Zoek.exe v5.0.0.1 Updated 31-December-2015 Tool run by desme on di 12/04/2016 at 18:25:57,57. Microsoft Windows 10 Home 10.0.10586 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\desme\Desktop\zoek.exe [Scan all users] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2016-04-12-082030.log 30826 bytes C:\zoek-results2016-04-12-173724.log 26296 bytes ==== Empty Folders Check ====================== C:\Users\desme\AppData\Local\ActiveSync deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== æTorrent Adobe Flash Player 21 NPAPI Assassin's Creed Unity Assassins Creed IV Black Flag AudioFXSetup AVG AVG 2016 AVG Protection AVG Zen Battlefield Hardline / RePack by Baracuda Belfius Smart Card Reader Chrome-App BurnRecovery Canon iP6700D CheckDevicesConfigurator CyberLink PowerDVD 12 De Sims Middeleeuwen Enemy Front PROPER FMW 1 Gaming Center(x64) Google Chrome Google Update Helper Grand Theft Auto V Heroes & Generals HitmanPro 3.7 Intel(R) Chipset Device Software Intel(R) Management Engine Components Intel(R) ME UninstallLegacy Intel(R) PRO/Wireless Driver Intel(R) Processor Graphics Intel(R) Rapid Storage Technology Intel(R) Wireless Bluetooth(R) Intel© PROSet/Wireless Software Intel© PROSet/Wireless WiFi Software Intel© Security Assist Intel© Trusted Connect Service Client Java 8 Update 77 Java Auto Updater LauncherSetup Malwarebytes Anti-Malware versie 2.2.1.1043 Metro: Last Light Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 Microsoft WSE 3.0 Runtime Mozilla Firefox 45.0.2 (x86 nl) Mozilla Maintenance Service MSI Afterburner 4.1.1 MSI Remind Manager Nahimic for MSI NVIDIA-configuratiescherm 364.72 NVIDIA 3D Vision controllerstuurprogramma 364.44 NVIDIA 3D Vision stuurprogramma 364.72 NVIDIA GeForce Experience 2.11.2.55 NVIDIA GeForce Experience Service NVIDIA Grafisch stuurprogramma 364.72 NVIDIA HD Audio-stuurprogramma 1.3.34.4 NVIDIA Install Application NVIDIA LED Visualizer 1.0 NVIDIA Network Service NVIDIA Optimus Update 2.11.2.55 NVIDIA PhysX Systeem Software 9.15.0428 NVIDIA ShadowPlay 2.11.2.55 NVIDIA Stereoscopic 3D Driver NVIDIA Update 2.11.2.55 NVIDIA Update Core NVIDIA Virtual Audio 1.2.37 OpenOffice 4.1.2 ProductDaemonSetup Realtek Ethernet Controller Driver Realtek High Definition Audio Driver RivaTuner Statistics Server 6.3.0 Rockstar Games Social Club Sherlock Holmes: Crimes and Punishments SHIELD Streaming SHIELD Wireless Controller Driver Sleeping Dogs: Definitive Edition Sniper Ghost Warrior 2 Steam The Crew (Worldwide) The Settlers Online The Witcher 3: Wild Hunt TomTom HOME TomTom HOME Visual Studio Merge Modules Uplay VASCO Card Reader Plug-In (64-Bit) VASCO Smart Card Reader Plug-In (User) Verdun Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables Vulkan Run Time Libraries 1.0.3.0 Vulkan Run Time Libraries 1.0.5.1 WinZip 19.5 XSplit Gamecaster ==== Running Processes ====================== C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Program Files\WMIHook\WMIHookBtnFn\WMI_Hook_Service.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe D:\progs\TomTom HOME 2\TomTomHOMEService.exe D:\progs\Av\avgwdsvcx.exe C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe C:\Program Files\WMIHook\WMIHookBtnFn\WMIHookFnNotifier.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Users\desme\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe D:\progs\Framework\Common\avguix.exe D:\progs\Av\avgui.exe C:\WINDOWS\SysWOW64\ctfmon.exe C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe C:\Users\desme\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Deleting Services ====================== ==== Batch Command(s) Run By Tool====================== Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8120 MB CPU Info: Intel(R) Core(TM) i7-4790S CPU @ 3.20GHz CPU Speed: 3225,1 MHz Sound Card: Speakers (Realtek High Definiti | LG IPS FULLHD-4 (NVIDIA High De | Display Adapters: NVIDIA GeForce GTX 960 | NVIDIA GeForce GTX 960 | NVIDIA GeForce GTX 960 | NVIDIA GeForce GTX 960 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Intel(R) Dual Band Wireless-AC 3160 | Realtek PCIe GBE Family Controller | Microsoft Wi-Fi Direct Virtual Adapter | Bluetooth Device (Personal Area Network) CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SN-208FB Ports: COM5 | COM4 | COM3 LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 118,2GB | D: 906,6GB Hard Disks - Free: C: 75,5GB | D: 487,8GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | ALASKA - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: MICRO-STAR INTERNATIONAL CO., LTD MS-78511 Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Default Browser: Firefox 45.0.2 Internet Explorer Version: 11.162.10586.0 Mozilla Firefox version: 45.0.2 (x86 nl) Google Chrome version: 49.0.2623.112 Sun Java version: 1.8.0_77 (32-bit) Sun Java version: 1.8.0_77 (64-bit) Flash Player version: 21.0.0.213 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\desme\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2016-04-08 18:20:01 1515CCB4E4431338B3FF255D9F91F952 5934784 ----a-w- C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== ====== C:\WINDOWS\Sysnative\drivers ===== ====== C:\WINDOWS\Tasks ====== 2016-03-25 16:54:55 CDB91DFECEDB4905816A2CDD966C0EA0 3926 ----a-w- C:\WINDOWS\Sysnative\Tasks\Adobe Flash Player Updater 2016-03-25 16:54:55 BC54F3853D00017EF5900BCAB961E623 940 ----a-w- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2016-04-11 13:14:18 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2016-04-12 07:59:38 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2016-03-25 16:47:45 -------- d-----w- C:\PROGRA~2\HeroesAndGenerals ======= C: ===== ====== C:\Users\desme\AppData\Roaming ====== 2016-04-10 08:26:18 -------- d-----w- C:\Users\TEMP\AppData\Local\TileDataLayer 2016-04-10 08:26:18 -------- d-----w- C:\Users\TEMP\AppData\Local\Packages 2016-04-10 08:26:17 -------- d-----w- C:\Users\TEMP\AppData\Local 2016-03-30 15:55:57 -------- d-----w- C:\Users\Default\AppData\Local\AVG 2016-03-30 15:55:57 -------- d-----w- C:\Users\Default User\AppData\Local\AVG 2016-03-16 15:38:22 -------- d-----w- C:\Users\desme\AppData\Local\SKIDROW ====== C:\Users\desme ====== 2016-04-10 20:43:47 3241C423EC63CEE2E07B8268FF6B34B9 2523920 ----a-w- C:\Users\desme\Desktop\SimsMedievalLauncher.exe 2016-04-10 20:43:17 BB3320BF0A79A8CDC0D5EEA3318A8036 27877376 ----a-w- C:\Users\desme\Desktop\SniperGhostWarrior2.exe 2016-04-10 08:26:17 -------- d--h--w- C:\Users\TEMP\AppData 2016-03-29 12:30:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 2016-03-25 16:47:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes & Generals 2016-03-16 15:32:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics ====== C: exe-files == 2016-04-12 08:45:44 55BEEABD97E0D556E08A463A58FC17FF 2547800 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\49.0.2623.112\49.0.2623.112_49.0.2623.110_chrome_updater.exe 2016-04-12 08:02:53 962B85D5BC8945D80B4839E47EFE8FDD 152456 ------w- C:\Users\desme\AppData\Local\Temp\{4BF085DB-AFBA-4E7A-9354-36C2B5E3A620}\ISBEW64.exe 2016-04-12 08:02:49 962B85D5BC8945D80B4839E47EFE8FDD 152456 ------w- C:\Users\desme\AppData\Local\Temp\{1166AD28-23D1-447D-8A3B-85F4CBAE4FF7}\ISBEW64.exe 2016-04-12 08:02:47 962B85D5BC8945D80B4839E47EFE8FDD 152456 ------w- C:\Users\desme\AppData\Local\Temp\{48D0247A-0180-4AF4-9FF4-E6400B0EB12C}\ISBEW64.exe 2016-04-12 08:02:46 962B85D5BC8945D80B4839E47EFE8FDD 152456 ------w- C:\Users\desme\AppData\Local\Temp\{E21B4AA9-9151-4001-8819-47672059603B}\ISBEW64.exe 2016-04-12 08:02:44 962B85D5BC8945D80B4839E47EFE8FDD 152456 ------w- C:\Users\desme\AppData\Local\Temp\{1541E549-7D7E-424F-AACA-6C161890795F}\ISBEW64.exe 2016-04-12 08:02:40 962B85D5BC8945D80B4839E47EFE8FDD 152456 ------w- C:\Users\desme\AppData\Local\Temp\{365F6AE4-5607-4F9F-8EB5-28C3ADED7A4F}\ISBEW64.exe 2016-04-12 07:59:26 F85C40988E94C2F463508FBEE94025BF 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\kinit.exe 2016-04-12 07:59:26 F4E94CBB9DEF622171D8943F2160B214 51776 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssvagent.exe 2016-04-12 07:59:26 E2AF676759086BAE2F16D6B5033E7F46 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\policytool.exe 2016-04-12 07:59:26 D763E321831C859D9195ADF15A951E95 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\java-rmi.exe 2016-04-12 07:59:26 D709404CB67D09946628987244B98A60 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\servertool.exe 2016-04-12 07:59:26 D62B10425DC16A177CB64D6B0356F915 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\jjs.exe 2016-04-12 07:59:26 C558C87F624CF96F812028165190EEDE 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\pack200.exe 2016-04-12 07:59:26 C31F1BDBB1902458FA15515BD0D8340B 191040 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\java.exe 2016-04-12 07:59:26 C1F46A7656D1DED6326D8E28B1CF1862 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\rmiregistry.exe 2016-04-12 07:59:26 AC4F3A4F853070419C9E8479B3868103 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\tnameserv.exe 2016-04-12 07:59:26 AAADCD8DA5BCE8986D6FEC09FAB7B70D 68672 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\javacpl.exe 2016-04-12 07:59:26 A756D5633F6596B0E4711E60D3F61BCA 16448 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\orbd.exe 2016-04-12 07:59:26 A5AECC1529B64CB123B1880D3AD0F1AE 268352 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\javaws.exe 2016-04-12 07:59:26 A48BDE309534612FBA41D58E754A38BE 159296 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\unpack200.exe 2016-04-12 07:59:26 8DF0EA1993F98096557A4AFA6235DE4E 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\rmid.exe 2016-04-12 07:59:26 724998551979EB4E0DF53CA3994AF035 77888 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2launcher.exe 2016-04-12 07:59:26 6101EC702C56D5F688AA578AC457A440 30784 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\jabswitch.exe 2016-04-12 07:59:26 5192C3656176D1D21D21372E1061D1A4 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\ktab.exe 2016-04-12 07:59:26 4CC7AA4DCC143BB06999A62B8763EA6C 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\keytool.exe 2016-04-12 07:59:26 2AD9EFBB015490AA315707BAC2BFD816 191552 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\javaw.exe 2016-04-12 07:59:26 26E779D9D96192E312E5DC042E993DED 15936 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\bin\klist.exe 2016-04-11 19:14:33 CC079B17C59F11B2FC193732C3301A59 621288 ----a-w- C:\Users\desme\AppData\Local\NVIDIA\NvBackend\Packages\00008949\CoProc update.20631836.exe 2016-04-11 19:14:33 75C4CD819BA6DB4C8A4A062DA0448C7C 7719080 ----a-w- C:\Users\desme\AppData\Local\NVIDIA\NvBackend\Packages\00008952\DAO.20633384.exe 2016-04-11 16:07:04 9CC9228546B79ED8DE22ADCFB16E06A8 686520 ----a-w- C:\Users\desme\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe 2016-04-11 16:07:00 D57310505F207A707AE67B95EFE4CF3E 254904 ----a-w- C:\Users\desme\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe 2016-04-11 13:14:18 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\desme.exe 2016-04-10 20:43:47 3241C423EC63CEE2E07B8268FF6B34B9 2523920 ----a-w- C:\Users\desme\Desktop\SimsMedievalLauncher.exe 2016-04-10 20:43:17 BB3320BF0A79A8CDC0D5EEA3318A8036 27877376 ----a-w- C:\Users\desme\Desktop\SniperGhostWarrior2.exe 2016-04-10 09:31:30 BA728CECBB7A14A4EDBD625B9AA6E7F2 1879488 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{D6A7B6A8-5C5B-40BC-B0A1-35B64028E6FD}\NVNetworkService.exe 2016-04-10 09:31:30 5C985041974069E43952EAEAAE915270 422456 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{DA25FF33-0890-4644-8F7F-5CAB1FF589D7}\setup.exe 2016-04-10 08:31:19 570193297A02D9332C1122C1C7B756EF 1959424 ----a-w- C:\Users\desme\AppData\Roaming\uTorrent\updates\3.4.6_42094.exe 2016-04-08 18:20:01 1515CCB4E4431338B3FF255D9F91F952 5934784 ----a-w- C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2016-04-08 15:08:38 845C94C35431FD2CD8DA3D770DE8E35B 179624 ----a-w- C:\Users\desme\AppData\Local\Temp\avguirn_08889515756.exe 2016-04-06 16:22:39 4E95AB8BEB2C8FD53B348EF4AD5121C5 149184 ----a-w- C:\Users\desme\AppData\Local\Temp\C84D39D5-23DF-48FE-BF7D-137A055BF3B1\DismHost.exe 2016-04-06 09:31:20 76E5FCCD0A63CF90436ADE9AAABC4D5E 446248 ----a-w- C:\Program Files (x86)\HeroesAndGenerals\live\retoxexe.exe === C: other files == 2016-04-12 07:59:26 4EDC09D3151E434741F50E8F7210D162 14130 ----a-w- C:\Program Files (x86)\Java\jre1.8.0_77\lib\deploy\ffjcext.zip 2016-04-10 09:31:34 9D9CAD70EA640AB8D3EB77BFAE6CABE2 28344 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShieldWirelessController.{5A214D00-A096-4472-BA41-F3BBE97E6971}\NVSWCFilter64.sys 2016-04-10 09:31:34 7ABD081BB7A1A8CF7E3B1E64183AB812 24760 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShieldWirelessController.{5A214D00-A096-4472-BA41-F3BBE97E6971}\NVSWCFilter32.sys 2016-04-10 09:31:34 0BAF8B3DF77EFF04CC0BEA5F2C3657F9 56384 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{C7BA70B2-DF3F-4188-9C87-1E64989A55CB}\nvvad64v.sys 2016-04-10 09:31:33 EFBE8FAA664796E1595274D1868883DC 50752 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{C7BA70B2-DF3F-4188-9C87-1E64989A55CB}\nvvad32v.sys 2016-04-10 09:31:30 ED5FCC6DACF2973386629BC4ABF3DD60 21440 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{DA25FF33-0890-4644-8F7F-5CAB1FF589D7}\NVI2SystemService32.sys 2016-04-10 09:31:30 6E00D4113254F2397A246F9B98CEBA84 22464 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{DA25FF33-0890-4644-8F7F-5CAB1FF589D7}\NVI2SystemService64.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDriveSetup"="C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup" [HKEY_USERS\S-1-5-21-2651267546-2275186073-1641447734-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\desme\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "TomTomHOME.exe"="D:\progs\\TomTom HOME 2\TomTomHOMERunner.exe" [HKEY_USERS\S-1-5-21-2651267546-2275186073-1641447734-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\desme\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\desme\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SilentFanControl"="C:\Program Files\WMIHook\WMIHookBtnFn\SilentFanController.exe" "AvgUi"="D:\progs\Framework\Common\avguirnx.exe /lps=fmw" "AVG_UI"="D:\progs\Av\avuirunnerx.exe D:\progs\Av\avgui.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "OneDrive"="C:\Users\desme\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background" "TomTomHOME.exe"="D:\progs\\TomTom HOME 2\TomTomHOMERunner.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall C:\Users\desme\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"="C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q C:\Users\desme\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "ShadowPlay"="C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60" "NahimicMSIUILauncher"="C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe /noUI" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [08/04/2016 19:20] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19/12/2015 07:35] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19/12/2015 07:35] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\AVGPCTuneUp_Task_BkGndMaintenance" [D:\progs\AVG PC TuneUp\tuscanx.exe] "C:\WINDOWS\SysNative\tasks\CreateExplorerShellUnelevatedTask" [C:\WINDOWS\explorer.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\Java Platform SE Auto Updater" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\WINDOWS\SysNative\tasks\NahimicMSIsvc32Run" ["C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe"] "C:\WINDOWS\SysNative\tasks\NahimicMSIsvc64Run" ["C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe"] "C:\WINDOWS\SysNative\tasks\NahimicMSIUILauncherRun" ["C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe"] "C:\WINDOWS\SysNative\tasks\PDVDServ12 Task" [C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{023C0CCD-65DF-4231-8097-595B4135158B}" [C:\Windows\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\{E9469E6F-2470-D801-5E84-9F03D3E99F7F}" [C:\WINDOWS\system32\regsvr32.exe] ==== Firefox Start and Search pages ====================== ProfilePath: C:\Users\desme\AppData\Roaming\Mozilla\Firefox\Profiles\2gjs6vn6.default user_pref("browser.startup.homepage", "https://www.google.be/|about:preferences"); ==== Firefox Extensions ====================== ProfilePath: C:\Users\desme\AppData\Roaming\TomTom\HOME\Profiles\e21k0umr.default - Map status indicator - D:\progs\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - D:\progs\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com AppDir: C:\Program Files (x86)\Mozilla Firefox - Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\desme\AppData\Roaming\Mozilla\Firefox\Profiles\2gjs6vn6.default 57C7E359ED8D049132EED23EFA444C63 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll - Shockwave Flash CAF78E18A9E1380A0A38065B3B1210E0 - C:\Users\desme\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin.dll - VASCO Card Reader Plugin 1CDD28B47D8198F868349BDFBCD1281B - C:\Users\desme\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin64.dll - VASCO Card Reader Plugin ==== Chromium Look ====================== Google Slides - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek Belfius Smart Card Reader Chrome Extension - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\agicnfmechmlphpjmeefookfjhifbmhi Google Docs - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Sheets - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap Google Docs Offline - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi Chrome Web Store Payments - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - desme\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://oem15.msn.com/?pc=NMTE" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://oem15.msn.com/?pc=NMTE" ==== All HKLM and HKCU SearchScopes ====================== HKLM\SearchScopes "DefaultScope"="{A91A14A4-369F-4941-AFB3-C67D79ABBB85}" HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\SearchScopes\{A91A14A4-369F-4941-AFB3-C67D79ABBB85} - http://www.bing.com/search?q={searchTerms}&form=PRNAM1&src=IE11TR&pc=NMTE; HKLM\Wow6432Node\SearchScopes "DefaultScope"="{A91A14A4-369F-4941-AFB3-C67D79ABBB85}" HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC HKLM\Wow6432Node\SearchScopes\{A91A14A4-369F-4941-AFB3-C67D79ABBB85} - http://www.bing.com/search?q={searchTerms}&form=PRNAM1&src=IE11TR&pc=NMTE; HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms} HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 HKCU\SearchScopes\{A91A14A4-369F-4941-AFB3-C67D79ABBB85} - No_Url_Value ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll O4 - HKLM\..\Run: [SilentFanControl] C:\Program Files\WMIHook\WMIHookBtnFn\SilentFanController.exe O4 - HKLM\..\Run: [AvgUi] "D:\progs\Framework\Common\avguirnx.exe" /lps=fmw O4 - HKLM\..\Run: [AVG_UI] "D:\progs\Av\avuirunnerx.exe" D:\progs\Av\avgui.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [OneDrive] "C:\Users\desme\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background O4 - HKCU\..\Run: [TomTomHOME.exe] "D:\progs\\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\RunOnce: [Uninstall C:\Users\desme\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\desme\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64" O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE') O4 - Global Startup: FAH.lnk = C:\Program Files\WinZip\FAH\FAHConsole.exe O4 - Global Startup: WinZip Preloader.lnk = C:\Program Files\WinZip\WzPreloader.exe O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: http://*.webcompanion.com O17 - HKLM\System\CCS\Services\Tcpip\..\{08c49d1f-5f39-4492-91a6-4eca25d5d49d}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\..\{120d0ee3-60af-447c-af17-57bb742fe101}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4 O17 - HKLM\System\CS1\Services\Tcpip\..\{08c49d1f-5f39-4492-91a6-4eca25d5d49d}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4 O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - D:\progs\Av\avgamps.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - D:\progs\Av\avgidsagent.exe O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - D:\progs\Framework\Common\avgsvca.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - D:\progs\Av\avgwdsvcx.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: Intel Bluetooth Service (ibtsiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing) O23 - Service: TomTomHOMEService - TomTom - D:\progs\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: WMI_Hook_Service - MICRO-STAR INT'L,.LTD. - C:\Program Files\WMIHook\WMIHookBtnFn\WMI_Hook_Service.exe O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\desme\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\desme\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\desme\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\desme\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\desme\AppData\Local\Mozilla\Firefox\Profiles\2gjs6vn6.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\desme\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== No Flash Cache Found ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=109 folders=83 120453171 bytes) ==== Empty Temp Folders ====================== C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\desme\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on di 12/04/2016 at 18:45:32,26 ======================