor40\VSFABB~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_ptb.exe 2014-09-03 00:23:40 485552 ----a-w- 43A08D099E0999393E6D4870EE7C8347 C:\88675A~1\vstor40\VS5DE3~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_ptb.exe 2014-09-03 00:36:00 544440 ----a-w- 973A78B0AF039CC7B208370CC4CB17FC C:\88675A~1\vstor40\VSC90C~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_plk.exe 2014-09-03 00:47:06 484528 ----a-w- BAEB55A3EAC1009940D684E29B7F8FF2 C:\88675A~1\vstor40\VS02BB~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_plk.exe 2014-09-03 00:54:52 540848 ----a-w- 37CB54E288364F79A6684A774D6CED1C C:\88675A~1\vstor40\VS88AD~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_nor.exe 2014-09-03 01:00:54 480944 ----a-w- 1D33CAD99F03AB3050DB673B134F7E93 C:\88675A~1\vstor40\VS50B0~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_nor.exe 2014-09-03 01:07:52 543920 ----a-w- 5E4AD113B1EA876A8AF5114BD54A968D C:\88675A~1\vstor40\VS9E0B~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_nld.exe 2014-09-03 01:12:54 483504 ----a-w- E15A45DFF4BAC86989FADB65806EB504 C:\88675A~1\vstor40\VSC608~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_nld.exe 2014-09-03 01:19:34 532144 ----a-w- A072BC2598A31ECD3E815C0FE01FCF58 C:\88675A~1\vstor40\VSAC62~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_kor.exe 2014-09-03 01:24:18 473776 ----a-w- D821CFDE40268DD5AA5BB859553D338A C:\88675A~1\vstor40\VS64C2~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_kor.exe 2014-09-03 01:32:20 541360 ----a-w- 3242FB3DE0487E2371D499CE464905FA C:\88675A~1\vstor40\VS233C~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_jpn.exe 2014-09-03 01:38:00 481976 ----a-w- 847528F48976FD11C7133760185F112E C:\88675A~1\vstor40\VS5B29~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_jpn.exe 2014-09-03 01:46:06 539312 ----a-w- A16A09FFAFFC5247AD4F78D3487A7D7D C:\88675A~1\vstor40\VS1820~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_ita.exe 2014-09-03 01:51:12 478896 ----a-w- 22E3B6AB697D3C9827CC9159636D6645 C:\88675A~1\vstor40\VS7F86~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_ita.exe 2014-09-03 01:58:28 542904 ----a-w- C0BA3B13A5A4B6446E1CEB5CDD90B68C C:\88675A~1\vstor40\VS9FB6~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_heb.exe 2014-09-03 02:04:12 481968 ----a-w- 20E74296A2273DE8C6C3D4775EC65BA0 C:\88675A~1\vstor40\VS5717~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_heb.exe 2014-09-03 02:10:48 536744 ----a-w- ADC0C17ACEC8096350292CB2E31F517B C:\88675A~1\vstor40\VS3B3E~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_fra.exe 2014-09-03 02:15:32 477368 ----a-w- 31ABE383DEA621FD51A5F4DB380096AB C:\88675A~1\vstor40\VS4B3C~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_fra.exe 2014-09-03 02:22:00 544440 ----a-w- 4D08B108C994119BFE41C22BAF0E0AE0 C:\88675A~1\vstor40\VS6082~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_fin.exe 2014-09-03 02:26:30 483496 ----a-w- 40C6A0A0655706A1494562183837467E C:\88675A~1\vstor40\VSE72D~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_fin.exe 2014-09-03 02:33:04 538288 ----a-w- 95F2AD4998A2BB5A9A0DC2166BA54C35 C:\88675A~1\vstor40\VSC4D9~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_esn.exe 2014-09-03 02:37:50 478392 ----a-w- A8F3210F9E5EAB9E8A719EA0668F6FA6 C:\88675A~1\vstor40\VS8C2A~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_esn.exe 2014-09-03 02:44:22 542384 ----a-w- 44EFE4C82B692F6E241B99A470FD8A9A C:\88675A~1\vstor40\VS5E01~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_deu.exe 2014-09-03 02:48:52 481464 ----a-w- 9AA16865F2B47EE77D666D51871C5281 C:\88675A~1\vstor40\VSB577~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_deu.exe 2014-09-03 02:55:26 539824 ----a-w- 1A6855A5CDB27C103C65FBBD5AB63D0D C:\88675A~1\vstor40\VSD906~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_dan.exe 2014-09-03 03:00:06 478384 ----a-w- 79F9AAE86B3216C1314CB59BDE3D458F C:\88675A~1\vstor40\VS9166~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_dan.exe 2014-09-03 03:06:34 534712 ----a-w- 40A8251775A0E2B0B7C2EA50F0E817F0 C:\88675A~1\vstor40\VSCE33~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_cht.exe 2014-09-03 03:11:04 474800 ----a-w- 0B8F67E023C73D8822A10CC5B6512A31 C:\88675A~1\vstor40\VS28D3~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_cht.exe 2014-09-03 03:17:30 537784 ----a-w- E0F9A1C7A5CB621BC34844D2390C1913 C:\88675A~1\vstor40\VSA3DA~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_chs.exe 2014-09-03 03:22:08 476848 ----a-w- B0516FB6A043F3F6C0D39277636CD494 C:\88675A~1\vstor40\VSEB7A~1.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_chs.exe 2014-09-03 03:28:36 549048 ----a-w- D079E1964D7ED8519625350B518D8997 C:\88675A~1\vstor40\VSTOR4~4.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x64_ara.exe 2014-09-03 03:33:06 488632 ----a-w- B9C67ECB86843FCF24238D73381042C8 C:\88675A~1\vstor40\VSTOR4~3.EXE --- C:\88675a89421352e922\vstor40\vstor40_LP_x86_ara.exe 2014-09-03 04:17:52 40284 ----a-w- FE6F7C73707C607D9F520C17E73C6B5D C:\88675A~1\1033\LOCALI~1.XML --- C:\88675a89421352e922\1033\LocalizedData.xml 2014-09-03 04:17:54 10134 ----a-w- 5DFA8D3ABCF4962D9EC41CFC7C0F75E3 C:\88675A~1\Graphics\stop.ico --- C:\88675a89421352e922\Graphics\stop.ico 2014-09-03 04:17:54 10134 ----a-w- B2B1D79591FCA103959806A4BF27D036 C:\88675A~1\Graphics\warn.ico --- C:\88675a89421352e922\Graphics\warn.ico 2014-09-03 04:17:54 1150 ----a-w- 661CBD315E9B23BA1CA19EDAB978F478 C:\88675A~1\Graphics\SYSREQ~1.ICO --- C:\88675a89421352e922\Graphics\SysReqMet.ico 2014-09-03 04:17:54 1150 ----a-w- 7D62E82D960A938C98DA02B1D5201BD5 C:\88675A~1\Graphics\Save.ico --- C:\88675a89421352e922\Graphics\Save.ico 2014-09-03 04:17:54 1150 ----a-w- 7E55DDC6D611176E697D01C90A1212CF C:\88675A~1\Graphics\Print.ico --- C:\88675a89421352e922\Graphics\Print.ico 2014-09-03 04:17:54 1150 ----a-w- EE2C05CC9D14C29F586D40EB90C610A9 C:\88675A~1\Graphics\SYSREQ~2.ICO --- C:\88675a89421352e922\Graphics\SysReqNotMet.ico 2014-09-03 04:17:54 115286 ----a-w- 0FF77544A92BFB3B13F473AC30EC328D C:\88675A~1\PARAME~1.XML --- C:\88675a89421352e922\ParameterInfo.xml 2014-09-03 04:17:54 139568 ----a-w- 47B9B0787AAA0074C985F8283B0A3DBE C:\88675A~1\1043\eula.rtf --- C:\88675a89421352e922\1043\eula.rtf 2014-09-03 04:17:54 14246 ----a-w- 332ADF643747297B9BFA9527EAEFE084 C:\88675A~1\Strings.xml --- C:\88675a89421352e922\Strings.xml 2014-09-03 04:17:54 143461 ----a-w- 79036650E9DF1891C51E4F4CF8D718FB C:\88675A~1\1037\eula.rtf --- C:\88675a89421352e922\1037\eula.rtf 2014-09-03 04:17:54 143979 ----a-w- 478460CCC7C0080975D49DDEB89FBE2B C:\88675A~1\3082\eula.rtf --- C:\88675a89421352e922\3082\eula.rtf 2014-09-03 04:17:54 144106 ----a-w- 20698F43906A615DA1AD18FAF5334F9D C:\88675A~1\1031\eula.rtf --- C:\88675a89421352e922\1031\eula.rtf 2014-09-03 04:17:54 144416 ----a-w- 3F0363B40376047EFF6A9B97D633B750 C:\88675A~1\sqmapi.dll --- C:\88675a89421352e922\sqmapi.dll 2014-09-03 04:17:54 155201 ----a-w- 9B168D32CB33CF79723A4D8C134EA249 C:\88675A~1\1035\eula.rtf --- C:\88675a89421352e922\1035\eula.rtf 2014-09-03 04:17:54 159122 ----a-w- CF60C7C03A7259D88E99E56389513BDB C:\88675A~1\1025\eula.rtf --- C:\88675a89421352e922\1025\eula.rtf 2014-09-03 04:17:54 160816 ----a-w- 40188EB3E79733C3E9D36A9A9C072E78 C:\88675A~1\1036\eula.rtf --- C:\88675a89421352e922\1036\eula.rtf 2014-09-03 04:17:54 16118 ----a-w- CD131D41791A543CC6F6ED1EA5BD257C C:\88675A~1\DHTMLH~1.HTM --- C:\88675a89421352e922\DHtmlHeader.html 2014-09-03 04:17:54 163840 ----a-w- 3FF9ACEA77AFC124BE8454269BB7143F C:\88675A~1\VC_RED~1\vc_red.msi --- C:\88675a89421352e922\VC_Red_x86\vc_red.msi 2014-09-03 04:17:54 163998 ----a-w- C51CC1E49358A7AD3A498B737F642A2F C:\88675A~1\1033\eula.rtf --- C:\88675a89421352e922\1033\eula.rtf 2014-09-03 04:17:54 164446 ----a-w- 18179A39C64AD36E7B4B04A77A5B7D55 C:\88675A~1\1045\eula.rtf --- C:\88675a89421352e922\1045\eula.rtf 2014-09-03 04:17:54 168158 ----a-w- 8A30BE24777F3FF5C8A8078D423ECBCF C:\88675A~1\1030\eula.rtf --- C:\88675a89421352e922\1030\eula.rtf 2014-09-03 04:17:54 169920 ----a-w- 6E915CB5F3C61DF9E8989215B0B52A7F C:\88675A~1\1044\eula.rtf --- C:\88675a89421352e922\1044\eula.rtf 2014-09-03 04:17:54 173097 ----a-w- 744F01E0DCE8AB0BD7483C7862CFA95D C:\88675A~1\1053\eula.rtf --- C:\88675a89421352e922\1053\eula.rtf 2014-09-03 04:17:54 176888 ----a-w- 4332311006888933DADAD26E82664456 C:\88675A~1\1046\eula.rtf --- C:\88675a89421352e922\1046\eula.rtf 2014-09-03 04:17:54 177664 ----a-w- 8F21BC0DC9E66F8E9D94197AE76698B3 C:\88675A~1\VC_RED~2\vc_red.msi --- C:\88675a89421352e922\VC_Red_x64\vc_red.msi 2014-09-03 04:17:54 185073 ----a-w- 2BDE42A55EEC09AD183F8FCF278337FC C:\88675A~1\1041\eula.rtf --- C:\88675a89421352e922\1041\eula.rtf 2014-09-03 04:17:54 185981 ----a-w- 537C50EFA2C96FFCA241D59141A76A81 C:\88675A~1\1040\eula.rtf --- C:\88675a89421352e922\1040\eula.rtf 2014-09-03 04:17:54 189807 ----a-w- DA544E5765610415F7B85EAAF2BAB48D C:\88675A~1\1028\eula.rtf --- C:\88675a89421352e922\1028\eula.rtf 2014-09-03 04:17:54 213599 ----a-w- 8FA9093D854DD493FA0551E847E182C1 C:\88675A~1\1049\eula.rtf --- C:\88675a89421352e922\1049\eula.rtf 2014-09-03 04:17:54 223296 ----a-w- 0D0A99667BDE846F63C90A954D849708 C:\88675A~1\2052\eula.rtf --- C:\88675a89421352e922\2052\eula.rtf 2014-09-03 04:17:54 30120 ----a-w- 2FADD9E618EFF8175F2A6E8B95C0CACC C:\88675A~1\SetupUi.xsd --- C:\88675a89421352e922\SetupUi.xsd 2014-09-03 04:17:54 309032 ----a-w- 1A5CAAFACFC8C7766E404D019249CF67 C:\88675A~1\WATERM~1.BMP --- C:\88675a89421352e922\watermark.bmp 2014-09-03 04:17:54 36342 ----a-w- 812F8D2E53F076366FA3A214BB4CF558 C:\88675A~1\UiInfo.xml --- C:\88675a89421352e922\UiInfo.xml 2014-09-03 04:17:54 363487 ----a-w- 231BCDD91D4BEAAEC841FBB5BEF8177E C:\88675A~1\1042\eula.rtf --- C:\88675a89421352e922\1042\eula.rtf 2014-09-03 04:17:54 36710 ----a-w- 3D25D679E0FF0B8C94273DCD8B07049D C:\88675A~1\Graphics\Setup.ico --- C:\88675a89421352e922\Graphics\Setup.ico 2014-09-03 04:17:54 4028928 ----a-w- 9843DC93EA948CDDC1F480E53BB80C2F C:\88675A~1\VC_RED~1\MSP_KB~1.MSP --- C:\88675a89421352e922\VC_Red_x86\msp_kb2565063.msp 2014-09-03 04:17:54 41078 ----a-w- 43B254D97B4FB6F9974AD3F935762C55 C:\88675A~1\SPLASH~1.BMP --- C:\88675a89421352e922\SplashScreen.bmp 2014-09-03 04:17:54 4224705 ----a-w- C580A38F1A1A7D838076A1B897C37011 C:\88675A~1\VC_RED~1\vc_red.cab --- C:\88675a89421352e922\VC_Red_x86\vc_red.cab 2014-09-03 04:17:54 4637184 ----a-w- 905FCC526204DDF1E6650212ABC3D848 C:\88675A~1\VC_RED~2\MSP_KB~1.MSP --- C:\88675a89421352e922\VC_Red_x64\msp_kb2565063.msp 2014-09-03 04:17:54 4877975 ----a-w- C2B6838431748D42E247C574A191B2C2 C:\88675A~1\VC_RED~2\vc_red.cab --- C:\88675a89421352e922\VC_Red_x64\vc_red.cab 2014-09-03 04:17:54 7308 ----a-w- 3AD1A8C3B96993BCDF45244BE2C00EEF C:\88675A~1\header.bmp --- C:\88675a89421352e922\header.bmp 2014-09-03 04:17:54 88533 ----a-w- F9657D290048E169FFABBBB9C7412BE0 C:\88675A~1\DISPLA~1.ICO --- C:\88675a89421352e922\DisplayIcon.ico 2014-09-03 04:17:54 894 ----a-w- 26A00597735C5F504CF8B3E7E9A7A4C1 C:\88675A~1\Graphics\Rotate1.ico --- C:\88675a89421352e922\Graphics\Rotate1.ico 2014-09-03 04:17:54 894 ----a-w- 3B4861F93B465D724C60670B64FCCFCF C:\88675A~1\Graphics\Rotate5.ico --- C:\88675a89421352e922\Graphics\Rotate5.ico 2014-09-03 04:17:54 894 ----a-w- 70006BF18A39D258012875AEFB92A3D1 C:\88675A~1\Graphics\Rotate6.ico --- C:\88675a89421352e922\Graphics\Rotate6.ico 2014-09-03 04:17:54 894 ----a-w- 8419CAA81F2377E09B7F2F6218E505AE C:\88675A~1\Graphics\Rotate2.ico --- C:\88675a89421352e922\Graphics\Rotate2.ico 2014-09-03 04:17:54 894 ----a-w- 924FD539523541D42DAD43290E6C0DB5 C:\88675A~1\Graphics\Rotate3.ico --- C:\88675a89421352e922\Graphics\Rotate3.ico 2014-09-03 04:17:54 894 ----a-w- BB55B5086A9DA3097FB216C065D15709 C:\88675A~1\Graphics\Rotate4.ico --- C:\88675a89421352e922\Graphics\Rotate4.ico 2014-09-03 04:17:54 894 ----a-w- D1C53003264DCE4EFFAF462C807E2D96 C:\88675A~1\Graphics\Rotate8.ico --- C:\88675a89421352e922\Graphics\Rotate8.ico 2014-09-03 04:17:54 894 ----a-w- FB4DFEBE83F554FAF1A5CEC033A804D9 C:\88675A~1\Graphics\Rotate7.ico --- C:\88675a89421352e922\Graphics\Rotate7.ico 2014-09-03 04:18:00 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1025\LOCALI~1.XML --- C:\88675a89421352e922\1025\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1028\LOCALI~1.XML --- C:\88675a89421352e922\1028\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1030\LOCALI~1.XML --- C:\88675a89421352e922\1030\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1031\LOCALI~1.XML --- C:\88675a89421352e922\1031\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1035\LOCALI~1.XML --- C:\88675a89421352e922\1035\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1036\LOCALI~1.XML --- C:\88675a89421352e922\1036\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1037\LOCALI~1.XML --- C:\88675a89421352e922\1037\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\2052\LOCALI~1.XML --- C:\88675a89421352e922\2052\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\3082\LOCALI~1.XML --- C:\88675a89421352e922\3082\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1040\LOCALI~1.XML --- C:\88675a89421352e922\1040\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1041\LOCALI~1.XML --- C:\88675a89421352e922\1041\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1042\LOCALI~1.XML --- C:\88675a89421352e922\1042\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1043\LOCALI~1.XML --- C:\88675a89421352e922\1043\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1044\LOCALI~1.XML --- C:\88675a89421352e922\1044\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1045\LOCALI~1.XML --- C:\88675a89421352e922\1045\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1046\LOCALI~1.XML --- C:\88675a89421352e922\1046\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1049\LOCALI~1.XML --- C:\88675a89421352e922\1049\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\88675A~1\1053\LOCALI~1.XML --- C:\88675a89421352e922\1053\LocalizedData.xml 2014-09-03 04:19:32 15000 ----a-w- 4EE147F0E79F400BA7567E1F838420F7 C:\88675A~1\2052\SETUPR~1.DLL --- C:\88675a89421352e922\2052\SetupResources.dll 2014-09-03 04:19:32 15000 ----a-w- 974DAE805CA5F2AB2E1720922E60CD8D C:\88675A~1\1028\SETUPR~1.DLL --- C:\88675a89421352e922\1028\SetupResources.dll 2014-09-03 04:19:32 16024 ----a-w- 27FA6778F4E3E44123A6279E63F3DA8B C:\88675A~1\1042\SETUPR~1.DLL --- C:\88675a89421352e922\1042\SetupResources.dll 2014-09-03 04:19:32 16536 ----a-w- 8A7FE2D458E63225C708FDE968F18402 C:\88675A~1\1041\SETUPR~1.DLL --- C:\88675a89421352e922\1041\SetupResources.dll 2014-09-03 04:19:32 17560 ----a-w- 5A669F565B0F8778EA61DF73759898F4 C:\88675A~1\1037\SETUPR~1.DLL --- C:\88675a89421352e922\1037\SetupResources.dll 2014-09-03 04:19:32 18072 ----a-w- 3AC4E6FDAE8B528EDE517CA0285465AA C:\88675A~1\1025\SETUPR~1.DLL --- C:\88675a89421352e922\1025\SetupResources.dll 2014-09-03 04:19:32 18072 ----a-w- FA3677E0A68CDE3A547F8418CA652F5F C:\88675A~1\1033\SETUPR~1.DLL --- C:\88675a89421352e922\1033\SetupResources.dll 2014-09-03 04:19:32 18584 ----a-w- 602BD455FA1E734CE29980C69EA3389D C:\88675A~1\1044\SETUPR~1.DLL --- C:\88675a89421352e922\1044\SetupResources.dll 2014-09-03 04:19:32 19096 ----a-w- 001443B3D3AE23CBFEB500FB1391D6FE C:\88675A~1\1035\SETUPR~1.DLL --- C:\88675a89421352e922\1035\SetupResources.dll 2014-09-03 04:19:32 19096 ----a-w- 09CB814B13EB98FDBCA67D15B168154B C:\88675A~1\1040\SETUPR~1.DLL --- C:\88675a89421352e922\1040\SetupResources.dll 2014-09-03 04:19:32 19096 ----a-w- 353C3770BAE409B1323EF18DE377DFB0 C:\88675A~1\1030\SETUPR~1.DLL --- C:\88675a89421352e922\1030\SetupResources.dll 2014-09-03 04:19:32 19608 ----a-w- 2D0A4C44704D18666AF790CF3B3F2224 C:\88675A~1\1036\SETUPR~1.DLL --- C:\88675a89421352e922\1036\SetupResources.dll 2014-09-03 04:19:32 19608 ----a-w- 91415A34516CA8C3E18855E6F781D30F C:\88675A~1\1031\SETUPR~1.DLL --- C:\88675a89421352e922\1031\SetupResources.dll 2014-09-03 04:19:32 19608 ----a-w- 9EB643D72E4616C3C1647F1BBC297991 C:\88675A~1\3082\SETUPR~1.DLL --- C:\88675a89421352e922\3082\SetupResources.dll 2014-09-03 04:19:32 20120 ----a-w- D8ABFBCF6EBD69BD921E3009399E1E0B C:\88675A~1\1043\SETUPR~1.DLL --- C:\88675a89421352e922\1043\SetupResources.dll 2014-09-03 04:19:32 296072 ----a-w- 3A79B2902F60571FCE58C9F66C7B26D0 C:\88675A~1\SetupUi.dll --- C:\88675a89421352e922\SetupUi.dll 2014-09-03 04:19:32 78984 ----a-w- 5CBEDB2AFB3C313F116F80CFBD082104 C:\88675A~1\Setup.exe --- C:\88675a89421352e922\Setup.exe 2014-09-03 04:19:34 18584 ----a-w- D4FCF7670205A1DE6C01A77AA23E59C5 C:\88675A~1\1053\SETUPR~1.DLL --- C:\88675a89421352e922\1053\SetupResources.dll 2014-09-03 04:19:34 19096 ----a-w- 1470648A7249FF37FEAB6FF833FD7E00 C:\88675A~1\1045\SETUPR~1.DLL --- C:\88675a89421352e922\1045\SetupResources.dll 2014-09-03 04:19:34 19096 ----a-w- EB95A2C6ABB4C876D85C4725E52C6B08 C:\88675A~1\1046\SETUPR~1.DLL --- C:\88675a89421352e922\1046\SetupResources.dll 2014-09-03 04:19:34 19608 ----a-w- AE4D72AA8A14E866C78D29C81219A07D C:\88675A~1\1049\SETUPR~1.DLL --- C:\88675a89421352e922\1049\SetupResources.dll 2014-09-03 04:19:34 810128 ----a-w- 4B44C7382C8DC5C325CC8A850E0BBD78 C:\88675A~1\SETUPE~1.DLL --- C:\88675a89421352e922\SetupEngine.dll 2015-11-03 14:45:26 788 ---ha-w- DF7119A5D3CAEDA80BF0FB6F8E53DE8F C:\88675A~1\$shtdwn$.req --- C:\88675a89421352e922\$shtdwn$.req ==== Folders Found In C:\228528cbb9210c9e848744 ====================== 2015-10-27 18:54:06 d-----w- C:\228528~1\1025 --- C:\228528cbb9210c9e848744\1025 2015-10-27 18:54:06 d-----w- C:\228528~1\1028 --- C:\228528cbb9210c9e848744\1028 2015-10-27 18:54:06 d-----w- C:\228528~1\1030 --- C:\228528cbb9210c9e848744\1030 2015-10-27 18:54:06 d-----w- C:\228528~1\1031 --- C:\228528cbb9210c9e848744\1031 2015-10-27 18:54:06 d-----w- C:\228528~1\1033 --- C:\228528cbb9210c9e848744\1033 2015-10-27 18:54:06 d-----w- C:\228528~1\1035 --- C:\228528cbb9210c9e848744\1035 2015-10-27 18:54:06 d-----w- C:\228528~1\1036 --- C:\228528cbb9210c9e848744\1036 2015-10-27 18:54:06 d-----w- C:\228528~1\1037 --- C:\228528cbb9210c9e848744\1037 2015-10-27 18:54:06 d-----w- C:\228528~1\1040 --- C:\228528cbb9210c9e848744\1040 2015-10-27 18:54:06 d-----w- C:\228528~1\1041 --- C:\228528cbb9210c9e848744\1041 2015-10-27 18:54:06 d-----w- C:\228528~1\1042 --- C:\228528cbb9210c9e848744\1042 2015-10-27 18:54:06 d-----w- C:\228528~1\1043 --- C:\228528cbb9210c9e848744\1043 2015-10-27 18:54:06 d-----w- C:\228528~1\1044 --- C:\228528cbb9210c9e848744\1044 2015-10-27 18:54:06 d-----w- C:\228528~1\1045 --- C:\228528cbb9210c9e848744\1045 2015-10-27 18:54:06 d-----w- C:\228528~1\1046 --- C:\228528cbb9210c9e848744\1046 2015-10-27 18:54:06 d-----w- C:\228528~1\1049 --- C:\228528cbb9210c9e848744\1049 2015-10-27 18:54:06 d-----w- C:\228528~1\1053 --- C:\228528cbb9210c9e848744\1053 2015-10-27 18:54:06 d-----w- C:\228528~1\2052 --- C:\228528cbb9210c9e848744\2052 2015-10-27 18:54:06 d-----w- C:\228528~1\3082 --- C:\228528cbb9210c9e848744\3082 2015-10-27 18:54:06 d-----w- C:\228528~1\Graphics --- C:\228528cbb9210c9e848744\Graphics 2015-10-27 18:54:06 d-----w- C:\228528~1\VC_RED~1 --- C:\228528cbb9210c9e848744\VC_Red_x86 2015-10-27 18:54:06 d-----w- C:\228528~1\VC_RED~2 --- C:\228528cbb9210c9e848744\VC_Red_x64 2015-10-27 18:54:06 d-----w- C:\228528~1\vstor40 --- C:\228528cbb9210c9e848744\vstor40 ==== Files Found In C:\228528cbb9210c9e848744 ====================== 2014-09-02 23:33:44 2712208 ----a-w- 9A8790A98F39619BB6C17B83A13E8363 C:\228528~1\vstor40\VSTOR4~2.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_x64.exe 2014-09-02 23:42:50 2426000 ----a-w- D18B19A55F1D3F8F6CD5F3C699912E50 C:\228528~1\vstor40\VSTOR4~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_x86.exe 2014-09-02 23:51:14 538808 ----a-w- 09F9CBF8E0EBB6A18BDCEE8125A076AC C:\228528~1\vstor40\VSB0B3~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_sve.exe 2014-09-02 23:57:18 478384 ----a-w- 866C27F2F68A2163F1DE05E9594213E8 C:\228528~1\vstor40\VSC5C6~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_sve.exe 2014-09-03 00:06:02 549552 ----a-w- 47769D17FF4E2271C5DC06653F83780C C:\228528~1\vstor40\VS2432~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_rus.exe 2014-09-03 00:11:30 489648 ----a-w- 53A2B0CF8829E1BB7E0B47B73B0920D3 C:\228528~1\vstor40\VSC2E4~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_rus.exe 2014-09-03 00:18:54 544432 ----a-w- 277F05A5FEADAA00A52927FDB0A90F7F C:\228528~1\vstor40\VSFABB~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_ptb.exe 2014-09-03 00:23:40 485552 ----a-w- 43A08D099E0999393E6D4870EE7C8347 C:\228528~1\vstor40\VS5DE3~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_ptb.exe 2014-09-03 00:36:00 544440 ----a-w- 973A78B0AF039CC7B208370CC4CB17FC C:\228528~1\vstor40\VSC90C~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_plk.exe 2014-09-03 00:47:06 484528 ----a-w- BAEB55A3EAC1009940D684E29B7F8FF2 C:\228528~1\vstor40\VS02BB~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_plk.exe 2014-09-03 00:54:52 540848 ----a-w- 37CB54E288364F79A6684A774D6CED1C C:\228528~1\vstor40\VS88AD~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_nor.exe 2014-09-03 01:00:54 480944 ----a-w- 1D33CAD99F03AB3050DB673B134F7E93 C:\228528~1\vstor40\VS50B0~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_nor.exe 2014-09-03 01:07:52 543920 ----a-w- 5E4AD113B1EA876A8AF5114BD54A968D C:\228528~1\vstor40\VS9E0B~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_nld.exe 2014-09-03 01:12:54 483504 ----a-w- E15A45DFF4BAC86989FADB65806EB504 C:\228528~1\vstor40\VSC608~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_nld.exe 2014-09-03 01:19:34 532144 ----a-w- A072BC2598A31ECD3E815C0FE01FCF58 C:\228528~1\vstor40\VSAC62~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_kor.exe 2014-09-03 01:24:18 473776 ----a-w- D821CFDE40268DD5AA5BB859553D338A C:\228528~1\vstor40\VS64C2~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_kor.exe 2014-09-03 01:32:20 541360 ----a-w- 3242FB3DE0487E2371D499CE464905FA C:\228528~1\vstor40\VS233C~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_jpn.exe 2014-09-03 01:38:00 481976 ----a-w- 847528F48976FD11C7133760185F112E C:\228528~1\vstor40\VS5B29~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_jpn.exe 2014-09-03 01:46:06 539312 ----a-w- A16A09FFAFFC5247AD4F78D3487A7D7D C:\228528~1\vstor40\VS1820~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_ita.exe 2014-09-03 01:51:12 478896 ----a-w- 22E3B6AB697D3C9827CC9159636D6645 C:\228528~1\vstor40\VS7F86~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_ita.exe 2014-09-03 01:58:28 542904 ----a-w- C0BA3B13A5A4B6446E1CEB5CDD90B68C C:\228528~1\vstor40\VS9FB6~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_heb.exe 2014-09-03 02:04:12 481968 ----a-w- 20E74296A2273DE8C6C3D4775EC65BA0 C:\228528~1\vstor40\VS5717~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_heb.exe 2014-09-03 02:10:48 536744 ----a-w- ADC0C17ACEC8096350292CB2E31F517B C:\228528~1\vstor40\VS3B3E~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_fra.exe 2014-09-03 02:15:32 477368 ----a-w- 31ABE383DEA621FD51A5F4DB380096AB C:\228528~1\vstor40\VS4B3C~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_fra.exe 2014-09-03 02:22:00 544440 ----a-w- 4D08B108C994119BFE41C22BAF0E0AE0 C:\228528~1\vstor40\VS6082~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_fin.exe 2014-09-03 02:26:30 483496 ----a-w- 40C6A0A0655706A1494562183837467E C:\228528~1\vstor40\VSE72D~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_fin.exe 2014-09-03 02:33:04 538288 ----a-w- 95F2AD4998A2BB5A9A0DC2166BA54C35 C:\228528~1\vstor40\VSC4D9~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_esn.exe 2014-09-03 02:37:50 478392 ----a-w- A8F3210F9E5EAB9E8A719EA0668F6FA6 C:\228528~1\vstor40\VS8C2A~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_esn.exe 2014-09-03 02:44:22 542384 ----a-w- 44EFE4C82B692F6E241B99A470FD8A9A C:\228528~1\vstor40\VS5E01~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_deu.exe 2014-09-03 02:48:52 481464 ----a-w- 9AA16865F2B47EE77D666D51871C5281 C:\228528~1\vstor40\VSB577~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_deu.exe 2014-09-03 02:55:26 539824 ----a-w- 1A6855A5CDB27C103C65FBBD5AB63D0D C:\228528~1\vstor40\VSD906~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_dan.exe 2014-09-03 03:00:06 478384 ----a-w- 79F9AAE86B3216C1314CB59BDE3D458F C:\228528~1\vstor40\VS9166~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_dan.exe 2014-09-03 03:06:34 534712 ----a-w- 40A8251775A0E2B0B7C2EA50F0E817F0 C:\228528~1\vstor40\VSCE33~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_cht.exe 2014-09-03 03:11:04 474800 ----a-w- 0B8F67E023C73D8822A10CC5B6512A31 C:\228528~1\vstor40\VS28D3~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_cht.exe 2014-09-03 03:17:30 537784 ----a-w- E0F9A1C7A5CB621BC34844D2390C1913 C:\228528~1\vstor40\VSA3DA~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_chs.exe 2014-09-03 03:22:08 476848 ----a-w- B0516FB6A043F3F6C0D39277636CD494 C:\228528~1\vstor40\VSEB7A~1.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_chs.exe 2014-09-03 03:28:36 549048 ----a-w- D079E1964D7ED8519625350B518D8997 C:\228528~1\vstor40\VSTOR4~4.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x64_ara.exe 2014-09-03 03:33:06 488632 ----a-w- B9C67ECB86843FCF24238D73381042C8 C:\228528~1\vstor40\VSTOR4~3.EXE --- C:\228528cbb9210c9e848744\vstor40\vstor40_LP_x86_ara.exe 2014-09-03 04:17:52 40284 ----a-w- FE6F7C73707C607D9F520C17E73C6B5D C:\228528~1\1033\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1033\LocalizedData.xml 2014-09-03 04:17:54 10134 ----a-w- 5DFA8D3ABCF4962D9EC41CFC7C0F75E3 C:\228528~1\Graphics\stop.ico --- C:\228528cbb9210c9e848744\Graphics\stop.ico 2014-09-03 04:17:54 10134 ----a-w- B2B1D79591FCA103959806A4BF27D036 C:\228528~1\Graphics\warn.ico --- C:\228528cbb9210c9e848744\Graphics\warn.ico 2014-09-03 04:17:54 1150 ----a-w- 661CBD315E9B23BA1CA19EDAB978F478 C:\228528~1\Graphics\SYSREQ~1.ICO --- C:\228528cbb9210c9e848744\Graphics\SysReqMet.ico 2014-09-03 04:17:54 1150 ----a-w- 7D62E82D960A938C98DA02B1D5201BD5 C:\228528~1\Graphics\Save.ico --- C:\228528cbb9210c9e848744\Graphics\Save.ico 2014-09-03 04:17:54 1150 ----a-w- 7E55DDC6D611176E697D01C90A1212CF C:\228528~1\Graphics\Print.ico --- C:\228528cbb9210c9e848744\Graphics\Print.ico 2014-09-03 04:17:54 1150 ----a-w- EE2C05CC9D14C29F586D40EB90C610A9 C:\228528~1\Graphics\SYSREQ~2.ICO --- C:\228528cbb9210c9e848744\Graphics\SysReqNotMet.ico 2014-09-03 04:17:54 115286 ----a-w- 0FF77544A92BFB3B13F473AC30EC328D C:\228528~1\PARAME~1.XML --- C:\228528cbb9210c9e848744\ParameterInfo.xml 2014-09-03 04:17:54 139568 ----a-w- 47B9B0787AAA0074C985F8283B0A3DBE C:\228528~1\1043\eula.rtf --- C:\228528cbb9210c9e848744\1043\eula.rtf 2014-09-03 04:17:54 14246 ----a-w- 332ADF643747297B9BFA9527EAEFE084 C:\228528~1\Strings.xml --- C:\228528cbb9210c9e848744\Strings.xml 2014-09-03 04:17:54 143461 ----a-w- 79036650E9DF1891C51E4F4CF8D718FB C:\228528~1\1037\eula.rtf --- C:\228528cbb9210c9e848744\1037\eula.rtf 2014-09-03 04:17:54 143979 ----a-w- 478460CCC7C0080975D49DDEB89FBE2B C:\228528~1\3082\eula.rtf --- C:\228528cbb9210c9e848744\3082\eula.rtf 2014-09-03 04:17:54 144106 ----a-w- 20698F43906A615DA1AD18FAF5334F9D C:\228528~1\1031\eula.rtf --- C:\228528cbb9210c9e848744\1031\eula.rtf 2014-09-03 04:17:54 144416 ----a-w- 3F0363B40376047EFF6A9B97D633B750 C:\228528~1\sqmapi.dll --- C:\228528cbb9210c9e848744\sqmapi.dll 2014-09-03 04:17:54 155201 ----a-w- 9B168D32CB33CF79723A4D8C134EA249 C:\228528~1\1035\eula.rtf --- C:\228528cbb9210c9e848744\1035\eula.rtf 2014-09-03 04:17:54 159122 ----a-w- CF60C7C03A7259D88E99E56389513BDB C:\228528~1\1025\eula.rtf --- C:\228528cbb9210c9e848744\1025\eula.rtf 2014-09-03 04:17:54 160816 ----a-w- 40188EB3E79733C3E9D36A9A9C072E78 C:\228528~1\1036\eula.rtf --- C:\228528cbb9210c9e848744\1036\eula.rtf 2014-09-03 04:17:54 16118 ----a-w- CD131D41791A543CC6F6ED1EA5BD257C C:\228528~1\DHTMLH~1.HTM --- C:\228528cbb9210c9e848744\DHtmlHeader.html 2014-09-03 04:17:54 163840 ----a-w- 3FF9ACEA77AFC124BE8454269BB7143F C:\228528~1\VC_RED~1\vc_red.msi --- C:\228528cbb9210c9e848744\VC_Red_x86\vc_red.msi 2014-09-03 04:17:54 163998 ----a-w- C51CC1E49358A7AD3A498B737F642A2F C:\228528~1\1033\eula.rtf --- C:\228528cbb9210c9e848744\1033\eula.rtf 2014-09-03 04:17:54 164446 ----a-w- 18179A39C64AD36E7B4B04A77A5B7D55 C:\228528~1\1045\eula.rtf --- C:\228528cbb9210c9e848744\1045\eula.rtf 2014-09-03 04:17:54 168158 ----a-w- 8A30BE24777F3FF5C8A8078D423ECBCF C:\228528~1\1030\eula.rtf --- C:\228528cbb9210c9e848744\1030\eula.rtf 2014-09-03 04:17:54 169920 ----a-w- 6E915CB5F3C61DF9E8989215B0B52A7F C:\228528~1\1044\eula.rtf --- C:\228528cbb9210c9e848744\1044\eula.rtf 2014-09-03 04:17:54 173097 ----a-w- 744F01E0DCE8AB0BD7483C7862CFA95D C:\228528~1\1053\eula.rtf --- C:\228528cbb9210c9e848744\1053\eula.rtf 2014-09-03 04:17:54 176888 ----a-w- 4332311006888933DADAD26E82664456 C:\228528~1\1046\eula.rtf --- C:\228528cbb9210c9e848744\1046\eula.rtf 2014-09-03 04:17:54 177664 ----a-w- 8F21BC0DC9E66F8E9D94197AE76698B3 C:\228528~1\VC_RED~2\vc_red.msi --- C:\228528cbb9210c9e848744\VC_Red_x64\vc_red.msi 2014-09-03 04:17:54 185073 ----a-w- 2BDE42A55EEC09AD183F8FCF278337FC C:\228528~1\1041\eula.rtf --- C:\228528cbb9210c9e848744\1041\eula.rtf 2014-09-03 04:17:54 185981 ----a-w- 537C50EFA2C96FFCA241D59141A76A81 C:\228528~1\1040\eula.rtf --- C:\228528cbb9210c9e848744\1040\eula.rtf 2014-09-03 04:17:54 189807 ----a-w- DA544E5765610415F7B85EAAF2BAB48D C:\228528~1\1028\eula.rtf --- C:\228528cbb9210c9e848744\1028\eula.rtf 2014-09-03 04:17:54 213599 ----a-w- 8FA9093D854DD493FA0551E847E182C1 C:\228528~1\1049\eula.rtf --- C:\228528cbb9210c9e848744\1049\eula.rtf 2014-09-03 04:17:54 223296 ----a-w- 0D0A99667BDE846F63C90A954D849708 C:\228528~1\2052\eula.rtf --- C:\228528cbb9210c9e848744\2052\eula.rtf 2014-09-03 04:17:54 30120 ----a-w- 2FADD9E618EFF8175F2A6E8B95C0CACC C:\228528~1\SetupUi.xsd --- C:\228528cbb9210c9e848744\SetupUi.xsd 2014-09-03 04:17:54 309032 ----a-w- 1A5CAAFACFC8C7766E404D019249CF67 C:\228528~1\WATERM~1.BMP --- C:\228528cbb9210c9e848744\watermark.bmp 2014-09-03 04:17:54 36342 ----a-w- 812F8D2E53F076366FA3A214BB4CF558 C:\228528~1\UiInfo.xml --- C:\228528cbb9210c9e848744\UiInfo.xml 2014-09-03 04:17:54 363487 ----a-w- 231BCDD91D4BEAAEC841FBB5BEF8177E C:\228528~1\1042\eula.rtf --- C:\228528cbb9210c9e848744\1042\eula.rtf 2014-09-03 04:17:54 36710 ----a-w- 3D25D679E0FF0B8C94273DCD8B07049D C:\228528~1\Graphics\Setup.ico --- C:\228528cbb9210c9e848744\Graphics\Setup.ico 2014-09-03 04:17:54 4028928 ----a-w- 9843DC93EA948CDDC1F480E53BB80C2F C:\228528~1\VC_RED~1\MSP_KB~1.MSP --- C:\228528cbb9210c9e848744\VC_Red_x86\msp_kb2565063.msp 2014-09-03 04:17:54 41078 ----a-w- 43B254D97B4FB6F9974AD3F935762C55 C:\228528~1\SPLASH~1.BMP --- C:\228528cbb9210c9e848744\SplashScreen.bmp 2014-09-03 04:17:54 4224705 ----a-w- C580A38F1A1A7D838076A1B897C37011 C:\228528~1\VC_RED~1\vc_red.cab --- C:\228528cbb9210c9e848744\VC_Red_x86\vc_red.cab 2014-09-03 04:17:54 4637184 ----a-w- 905FCC526204DDF1E6650212ABC3D848 C:\228528~1\VC_RED~2\MSP_KB~1.MSP --- C:\228528cbb9210c9e848744\VC_Red_x64\msp_kb2565063.msp 2014-09-03 04:17:54 4877975 ----a-w- C2B6838431748D42E247C574A191B2C2 C:\228528~1\VC_RED~2\vc_red.cab --- C:\228528cbb9210c9e848744\VC_Red_x64\vc_red.cab 2014-09-03 04:17:54 7308 ----a-w- 3AD1A8C3B96993BCDF45244BE2C00EEF C:\228528~1\header.bmp --- C:\228528cbb9210c9e848744\header.bmp 2014-09-03 04:17:54 88533 ----a-w- F9657D290048E169FFABBBB9C7412BE0 C:\228528~1\DISPLA~1.ICO --- C:\228528cbb9210c9e848744\DisplayIcon.ico 2014-09-03 04:17:54 894 ----a-w- 26A00597735C5F504CF8B3E7E9A7A4C1 C:\228528~1\Graphics\Rotate1.ico --- C:\228528cbb9210c9e848744\Graphics\Rotate1.ico 2014-09-03 04:17:54 894 ----a-w- 3B4861F93B465D724C60670B64FCCFCF C:\228528~1\Graphics\Rotate5.ico --- C:\228528cbb9210c9e848744\Graphics\Rotate5.ico 2014-09-03 04:17:54 894 ----a-w- 70006BF18A39D258012875AEFB92A3D1 C:\228528~1\Graphics\Rotate6.ico --- C:\228528cbb9210c9e848744\Graphics\Rotate6.ico 2014-09-03 04:17:54 894 ----a-w- 8419CAA81F2377E09B7F2F6218E505AE C:\228528~1\Graphics\Rotate2.ico --- C:\228528cbb9210c9e848744\Graphics\Rotate2.ico 2014-09-03 04:17:54 894 ----a-w- 924FD539523541D42DAD43290E6C0DB5 C:\228528~1\Graphics\Rotate3.ico --- C:\228528cbb9210c9e848744\Graphics\Rotate3.ico 2014-09-03 04:17:54 894 ----a-w- BB55B5086A9DA3097FB216C065D15709 C:\228528~1\Graphics\Rotate4.ico --- C:\228528cbb9210c9e848744\Graphics\Rotate4.ico 2014-09-03 04:17:54 894 ----a-w- D1C53003264DCE4EFFAF462C807E2D96 C:\228528~1\Graphics\Rotate8.ico --- C:\228528cbb9210c9e848744\Graphics\Rotate8.ico 2014-09-03 04:17:54 894 ----a-w- FB4DFEBE83F554FAF1A5CEC033A804D9 C:\228528~1\Graphics\Rotate7.ico --- C:\228528cbb9210c9e848744\Graphics\Rotate7.ico 2014-09-03 04:18:00 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1025\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1025\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1028\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1028\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1030\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1030\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1031\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1031\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1035\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1035\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1036\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1036\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1037\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1037\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\2052\LOCALI~1.XML --- C:\228528cbb9210c9e848744\2052\LocalizedData.xml 2014-09-03 04:18:02 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\3082\LOCALI~1.XML --- C:\228528cbb9210c9e848744\3082\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1040\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1040\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1041\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1041\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1042\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1042\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1043\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1043\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1044\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1044\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1045\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1045\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1046\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1046\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1049\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1049\LocalizedData.xml 2014-09-03 04:18:04 39960 ----a-w- C535B0D3BAD7CD3764E4A8C36D7CC511 C:\228528~1\1053\LOCALI~1.XML --- C:\228528cbb9210c9e848744\1053\LocalizedData.xml 2014-09-03 04:19:32 15000 ----a-w- 4EE147F0E79F400BA7567E1F838420F7 C:\228528~1\2052\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\2052\SetupResources.dll 2014-09-03 04:19:32 15000 ----a-w- 974DAE805CA5F2AB2E1720922E60CD8D C:\228528~1\1028\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1028\SetupResources.dll 2014-09-03 04:19:32 16024 ----a-w- 27FA6778F4E3E44123A6279E63F3DA8B C:\228528~1\1042\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1042\SetupResources.dll 2014-09-03 04:19:32 16536 ----a-w- 8A7FE2D458E63225C708FDE968F18402 C:\228528~1\1041\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1041\SetupResources.dll 2014-09-03 04:19:32 17560 ----a-w- 5A669F565B0F8778EA61DF73759898F4 C:\228528~1\1037\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1037\SetupResources.dll 2014-09-03 04:19:32 18072 ----a-w- 3AC4E6FDAE8B528EDE517CA0285465AA C:\228528~1\1025\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1025\SetupResources.dll 2014-09-03 04:19:32 18072 ----a-w- FA3677E0A68CDE3A547F8418CA652F5F C:\228528~1\1033\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1033\SetupResources.dll 2014-09-03 04:19:32 18584 ----a-w- 602BD455FA1E734CE29980C69EA3389D C:\228528~1\1044\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1044\SetupResources.dll 2014-09-03 04:19:32 19096 ----a-w- 001443B3D3AE23CBFEB500FB1391D6FE C:\228528~1\1035\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1035\SetupResources.dll 2014-09-03 04:19:32 19096 ----a-w- 09CB814B13EB98FDBCA67D15B168154B C:\228528~1\1040\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1040\SetupResources.dll 2014-09-03 04:19:32 19096 ----a-w- 353C3770BAE409B1323EF18DE377DFB0 C:\228528~1\1030\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1030\SetupResources.dll 2014-09-03 04:19:32 19608 ----a-w- 2D0A4C44704D18666AF790CF3B3F2224 C:\228528~1\1036\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1036\SetupResources.dll 2014-09-03 04:19:32 19608 ----a-w- 91415A34516CA8C3E18855E6F781D30F C:\228528~1\1031\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1031\SetupResources.dll 2014-09-03 04:19:32 19608 ----a-w- 9EB643D72E4616C3C1647F1BBC297991 C:\228528~1\3082\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\3082\SetupResources.dll 2014-09-03 04:19:32 20120 ----a-w- D8ABFBCF6EBD69BD921E3009399E1E0B C:\228528~1\1043\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1043\SetupResources.dll 2014-09-03 04:19:32 296072 ----a-w- 3A79B2902F60571FCE58C9F66C7B26D0 C:\228528~1\SetupUi.dll --- C:\228528cbb9210c9e848744\SetupUi.dll 2014-09-03 04:19:32 78984 ----a-w- 5CBEDB2AFB3C313F116F80CFBD082104 C:\228528~1\Setup.exe --- C:\228528cbb9210c9e848744\Setup.exe 2014-09-03 04:19:34 18584 ----a-w- D4FCF7670205A1DE6C01A77AA23E59C5 C:\228528~1\1053\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1053\SetupResources.dll 2014-09-03 04:19:34 19096 ----a-w- 1470648A7249FF37FEAB6FF833FD7E00 C:\228528~1\1045\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1045\SetupResources.dll 2014-09-03 04:19:34 19096 ----a-w- EB95A2C6ABB4C876D85C4725E52C6B08 C:\228528~1\1046\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1046\SetupResources.dll 2014-09-03 04:19:34 19608 ----a-w- AE4D72AA8A14E866C78D29C81219A07D C:\228528~1\1049\SETUPR~1.DLL --- C:\228528cbb9210c9e848744\1049\SetupResources.dll 2014-09-03 04:19:34 810128 ----a-w- 4B44C7382C8DC5C325CC8A850E0BBD78 C:\228528~1\SETUPE~1.DLL --- C:\228528cbb9210c9e848744\SetupEngine.dll ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8116 MB CPU Info: Intel(R) Core(TM) i7-4510U CPU @ 2.00GHz CPU Speed: 2595,7 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics Family | Intel(R) HD Graphics Family | Intel(R) HD Graphics Family Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Realtek PCIe GBE Family Controller | Qualcomm Atheros AR956x Wireless Network Adapter | Microsoft Wi-Fi Direct Virtual Adapter | Microsoft Hosted Network Virtual Adapter CD / DVD Drives: 1x (D: | ) D: MATSHITADVD-RAM UJ8E2Q Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 913,7GB Hard Disks - Free: C: 733,7GB Manufacturer *: Insyde Corp. BIOS Info: AT/AT COMPATIBLE | | ACRSYS - 1 Time Zone: West-Europa (standaardtijd) Motherboard *: Acer EA50_HB Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Default Browser: Firefox 42.0 Internet Explorer Version: 11.0.10240.16590 Mozilla Firefox version: 42.0 (x86 nl) Adobe Reader version: 11.0.13.17 Sun Java version: 1.8.0_65 (32-bit) Sun Java version: 1.8.0_65 (64-bit) Flash Player version: 19.0.0.245 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Eva\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2015-11-28 21:10:59 E2FE87401985AF7B538DEE5415178DEE 16148 ----a-w- C:\WINDOWS\Sysnative\EVA3_Eva_HistoryPrediction.bin ====== C:\WINDOWS\Sysnative\drivers ===== 2015-11-11 18:15:50 A3D96563BF46FC8A0E5756B796127D14 577888 ----a-w- C:\WINDOWS\Sysnative\drivers\afd.sys 2015-11-11 18:15:30 D42AC03ACF9CA67693D1D9BB4D2A0BC8 116064 ----a-w- C:\WINDOWS\Sysnative\drivers\tdx.sys 2015-11-11 18:15:29 91756EE69E63D66F77E3B791D33F7078 459104 ----a-w- C:\WINDOWS\Sysnative\drivers\netio.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2015-11-25 16:39:26 -------- d-----w- C:\Program Files\trend micro 2015-10-30 20:10:50 -------- d-----w- C:\Program Files\Fotoservice ======= C:\PROGRA~2 ===== 2015-11-23 19:47:09 -------- d-----w- C:\PROGRA~2\Trend Micro 2015-11-21 16:44:15 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype ======= C: ===== ====== C:\Users\Eva\AppData\Roaming ====== 2015-11-10 06:18:38 -------- d-----w- C:\Users\Eva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox ====== C:\Users\Eva ====== 2015-11-25 16:38:55 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Eva\Downloads\RSITx64.exe 2015-11-21 16:44:15 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-10-30 21:34:44 -------- d-----w- C:\Users\Eva\restore 2015-10-30 21:26:15 -------- d-----w- C:\ProgramData\tmp 2015-10-30 21:26:13 -------- d-----w- C:\ProgramData\hps 2015-10-30 20:51:54 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kruidvat fotoservice ====== C: exe-files == 2015-11-28 18:55:06 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\F11D852D-AFF7-4305-99F8-25CEF6A03C4C\DismHost.exe 2015-11-28 18:31:02 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\280944AC-C8D4-4049-9D3A-373DFA74E522\DismHost.exe 2015-11-28 18:26:06 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\A9F7447B-7505-42BF-98E3-36F3132D8FF7\DismHost.exe 2015-11-28 18:21:18 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\B474347A-A883-4224-98EB-90D351146726\DismHost.exe 2015-11-27 19:57:44 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\075E9F2D-A985-4C8F-89ED-6A8FD7FDBEDE\DismHost.exe 2015-11-27 19:51:12 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\CDD604EF-6101-4303-9FD6-69A24AEB41E7\DismHost.exe 2015-11-26 22:06:32 79D51830919944E6F26FE2E6F0684336 2544344 ----a-w- C:\Users\Eva\AppData\Local\clear.fi\Photo\abPhoto\abPhotoSetup.exe 2015-11-26 22:06:28 37AE60E5A3AA4F2EEBD5F295221D8976 51954499 ----a-w- C:\Users\Eva\AppData\Local\clear.fi\Photo\abPhoto\abPhoto.exe 2015-11-26 22:06:25 8641B33CEA41535B4A3C08292E2A9589 53551264 ----a-w- C:\Users\Eva\AppData\Local\clear.fi\Photo\abPhotoSetup.exe 2015-11-26 22:00:10 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\2EC61A2F-3D1B-4C8E-95A0-BE14956DB573\DismHost.exe 2015-11-26 21:51:14 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\F613DB11-BDE7-4E66-96DE-88245805EA9D\DismHost.exe 2015-11-26 21:22:29 810CE84E84879715E3CD42E22CAAFF64 595864 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\0000832f\CoProc update.20200505.exe 2015-11-25 16:39:27 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Eva.exe 2015-11-25 16:38:55 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Eva\Downloads\RSITx64.exe 2015-11-25 16:35:28 E1BF8AEDF40F0C691ED793F2B1649B87 2954128 ----a-w- C:\Users\Eva\AppData\Local\Temp\UNINSTALL.EXE 2015-11-24 20:58:22 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\DF61F13E-053B-48F2-B46F-EB3962FEA0B9\DismHost.exe 2015-11-24 20:48:57 101882332AEEDA9F2BF3B49596B8C809 7935192 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\CMigrate.exe 2015-11-24 20:48:56 DEA25841490291F031A72A923E80AB33 5798616 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CMigrate.exe 2015-11-24 20:48:56 C581C8FCE9274734A2D081516AEA1D95 1148632 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\olicenseheartbeat.exe 2015-11-24 20:48:56 A073C67EF20969DA14783EDF9DABACAD 39592 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\appsharinghookcontroller64.exe 2015-11-24 20:48:53 88CEB0B7ECF1F42949772E53D94165BC 84208 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe 2015-11-24 20:48:52 D4974FF05294AE641EB0F5FBF3881A5A 1923232 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\winword.exe 2015-11-24 20:48:52 8483E25836BBDB32BBB2250A7E02A00E 474344 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dwtrig20.exe 2015-11-24 20:48:52 818A935EA6A0D70A21ED6CA41C9E6AE6 842448 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\DW\dw20.exe 2015-11-24 20:48:51 F2F7F0DBCFC8E755A53471BABD163DA3 873648 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\protocolhandler.exe 2015-11-24 20:48:51 96D74FA3CD6E7590CEAC51C20E6DC4C9 480984 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\selfcert.exe 2015-11-24 20:48:50 A1057743A38A7B25915FACFB831DDF09 1848392 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\powerpnt.exe 2015-11-24 20:48:31 596201902B590925D6E7A0BB5F65A432 21941408 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\excelcnv.exe 2015-11-24 20:48:31 04432297ED1B3ABDE2E4D8C618954EF3 498880 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\msouc.exe 2015-11-24 20:48:30 814847AAB5EA06E0B350EB9DABCC81D4 517360 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\iecontentservice.exe 2015-11-24 20:48:30 25CB8DA07E9E2F0DEC783FECEE21A909 25724576 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\excel.exe 2015-11-24 20:48:30 20E2C24FF3EE64D64FB836F3CF2C373E 449216 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\msosync.exe 2015-11-24 20:48:24 A3B4FD6D0EE3D596D38FC7377C785D39 630992 ----a-w- C:\Program Files\Microsoft Office 15\root\Integration\integrator.exe 2015-11-24 20:46:29 81C364DB68405A3218DB162743B1D06B 569592 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\ORGCHART.EXE 2015-11-24 05:47:27 7D231CC905343F4019BFAEF03C9F09C2 595080 ----a-w- C:\ProgramData\NVIDIA\Updatus\Packages\00008309\CoProc update.20193427.exe 2015-11-23 18:16:28 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\5EA557E8-B3BC-4A26-928B-4350210B222E\DismHost.exe 2015-11-23 18:01:31 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Eva\AppData\Local\Temp\2D52909E-A0EA-4544-8212-BDB8643BC55D\DismHost.exe === C: other files == 2015-11-26 22:06:40 E4C65AB43998460D9A24B08DE3BB30AA 761 ----a-w- C:\Windows\Temp\clear.fi_photo_AOP\unpinphoto.vbs 2015-11-26 22:06:40 BFCB148719D6CB37379789D032988E17 549 ----a-w- C:\Windows\Temp\clear.fi_photo_AOP\pinphoto.vbs 2015-11-26 22:06:24 2E9294BB096DED64EE03A9290394CAB6 53174599 ----a-w- C:\Users\Eva\AppData\Local\clear.fi\Photo.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "abDocsDllLoader"="C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe" [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-2123528701-1330138130-21175238-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-2123528701-1330138130-21175238-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AcerPortal"="C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe startup" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "TomTom MySports Connect.exe"="C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe" "Dropbox Update"="C:\Users\Eva\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c" "OneDrive"="C:\Users\Eva\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "abDocsDllLoader"="C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe" [HKEY_USERS\S-1-5-21-2123528701-1330138130-21175238-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "WAB Migrate"="%ProgramFiles%\Windows Mail\wab.exe /Upgrade" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG_UI"="C:\Program Files (x86)\AVG\Av\avgui.exe /TRAYONLY" "abDocsDllLoader"="C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "AvgUi"="C:\Program Files (x86)\AVG\Framework\Common\avguix.exe /fmw.trayonly" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "AcerPortal"="C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe startup" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR" "TomTom MySports Connect.exe"="C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe" "Dropbox Update"="C:\Users\Eva\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c" "OneDrive"="C:\Users\Eva\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "BtvStack"="C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:_@C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [] C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2123528701-1330138130-21175238-1005Core.job --a-------- C:\Users\Eva\AppData\Local\Dropbox\Update\DropboxUpdate.exe [16/06/2015 18:58] C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2123528701-1330138130-21175238-1005UA.job --a-------- C:\Users\Eva\AppData\Local\Dropbox\Update\DropboxUpdate.exe [16/06/2015 18:58] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\AcerCloud" [C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe] "C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\ALU" [C:\Program Files (x86)\Acer\Live Updater\updater.exe] "C:\WINDOWS\SysNative\tasks\ALUAgent" [C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe] "C:\WINDOWS\SysNative\tasks\BacKGroundAgent" [C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-2123528701-1330138130-21175238-1005Core" [C:\Users\Eva\AppData\Local\Dropbox\Update\DropboxUpdate.exe] "C:\WINDOWS\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-2123528701-1330138130-21175238-1005UA" [C:\Users\Eva\AppData\Local\Dropbox\Update\DropboxUpdate.exe] "C:\WINDOWS\SysNative\tasks\Launch Manager" ["C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe"] "C:\WINDOWS\SysNative\tasks\Power Management" ["C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe"] "C:\WINDOWS\SysNative\tasks\Quick Access" ["C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"] "C:\WINDOWS\SysNative\tasks\Quick Access Quick Launcher" ["C:\Program Files\Acer\Acer Quick Access\QALauncher.exe"] "C:\WINDOWS\SysNative\tasks\UbtFrameworkService" ["C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe"] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{4046714A-AD72-4B3B-9853-D229B13F01FD}" [C:\Windows\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{C693EE1E-83A6-4012-8250-047583286A70}" [C:\Windows\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\WINDOWS\SysNative\tasks\Recovery Management\Notification" [C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe] ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\arev28rn.default user_pref("browser.startup.homepage", "www.google.com"); user_pref("browser.search.selectedEngine", "AVG Secure Search"); ProfilePath: C:\Users\EVAWO_~1\AppData\Roaming\Mozilla\Firefox\Profiles\fxotu8im.default user_pref("browser.startup.homepage", "www.google.be"); ==== Firefox Extensions ====================== ProfilePath: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\arev28rn.default - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Eva\AppData\Roaming\Mozilla\Firefox\Profiles\arev28rn.default 18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013 F114FBA6246530B89DD1E04351E0EAC5 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll - Shockwave Flash ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://acer13.msn.com/?pc=ACJB" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{A7D176D3-174C-4D8B-AF6A-E9714F35E45E}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://acer13.msn.com/?pc=ACJB" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{A7D176D3-174C-4D8B-AF6A-E9714F35E45E}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\SearchScopes\{A7D176D3-174C-4D8B-AF6A-E9714F35E45E} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB HKLM\Wow6432Node\SearchScopes "DefaultScope"="{A7D176D3-174C-4D8B-AF6A-E9714F35E45E}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes\{A7D176D3-174C-4D8B-AF6A-E9714F35E45E} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC HKCU\SearchScopes\{A7D176D3-174C-4D8B-AF6A-E9714F35E45E} - No_Url_Value ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\203E62EEA6789D84098513925E9B9999 deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\02F6486B12843E11F869800002C0A966 deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE26E302-876A-48D9-9058-3129E5B99999} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B6846F20-4821-11E3-8F96-0800200C9A66} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\203E62EEA6789D84098513925E9B9999 deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\02F6486B12843E11F869800002C0A966 deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Av\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly O4 - HKCU\..\Run: [AcerPortal] "C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" startup O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [TomTom MySports Connect.exe] C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Eva\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c O4 - HKCU\..\Run: [OneDrive] "C:\Users\Eva\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-2123528701-1330138130-21175238-1001\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'UpdatusUser') O4 - HKUS\S-1-5-21-2123528701-1330138130-21175238-1001\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'UpdatusUser') O4 - HKUS\S-1-5-18\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe (User 'Default user') O4 - Startup: Dropbox.lnk = Eva\AppData\Roaming\Dropbox\bin\Dropbox.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll (file missing) O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\siteadvisor\mcieplg.dll (file missing) O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagent.exe O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Eva\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Eva\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Eva\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Eva\AppData\Local\Microsoft\Windows\INetCache\IE\42QTQMYC will be deleted at reboot C:\Users\Eva\AppData\Local\Microsoft\Windows\INetCache\IE\VWMYK2Q2 will be deleted at reboot C:\Users\Eva\AppData\Local\Microsoft\Windows\INetCache\IE\Z7Z22TQ7 will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\Eva\AppData\Local\Mozilla\Firefox\Profiles\arev28rn.default\cache2 emptied successfully C:\Users\evawo_000\AppData\Local\Mozilla\Firefox\Profiles\fxotu8im.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=6506 folders=200 581949131 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Eva\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Eva\AppData\Local\Microsoft\Windows\INetCache\IE\42QTQMYC" not found "C:\Users\Eva\AppData\Local\Microsoft\Windows\INetCache\IE\VWMYK2Q2" not found "C:\Users\Eva\AppData\Local\Microsoft\Windows\INetCache\IE\Z7Z22TQ7" not found ==== EOF on za 28/11/2015 at 23:12:20,25 ======================