Zoek.exe v5.0.0.0 Updated 16-07-2014
Tool run by Fons Janssens on za 19/07/2014 at 19:53:31,05.
Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Fons Janssens\Downloads\zoek.exe [Scan all users] [Script inserted] [Checkboxes used]

==== System Restore Info ======================

19/07/2014 19:59:52 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Adblocker deleted successfully
C:\PROGRA~2\BearShare Applications deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\COMMON~1\Apple deleted successfully
C:\PROGRA~3\Browser Manager deleted successfully
C:\PROGRA~3\BrowserProtect deleted successfully
C:\PROGRA~3\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} deleted successfully
C:\Users\Fons Janssens\AppData\Roaming\DAEMON Tools Lite deleted successfully
C:\Users\Fons Janssens\AppData\Roaming\Opera deleted successfully
C:\Users\Fons Janssens\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\Fons Janssens\AppData\Local\DriverToolkit deleted successfully
C:\Users\Fons Janssens\AppData\Local\Opera deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4238754280-3582502495-1345173580-1001\Software\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5} deleted successfully
HKEY_USERS\S-1-5-21-4238754280-3582502495-1345173580-1001\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully
HKEY_USERS\S-1-5-21-4238754280-3582502495-1345173580-1001\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
HKEY_USERS\S-1-5-21-4238754280-3582502495-1345173580-1001\Software\Microsoft\Internet Explorer\SearchScopes\{52db1893-8a90-4192-aede-08e00b8f8473} deleted successfully
HKEY_USERS\S-1-5-21-4238754280-3582502495-1345173580-1001\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} deleted successfully
HKEY_USERS\S-1-5-21-4238754280-3582502495-1345173580-1001\Software\Microsoft\Internet Explorer\SearchScopes\{C5CC5EAF-EC25-4742-B5FA-E7A36FEEE988} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3444c3c5-6c56-4a16-a453-832b05bf6ea4} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Approved Extensions\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{3444c3c5-6c56-4a16-a453-832b05bf6ea4} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{ae07101b-46d4-4a98-af68-0333ea26e113} deleted successfully

==== Running Processes ======================

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
C:\Program Files (x86)\DriverToolkitT\DriverToolkit.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Users\Fons Janssens\Downloads\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Windows\SysWOW64\cmd.exe

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater15.5.0 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater15.5.0 deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\FONSJA~1\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default

---- Lines WebSearch removed from prefs.js ----
user_pref("browser.search.order.1,S", "WebSearch");
user_pref("browser.search.defaultenginename,S", "WebSearch");
user_pref("browser.search.selectedEngine,S", "WebSearch");
user_pref("browser.search.defaulturl", "http://websearch.flyandsearch.info/?pid=724&r=2014/06/30&hid=13977051861056637209&lg=EN&cc=BE&l=1&q=");
---- Lines ask.com removed from prefs.js ----
user_pref("browser.search.defaultenginename", "Ask.com");
user_pref("browser.search.order.1", "Ask.com");
user_pref("browser.search.selectedEngine", "Ask.com");
user_pref("browser.startup.homepage", "http://www.search.ask.com/?o=APN10640A&gct=hp&d=473-105&v=a13350-148&t=4");
user_pref("keyword.URL", "http://dts.search.ask.com/sr?src=ffb&gct=ds&appid=105&systemid=473&v=a13350-148&apn_dtid=BND101&apn_ptnrs=AG1&apn_uid=141457
---- Lines Lyric removed from prefs.js ----
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.description", "A2ZLyrics will find any lyrics on
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.name", "a2zLyrics-16");
---- Lines crossrider removed from prefs.js ----
user_pref("extensions.crossrider.bic", "1421eff2d21af0098b786340a2ce6812");
---- Lines mybrowserbar modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{F53C93F1-07D5-430c-86D4-C9531B27DFAF}\":{\"descriptor\":\"C:\\\\
---- Lines a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168 removed from prefs.js ----
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.active", true);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.addressbar", "NA");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.addressbarenhanced", "");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.asyncdb_dbWasSet", true);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.asyncinternaldb_dbWasSet", true);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.backgroundver", 1);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.certdomaininstaller", "");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.changeprevious", false);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.cookie.InstallationTime.expiration", "Fri Feb 01
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.cookie.InstallationTime.value", "1383499509");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.domain", "");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.enablesearch", false);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.homepage", "");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.iframe", false);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.InstallationThankYouPage", false);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.InstallationTime", 1383499509);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb._country_code_.expiration", "Fri Feb 
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb._country_code_.value", "%22BE%22");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.installer.expiration", "Fri Feb 01 20
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.installer.value", "%7B%22InstallerIde
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.InstallerIdentifiers.expiration", "Fr
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.InstallerIdentifiers.value", "%7B%22i
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_appVer.expiration", "Fri Fe
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_appVer.value", "5");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_lastVersion.expiration", "F
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_lastVersion.value", "1");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_meta.expiration", "Fri Feb 
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_meta.value", "%7B%7D");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_queue.expiration", "Fri Feb
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_queue.value", "%7B%7D");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_remote_resources.expiration
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.internaldb.Resources_remote_resources.value", "%
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.lastDailyReport", "1385047389160");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.lastUpdate", "1385047367185");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.manifesturl", "");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.newtab", "");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.opensearch", "");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.pluginsurl", "https://w9u6a2p6.ssl.hwcdn.net/plu
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.pluginsversion", 2);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.publisher", "dealscompare");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.searchstatus", 0);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.setnewtab", false);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.thankyou", "");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.updateinterval", 360);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.44168.ver", 5);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.apps", "44168");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.bic", "1421eff2d21af0098b786340a2ce6812");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.cid", 44168);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.firstrun", false);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.hadappinstalled", true);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.installationdate", 1383499509);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.modetype", "production");
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.reportInstall", true);
user_pref("extensions.a2f86d47111224c15901ad7fd67316cd9ca42b8d20eb647be84a26d95abe186e8com44168.statsDailyCounter", 3);
---- Lines {3444c3c5-6c56-4a16-a453-832b05bf6ea4} modified from prefs.js ----

user_pref("extensions.enabledAddons", "{ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.10,ascsurfingprotection@iobit.com:1.0,pricepeep@getpricepeep.com:2.2
user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{F53C93F1-07D5-430c-86D4-C9531B27DFAF}\":{\"descriptor\":\"C:\\\\
---- FireFox user.js and prefs.js backups ---- 

user_20141907_2018_.backup
prefs_20141907_2018_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command]
@="C:\\Program Files (x86)\\Mozilla Firefox\\firefox.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command]
@="C:\\Program Files\\Internet Explorer\\iexplore.exe"

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{47A92A2D-E96E-F911-C165-2F1FAFDAE075}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{641D01B4-3035-8C7E-501F-297814D02176}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3444c3c5-6c56-4a16-a453-832b05bf6ea4}] 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 
"iLivid"=- 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] 
""=- 
"SearchSettings"=- 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLs"=- 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe] 

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\IObit Apps Toolbar not found
C:\Program Files (x86)\Common Files\Spigot\Search Settings not found
C:\Users\Fons Janssens\AppData\Local\iLivid not found
C:\Program Files (x86)\Application Updater not found
C:\Program Files (x86)\Movies Toolbar not found
C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{3444c3c5-6c56-4a16-a453-832b05bf6ea4} not found
C:\Users\Fons Janssens\AppData\Roaming\FirefoxToolbar not found
C:\ProgramData\SafetyNut not found
C:\ProgramData\Adblocker not found
C:\Program Files (x86)\Adblocker not found
C:\ProgramData\save oon not found
C:\Program Files (x86)\save oon not found
C:\Program Files (x86)\PricePeep not found
C:\PROGRA~3\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} not found
C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{3444c3c5-6c56-4a16-a453-832b05bf6ea4} not found
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater deleted
C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\2f86d471-1122-4c15-901a-d7fd67316cd9@ca42b8d2-0eb6-47be-84a2-6d95abe186e8.com deleted
C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\staged deleted
C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} deleted
C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9} deleted
C:\ProgramData\NEuxtCOupu deleted
C:\Program Files (x86)\NEuxtCOupu deleted
C:\Users\Fons Janssens\AppData\Roaming\EZDownloader deleted
C:\ProgramData\SearcH-NewTuab deleted
C:\Program Files (x86)\SearcH-NewTuab deleted
C:\Program Files (x86)\SW-Booster deleted
C:\ProgramData\8f18197b198d858a deleted
C:\ProgramData\InstallMate deleted
C:\ProgramData\Wincert deleted
C:\Program Files (x86)\SearchProtect deleted
C:\Users\Fons Janssens\AppData\Roaming\DVDVideoSoft deleted
C:\Users\Fons Janssens\AppData\LocalLow\{28A876C2-C2B5-1351-8211-84D37D387430} deleted
C:\Users\Fons Janssens\AppData\LocalLow\{47A92A2D-E96E-F911-C165-2F1FAFDAE075} deleted
C:\Users\Fons Janssens\AppData\LocalLow\{641D01B4-3035-8C7E-501F-297814D02176} deleted
C:\Users\Fons Janssens\AppData\LocalLow\{CF36E69A-A824-4E40-D83A-B932377BB5A6} deleted
C:\Users\Fons Janssens\AppData\Local\Packages\windows_ie_ac_001\AC\{28A876C2-C2B5-1351-8211-84D37D387430} deleted
C:\Users\Fons Janssens\AppData\Local\Packages\windows_ie_ac_001\AC\{47A92A2D-E96E-F911-C165-2F1FAFDAE075} deleted
C:\Users\Fons Janssens\AppData\Local\Packages\windows_ie_ac_001\AC\{641D01B4-3035-8C7E-501F-297814D02176} deleted
C:\Users\Fons Janssens\AppData\Local\Packages\windows_ie_ac_001\AC\{CF36E69A-A824-4E40-D83A-B932377BB5A6} deleted
C:\PROGRA~2\TornTV.com deleted
C:\PROGRA~2\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml deleted
C:\PROGRA~2\Mozilla Firefox\searchplugins\dosearches.xml deleted
C:\PROGRA~2\DealPly deleted
C:\PROGRA~2\DealPlyLive deleted
C:\PROGRA~2\Wise\Wise Registry Cleaner deleted
C:\PROGRA~2\AVG Secure Search deleted
C:\PROGRA~2\COMMON~1\AVG Secure Search deleted
C:\search.sqlite deleted
C:\Users\Fons Janssens\AppData\Roaming\SkypEmoticons deleted
C:\Users\Fons Janssens\AppData\Roaming\Dealply deleted
C:\Users\Fons Janssens\AppData\Roaming\OpenCandy deleted
C:\PROGRA~3\APN deleted
C:\PROGRA~3\DealPlyLive deleted
C:\PROGRA~3\AVG Secure Search deleted
C:\Users\Fons Janssens\AppData\Local\SearchProtect deleted
C:\Users\Fons Janssens\AppData\Local\AVG Secure Search deleted
C:\Users\Fons Janssens\AppData\Local\DealPlyLive deleted
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx deleted
C:\Users\Fons Janssens\Searches deleted
C:\Users\Fons Janssens\AppData\LocalLow\AVG Secure Search deleted
C:\Users\Fons Janssens\AppData\LocalLow\searchresultstb deleted
C:\Users\Fons Janssens\AppData\LocalLow\DataMngr deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\Search Settings deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\Application Updater deleted
C:\prefs.js deleted
C:\Users\FONSJA~1\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\searchplugins\Ask.xml deleted
C:\Users\FONSJA~1\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\searchplugins\Web Search.xml deleted
C:\Users\FONSJA~1\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\searchplugins\WebSearch.xml deleted
C:\PROGRA~2\Mozilla Firefox\searchplugins\Ask.xml deleted
C:\PROGRA~2\Mozilla Firefox\browser\searchplugins\Ask.xml deleted
"C:\Windows\Installer\22c2dd.msi" deleted
"C:\Users\FONSJA~1\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\iobitapps@mybrowserbar.com" deleted
"C:\PROGRA~2\COMMON~1\Spigot" deleted

==== System Specs ======================

Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 2039 MB
CPU Info: Intel(R) Core(TM)2 CPU         T5500  @ 1.66GHz
CPU Speed: 931,6 MHz
Sound Card: Not detected
Display Adapters: Mobile Intel(R) 945 Express Chipset Family | Mobile Intel(R) 945 Express Chipset Family | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm | 
Screen Resolution: 1400 X 1050 - 32 bit
Network: Network Present
Network Adapters: Dell draadloze 1490 Dual Band WLAN Mini-kaart | Broadcom 440x 10/100 Integrated Controller
CD / DVD Drives: 1x (E: | ) E: HL-DT-STCDRW/DVD GCC4244
Ports: COM1 | COM3 LPT Port NOT Present. 
Mouse: 3 Button Wheel Mouse Present
Hard Disks: C:  149,6GB | D:  83,1GB
Hard Disks - Free: C:  75,3GB | D:  81,1GB
Manufacturer *: Dell Inc.
BIOS Info: AT/AT COMPATIBLE | 05/28/07 | DELL   - 27d7051c
Time Zone: Romance (standaardtijd)
Motherboard *: Dell Inc. 0NF743
Country: Belgi‰ 
Language: NLB 

==== System Specs (Software) ======================

Anti-Virus: AVG Anti-Virus Free Edition 2012 On-access scanning disabled (Outdated)
Anti-Spyware: AVG Anti-Virus Free Edition 2012 disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Google Chrome	35.0.1916.153
Internet Explorer Version: 11.0.9600.16521 
Mozilla Firefox version: 13.0.1 (x86 nl)
Google Chrome version: 35.0.1916.153
Adobe Reader version: 11.0.07.79
Sun Java version: 1.7.0_05 (32-bit) 
Flash Player version: 14.0.0.145

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-07-18 12:20:38	0F869E88FA4489FBE231A42646488CE8	339968	----a-w-	C:\Windows\stsystra.exe
====== C:\Users\FONSJA~1\AppData\Local\Temp ====
2014-07-19 16:56:40	0E21133A8CD4C1220961DD9ABD3CDF91	414632	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{FCCD8D41-16BA-468B-B71B-66957A7615A7}\{1AEC7728-1640-4E98-AABC-5EBE3FB57FE4}\difxapi.dll
2014-07-18 12:00:49	4B56C021299344676F123FCB48F53C1E	70064	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{9AE18F0A-2D5E-4A1C-A6F4-75A7E420142F}\ISBEW64.exe
2014-07-18 12:00:49	0E21133A8CD4C1220961DD9ABD3CDF91	414632	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{9AE18F0A-2D5E-4A1C-A6F4-75A7E420142F}\{1AEC7728-1640-4E98-AABC-5EBE3FB57FE4}\difxapi.dll
2014-07-18 11:59:51	2985A79020EC96AFC2D1C8AB318B866F	385968	----a-r-	C:\Users\Fons Janssens\AppData\Local\Temp\{F8960D21-55D1-478A-B2C7-5F96F5E00B7D}\_Setup.dll
2014-07-18 11:59:51	2985A79020EC96AFC2D1C8AB318B866F	385968	----a-r-	C:\Users\Fons Janssens\AppData\Local\Temp\{882C29E0-B414-483F-A4B0-B011EBEAD2B3}\_Setup.dll
2014-07-18 11:37:21	DE6EE34EADDC1ADD4CAC6CF508FBAEA7	2661368	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmwl6.sys
2014-07-18 11:37:21	DAFDB9A7F8F07F1EEAA73A4551486217	91376	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmwlcoi.dll
2014-07-18 11:37:21	D84B17B03376ACBB7717928071429707	2978296	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmwl664.sys
2014-07-18 11:37:21	D084BE872972862C5ABFA52FF37CA98B	4186112	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmihvsrv.dll
2014-07-18 11:37:21	7D00F32F94CC8362510341071DF66926	4211712	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmihvsrv64.dll
2014-07-18 11:37:21	786184C7F69135EB7FDD6132EEA50D90	95472	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmwlcoi64.dll
2014-07-18 11:37:21	7781FCFA98EC5D1F65978BFDBFFF05DC	3876352	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmihvui64.dll
2014-07-18 11:37:21	28BF75FBE9C5085F96410CA15030FDA2	3878912	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmihvui.dll
2014-07-18 10:03:55	CF95932C00190451115C782E139DE582	264488	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\MSS\3.8.150.1\McInstallerRes.dll
2014-07-18 10:03:55	2AA753368BF68871962D2E99B8692985	153760	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\MSS\3.8.150.1\McInstallerRes_LD.dll
2014-07-18 10:03:54	C4CF03B998D4D758B89CD07F22D7A7F9	645168	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\MSS\3.8.150.1\McUICnt.exe
2014-07-18 10:03:54	87AA773F15D90973090D4DF76F8E60EF	565808	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\MSS\3.8.150.1\mcbrwsr2.dll
2014-07-18 10:03:54	14E9947D26B0A418AA02F87741E4B40B	769736	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\MSS\3.8.150.1\McInstallerStartup.dll
2014-07-07 16:47:16	02C162FD7706E887624DFCC410979355	156061	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\nsqBBA6.exe
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-07-18 12:20:38	578949C3C53218ED2823549D149A1322	90112	----a-w-	C:\Windows\SysWOW64\stacapi.dll
2014-07-18 12:20:31	3BD756656A10FEC9DEED14D357D585C5	103936	----a-w-	C:\Windows\SysWOW64\staco.dll
2014-07-18 11:37:42	BAD2BCB798B49A56B70A459A30DD93D1	459	----a-w-	C:\Windows\SysWOW64\vcredist_x64.bat
2014-07-18 11:37:42	40395C175553CB14D2050888EFCCDF00	4961800	----a-w-	C:\Windows\SysWOW64\vcredist_x64.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-07-19 17:17:48	F883003AC6715537950D0B3E4C609C42	122880	----a-w-	C:\Windows\Sysnative\stacsv64.exe
2014-07-19 17:17:48	60FF63EA4CB849523A6B42A256051EA4	5083648	----a-w-	C:\Windows\Sysnative\stacui64.cpl
2014-07-19 17:17:48	4032890EFE6355375B25FD755B8CB188	1603584	----a-w-	C:\Windows\Sysnative\stlang64.dll
2014-07-18 13:11:49	F16BA845ED220A324E5B28C5A64327D4	348160	----a-w-	C:\Windows\Sysnative\stcplx64.dll
2014-07-18 13:11:49	C7A42A93BBD2CAA2B7FBDD853EE63E86	385536	----a-w-	C:\Windows\Sysnative\stapi64.dll
2014-07-18 13:11:49	71AE14EC783DF5D2636253B9AD2D498F	583680	----a-w-	C:\Windows\Sysnative\stapo64.dll
2014-07-18 13:11:49	007B1D5741BD35DEDDB96940D6754C44	181248	----a-w-	C:\Windows\Sysnative\st645866.dll
2014-07-18 12:20:32	B0A8FA67794693F28C2969C150C89D3C	177664	----a-w-	C:\Windows\Sysnative\staco64.dll
2014-07-18 11:54:54	5AAF2F847547B3D973AFC1C710B70088	177664	----a-w-	C:\Windows\Sysnative\st645614.dll
2014-07-18 11:54:54	2E6F3BB4EA85292714533BE5FCAC3404	45568	----a-w-	C:\Windows\Sysnative\ctppld.dll
2014-07-18 11:54:54	1B8300D1C0256E958236583E3DF7D19B	600064	----a-w-	C:\Windows\Sysnative\ctapo64.dll
2014-07-18 11:39:09	01FA8770DAD6A4B96837FD4509AAE472	891944	----a-w-	C:\Windows\Sysnative\oem4.inf
2014-07-18 11:37:42	DE1B662399D7F5FFF54D351E5CCA0FA6	4745216	----a-w-	C:\Windows\Sysnative\bcmttls.dll
2014-07-18 11:37:42	949298D24AFA16617A28AB179064F411	6656	----a-w-	C:\Windows\Sysnative\bcmwlrc.dll
2014-07-18 11:37:41	F6F02ACC9F12ED50752A46D6D604366C	3161088	----a-w-	C:\Windows\Sysnative\vcredist_x64.exe
2014-07-18 11:37:41	F2CD1BCAF88E9B8605FABA59D95D6112	457	----a-w-	C:\Windows\Sysnative\vcredist_x64.bat
2014-07-18 11:37:41	9865DD49B57E5F9F902C946DA38E13E1	73216	----a-w-	C:\Windows\Sysnative\wltrynt.dll
2014-07-18 11:37:41	7F7741C85DC42841594416CE154D7237	60416	----a-w-	C:\Windows\Sysnative\bcmwlrmt.dll
2014-07-18 11:37:41	1A79E713EBDACCFD293B4983DAA635EC	7927808	----a-w-	C:\Windows\Sysnative\BCMWLCPL.CPL
2014-07-18 11:37:39	7D00F32F94CC8362510341071DF66926	4211712	----a-w-	C:\Windows\Sysnative\bcmihvsrv64.dll
2014-07-18 11:37:39	786184C7F69135EB7FDD6132EEA50D90	95472	----a-w-	C:\Windows\Sysnative\bcmwlcoi.dll
2014-07-18 11:37:39	7781FCFA98EC5D1F65978BFDBFFF05DC	3876352	----a-w-	C:\Windows\Sysnative\bcmihvui64.dll
====== C:\Windows\Sysnative\drivers =====
2014-07-18 13:11:49	E964DB5400CFD56FC99CD2AB1B21213F	393216	----a-w-	C:\Windows\Sysnative\drivers\stwrt64.sys
2014-07-18 12:20:31	063B2B24EDC186BF43B859AB45AB0F2D	217088	----a-w-	C:\Windows\Sysnative\drivers\sthda64.sys
2014-07-18 11:37:42	50D45E314B13F70BF328D783868E6EA6	22520	----a-w-	C:\Windows\Sysnative\drivers\bcm42rly.sys
2014-07-18 11:37:42	324C4D3C3FC6ACCB72D5D83986442EBB	47632	----a-w-	C:\Windows\Sysnative\drivers\npf.sys
2014-07-18 11:37:38	D84B17B03376ACBB7717928071429707	2978296	----a-w-	C:\Windows\Sysnative\drivers\BCMWL664.SYS
====== C:\Windows\Tasks ======
2014-07-18 13:09:36	4C7DB8A3907E24A2C2D11D0442904293	2762	----a-w-	C:\Windows\Sysnative\Tasks\DriverToolkit Autorun
2014-07-18 13:09:36	2EB92DF1BEA8B61F7045CAEDE4C272DE	376	----a-w-	C:\Windows\Tasks\DriverToolkit Autorun.job
2014-06-30 14:11:39	AC33EA76BC59A5764055F362F5AE9D6C	468	---ha-w-	C:\Windows\Tasks\SW-Booster-S-5415902620.job
2014-06-30 14:11:39	187EDE4F1A17BA2BDE6D3C125EFA070D	2714	----a-w-	C:\Windows\Sysnative\Tasks\SW-Booster-S-5415902620
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-07-19 15:57:25	--------	d-----w-	C:\Program Files\trend micro
2014-07-18 13:12:29	--------	d-----w-	C:\Program Files\DIFX
2014-07-18 11:54:56	--------	d-----w-	C:\Program Files\SigmaTel
2014-07-18 11:37:38	--------	d-----w-	C:\Program Files\Dell
======= C:\PROGRA~2 =====
2014-07-18 13:08:27	--------	d-----w-	C:\PROGRA~2\DriverToolkitT
2014-07-18 12:22:58	--------	d-----w-	C:\PROGRA~2\DriverToolkit
2014-07-18 12:01:11	--------	d-----w-	C:\PROGRA~2\SMSC
2014-07-18 11:54:54	--------	d-----w-	C:\PROGRA~2\SigmaTel
2014-07-18 11:41:32	--------	d-----w-	C:\PROGRA~2\Cisco
2014-07-18 11:36:25	--------	d-----w-	C:\PROGRA~2\COMMON~1\InstallShield
2014-07-01 15:45:19	--------	d-----w-	C:\PROGRA~2\World of Warcraft
2014-07-01 15:43:18	--------	d-----w-	C:\PROGRA~2\COMMON~1\Blizzard Entertainment
2014-07-01 15:43:18	--------	d-----w-	C:\PROGRA~2\Battle.net
2014-06-28 23:03:08	--------	d-----w-	C:\PROGRA~2\COMMON~1\DESIGNER
2014-06-19 20:06:50	--------	d-----w-	C:\PROGRA~2\COMMON~1\Skype
======= C: =====
2014-07-03 13:13:07	7400F5953C35A63180C2C4AFEB03A7DF	3304	------w-	C:\bootsqm.dat
====== C:\Users\Fons Janssens\AppData\Roaming ======
2014-07-18 13:15:19	9A317D3BF6170A293853929083E087D0	26900	----a-w-	C:\Users\Fons Janssens\AppData\Local\dt.dat
2014-07-18 12:00:49	--------	d-----w-	C:\Users\Fons Janssens\AppData\Roaming\InstallShield
2014-07-18 11:30:55	--------	d-----w-	C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-07-18 11:27:41	--------	d-----w-	C:\Users\Fons Janssens\AppData\Local\ElevatedDiagnostics
2014-07-01 15:44:04	--------	d-----w-	C:\Users\Fons Janssens\AppData\Local\Blizzard Entertainment
2014-07-01 15:43:48	--------	d-----w-	C:\Users\Fons Janssens\AppData\Roaming\Battle.net
2014-07-01 15:43:48	--------	d-----w-	C:\Users\Fons Janssens\AppData\Local\Battle.net
2014-06-30 14:11:15	--------	d-----w-	C:\Users\Fons Janssens\AppData\Local\Packages
2014-06-30 14:11:04	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-06-30 14:11:04	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
2014-06-30 14:11:04	--------	d-----w-	C:\Users\Gast\AppData\Local\Torch
2014-06-30 14:11:04	--------	d-----w-	C:\Users\Gast\AppData\Local\Chromatic Browser
2014-06-30 14:11:04	--------	d-----w-	C:\Users\Fons Janssens\AppData\Local\Torch
2014-06-30 14:11:04	--------	d-----w-	C:\Users\Fons Janssens\AppData\Local\Chromatic Browser
2014-06-30 14:11:04	--------	d-----w-	C:\Users\Administrator\AppData\Local\Torch
2014-06-30 14:11:04	--------	d-----w-	C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-06-30 14:11:03	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Google
2014-06-30 14:11:03	--------	d-----w-	C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-06-30 14:11:03	--------	d-----w-	C:\Users\Gast\AppData\Local\Google
2014-06-30 14:11:03	--------	d-----w-	C:\Users\Gast\AppData\Local\Comodo
2014-06-30 14:11:03	--------	d-----w-	C:\Users\Fons Janssens\AppData\Local\Comodo
2014-06-30 14:11:03	--------	d-----w-	C:\Users\Administrator\AppData\Local\Google
2014-06-30 14:11:03	--------	d-----w-	C:\Users\Administrator\AppData\Local\Comodo
2014-06-28 20:04:11	--------	d-----w-	C:\Users\Fons Janssens\AppData\Local\Programs
====== C:\Users\Fons Janssens ======
2014-07-19 16:55:30	18C308EC68A3BE00FB9CF82961341608	4299048	----a-w-	C:\Users\Fons Janssens\Downloads\R141765 (1).exe
2014-07-18 13:08:27	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
2014-07-18 12:32:23	--------	d-----w-	C:\ProgramData\DriverGenius
2014-07-18 12:22:33	CEC88D9E1FE27F01F3A3ED1F449713BF	2395840	----a-w-	C:\Users\Fons Janssens\Downloads\driver_setup.exe
2014-07-18 12:20:12	FC5D02EFAC8F3E86DD9989F629E312BE	3957096	----a-w-	C:\Users\Fons Janssens\Downloads\R107035 (1).EXE
2014-07-18 12:19:57	FC5D02EFAC8F3E86DD9989F629E312BE	3957096	----a-w-	C:\Users\Fons Janssens\Downloads\R107035.EXE
2014-07-18 12:19:17	A031741B4E8C49E46A7C29FAE8B30658	5213848	----a-w-	C:\Users\Fons Janssens\Downloads\sigmatel-audio-driver-v5-10-5067-0.exe
2014-07-18 12:17:20	024F7A646613792FD7398BED4722BF4C	8345792	----a-w-	C:\Users\Fons Janssens\Downloads\R171789 (1).exe
2014-07-18 11:58:48	18C308EC68A3BE00FB9CF82961341608	4299048	----a-w-	C:\Users\Fons Janssens\Downloads\R141765.exe
2014-07-18 11:53:43	DAFD76FE7186C4C1671A7F5665C4D1AD	8238088	----a-w-	C:\Users\Fons Janssens\Downloads\R171788.exe
2014-07-18 11:51:35	77CC0CB1F568304B321618650FC269A0	417824	----a-w-	C:\Users\Fons Janssens\Downloads\DellSystemDetect (1).exe
2014-07-18 11:39:14	--------	d-----r-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
2014-07-18 11:35:47	FC66C4A791E3F06847F27F1E74450305	2382080	----a-w-	C:\Users\Fons Janssens\Downloads\R58070_NW9YX_SETUP_ZPE.exe
2014-07-18 11:35:07	024F7A646613792FD7398BED4722BF4C	8345792	----a-w-	C:\Users\Fons Janssens\Downloads\R171789.exe
2014-07-18 11:32:04	4DBD992C8D8EDC8ACE36DE993E26C52D	82164696	----a-w-	C:\Users\Fons Janssens\Downloads\R242438.exe
2014-07-18 11:29:29	77CC0CB1F568304B321618650FC269A0	417824	----a-w-	C:\Users\Fons Janssens\Downloads\DellSystemDetect.exe
2014-07-01 15:43:18	--------	d-----w-	C:\ProgramData\Blizzard Entertainment
2014-07-01 15:28:43	--------	d-----w-	C:\ProgramData\Battle.net
2014-06-30 14:11:39	--------	d-----w-	C:\ProgramData\AnyAppSnow
2014-06-30 14:11:05	6471C52810B8A50B8C7897FBE5F0E2D1	398	--sha-r-	C:\ProgramData\ntuser.pol
2014-06-30 14:11:03	--------	d-----w-	C:\Users\HomeGroupUser$\AppData
2014-06-30 14:11:03	--------	d-----w-	C:\Users\Gast\AppData
2014-06-30 14:11:03	--------	d-----w-	C:\Users\Administrator\AppData
2014-06-28 20:09:39	--------	d-----w-	C:\ProgramData\TEMP

====== C: exe-files ==
2014-07-19 17:17:48	F883003AC6715537950D0B3E4C609C42	122880	----a-w-	C:\Windows\System32\stacsv64.exe
2014-07-19 16:55:30	18C308EC68A3BE00FB9CF82961341608	4299048	----a-w-	C:\Users\Fons Janssens\Downloads\R141765 (1).exe
2014-07-18 13:16:23	9CE528D9FE5554F364CB9926317D726B	5345280	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\7d98e9819fb33ed5f6836a8f99dba5ff.exe
2014-07-18 13:12:29	BE3C79033FA8302002D9D3A6752F2263	1050104	----a-w-	C:\Program Files\DIFX\4A7292F75FEBBD3C\DPInst64.exe
2014-07-18 13:12:24	05F4262FDBDFAECA7EF9B3F0807508FC	86016	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\WDM\AESTSr64.exe
2014-07-18 13:11:49	FF5221C4CAEC1C517AB5D36457CB9DB4	405504	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\sttray.exe
2014-07-18 13:11:49	F883003AC6715537950D0B3E4C609C42	122880	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\stacsv64.exe
2014-07-18 13:11:49	EF1142512BEC12F1C2C87735DA1755BE	73728	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\AESTSrv.exe
2014-07-18 13:11:49	9F089EBE89515B594226FAB1FE408484	425984	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\sttray64.exe
2014-07-18 13:11:49	7D2545E67F6F6AE0082831C4F76E8139	27648	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\suhlp.exe
2014-07-18 13:11:49	7D0AC15139894376F1A7BF2019828DCE	36352	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\suhlp64.exe
2014-07-18 13:11:49	71679F24D0D0B2C6403BB5AC57026E99	102400	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\stacsv.exe
2014-07-18 13:11:49	0F30B7AC2B0505ADC1E9325916365DF0	117200	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\setup.exe
2014-07-18 13:11:49	05F4262FDBDFAECA7EF9B3F0807508FC	86016	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\AESTSr64.exe
2014-07-18 13:11:44	E643BB3ACA98E2D0C8E89A8D31BFF36F	9017600	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517.EXE
2014-07-18 13:08:27	DDE1B9C13758AF59B364B63852CD8F29	596768	----a-w-	C:\Program Files (x86)\DriverToolkitT\extract.exe
2014-07-18 13:08:27	BE3C79033FA8302002D9D3A6752F2263	1050104	----a-w-	C:\Program Files (x86)\DriverToolkitT\DPInst64.exe
2014-07-18 13:08:27	B1D6153B48E44D135FE52764DFBF9EE5	1209033	----a-w-	C:\Program Files (x86)\DriverToolkitT\unins000.exe
2014-07-18 13:08:27	A933BCFB8E08084E56AA2CB25E852EDF	1285632	----a-w-	C:\Program Files (x86)\DriverToolkitT\DriverToolkit.exe
2014-07-18 13:08:27	30A0AFEE4AEA59772DB6434F1C0511AB	921992	----a-w-	C:\Program Files (x86)\DriverToolkitT\DPInst32.exe
2014-07-18 13:00:55	B890FE2F5450C93275F8AF84042EA1D3	1303864	----a-r-	C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
2014-07-18 12:27:18	3433CF435F84B24965A8202118F41A7A	1322832	----a-w-	C:\Users\Fons Janssens\AppData\Roaming\uTorrent\updates\3.4.2_32126.exe
2014-07-18 12:22:33	CEC88D9E1FE27F01F3A3ED1F449713BF	2395840	----a-w-	C:\Users\Fons Janssens\Downloads\driver_setup.exe
2014-07-18 12:20:38	0F869E88FA4489FBE231A42646488CE8	339968	----a-w-	C:\Windows\stsystra.exe
2014-07-18 12:20:31	28D609DCD962CE008567DA2941B99F87	34816	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\WDM\suhlp64.exe
2014-07-18 12:20:31	0F869E88FA4489FBE231A42646488CE8	339968	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\WDM\stsystra.exe
2014-07-18 12:20:18	718D0ACA7A3250FCE817588FFEB45865	65536	----a-w-	C:\Dell\Drivers\R107035\HDAQFE\win2k_xp\us\kb835221.exe
2014-07-18 12:20:18	5578C0F992C0F66220621ECBC146553A	27648	----a-w-	C:\Dell\Drivers\R107035\WDM\suhlp.exe
2014-07-18 12:20:18	28D609DCD962CE008567DA2941B99F87	34816	----a-w-	C:\Dell\Drivers\R107035\WDM\suhlp64.exe
2014-07-18 12:20:18	11ED1D459F03399C95A6A93987C4192A	658136	----a-w-	C:\Dell\Drivers\R107035\HDAQFE\win2k_xp\us\qfe.exe
2014-07-18 12:20:18	0F869E88FA4489FBE231A42646488CE8	339968	----a-w-	C:\Dell\Drivers\R107035\WDM\stsystra.exe
2014-07-18 12:20:18	0F30B7AC2B0505ADC1E9325916365DF0	117200	----a-w-	C:\Dell\Drivers\R107035\setup.exe
2014-07-18 12:20:12	FC5D02EFAC8F3E86DD9989F629E312BE	3957096	----a-w-	C:\Users\Fons Janssens\Downloads\R107035 (1).EXE
2014-07-18 12:19:57	FC5D02EFAC8F3E86DD9989F629E312BE	3957096	----a-w-	C:\Users\Fons Janssens\Downloads\R107035.EXE
2014-07-18 12:19:45	719286ECEE2241B5C2F0799D61CFC3A2	86016	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\WDM\stacsv.exe
2014-07-18 12:19:45	5578C0F992C0F66220621ECBC146553A	27648	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\WDM\suhlp.exe
2014-07-18 12:19:44	B595BB61A69A78086FC36A1169065199	86016	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\WDM\SETASIO.EXE
2014-07-18 12:19:44	0F30B7AC2B0505ADC1E9325916365DF0	117200	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\setup.exe
2014-07-18 12:19:17	A031741B4E8C49E46A7C29FAE8B30658	5213848	----a-w-	C:\Users\Fons Janssens\Downloads\sigmatel-audio-driver-v5-10-5067-0.exe
2014-07-18 12:17:57	730610F5F09076EBC5EA21ECF678D41A	27648	----a-w-	C:\Dell\Drivers\NN9X1\WDM\suhlp.exe
2014-07-18 12:17:57	1F2CAB1A320460B74034AFEC17454D5A	36352	----a-w-	C:\Dell\Drivers\NN9X1\WDM\suhlp64.exe
2014-07-18 12:17:57	0F30B7AC2B0505ADC1E9325916365DF0	117200	----a-w-	C:\Dell\Drivers\NN9X1\setup.exe
2014-07-18 12:17:57	012844A8E13BE3941C9CAF1F91F47DF2	405504	----a-w-	C:\Dell\Drivers\NN9X1\WDM\stsystra.exe
2014-07-18 12:17:56	E8DCFCED98DE4A569C813790B44A0759	172092	----a-w-	C:\Dell\Drivers\NN9X1\HDAQFE\win2k3\us\kb901105.exe
2014-07-18 12:17:56	74DA2243F3444D298CFED517AFF8D97E	752368	----a-w-	C:\Dell\Drivers\NN9X1\HDAQFE\win2k3\us\qfe.exe
2014-07-18 12:17:56	718D0ACA7A3250FCE817588FFEB45865	65536	----a-w-	C:\Dell\Drivers\NN9X1\HDAQFE\win2k_xp\us\kb835221.exe
2014-07-18 12:17:56	6F855B5625A47F3AC731A262FDC379A6	94208	----a-w-	C:\Dell\Drivers\NN9X1\WDM\stacsv.exe
2014-07-18 12:17:56	11ED1D459F03399C95A6A93987C4192A	658136	----a-w-	C:\Dell\Drivers\NN9X1\HDAQFE\win2k_xp\us\qfe.exe
2014-07-18 12:17:55	E8DCFCED98DE4A569C813790B44A0759	172092	----a-w-	C:\Dell\Drivers\NN9X1\HDAQFE\win2k3\jpn\KB901105.exe
2014-07-18 12:17:55	65106DBCDA4CD322E6C81549C09C5DEC	754928	----a-w-	C:\Dell\Drivers\NN9X1\HDAQFE\win2k3\jpn\qfe.exe
2014-07-18 12:17:20	024F7A646613792FD7398BED4722BF4C	8345792	----a-w-	C:\Users\Fons Janssens\Downloads\R171789 (1).exe
2014-07-18 12:07:26	B4D1119AA0279207BA4609B68CD3F865	27648	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\suhlp.exe
2014-07-18 12:07:26	A5D4CFDE17446B4F9B3090EEFC8540D2	425984	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\sttray64.exe
2014-07-18 12:07:26	8C7AAD353C6C465246AE5E5ED4B33574	36352	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\suhlp64.exe
2014-07-18 12:07:26	7E6DD4B34ACD36AF6C711D2BDE91B040	102400	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\stacsv.exe
2014-07-18 12:07:26	37AE019B337D4533FBB6831B8954E2EF	405504	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\sttray.exe
2014-07-18 12:07:26	0F30B7AC2B0505ADC1E9325916365DF0	117200	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\DellWRTM_5614v123\setup.exe
2014-07-18 12:07:26	012DA05A75A03A5109C6DC0157541337	119296	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\stacsv64.exe
2014-07-18 12:07:25	B4D1119AA0279207BA4609B68CD3F865	27648	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\suhlp.exe
2014-07-18 12:07:25	8C7AAD353C6C465246AE5E5ED4B33574	36352	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\suhlp64.exe
2014-07-18 12:07:24	A5D4CFDE17446B4F9B3090EEFC8540D2	425984	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\sttray64.exe
2014-07-18 12:07:24	37AE019B337D4533FBB6831B8954E2EF	405504	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\sttray.exe
2014-07-18 12:07:23	7E6DD4B34ACD36AF6C711D2BDE91B040	102400	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\stacsv.exe
2014-07-18 12:07:23	012DA05A75A03A5109C6DC0157541337	119296	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\stacsv64.exe
2014-07-18 12:07:22	0F30B7AC2B0505ADC1E9325916365DF0	117200	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\DellWRTM_5614v123\setup.exe
2014-07-18 12:01:11	2ABA6570FD87DC8667333A1ED43F3C32	80896	----a-r-	C:\Program Files (x86)\SMSC\SMSC IrDA v6.0.4000.1\devsmsc.exe
2014-07-18 12:01:10	FBAB280D0CAC5E21C72F0A1A7B5B9608	455600	----a-w-	C:\Program Files (x86)\InstallShield Installation Information\{1AEC7728-1640-4E98-AABC-5EBE3FB57FE4}\setup.exe
2014-07-18 12:00:49	4B56C021299344676F123FCB48F53C1E	70064	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{9AE18F0A-2D5E-4A1C-A6F4-75A7E420142F}\ISBEW64.exe
2014-07-18 11:59:51	FBAB280D0CAC5E21C72F0A1A7B5B9608	455600	----a-r-	C:\Dell\Drivers\X4D2F\setup.exe
2014-07-18 11:59:51	50A55A5F27D07F219A768974D8187DF4	75776	----a-r-	C:\Dell\Drivers\X4D2F\Vista\x86\devsmsc.exe
2014-07-18 11:59:51	2ABA6570FD87DC8667333A1ED43F3C32	80896	----a-r-	C:\Dell\Drivers\X4D2F\Vista\amd64\devsmsc.exe
2014-07-18 11:58:48	18C308EC68A3BE00FB9CF82961341608	4299048	----a-w-	C:\Users\Fons Janssens\Downloads\R141765.exe
2014-07-18 11:56:54	7D0AC15139894376F1A7BF2019828DCE	36352	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\WDM\suhlp64.exe
2014-07-18 11:56:53	9F089EBE89515B594226FAB1FE408484	425984	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray64.exe
2014-07-18 11:56:52	F883003AC6715537950D0B3E4C609C42	122880	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\WDM\stacsv64.exe
2014-07-18 11:54:52	0F30B7AC2B0505ADC1E9325916365DF0	117200	----a-w-	C:\Program Files (x86)\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe
2014-07-18 11:54:29	0F30B7AC2B0505ADC1E9325916365DF0	117200	----a-w-	C:\Dell\Drivers\2Y0VM\setup.exe
2014-07-18 11:54:28	B4D1119AA0279207BA4609B68CD3F865	27648	----a-w-	C:\Dell\Drivers\2Y0VM\WDM\suhlp.exe
2014-07-18 11:54:28	A5D4CFDE17446B4F9B3090EEFC8540D2	425984	----a-w-	C:\Dell\Drivers\2Y0VM\WDM\sttray64.exe
2014-07-18 11:54:28	8C7AAD353C6C465246AE5E5ED4B33574	36352	----a-w-	C:\Dell\Drivers\2Y0VM\WDM\suhlp64.exe
2014-07-18 11:54:28	37AE019B337D4533FBB6831B8954E2EF	405504	----a-w-	C:\Dell\Drivers\2Y0VM\WDM\sttray.exe
2014-07-18 11:54:27	7E6DD4B34ACD36AF6C711D2BDE91B040	102400	----a-w-	C:\Dell\Drivers\2Y0VM\WDM\stacsv.exe
2014-07-18 11:54:27	012DA05A75A03A5109C6DC0157541337	119296	----a-w-	C:\Dell\Drivers\2Y0VM\WDM\stacsv64.exe
2014-07-18 11:53:43	DAFD76FE7186C4C1671A7F5665C4D1AD	8238088	----a-w-	C:\Users\Fons Janssens\Downloads\R171788.exe
2014-07-18 11:51:35	77CC0CB1F568304B321618650FC269A0	417824	----a-w-	C:\Users\Fons Janssens\Downloads\DellSystemDetect (1).exe
2014-07-18 11:50:01	E903505E79CED3178B296FC59C4E43D3	5632	----a-w-	C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe
2014-07-18 11:37:50	9884C4941A30A5A4643640538A9DCEF3	303104	----a-w-	C:\Program Files\Dell\DW WLAN Card\bcmwlu00.exe
2014-07-18 11:37:50	2E589002F5E28A3AF55D9A86CAF1B1D6	639216	----a-w-	C:\Program Files\Dell\DW WLAN Card\bcmwls64.exe
2014-07-18 11:37:42	40395C175553CB14D2050888EFCCDF00	4961800	----a-w-	C:\Windows\SysWOW64\vcredist_x64.exe
2014-07-18 11:37:41	F6F02ACC9F12ED50752A46D6D604366C	3161088	----a-w-	C:\Windows\System32\vcredist_x64.exe
2014-07-18 11:37:40	FBD4E6357FE5A8AD4058972BFE1385AC	4521472	----a-w-	C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
2014-07-18 11:37:40	8097878196EFAA50A70B42AEF8225A61	33280	----a-w-	C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
2014-07-18 11:37:40	57E51B9DA18F013A83A04157D64624D3	5107712	----a-w-	C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
2014-07-18 11:37:09	505372073EAE4B6DB42EE2CD16957C74	26112	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\wltrysvc.exe
2014-07-18 11:37:08	DAF94FB704ADB9103F6B693E2637D6F6	4685824	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\wltray.exe
2014-07-18 11:37:08	3414CABA7311443CB0A60E14016542E6	77824	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\SysInfo.exe
2014-07-18 11:37:08	1F8E9FEC647700B21D45E6CDA97C39B7	2682880	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\vcredist_x86.exe
2014-07-18 11:37:07	FBC4B181A116B3C1C3F9FAD954B26A93	131072	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\Setup.exe
2014-07-18 11:37:06	8D699C26857440661FAD1AED839FFC79	393216	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\IS.exe
2014-07-18 11:37:05	45C635D2D8575A63A8DAFA2B84C021FB	221184	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\DellInfo.exe
2014-07-18 11:37:04	C5028FEFFCE89B414AB6C7A19A9E415A	155648	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\DellInfo64.exe
2014-07-18 11:37:04	9884C4941A30A5A4643640538A9DCEF3	303104	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\bcmwlu00.exe
2014-07-18 11:37:03	E8432B1BDDA6C27F571550DB8CDC90BD	4038656	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\bcmwltry.exe
2014-07-18 11:37:03	2E589002F5E28A3AF55D9A86CAF1B1D6	639216	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\bcmwls64.exe
2014-07-18 11:37:02	2ABFB665307550009AE9B56AB8950DA9	386288	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\bcmwls32.exe
2014-07-18 11:36:59	FF035A3F080FC4F0E19C0B76D8160484	81920	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\BcmCrypt.exe
2014-07-18 11:36:59	074569E29DA45D3188E609C7CAAE38AF	19968	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\BcmSetupUtil.exe
2014-07-18 11:36:58	F6F02ACC9F12ED50752A46D6D604366C	3161088	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\x64\vcredist_x64.exe
2014-07-18 11:36:58	8097878196EFAA50A70B42AEF8225A61	33280	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\x64\wltrysvc.exe
2014-07-18 11:36:58	57E51B9DA18F013A83A04157D64624D3	5107712	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\x64\wltray.exe
2014-07-18 11:36:57	FBD4E6357FE5A8AD4058972BFE1385AC	4521472	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\x64\bcmwltry.exe
2014-07-18 11:36:56	D08CF250FCA6C138BA6C840A790AA442	25088	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\x64\BcmSetupUtil.exe
2014-07-18 11:36:56	5689D43C3B201DD3810FA3BBA4A6476A	4216840	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\vs08\vcredist_x86.exe
2014-07-18 11:36:56	40395C175553CB14D2050888EFCCDF00	4961800	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\vs08\x64\vcredist_x64.exe
2014-07-18 11:36:23	F7E39E84313445D360A26CDD96CC173B	32768	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RCQSNO4\ApntEx.exe
2014-07-18 11:36:23	822F9FB5638976F5CC0E4FC699680254	184320	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RCQSNO4\Uninstap.exe
2014-07-18 11:36:22	EF4801935B16D74F6AC58110E6EB8A07	143360	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RCQSNO4\Apoint.exe
2014-07-18 11:36:22	8B307D891617D2571449D6F6DFA6DE4E	147456	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RCQSNO4\Ezcapt.exe
2014-07-18 11:36:22	30D68A080DE904BF7FF2E9296ECD2765	139264	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RCQSNO4\Setup.exe
2014-07-18 11:35:56	730610F5F09076EBC5EA21ECF678D41A	27648	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\WDM\suhlp.exe
2014-07-18 11:35:56	1F2CAB1A320460B74034AFEC17454D5A	36352	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\WDM\suhlp64.exe
2014-07-18 11:35:56	0F30B7AC2B0505ADC1E9325916365DF0	117200	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\setup.exe
2014-07-18 11:35:56	012844A8E13BE3941C9CAF1F91F47DF2	405504	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\WDM\stsystra.exe
2014-07-18 11:35:55	6F855B5625A47F3AC731A262FDC379A6	94208	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\WDM\stacsv.exe
2014-07-18 11:35:54	E8DCFCED98DE4A569C813790B44A0759	172092	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\HDAQFE\win2k3\us\kb901105.exe
2014-07-18 11:35:54	E8DCFCED98DE4A569C813790B44A0759	172092	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\HDAQFE\win2k3\jpn\KB901105.exe
2014-07-18 11:35:54	74DA2243F3444D298CFED517AFF8D97E	752368	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\HDAQFE\win2k3\us\qfe.exe
2014-07-18 11:35:54	718D0ACA7A3250FCE817588FFEB45865	65536	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\HDAQFE\win2k_xp\us\kb835221.exe
2014-07-18 11:35:54	65106DBCDA4CD322E6C81549C09C5DEC	754928	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\HDAQFE\win2k3\jpn\qfe.exe
2014-07-18 11:35:54	11ED1D459F03399C95A6A93987C4192A	658136	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\HDAQFE\win2k_xp\us\qfe.exe
2014-07-18 11:35:47	FC66C4A791E3F06847F27F1E74450305	2382080	----a-w-	C:\Users\Fons Janssens\Downloads\R58070_NW9YX_SETUP_ZPE.exe
2014-07-18 11:35:07	024F7A646613792FD7398BED4722BF4C	8345792	----a-w-	C:\Users\Fons Janssens\Downloads\R171789.exe
2014-07-18 11:32:04	4DBD992C8D8EDC8ACE36DE993E26C52D	82164696	----a-w-	C:\Users\Fons Janssens\Downloads\R242438.exe
2014-07-18 11:30:54	74376E37036BC71703EE8A1A9F8ACC3D	262720	----a-w-	C:\Users\Fons Janssens\AppData\Local\Apps\2.0\9ORWVHVO.BD8\OK1Z8LC8.N4G\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe
2014-07-18 11:30:54	74376E37036BC71703EE8A1A9F8ACC3D	262720	----a-w-	C:\Users\Fons Janssens\AppData\Local\Apps\2.0\9ORWVHVO.BD8\OK1Z8LC8.N4G\dell..tect_0f612f649c4a10af_0005.0008_none_78544d60fd5fcca6\DellSystemDetect.exe
2014-07-18 11:30:54	3596F335E12AAE934BEA2FEEB5A48852	20032	----a-w-	C:\Users\Fons Janssens\AppData\Local\Apps\2.0\9ORWVHVO.BD8\OK1Z8LC8.N4G\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\Uninstaller.exe
2014-07-18 11:30:54	3596F335E12AAE934BEA2FEEB5A48852	20032	----a-w-	C:\Users\Fons Janssens\AppData\Local\Apps\2.0\9ORWVHVO.BD8\OK1Z8LC8.N4G\dell...exe_0f612f649c4a10af_0005.0008_none_00af9c04a730dcc5\Uninstaller.exe
2014-07-18 11:29:29	77CC0CB1F568304B321618650FC269A0	417824	----a-w-	C:\Users\Fons Janssens\Downloads\DellSystemDetect.exe
2014-07-18 10:03:54	C4CF03B998D4D758B89CD07F22D7A7F9	645168	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\MSS\3.8.150.1\McUICnt.exe
2014-07-18 09:31:17	ACDBDC99D6540C7FCDC397F803771818	8696976	----a-w-	C:\Windows\Temp\841b1ef9\MoviesToolbarSetup_Somoto.exe
=== C: other files ==
2014-07-19 13:25:57	280976F1743BE43313FCBBC200090742	17191	----a-w-	C:\Users\Fons Janssens\Downloads\1c4657334f9626a55a1585457ea04b0573fc1e9f.zip
2014-07-18 13:19:16	1F640E4A8B48F521278C3CCE71428D0B	29630	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\dd5f17eef1ac48f0eb34d39cb19663cc.zip
2014-07-18 13:17:39	F1E1CFBCDF126CDDC33A3F5B9246F901	131030	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\2feb0f11a94dcc1d87b3205ddaba8c7c.zip
2014-07-18 13:17:24	B5A211459195656E71032E4814284FA2	134276	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\1c0ab36bbf7cf52676fe285e22ae7e37.zip
2014-07-18 13:16:23	FACFF6E00CBB2EFD373627DEE2571739	6394	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\91e0a292ddd86eafbbc0df18cc51655c.zip
2014-07-18 13:16:23	E1BB5B9874154DE846777477A818848E	2012868	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\4653ef956865d1a9762bf00959069ce9.zip
2014-07-18 13:11:49	E964DB5400CFD56FC99CD2AB1B21213F	393216	----a-w-	C:\Windows\System32\drivers\stwrt64.sys
2014-07-18 13:11:49	E964DB5400CFD56FC99CD2AB1B21213F	393216	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\stwrt64.sys
2014-07-18 13:11:49	68A0D39E357DD7A234B1D4F1E844C615	330752	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e\dell_R190517\WDM\stwrt.sys
2014-07-18 13:10:42	41A520509D20FF44CB0DA85565D27E25	8895674	----a-w-	C:\Program Files (x86)\DriverToolkit\Download\529b090f999ff9ae655076c8136ea41e.zip
2014-07-18 12:55:49	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Fons Janssens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9X68I219\Version[1].zip
2014-07-18 12:55:23	542FE1E22B06E7391B7799F04EE9B616	169296	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\scoped_dir_3172_28194\donottrack.crx
2014-07-18 12:33:29	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\Fons Janssens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KXZQXDQT\DS_DG_11.0.0.1140[1].zip
2014-07-18 12:20:31	063B2B24EDC186BF43B859AB45AB0F2D	217088	----a-w-	C:\Windows\System32\drivers\sthda64.sys
2014-07-18 12:20:31	063B2B24EDC186BF43B859AB45AB0F2D	217088	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\WDM\sthda64.sys
2014-07-18 12:20:18	352B663A81402BE7CD7BD4EA27C9998C	180864	----a-w-	C:\Dell\Drivers\R107035\WDM\sthda.sys
2014-07-18 12:20:18	3455FBC3B71FB94864680D4444A86759	15	----a-w-	C:\Dell\Drivers\R107035\HDAQFE\win2k_xp\us\install.bat
2014-07-18 12:20:18	063B2B24EDC186BF43B859AB45AB0F2D	217088	----a-w-	C:\Dell\Drivers\R107035\WDM\sthda64.sys
2014-07-18 12:19:45	352B663A81402BE7CD7BD4EA27C9998C	180864	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\WDM\sthda.sys
2014-07-18 12:17:57	B047D12F70881FF51B1161FCD72EC102	1235456	----a-w-	C:\Dell\Drivers\NN9X1\WDM\sthda64.sys
2014-07-18 12:17:56	951801DFB54D86F611F0AF47825476F9	1222840	----a-w-	C:\Dell\Drivers\NN9X1\WDM\sthda.sys
2014-07-18 12:07:26	8435ED937F36AB0715E217C382C96A2B	392192	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\stwrt64.sys
2014-07-18 12:07:26	6A2A5E809C2C0178326D92B19EE4AAD3	330240	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\stwrt.sys
2014-07-18 12:07:25	8435ED937F36AB0715E217C382C96A2B	392192	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\stwrt64.sys
2014-07-18 12:07:25	6A2A5E809C2C0178326D92B19EE4AAD3	330240	----a-w-	C:\Program Files (x86)\SigmaTel\C-Major Audio\DellWRTM_5614v123\WDM\stwrt.sys
2014-07-18 12:01:11	DDC48031D7E59D72C89E8624E8A4B265	37376	----a-w-	C:\Program Files (x86)\SMSC\SMSC IrDA v6.0.4000.1\smscir64.sys
2014-07-18 11:59:51	DDC48031D7E59D72C89E8624E8A4B265	37376	----a-r-	C:\Dell\Drivers\X4D2F\Vista\amd64\smscir64.sys
2014-07-18 11:59:51	CED16C76469BA00E2AB310857CD4C767	31232	----a-r-	C:\Dell\Drivers\X4D2F\Vista\x86\smscirda.sys
2014-07-18 11:56:53	E964DB5400CFD56FC99CD2AB1B21213F	393216	----a-w-	C:\Program Files\SigmaTel\C-Major Audio\WDM\stwrt64.sys
2014-07-18 11:54:28	8435ED937F36AB0715E217C382C96A2B	392192	----a-w-	C:\Dell\Drivers\2Y0VM\WDM\stwrt64.sys
2014-07-18 11:54:28	6A2A5E809C2C0178326D92B19EE4AAD3	330240	----a-w-	C:\Dell\Drivers\2Y0VM\WDM\stwrt.sys
2014-07-18 11:45:28	33EC5FCC948EDF9B7B8E5D1BB670D127	1981	----a-w-	C:\ProgramData\AVG2012\IDS\quarantine\4c45e2b7-007e-47d2-82d5-d155657683d8.zip
2014-07-18 11:37:50	569811941F1E415F31856E84C3DADD29	1735	----a-w-	C:\Program Files\Dell\DW WLAN Card\Uninst_EAPModules.bat
2014-07-18 11:37:42	BAD2BCB798B49A56B70A459A30DD93D1	459	----a-w-	C:\Windows\SysWOW64\vcredist_x64.bat
2014-07-18 11:37:42	50D45E314B13F70BF328D783868E6EA6	22520	----a-w-	C:\Windows\System32\drivers\bcm42rly.sys
2014-07-18 11:37:42	324C4D3C3FC6ACCB72D5D83986442EBB	47632	----a-w-	C:\Windows\System32\drivers\npf.sys
2014-07-18 11:37:41	F2CD1BCAF88E9B8605FABA59D95D6112	457	----a-w-	C:\Windows\System32\vcredist_x64.bat
2014-07-18 11:37:38	D84B17B03376ACBB7717928071429707	2978296	----a-w-	C:\Windows\System32\drivers\BCMWL664.SYS
2014-07-18 11:37:38	D84B17B03376ACBB7717928071429707	2978296	----a-w-	C:\Program Files\Dell\DW WLAN Card\Driver\bcmwl664.sys
2014-07-18 11:37:21	DE6EE34EADDC1ADD4CAC6CF508FBAEA7	2661368	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmwl6.sys
2014-07-18 11:37:21	D84B17B03376ACBB7717928071429707	2978296	----a-w-	C:\Users\Fons Janssens\AppData\Local\Temp\{B615CFCC-B12E-4286-8790-48705A090988}\{F16DD1B4-4933-4019-BC07-A9BF18830338}\DRIVER\bcmwl664.sys
2014-07-18 11:37:11	B930B3EFA735ECB9F14D91106E7F787F	2978296	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\DRIVER_JPN\bcmwl664.sys
2014-07-18 11:37:10	CD724E564C9DA21A7D9D322537E12322	2661368	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\DRIVER_JPN\bcmwl6.sys
2014-07-18 11:37:08	A1D3004E0078F79E263A556EF3A8115E	457	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\vcredist_x86.bat
2014-07-18 11:37:08	9075B268AF6696BAC222B3096A5A4A90	1261	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\Uninst_EAPModules.bat
2014-07-18 11:37:07	C5F0202A00227AECB69E722C52385FFC	50704	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\npf.sys
2014-07-18 11:37:05	87F70C919903B0AB39BAD8D35FEB3BB5	1399	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\Inst_EAPModules.bat
2014-07-18 11:36:58	F2CD1BCAF88E9B8605FABA59D95D6112	457	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\x64\vcredist_x64.bat
2014-07-18 11:36:58	57A52EE74FD55C590F209925088CB68B	18424	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\bcm42rly.sys
2014-07-18 11:36:58	324C4D3C3FC6ACCB72D5D83986442EBB	47632	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\x64\npf.sys
2014-07-18 11:36:56	BAD2BCB798B49A56B70A459A30DD93D1	459	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\vs08\x64\vcredist_x64.bat
2014-07-18 11:36:56	50D45E314B13F70BF328D783868E6EA6	22520	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\x64\bcm42rly.sys
2014-07-18 11:36:56	46B3D10929737E2FD6D5684D5DE32B20	459	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\vs08\vcredist_x86.bat
2014-07-18 11:36:55	EDF86011D8A8366C476A9356CB9523B6	2661368	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\DRIVER_US\bcmwl6.sys
2014-07-18 11:36:55	487794BECFE161A8E112D5A25D940B06	2978296	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\DRIVER_US\bcmwl664.sys
2014-07-18 11:36:54	DE6EE34EADDC1ADD4CAC6CF508FBAEA7	2661368	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\DRIVER_ROW\bcmwl6.sys
2014-07-18 11:36:54	D84B17B03376ACBB7717928071429707	2978296	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RMX7ISC\DRIVER_ROW\bcmwl664.sys
2014-07-18 11:36:23	214CF1D0A1E36147E0BF58F8CC4899E1	90824	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RCQSNO4\Apfiltr.sys
2014-07-18 11:35:55	B047D12F70881FF51B1161FCD72EC102	1235456	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\WDM\sthda64.sys
2014-07-18 11:35:55	951801DFB54D86F611F0AF47825476F9	1222840	----a-w-	C:\$Recycle.Bin\S-1-5-21-4238754280-3582502495-1345173580-1001\$RAAOKG2\WDM\sthda.sys
2014-07-18 11:31:13	DACAC6689D56AE2FE76F5D16EAB377E4	144	----a-w-	C:\Users\Fons Janssens\AppData\Local\Apps\2.0\9ORWVHVO.BD8\OK1Z8LC8.N4G\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\uninstaller.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-4238754280-3582502495-1345173580-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\Fons Janssens\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Advanced SystemCare 5"="C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe /AutoStart"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"DellSystemDetect"="C:\Users\Fons Janssens\AppData\Local\Apps\2.0\9ORWVHVO.BD8\OK1Z8LC8.N4G\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_TRAY"="C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SigmatelSysTrayApp"="stsystra.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Users\Fons Janssens\AppData\Local\Google\Update\GoogleUpdate.exe /c"
"Advanced SystemCare 5"="C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe /AutoStart"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"DellSystemDetect"="C:\Users\Fons Janssens\AppData\Local\Apps\2.0\9ORWVHVO.BD8\OK1Z8LC8.N4G\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"Broadcom Wireless Manager UI"="C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe"
"SigmatelSysTrayApp"="%ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray64.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\Windows\tasks\DriverToolkit Autorun.job --a------ C:\Program Files (x86)\DriverToolkitT\DriverToolkit.exe [08/12/2013 01:24]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4238754280-3582502495-1345173580-1001Core.job --a------ C:\Users\Fons Janssens\AppData\Local\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4238754280-3582502495-1345173580-1001UA.job --a------ C:\Users\Fons Janssens\AppData\Local\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\SW-Booster-S-5415902620.job --ah----- C:\programdata\anyappsnow\sw-booster\SW-Booster.exe []
C:\Windows\tasks\SyncBack Fons Dell.job --a------ C:\Program Files (x86)\2BrightSparks\SyncBack\SyncBack.exe [08/11/2010 15:42]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\DriverToolkit Autorun" [C:\Program Files (x86)\DriverToolkitT\DriverToolkit.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-4238754280-3582502495-1345173580-1001Core" [C:\Users\Fons Janssens\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-4238754280-3582502495-1345173580-1001UA" [C:\Users\Fons Janssens\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\JetCleanLoginCheckUpdate" [C:\Program Files (x86)\BlueSprig\JetClean\AutoUpdate.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\SW-Booster-S-5415902620" [c:\programdata\anyappsnow\sw-booster\SW-Booster.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{F53C93F1-07D5-430c-86D4-C9531B27DFAF}"="C:\Program Files (x86)\AVG\AVG2012\Firefox\DoNotTrack" [12/07/2012 09:04]

==== Firefox Extensions ======================

ProfilePath: C:\Users\FONSJA~1\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default
- Undetermined - C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
- Undetermined - C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\ascsurfingprotection@iobit.com
- Undetermined - C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\2f86d471-1122-4c15-901a-d7fd67316cd9@ca42b8d2-0eb6-47be-84a2-6d95abe186e8.com
- Undetermined - C:\Users\Fons Janssens\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\{3444c3c5-6c56-4a16-a453-832b05bf6ea4}
- AVG Do Not Track - C:\Program Files (x86)\AVG\AVG2012\Firefox\DoNotTrack
- Torntv 3 - %ProfilePath%\extensions\trtv3@trtv.com.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Deleted Firefox Extensions ======================

C:\Users\FONSJA~1\AppData\Roaming\Mozilla\Firefox\Profiles\tuljtvbc.default\extensions\trtv3@trtv.com.xpi deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
bicnnkjibmphdeigoodpjlcklcnaobdj - No path found[]
hbcennhacfaagdopikcegfcobcadeocj - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx[]
icdlfehblmklkikfigmjhbmmpmkmpooj - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx[]
ifohbjbgfchkkfhphahclmkpgejiplfo - C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx[]
mhkaekfpcppmmioggniknbnbdbcigpkk - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx[]
ndibdjnfmopecpmkdieinmbadjfpblof - C:\Program Files (x86)\AVG\AVG2012\Chrome\donottrack.crx[20/04/2012 06:18]
pfndaklgolladniicklehhancnlgocpp - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx[]

save oonu - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Administrator\AppData\Local\Torch\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Administrator\AppData\Local\Torch\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Administrator\AppData\Local\Torch\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Administrator\AppData\Local\Torch\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Fons Janssens\AppData\Local\Chromatic Browser\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Fons Janssens\AppData\Local\Chromatic Browser\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Fons Janssens\AppData\Local\Chromatic Browser\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Fons Janssens\AppData\Local\Chromatic Browser\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Fons Janssens\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Fons Janssens\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Fons Janssens\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Fons Janssens\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
Extended Protection - Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml
A Journey through Middle-earth - Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjgkjeheegjnnmheaflhdocglkiegoni
save oonu - Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
Toothless - Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmoddhicigmjbldpdglkhalagjjiinnl
NEuxtCOupu - Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
Google Wallet - Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
save oonu - Fons Janssens\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Fons Janssens\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Fons Janssens\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Fons Janssens\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Fons Janssens\AppData\Local\Torch\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Fons Janssens\AppData\Local\Torch\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Fons Janssens\AppData\Local\Torch\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Fons Janssens\AppData\Local\Torch\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - Gast\AppData\Local\Torch\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - Gast\AppData\Local\Torch\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - Gast\AppData\Local\Torch\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - Gast\AppData\Local\Torch\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo
save oonu - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn
System Drive - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd
NEuxtCOupu - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde
SearcH-NewTuab - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo

==== Chrome Fix ======================

C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nederlands.babylon.com_0.localstorage deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_nederlands.babylon.com_0.localstorage-journal deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_continuetosave.info_0.localstorage deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_continuetosave.info_0.localstorage-journal deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj deleted successfully
C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Fons Janssens\AppData\Local\Chromatic Browser\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Fons Janssens\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Fons Janssens\AppData\Local\Torch\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\napmdlpicopeobmgaaenehpmkefbbkde deleted successfully
C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Fons Janssens\AppData\Local\Chromatic Browser\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Fons Janssens\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Fons Janssens\AppData\Local\Torch\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\iajlfmjempbgkajghepmnajinjeaacbn deleted successfully
C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Fons Janssens\AppData\Local\Chromatic Browser\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Fons Janssens\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Fons Janssens\AppData\Local\Torch\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\imkpamgpfalmdaikobnkefcmmkpgljjd deleted successfully
C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Fons Janssens\AppData\Local\Chromatic Browser\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Fons Janssens\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Fons Janssens\AppData\Local\Torch\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\onlefficibeaillabajlgbedbglipfoo deleted successfully
C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.trovi.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=M9912A204-E308-414F-9C9D-CC785624D359&SearchSource=55&CUI=&UM=5&UP=SPC1CB633F-6287-4DD0-9648-F67F00BBE5AB&SSPV=SP21511A_sp_ie"
"Search Page"="http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=BE&userid=0fec7113-5b8b-7b7e-ea44-9e06368c070e&searchtype=ds&q={searchTerms}&installDate=10/09/2013"
"Search Bar"="http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=BE&userid=0fec7113-5b8b-7b7e-ea44-9e06368c070e&searchtype=ds&q={searchTerms}&installDate=10/09/2013"
"Default_Page_URL"="http://www.dosearches.com/?utm_source=b&utm_medium=vit&utm_campaign=eXQ&utm_content=hp&from=vit&uid=WDCXWD2500BEVS-22UST0_WD-WXEX0770509905099&ts=1382895457"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.dosearches.com/?utm_source=b&utm_medium=vit&utm_campaign=eXQ&utm_content=hp&from=vit&uid=WDCXWD2500BEVS-22UST0_WD-WXEX0770509905099&ts=1382895457"
"Start Page"="http://websearch.flyandsearch.info/?pid=724&r=2014/06/30&hid=13977051861056637209&lg=EN&cc=BE"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.dosearches.com/?utm_source=b&utm_medium=vit&utm_campaign=eXQ&utm_content=hp&from=vit&uid=WDCXWD2500BEVS-22UST0_WD-WXEX0770509905099&ts=1382895457"
"Start Page"="http://websearch.flyandsearch.info/?pid=724&r=2014/06/30&hid=13977051861056637209&lg=EN&cc=BE"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=BE&userid=0fec7113-5b8b-7b7e-ea44-9e06368c070e&searchtype=ds&q={searchTerms}&installDate=10/09/2013"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=BE&userid=0fec7113-5b8b-7b7e-ea44-9e06368c070e&searchtype=ds&q={searchTerms}&installDate=10/09/2013"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=BE&userid=0fec7113-5b8b-7b7e-ea44-9e06368c070e&searchtype=ds&q={searchTerms}&installDate=10/09/2013"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=BE&userid=0fec7113-5b8b-7b7e-ea44-9e06368c070e&searchtype=ds&q={searchTerms}&installDate=10/09/2013"
"SearchAssistant"="http://feed.snapdo.com/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=BE&userid=0fec7113-5b8b-7b7e-ea44-9e06368c070e&searchtype=ds&q={searchTerms}&installDate=10/09/2013"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4238754280-3582502495-1345173580-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-4238754280-3582502495-1345173580-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully

==== Deleting CLSID Registry Values ======================


==== shortcuts on Users Desktops ======================

C:\Users\Fons Janssens\Desktop\Google Chrome.lnk -  
C:\Users\Fons Janssens\Desktop\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.dosearches.com/?utm_source=b&utm_medium=vit&utm_campaign=eXQ&utm_content=sc&from=vit&uid=WDCXWD2500BEVS-22UST0_WD-WXEX0770509905099&ts=1382895457
C:\Users\Fons Janssens\Desktop\Microsoft Office Excel 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe 
C:\Users\Fons Janssens\Desktop\Microsoft Office PowerPoint 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe 
C:\Users\Fons Janssens\Desktop\Microsoft Office Word 2007.lnk - C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe 
C:\Users\Fons Janssens\Desktop\µTorrent.lnk -  

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\De Sims™ 2.lnk -  
C:\Users\Public\Desktop\De Sims™ 3 Bovennatuurlijk.lnk -  
C:\Users\Public\Desktop\De Sims™ 3 Diesel Accessoires.lnk -  
C:\Users\Public\Desktop\De Sims™ 3 Exotisch Eiland.lnk -  
C:\Users\Public\Desktop\De Sims™ 3 Luxe Accessoires.lnk -  
C:\Users\Public\Desktop\De Sims™ 3 Slaap- en badkamer Accessoires.lnk -  
C:\Users\Public\Desktop\De Sims™ 3 Wereldavonturen.lnk -  
C:\Users\Public\Desktop\De Sims™ 3.lnk -  
C:\Users\Public\Desktop\De Sims™ Middeleeuwen Piraten en Adel.lnk -  
C:\Users\Public\Desktop\De Sims™ Middeleeuwen.lnk -  
C:\Users\Public\Desktop\DriverToolkit.lnk - C:\Program Files (x86)\DriverToolkitT\DriverToolkit.exe 
C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.dosearches.com/?utm_source=b&utm_medium=vit&utm_campaign=eXQ&utm_content=sc&from=vit&uid=WDCXWD2500BEVS-22UST0_WD-WXEX0770509905099&ts=1382895457
C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe 
C:\Users\Public\Desktop\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe 

==== shortcuts in Users Start Menu ======================

C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\App-opstartprogramma van Chrome.lnk -  
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -  

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit\DriverToolkit.lnk - C:\Program Files (x86)\DriverToolkitT\DriverToolkit.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit\Uninstall DriverToolkit.lnk - C:\Program Files (x86)\DriverToolkitT\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN\DW WLAN Card Readme.lnk - C:\Program Files (x86)\Dell\DW WLAN Card\Readme.rtf 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN\DW WLAN Card Utility.lnk - C:\Windows\System32\rundll32.exe shell32.dll,,Control_RunDLL C:\Windows\system32\bcmwlcpl.CPL
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\World of Warcraft™.lnk -  

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.dosearches.com/?utm_source=b&utm_medium=vit&utm_campaign=eXQ&utm_content=sc&from=vit&uid=WDCXWD2500BEVS-22UST0_WD-WXEX0770509905099&ts=1382895457
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk - C:\Program Files (x86)\Nero\Nero 7\Nero Home\NeroHome.exe -ScParameter=8  
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk - C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe -ScParameter=8  
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk - C:\Windows\system32\control.exe 
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\App-opstartprogramma van Chrome.lnk -  
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -  
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe 
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1

==== shortcuts After Repair ======================

C:\Users\Fons Janssens\Desktop\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe 
C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
C:\Users\Fons Janssens\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F60730A4A66673047777F5728467D401 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ccbb82a8-e64f-4e92-8e6f-17dfe720c615 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cekcjpgehmohobmdiikfnopibipmgnml deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3D0F43D9-C1D7-733C-01F8-4A3001BF8CC3} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\F60730A4A66673047777F5728467D401 deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Fons Janssens\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Fons Janssens\AppData\Local\Apps\2.0\9ORWVHVO.BD8\OK1Z8LC8.N4G\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_295b5b4710f6d77b\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Unknown owner - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Fons Janssens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Fons Janssens\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Fons Janssens\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Fons Janssens\AppData\Local\Mozilla\Firefox\Profiles\tuljtvbc.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Fons Janssens\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1521 folders=600 111511643 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Fons Janssens\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot