Zoek.exe v5.0.0.1 Updated 27-December-2015 Tool run by Qtera69 on zo 27-12-2015 at 20:24:19,64. Microsoft Windows 10 Home 10.0.10240 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Qtera69\Downloads\zoek (1).exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2015-03-22-005758.log 58199 bytes ==== Empty Folders Check ====================== C:\PROGRA~2\COMMON~1\Pegasus Imaging deleted successfully C:\PROGRA~3\Canon IJ Network Tool deleted successfully C:\PROGRA~3\Comms deleted successfully C:\Users\Qtera69\AppData\Local\EmieBrowserModeList deleted successfully C:\Users\Qtera69\AppData\Local\EmieSiteList deleted successfully C:\Users\Qtera69\AppData\Local\EmieUserList deleted successfully C:\Users\Qtera69\AppData\Local\NetworkTiles deleted successfully C:\Users\Qtera69\AppData\Local\Opera Software deleted successfully C:\Users\Qtera69\AppData\Local\Skype deleted successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== æTorrent 7-Zip 9.20 7-Zip 9.22beta Adobe Acrobat Reader DC - Nederlands Adobe AIR Adobe Digital Editions 3.0 Adobe Flash Player 19 NPAPI Adobe Refresh Manager Advertising Center Amazon.co.uk AMD Catalyst Control Center AMD Fuel Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update ATI Catalyst Install Manager Avast Internet Security Avast License by ZeNiX [2014-03-14] BitTorrent Bonjour Canon IJ Network Scan Utility Canon IJ Network Tool Canon MG6100 series MP Drivers Catalyst Control Center - Branding Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Common Catalyst Control Center Graphics Previews Vista Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-core-static ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner Corel WinDVD Dazzle Video Capture DVC100 X64 Driver 1.07 Definition Update for Microsoft Office 2013 (KB3101493) 64-Bit Edition Direct DiscRecorder Driver Checker v2.7.5 DVD MovieFactory for TOSHIBA eBay Foxit Reader Google Chrome Google Update Helper ImagXpress Intel(R) Management Engine Components Intel(R) Rapid Storage Technology Intel(R) Turbo Boost Technology Driver iTunes Java 8 Update 66 Java Auto Updater Junk Mail filter update K-Lite Codec Pack 11.4.0 Standard Kobo Malwarebytes Anti-Malware versie 2.1.6.1022 Microsoft Access MUI (English) 2013 Microsoft Access Setup Metadata MUI (English) 2013 Microsoft Application Error Reporting Microsoft Choice Guard Microsoft DCF MUI (English) 2013 Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64) Microsoft Excel MUI (English) 2013 Microsoft Groove MUI (English) 2013 Microsoft InfoPath MUI (English) 2013 Microsoft Lync MUI (English) 2013 Microsoft Office 32-bit Components 2013 Microsoft Office OSM MUI (English) 2013 Microsoft Office OSM UX MUI (English) 2013 Microsoft Office Professional Plus 2013 Microsoft Office Proofing (English) 2013 Microsoft Office Proofing Tools 2013 - English Microsoft Office Proofing Tools 2013 - Espa¤ol Microsoft Office Shared 32-bit MUI (English) 2013 Microsoft Office Shared MUI (English) 2013 Microsoft Office Shared Setup Metadata MUI (English) 2013 Microsoft OneNote MUI (English) 2013 Microsoft Outlook MUI (English) 2013 Microsoft PowerPoint MUI (English) 2013 Microsoft Publisher MUI (English) 2013 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD Microsoft Word MUI (English) 2013 MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 9 Essentials Nero BackItUp Nero BackItUp and Burn Nero BurnRights Nero BurnRights Help Nero ControlCenter Nero DiscSpeed Nero DiscSpeed Help Nero DriveSpeed Nero DriveSpeed Help Nero Express Nero Express Help Nero InfoTool Nero InfoTool Help Nero Installer Nero Online Upgrade Nero RescueAgent Nero StartSmart Nero StartSmart Help NeroExpress neroxml Outils de v‚rification linguistique 2013 de Microsoft Officeÿ- Fran‡ais Photo Service - powered by myphotobook Pinnacle Studio 18 - Install Manager Pinnacle Studio 18 Pixum Fotoboek PlayReady PC Runtime amd64 Plus500 PokerStars.be Realtek 8136/8168/8169 Family Ethernet Controller Windows Driver Realtek Ethernet Controller Driver For Windows 7 Realtek HDMI Audio Driver for ATI Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader Realtek WLAN Driver Security Update for Microsoft Access 2013 (KB3085584) 64-Bit Edition Security Update for Microsoft Excel 2013 (KB3101499) 64-Bit Edition Security Update for Microsoft InfoPath 2013 (KB3054793) 64-Bit Edition Security Update for Microsoft Office 2013 (KB2910941) 64-Bit Edition Security Update for Microsoft Office 2013 (KB3039734) 64-Bit Edition Security Update for Microsoft Office 2013 (KB3039798) 64-Bit Edition Security Update for Microsoft Office 2013 (KB3054816) 64-Bit Edition Security Update for Microsoft Office 2013 (KB3085572) 64-Bit Edition Security Update for Microsoft OneNote 2013 (KB3101371) 64-Bit Edition Security Update for Microsoft PowerPoint 2013 (KB3101359) 64-Bit Edition Security Update for Microsoft Project 2013 (KB3101506) 64-Bit Edition Security Update for Microsoft Publisher 2013 (KB3085561) 64-Bit Edition Security Update for Microsoft Word 2013 (KB3101370) 64-Bit Edition Security Update for Skype for Business 2015 (KB3101496) 64-Bit Edition Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition ShotOnline SkypeT 7.12 Spotify Synaptics Pointing Device Driver Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD Toshiba Assist TOSHIBA Bulletin Board TOSHIBA ConfigFree TOSHIBA Disc Creator TOSHIBA eco Utility TOSHIBA Face Recognition TOSHIBA Flash Cards Support Utility TOSHIBA Hardware Setup TOSHIBA HDD/SSD-waarschuwing Toshiba Manuals TOSHIBA Media Controller TOSHIBA Media Controller Plug-in TOSHIBA Online Product Information TOSHIBA PC Health Monitor TOSHIBA Recovery Media Creator TOSHIBA Recovery Media Creator Reminder TOSHIBA ReelTime TOSHIBA Service Station TOSHIBA Supervisor Password TOSHIBA Supervisorwachtwoord Toshiba TEMPRO TOSHIBA Value Added Package TOSHIBA Web Camera Application TRORMCLauncher Update for Microsoft Office 2013 (KB2760344) 64-Bit Edition Update for Microsoft Office 2013 (KB2760371) 64-Bit Edition Update for Microsoft Office 2013 (KB2760544) 64-Bit Edition Update for Microsoft Office 2013 (KB2880487) 64-Bit Edition Update for Microsoft Office 2013 (KB2881076) 64-Bit Edition Update for Microsoft Office 2013 (KB2883095) 64-Bit Edition Update for Microsoft Office 2013 (KB2889863) 64-Bit Edition Update for Microsoft Office 2013 (KB2899522) 64-Bit Edition Update for Microsoft Office 2013 (KB2975869) 64-Bit Edition Update for Microsoft Office 2013 (KB3023052) 64-Bit Edition Update for Microsoft Office 2013 (KB3039701) 64-Bit Edition Update for Microsoft Office 2013 (KB3039718) 64-Bit Edition Update for Microsoft Office 2013 (KB3039720) 64-Bit Edition Update for Microsoft Office 2013 (KB3039739) 64-Bit Edition Update for Microsoft Office 2013 (KB3039766) 64-Bit Edition Update for Microsoft Office 2013 (KB3039778) 64-Bit Edition Update for Microsoft Office 2013 (KB3039800) 64-Bit Edition Update for Microsoft Office 2013 (KB3054783) 64-Bit Edition Update for Microsoft Office 2013 (KB3054785) 64-Bit Edition Update for Microsoft Office 2013 (KB3054805) 64-Bit Edition Update for Microsoft Office 2013 (KB3054856) 64-Bit Edition Update for Microsoft Office 2013 (KB3054935) 64-Bit Edition Update for Microsoft Office 2013 (KB3054941) 64-Bit Edition Update for Microsoft Office 2013 (KB3055007) 64-Bit Edition Update for Microsoft Office 2013 (KB3055011) 64-Bit Edition Update for Microsoft Office 2013 (KB3085479) 64-Bit Edition Update for Microsoft Office 2013 (KB3085493) 64-Bit Edition Update for Microsoft Office 2013 (KB3085506) 64-Bit Edition Update for Microsoft Office 2013 (KB3085566) 64-Bit Edition Update for Microsoft Office 2013 (KB3101358) 64-Bit Edition Update for Microsoft Office 2013 (KB3101374) 64-Bit Edition Update for Microsoft Office 2013 (KB3101487) 64-Bit Edition Update for Microsoft Office 2013 (KB3101501) 64-Bit Edition Update for Microsoft OneDrive for Business (KB3101505) 64-Bit Edition Update for Microsoft Outlook 2013 (KB3101488) 64-Bit Edition Update for Microsoft Outlook Social Connector 2013 (KB3054854) 64-Bit Edition Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition Update for Microsoft Word 2013 (KB2878319) 64-Bit Edition Update for Skype for Business 2015 (KB2889853) 64-Bit Edition UpdateAdmin Utility Common Driver VLC media player WinDjView 1.0.3 Windows Live - Hulpprogramma voor uploaden Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Mail Windows Live Messenger Windows Live Movie Maker Windows Live Photo Gallery Windows Live Sync Windows Live Writer WinRAR 5.20 (32-bit) WinRAR 5.21 beta 2 (64-bit) YAMAHA Musicsoft Downloader 5 ==== Running Processes ====================== C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files\AVAST Software\Avast\afwServ.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Users\Qtera69\AppData\Roaming\Spotify\SpotifyWebHelper.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Qtera69\Downloads\zoek (1).exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\npggsvc deleted successfully ==== Deleting Files \ Folders ====================== C:\found.000 deleted C:\PROGRA~3\Registry Helper deleted C:\PROGRA~3\Package Cache deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\windows\SysNative\GroupPolicy\machine deleted C:\windows\SysNative\GroupPolicy\gpt.ini deleted C:\WINDOWS\Syswow64\SET2079.tmp deleted C:\WINDOWS\Syswow64\SET58DA.tmp deleted C:\WINDOWS\Syswow64\SET9A93.tmp deleted C:\WINDOWS\Syswow64\RegistryHelperLM.ocx deleted C:\Users\Public\Desktop\Musicsoft Downloader.lnk deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 3955 MB CPU Info: Intel(R) Core(TM) i5 CPU M 460 @ 2.53GHz CPU Speed: 2603,2 MHz Sound Card: Luidsprekers (Realtek High Defi | Display Adapters: AMD Mobility Radeon HD 5000 Series | AMD Mobility Radeon HD 5000 Series Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1600 X 900 - 32 bit Network: Network Present Network Adapters: Realtek PCIe FE Family Controller | Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC | Microsoft Hosted Network Virtual Adapter CD / DVD Drives: 1x (E: | ) E: HL-DT-STBD-RE BT10F Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 297,3GB | D: 297,7GB Hard Disks - Free: C: 82,8GB | D: 30,4GB Manufacturer *: TOSHIBA BIOS Info: AT/AT COMPATIBLE | 01/20/11 | Phoenix SecureCore Version 2.10 Time Zone: West-Europa (standaardtijd) Motherboard *: TOSHIBA NALAA Country: Nederland Language: NLD ==== System Specs (Software) ====================== Internet Explorer Version: 11.0.10240.16431 Google Chrome version: 47.0.2526.106 Adobe Reader version: 15.9.20077.160923 Sun Java version: 1.8.0_66 (32-bit) Sun Java version: 1.8.0_66 (64-bit) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== 2015-12-25 15:31:53 748D1F5A0495A1AA9D44FB51B4C13271 43112 ----a-w- C:\WINDOWS\avastSS.scr ====== C:\Users\Qtera69\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2015-12-26 19:31:28 4B15FFE298E746FC8FE1718461C8527D 96752 ----a-w- C:\WINDOWS\SysWOW64\mantleaxl32.dll 2015-12-26 19:31:27 DAE24406C99B03DE3070FCA7B8823C68 122352 ----a-w- C:\WINDOWS\SysWOW64\mantle32.dll 2015-12-26 19:31:27 B1414C449CDF025115DDA1DD58A77381 111088 ----a-w- C:\WINDOWS\SysWOW64\hsa-thunk.dll 2015-12-26 19:31:27 9A90866790368A9739F940C3AB854BE5 12784 ----a-w- C:\WINDOWS\SysWOW64\detoured.dll 2015-12-26 19:30:52 EEBEC694FFBAEF4812DE8D10E924E597 8009360 ----a-w- C:\WINDOWS\SysWOW64\atiumdva.dll 2015-12-26 19:30:51 A6D47DE75D4DA8B345193FD2456A4386 3471376 ----a-w- C:\WINDOWS\SysWOW64\atiumdva.cap 2015-12-26 19:30:49 D7D303BC870752D4E6CE9D9453B16FE6 7482560 ----a-w- C:\WINDOWS\SysWOW64\atiumdag.dll 2015-12-26 19:30:44 CBA05A6A2400D9EFB00E8D8CF2BDD1E5 112360 ----a-w- C:\WINDOWS\SysWOW64\atiu9pag.dll 2015-12-26 19:30:40 0A4ECF95D837EB9C7990FDAE92077765 25320432 ----a-w- C:\WINDOWS\SysWOW64\atioglxx.dll 2015-12-26 19:30:35 212E4467D3558D6CF999942FBF24249A 81160 ----a-w- C:\WINDOWS\SysWOW64\atimpc32.dll 2015-12-26 19:30:30 FAA5C0AE370B2B4727A4D3BAD2E9FA90 150512 ----a-w- C:\WINDOWS\SysWOW64\atigktxx.dll 2015-12-26 19:30:30 DFC371CDDD3FCD6C24E753298A41E759 78320 ----a-w- C:\WINDOWS\SysWOW64\atiglpxx.dll 2015-12-26 19:30:30 07722BE5C09F174DE3C857A384EB7A19 152560 ----a-w- C:\WINDOWS\SysWOW64\atieah32.exe 2015-12-26 19:30:24 91EE47E5F262066C4FE15FCC2AFA76D0 60912 ----a-w- C:\WINDOWS\SysWOW64\aticalrt.dll 2015-12-26 19:30:20 760A16CB68AA94B46C13E778E2C40C42 935408 ----a-w- C:\WINDOWS\SysWOW64\atiadlxy.dll 2015-12-26 19:30:20 760A16CB68AA94B46C13E778E2C40C42 935408 ----a-w- C:\WINDOWS\SysWOW64\atiadlxx.dll 2015-12-26 19:30:20 6C1E0FA435FF2BE03DAE57482D70229C 57840 ----a-w- C:\WINDOWS\SysWOW64\aticalcl.dll 2015-12-26 19:30:20 4920154E53FDD2E1BB3B877E7CEEFEC7 662400 ----a-w- C:\WINDOWS\SysWOW64\atiapfxx.blb 2015-12-26 19:30:20 0D5F02309668BB18B09CC3018870A21D 14310896 ----a-w- C:\WINDOWS\SysWOW64\aticaldd.dll 2015-12-26 19:30:19 A7DC8E9EEAE4F4957DE450AC0C8FFCD0 68080 ----a-w- C:\WINDOWS\SysWOW64\OpenCL.dll 2015-12-26 19:30:17 A400CFF0E7618D3C96E6D3FB5C657E6B 7683096 ----a-w- C:\WINDOWS\SysWOW64\amdxc32.dll 2015-12-26 19:30:16 7D5DED378BFDB41955AC460C4F396F1B 81160 ----a-w- C:\WINDOWS\SysWOW64\amdpcom32.dll 2015-12-26 19:30:15 EBC93A124038127EAD6CD8F16558C26B 807424 ----a-w- C:\WINDOWS\SysWOW64\amdocl_ld32.exe 2015-12-26 19:30:14 ECC282372DEB746231685280F96442DF 1004032 ----a-w- C:\WINDOWS\SysWOW64\amdocl_as32.exe 2015-12-26 19:29:52 9DEF1F5B37479CB6AD2DE70AC5606759 22327280 ----a-w- C:\WINDOWS\SysWOW64\amdocl12cl.dll 2015-12-26 19:29:48 E1B9410B2167B9B438B4C14639AA9FBC 39720944 ----a-w- C:\WINDOWS\SysWOW64\amdocl.dll 2015-12-26 19:29:48 4C2E47A3ED607193656C44974AEA4162 48112 ----a-w- C:\WINDOWS\SysWOW64\amdmmcl.dll 2015-12-26 19:29:47 DB00A1EDAF063A00E715BC0D844A6C6B 5216240 ----a-w- C:\WINDOWS\SysWOW64\amdmantle32.dll 2015-12-26 19:29:47 A373223DA7D8955471215CE5B1BDCD0B 198640 ----a-w- C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2015-12-26 19:29:47 870A3E3F7F49E0F0EDA057DE539BAA5C 524272 ----a-w- C:\WINDOWS\SysWOW64\amdlvr32.dll 2015-12-26 19:29:47 4DC0A8630E9C94AC559BDA738D228C2E 132080 ----a-w- C:\WINDOWS\SysWOW64\amdhdl32.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2015-12-27 19:19:16 26C2B5CA27CA1DC243E4EF30E3CD861A 16148 ----a-w- C:\WINDOWS\Sysnative\QTERA69-TOSH_Qtera69_HistoryPrediction.bin 2015-12-26 19:31:28 CE5A4E28D6423278DD8440404B6B5851 103408 ----a-w- C:\WINDOWS\Sysnative\mantleaxl64.dll 2015-12-26 19:31:28 9E881E4739C6BCAA98F2152CAFC3E059 136176 ----a-w- C:\WINDOWS\Sysnative\mantle64.dll 2015-12-26 19:31:27 DF432871A485FD77E6C90197BE0B637D 111600 ----a-w- C:\WINDOWS\Sysnative\hsa-thunk64.dll 2015-12-26 19:31:27 43A7C796566C3A83222567DE189F8D18 12784 ----a-w- C:\WINDOWS\Sysnative\detoured.dll 2015-12-26 19:31:26 7BDE885D471C6478B13E0C32418EEE20 243696 ----a-w- C:\WINDOWS\Sysnative\clinfo.exe 2015-12-26 19:30:48 839B5E291DAFB7C489306844AB2C9989 8982432 ----a-w- C:\WINDOWS\Sysnative\atiumd6a.dll 2015-12-26 19:30:46 E40A33F1DD46469DCFFA4BD5117C61B1 3437632 ----a-w- C:\WINDOWS\Sysnative\atiumd6a.cap 2015-12-26 19:30:44 EAD4B31FE72D70F2BACFC915454E5BE2 8864920 ----a-w- C:\WINDOWS\Sysnative\atiumd64.dll 2015-12-26 19:30:44 DF30135A414649B0A8E8FAD0D61C13C1 130064 ----a-w- C:\WINDOWS\Sysnative\atiu9p64.dll 2015-12-26 19:30:44 A273FBD6DCBB91434E33C1EC2404DFCC 199664 ----a-w- C:\WINDOWS\Sysnative\atitmm64.dll 2015-12-26 19:30:40 D9D76760A606AA2946757BA583538BA2 341488 ----a-w- C:\WINDOWS\Sysnative\ATIODE.exe 2015-12-26 19:30:40 1F5F96AE1C39FC46275D120CB1C0CC7F 59888 ----a-w- C:\WINDOWS\Sysnative\ATIODCLI.exe 2015-12-26 19:30:35 DDFF3EC23045E0B96D9B2212B0B00E31 88000 ----a-w- C:\WINDOWS\Sysnative\atimpc64.dll 2015-12-26 19:30:35 9A407EF63E33D60BD607CA6DC917676F 38384 ----a-w- C:\WINDOWS\Sysnative\atimuixx.dll 2015-12-26 19:30:35 3FC67270212EDDA9B0C3D1276930F830 30775792 ----a-w- C:\WINDOWS\Sysnative\atio6axx.dll 2015-12-26 19:30:30 DFC371CDDD3FCD6C24E753298A41E759 78320 ----a-w- C:\WINDOWS\Sysnative\atiglpxx.dll 2015-12-26 19:30:30 B238026AACDDF5D78920DD46F4B8B9CC 168944 ----a-w- C:\WINDOWS\Sysnative\atieah64.exe 2015-12-26 19:30:30 A400AAEA1E6FD94A3874066BA26AE257 83952 ----a-w- C:\WINDOWS\Sysnative\atig6pxx.dll 2015-12-26 19:30:30 3C4EAA6E0C68E6B097F93D08034499FE 165360 ----a-w- C:\WINDOWS\Sysnative\atig6txx.dll 2015-12-26 19:30:25 0924FBECA5B233CCD3F89306D6EBBB50 451056 ----a-w- C:\WINDOWS\Sysnative\atidemgy.dll 2015-12-26 19:30:24 2568D12AF17245F8D8413AC9A8B4EDA5 71152 ----a-w- C:\WINDOWS\Sysnative\aticalrt64.dll 2015-12-26 19:30:22 CDDD4CB320EDAAA9AACEFA117CB0F3FA 15725552 ----a-w- C:\WINDOWS\Sysnative\aticaldd64.dll 2015-12-26 19:30:20 80C04025EB23316D1E9CFCC3E8D52AC5 1256432 ----a-w- C:\WINDOWS\Sysnative\atiadlxx.dll 2015-12-26 19:30:20 4920154E53FDD2E1BB3B877E7CEEFEC7 662400 ----a-w- C:\WINDOWS\Sysnative\atiapfxx.blb 2015-12-26 19:30:20 3845FDD141F1658CF28A3A199C40ADAF 64496 ----a-w- C:\WINDOWS\Sysnative\aticalcl64.dll 2015-12-26 19:30:20 0789EC00F29DCC4A1441F876B81F15A7 375792 ----a-w- C:\WINDOWS\Sysnative\atiapfxx.exe 2015-12-26 19:30:19 D2075893570DA1B6766977D858FB9508 73712 ----a-w- C:\WINDOWS\Sysnative\OpenCL.dll 2015-12-26 19:30:18 0EF0E1F7B96736DA036A8FA3EC1A389A 9355016 ----a-w- C:\WINDOWS\Sysnative\amdxc64.dll 2015-12-26 19:30:16 42B9C6DE9E3E4F0925AD58DAD8A86B7B 88000 ----a-w- C:\WINDOWS\Sysnative\amdpcom64.dll 2015-12-26 19:30:16 10E49359190C5F9EC0287991260805D4 1070592 ----a-w- C:\WINDOWS\Sysnative\amdocl_ld64.exe 2015-12-26 19:30:14 2C121EDECF6F26ADA8E6B2D5316966A7 1196032 ----a-w- C:\WINDOWS\Sysnative\amdocl_as64.exe 2015-12-26 19:30:02 64C031B2785EFA20232E64CE9A4ED8C8 47794160 ----a-w- C:\WINDOWS\Sysnative\amdocl64.dll 2015-12-26 19:29:55 575504216F2DA99FFAC2DDA8470B2BC7 27544560 ----a-w- C:\WINDOWS\Sysnative\amdocl12cl64.dll 2015-12-26 19:29:48 D2112F5468176F075FAB0B08A142DB6A 471320 ----a-w- C:\WINDOWS\Sysnative\amdmiracast.dll 2015-12-26 19:29:48 A40AD832C19625AAE912E2C8F26686A7 59376 ----a-w- C:\WINDOWS\Sysnative\amdmmcl6.dll 2015-12-26 19:29:47 C8EDC7EFDAE950D1939B9A7E863642C9 213488 ----a-w- C:\WINDOWS\Sysnative\amdgfxinfo64.dll 2015-12-26 19:29:47 5D4ABEC64507FDAF954B867AF85ADA87 6686192 ----a-w- C:\WINDOWS\Sysnative\amdmantle64.dll 2015-12-26 19:29:47 4A8EEFA45D4DE092F9FB557B196BFE0F 143344 ----a-w- C:\WINDOWS\Sysnative\amdhdl64.dll 2015-12-26 19:29:47 038A004CF76AFDC15FA70863D3DC345A 631792 ----a-w- C:\WINDOWS\Sysnative\amdlvr64.dll 2015-12-25 15:32:08 C514A8F4AC22AFAFE54B7CA515BBEAE2 386096 ----a-w- C:\WINDOWS\Sysnative\aswBoot.exe ====== C:\WINDOWS\Sysnative\drivers ===== 2015-12-26 19:30:19 4FF0FE695EDB2326F268377EBD546957 52208 ----a-w- C:\WINDOWS\Sysnative\drivers\ati2erec.dll ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2015-12-26 19:41:58 -------- d-----w- C:\Program Files\ATI Technologies ======= C:\PROGRA~2 ===== 2015-12-27 19:21:19 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2015-12-25 15:09:55 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype 2015-12-25 15:09:54 -------- d-----r- C:\PROGRA~2\Skype ======= C: ===== ====== C:\Users\Qtera69\AppData\Roaming ====== ====== C:\Users\Qtera69 ====== 2015-12-27 19:21:05 -------- d-----w- C:\Users\Qtera69\.oracle_jre_usage 2015-12-27 19:19:48 54760F6D9991A94FE0B6CD83AE8377B4 584288 ----a-w- C:\Users\Qtera69\Downloads\JavaSetup8u66.exe 2015-12-26 19:42:36 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2015-12-26 19:13:24 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Qtera69\Downloads\RSITx64 (2).exe 2015-12-26 19:11:50 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Qtera69\Downloads\RSITx64 (1).exe 2015-12-25 15:26:32 8141DC2382882BD14BE556D7CA8650C3 4779896 ----a-w- C:\Users\Qtera69\Downloads\spsetup124.exe 2015-12-25 14:46:47 BD4122D5B2830C8DB3992CB9D2920F0E 6677440 ----a-w- C:\Users\Qtera69\Downloads\ccsetup510.exe ====== C: exe-files == 2015-12-27 19:20:43 FDF059C05249FAEA0221ED65CD59A9C8 68192 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\javacpl.exe 2015-12-27 19:20:43 F003BBCB09CACF8A9F4CE0C67A2D6E63 278624 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaws.exe 2015-12-27 19:20:43 EFC80BC662BCC20B0B09700636FDC732 30816 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\jabswitch.exe 2015-12-27 19:20:43 D8EEED21B06866E85DA30485F5059FF6 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\servertool.exe 2015-12-27 19:20:43 CA51FB3FE5012E21D9A14AC071527866 76896 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2launcher.exe 2015-12-27 19:20:43 ADAF1151B29D2D1691FA027B6C55B3D7 50784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssvagent.exe 2015-12-27 19:20:43 A9E84AD3536425BC68263B723C2442E4 191072 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\java.exe 2015-12-27 19:20:43 8977B87AB10AB1DA8769CA0053B401B0 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\jjs.exe 2015-12-27 19:20:43 7BE9BE6E15653824A28F5CED6B273588 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\klist.exe 2015-12-27 19:20:43 7BDD7F1BC2A20971DEE17B6920D61BBC 191584 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\javaw.exe 2015-12-27 19:20:43 73368169BFD965EC6257E77C23CED879 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\rmiregistry.exe 2015-12-27 19:20:43 525027DF51378DDA25F0F52C20BCB132 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\kinit.exe 2015-12-27 19:20:43 46AB480B01CD30801B3AE89B5AAE75A8 16480 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\orbd.exe 2015-12-27 19:20:43 3B306D41F07396975ECE34A860BD9036 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\pack200.exe 2015-12-27 19:20:43 36A44033C6B970F95E2A1448F4481CEA 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\keytool.exe 2015-12-27 19:20:43 28FB06FC63D5817153B5502A49DF3F00 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\ktab.exe 2015-12-27 19:20:43 17A8DD2484DC26E38DFE3209C8B36980 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\policytool.exe 2015-12-27 19:20:43 0B82777B13B81417E5520DF7B1E8C319 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\rmid.exe 2015-12-27 19:20:43 0A3936FE18FC04350159A1E647201501 16480 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\tnameserv.exe 2015-12-27 19:20:43 092F4D3C25F3086D4C7FDEC79DD71302 159328 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\unpack200.exe 2015-12-27 19:20:43 04D67FF5044A605F1E7D923A1D6F1751 15968 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\bin\java-rmi.exe 2015-12-27 19:19:48 54760F6D9991A94FE0B6CD83AE8377B4 584288 ----a-w- C:\Users\Qtera69\Downloads\JavaSetup8u66.exe 2015-12-26 22:03:57 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Qtera69\AppData\Local\Temp\E8EB3933-32CF-4BA6-AA83-06BA73284B18\DismHost.exe 2015-12-26 21:31:44 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Qtera69\AppData\Local\Temp\D50D9412-3B4E-4E4B-A642-4C9EEB9226B5\DismHost.exe 2015-12-26 21:01:58 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Qtera69\AppData\Local\Temp\DCC1E79F-6BEE-48CD-8F7E-AC8F07368F31\DismHost.exe 2015-12-26 20:19:56 1B16795D3CB7A9FAA3FC41C56EF2966D 149184 ----a-w- C:\Users\Qtera69\AppData\Local\Temp\0D252793-B3EA-4C67-AB56-7B4558EA1F04\DismHost.exe 2015-12-26 19:31:26 7BDE885D471C6478B13E0C32418EEE20 243696 ----a-w- C:\WINDOWS\System32\clinfo.exe 2015-12-26 19:30:55 B16CBF710BAC6FE3EA52C88C886870B2 96779808 ----a-w- C:\Program Files\AMD\CCC2\Install\ccc2_install.exe 2015-12-26 19:30:40 D9D76760A606AA2946757BA583538BA2 341488 ----a-w- C:\WINDOWS\System32\ATIODE.exe 2015-12-26 19:30:40 1F5F96AE1C39FC46275D120CB1C0CC7F 59888 ----a-w- C:\WINDOWS\System32\ATIODCLI.exe 2015-12-26 19:30:30 B238026AACDDF5D78920DD46F4B8B9CC 168944 ----a-w- C:\WINDOWS\System32\atieah64.exe 2015-12-26 19:30:30 07722BE5C09F174DE3C857A384EB7A19 152560 ----a-w- C:\WINDOWS\SysWOW64\atieah32.exe 2015-12-26 19:30:20 0789EC00F29DCC4A1441F876B81F15A7 375792 ----a-w- C:\WINDOWS\System32\atiapfxx.exe 2015-12-26 19:30:16 10E49359190C5F9EC0287991260805D4 1070592 ----a-w- C:\WINDOWS\System32\amdocl_ld64.exe 2015-12-26 19:30:15 EBC93A124038127EAD6CD8F16558C26B 807424 ----a-w- C:\WINDOWS\SysWOW64\amdocl_ld32.exe 2015-12-26 19:30:14 ECC282372DEB746231685280F96442DF 1004032 ----a-w- C:\WINDOWS\SysWOW64\amdocl_as32.exe 2015-12-26 19:30:14 2C121EDECF6F26ADA8E6B2D5316966A7 1196032 ----a-w- C:\WINDOWS\System32\amdocl_as64.exe 2015-12-26 19:13:24 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Qtera69\Downloads\RSITx64 (2).exe 2015-12-26 19:11:50 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Qtera69\Downloads\RSITx64 (1).exe 2015-12-25 15:32:08 C514A8F4AC22AFAFE54B7CA515BBEAE2 386096 ----a-w- C:\WINDOWS\System32\aswBoot.exe 2015-12-25 15:26:32 8141DC2382882BD14BE556D7CA8650C3 4779896 ----a-w- C:\Users\Qtera69\Downloads\spsetup124.exe 2015-12-25 14:46:47 BD4122D5B2830C8DB3992CB9D2920F0E 6677440 ----a-w- C:\Users\Qtera69\Downloads\ccsetup510.exe === C: other files == 2015-12-27 19:20:43 4DB4B1F67E583B41F841F48254BE38E3 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_66\lib\deploy\ffjcext.zip 2015-12-25 17:11:42 76CDB2BAD9582D23C1F6F4D868218D6C 22 ----a-w- C:\Users\Qtera69\AppData\Local\Temp\avastBCLTMP\{dfeaf541-f3e1-4c24-acac-99c30715084a}.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-3587330891-1572245818-3806218168-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "uTorrent"="C:\Users\Qtera69\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" "Spotify Web Helper"="C:\Users\Qtera69\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "OneDrive"="C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Spotify"="C:\Users\Qtera69\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized" [HKEY_USERS\S-1-5-21-3587330891-1572245818-3806218168-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" "Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64" "Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" "Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "IJNetworkScanUtility"="C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "uTorrent"="C:\Users\Qtera69\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" "Spotify Web Helper"="C:\Users\Qtera69\AppData\Roaming\Spotify\SpotifyWebHelper.exe" "OneDrive"="C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "Spotify"="C:\Users\Qtera69\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" "Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64" "Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" "Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\00TCrdMain] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="00TCrdMain" "hkey"="HKLM" "command"="%ProgramFiles%\\TOSHIBA\\FlashCards\\TCrdMain.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CCleaner Monitoring" "hkey"="HKCU" "command"="\"C:\\Program Files\\CCleaner\\CCleaner64.exe\" /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HSON] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="HSON" "hkey"="HKLM" "command"="%ProgramFiles%\\TOSHIBA\\TBS\\HSON.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="iTunesHelper" "hkey"="HKLM" "command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\KeNotify] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KeNotify" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\TOSHIBA\\Utilities\\KeNotify.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NBAgent] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NBAgent" "hkey"="HKLM" "command"="\"c:\\Program Files (x86)\\Nero\\Nero BackItUp & Burn\\Nero BackItUp\\NBAgent.exe\" /WinStart" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SmartFaceVWatcher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="SmartFaceVWatcher" "hkey"="HKLM" "command"="%ProgramFiles%\\Toshiba\\SmartFaceV\\SmartFaceVWatcher.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Teco] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Teco" "hkey"="HKLM" "command"="\"%ProgramFiles%\\TOSHIBA\\TECO\\Teco.exe\" /r" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TosSENotify] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="TosSENotify" "hkey"="HKLM" "command"="C:\\Program Files\\TOSHIBA\\TOSHIBA HDD SSD Alert\\TosWaitSrv.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TosVolRegulator] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="TosVolRegulator" "hkey"="HKLM" "command"="C:\\Program Files\\TOSHIBA\\TosVolRegulator\\TosVolRegulator.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TosWaitSrv] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="TosWaitSrv" "hkey"="HKLM" "command"="%ProgramFiles%\\TOSHIBA\\TPHM\\TosWaitSrv.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TPwrMain] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="TPwrMain" "hkey"="HKLM" "command"="%ProgramFiles%\\TOSHIBA\\Power Saver\\TPwrMain.EXE" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UpdateAdmin] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="UpdateAdmin" "hkey"="HKCU" "command"="C:\\Users\\Qtera69\\AppData\\Local\\UpdateAdmin\\UpdateAdmin.exe /RUN" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="uTorrent" "hkey"="HKCU" "command"="\"C:\\Users\\Qtera69\\AppData\\Roaming\\uTorrent\\uTorrent.exe\" /MINIMIZED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ALG] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BDESVC] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Bonjour Service] ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [09-12-2015 15:44] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- [Undetermined Task] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [12-02-2015 14:37] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\klcp_update" ["C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe"] "C:\WINDOWS\SysNative\tasks\Trojan Killer" ["C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe"] "C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [25-12-2015 16:37] ==== Chromium Look ====================== Google Chrome Version: 46.0.2490.86 HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[25-12-2015 16:31] selector is not a valid CSS selector - Qtera69\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Chrome Web Store Payments - Qtera69\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Chromium Fix ====================== C:\Users\Qtera69\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage deleted successfully C:\Users\Qtera69\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 HKCU\SearchScopes\{3123D9EE-2B7A-4090-A2E6-7B888249D2F5} - http://www.amazon.co.uk/gp/search?ie=UTF8&keywords={searchTerms}&tag=tochibauk-win7-ie-search-21&index=blended&linkCode=ur2 HKCU\SearchScopes\{CE735D6A-5794-4B4A-A9FB-B3C967E53F3C} - http://rover.ebay.com/rover/1/1346-71494-26233-7/4?satitle={searchTerms} ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateAdmin deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit= O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [uTorrent] "C:\Users\Qtera69\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Qtera69\AppData\Roaming\Spotify\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [OneDrive] "C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKCU\..\Run: [Spotify] "C:\Users\Qtera69\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Qtera69\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64" O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing) O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Qtera69\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Qtera69\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Qtera69\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Qtera69\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Qtera69\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=170 folders=56 36100891 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Qtera69\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on zo 27-12-2015 at 21:08:58,25 ======================