Zoek.exe v5.0.0.0 Updated 10-September-2014 Tool run by Anne on za 13-09-2014 at 16:28:50,48. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Anne\Downloads\zoek (1).exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 13-9-2014 16:38:52 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\Fighters deleted successfully C:\Program Files\FreeFox FileBulldog Toolbar deleted successfully C:\Program Files\iMesh Applications deleted successfully C:\Program Files\MSXML 4.0 deleted successfully C:\Program Files\PC_Booster deleted successfully C:\Program Files\Pixum deleted successfully C:\Program Files\PostNL deleted successfully C:\Program Files\TNT Post Fotoservice deleted successfully C:\Program Files\WinZip deleted successfully C:\Program Files\Common Files\Research In Motion deleted successfully C:\PROGRA~2\Babylon deleted successfully C:\PROGRA~2\Browser Manager deleted successfully C:\PROGRA~2\BrowserProtect deleted successfully C:\PROGRA~2\Oracle deleted successfully C:\PROGRA~2\WinZip deleted successfully C:\Users\Anne\AppData\Roaming\Media Player Classic deleted successfully C:\Users\Anne\AppData\Roaming\Samsung deleted successfully C:\Users\Anne\AppData\Roaming\Systweak deleted successfully C:\Users\Anne\AppData\Roaming\Vso deleted successfully C:\Users\Anne\AppData\Local\Conduit deleted successfully C:\Users\Anne\AppData\Local\PackageAware deleted successfully C:\Users\Anne\AppData\Local\Research In Motion deleted successfully C:\Users\Anne\AppData\Local\Samsung deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{87775fdb-6972-41f9-ae51-8326e38cb206} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3c490bf5-4244-4310-b4a7-3361f288dac5} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3c490bf5-4244-4310-b4a7-3361f288dac5} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{41069220-f72a-40ea-a8f3-bcd5e1fbc8f0} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{41069220-f72a-40ea-a8f3-bcd5e1fbc8f0} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{503e067f-2914-4edd-8432-2d6c52635e23} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{503e067f-2914-4edd-8432-2d6c52635e23} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9E684D70-52E8-4567-9DA3-EA2E90CD949A} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} deleted successfully HKEY_CLASSES_ROOT\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_CLASSES_ROOT\CLSID\{3c490bf5-4244-4310-b4a7-3361f288dac5} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3c490bf5-4244-4310-b4a7-3361f288dac5} deleted successfully HKEY_CLASSES_ROOT\CLSID\{41069220-f72a-40ea-a8f3-bcd5e1fbc8f0} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41069220-f72a-40ea-a8f3-bcd5e1fbc8f0} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{503e067f-2914-4edd-8432-2d6c52635e23} deleted successfully HKEY_CLASSES_ROOT\CLSID\{503e067f-2914-4edd-8432-2d6c52635e23} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{503e067f-2914-4edd-8432-2d6c52635e23} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{87775fdb-6972-41f9-ae51-8326e38cb206} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{87775fdb-6972-41f9-ae51-8326e38cb206} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{3c490bf5-4244-4310-b4a7-3361f288dac5} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{503e067f-2914-4edd-8432-2d6c52635e23} deleted successfully ==== Running Processes ====================== C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Windows\System32\spoolsv.exe C:\Program Files\AVG\AVG10\avgfws.exe C:\Program Files\AVG\AVG2015\avgwdsvc.exe C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe C:\Program Files\Pure Networks\Network Magic\nmapp.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVG\AVG2015\avgui.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe C:\Program Files\Kaspersky Security Scan\KSS.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe C:\Users\Anne\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\ctfmon.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\DllHost.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Users\Anne\Downloads\zoek (1).exe C:\Windows\system32\conhost.exe C:\Windows\system32\conhost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\System32\svchost.exe -k LocalServicePeerNet ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DatamngrCoordinator deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\DatamngrCoordinator deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\iSafeService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\iSafeService deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\iSafeKrnl deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\iSafeKrnl deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\iSafeNetFilter deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\iSafeNetFilter deleted successfully ==== FireFox Fix ====================== ProfilePath: C:\Users\Anne\AppData\Roaming\Mozilla\Firefox\Profiles\d2oj2s70.default prefs.js not found user.js not found ---- FireFox user.js and prefs.js backups ---- ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41069220-f72a-40ea-a8f3-bcd5e1fbc8f0}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{503e067f-2914-4edd-8432-2d6c52635e23}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe] ==== Deleting Files \ Folders ====================== C:\Program Files\facesmoochtb not found C:\Program Files\Music Toolbar not found C:\ProgramData\DownlOaD keeper not found C:\Program Files\DownlOaD keeper not found C:\Program Files\ConduitEngine deleted C:\Program Files\iSafe deleted C:\ProgramData\RoboSaever deleted C:\ProgramData\priceuChop deleted C:\Program Files\priceuChop deleted C:\ProgramData\PriiCeecchouP deleted C:\Program Files\PriiCeecchouP deleted C:\ProgramData\pricecHopp deleted C:\Program Files\pricecHopp deleted C:\ProgramData\priiceCHop deleted C:\Program Files\priiceCHop deleted C:\ProgramData\Trusted Publisher deleted C:\ProgramData\YoutubbeAdBliockE deleted C:\Program Files\YoutubbeAdBliockE deleted C:\ProgramData\priCechoipp deleted C:\Program Files\priCechoipp deleted C:\ProgramData\DowonlOaed, keeper deleted C:\Program Files\ss helper deleted C:\Program Files\DowonlOaed, keeper deleted C:\ProgramData\4ef89a2f5d857ff5 deleted C:\Program Files\LyricsSay-1 deleted C:\PROGRA~2\WinterSoft deleted C:\Program Files\DownlOaD keepoer deleted C:\Program Files\BrowseFox deleted C:\Program Files\Free Offers from Freeze.com deleted C:\Program Files\Search Results Toolbar deleted C:\extensions deleted C:\Users\Anne\AppData\Roaming\eCyber deleted C:\Users\Anne\AppData\Roaming\iSafe deleted C:\Users\Anne\AppData\Roaming\BabSolution deleted C:\Users\Anne\AppData\Roaming\Babylon deleted C:\Users\Anne\CD95F661A5C444F5A6AAECDD91C240BE.TMP deleted C:\PROGRA~2\Ask deleted C:\PROGRA~2\AVG Security Toolbar deleted C:\PROGRA~2\DownlOaD keepoer deleted C:\PROGRA~2\InstallMate deleted C:\PROGRA~2\AVG SafeGuard toolbar deleted C:\Users\Anne\AppData\Local\AVG Security Toolbar deleted C:\Users\Anne\AppData\Local\avgchrome deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted C:\Users\Anne\Downloads\iMeshSetup-r1484-w-bc.exe deleted C:\Users\Anne\Downloads\iMeshV12nl.exe deleted C:\Users\Anne\Downloads\SoftonicDownloader_for_dreamlight-photo-editor.exe deleted C:\Users\Anne\AppData\LocalLow\searchresultstb deleted C:\Users\Anne\AppData\LocalLow\facemoods.com deleted C:\Users\Anne\AppData\LocalLow\DataMngr deleted C:\Users\Anne\AppData\LocalLow\PriceGong deleted C:\Users\Anne\AppData\LocalLow\Conduit deleted C:\Users\Anne\AppData\LocalLow\ConduitEngine deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar deleted C:\Windows\Reimage.ini deleted C:\Windows\tasks\PC_Booster-S-493389286.job deleted C:\Windows\system32\tasks\PC_Booster-S-493389286 deleted C:\Windows\system32\config\systemprofile\Searches deleted C:\Windows\System32\searchplugins deleted C:\Users\Anne\AppData\Roaming\Mozilla\Firefox\Profiles\d2oj2s70.default\searchplugins\safeguard-secure-search.xml deleted C:\Users\Public\Desktop\iLivid.lnk deleted C:\Users\Anne\AppData\Roaming\Mozilla\Firefox\Profiles\d2oj2s70.default\extensions\{87775fdb-6972-41f9-ae51-8326e38cb206} deleted ==== System Specs ====================== Windows: Windows 7 Home Premium Edition Service Pack 1 (Build 7601) Memory (RAM): 2940 MB CPU Info: Intel(R) Pentium(R) Dual CPU T3400 @ 2.16GHz CPU Speed: 785,6 MHz Sound Card: Luidsprekers (High Definition A | Display Adapters: Mobile Intel(R) 4 Series Express Chipset Family | Mobile Intel(R) 4 Series Express Chipset Family | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Algemeen PnP-beeldscherm | Screen Resolution: 1440 X 900 - 32 bit Network: Network Present Network Adapters: Atheros AR5007EG Wireless Network Adapter | Realtek PCIe FE Family Controller CD / DVD Drives: 1x (E: | ) E: MATSHITADVD-RAM UJ880AS Ports: COM3 LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 148,9GB | D: 147,7GB Hard Disks - Free: C: 60,3GB | D: 64,0GB Manufacturer *: INSYDE BIOS Info: AT/AT COMPATIBLE | 09/23/09 | TOSINV - 1 Time Zone: West-Europa (standaardtijd) Motherboard *: TOSHIBA Portable PC Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: AVG AntiVirus 2015 On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG AntiVirus 2015 disabled (Outdated) Firewall: AVG Firewall disabled Default Browser: Google Chrome 37.0.2062.103 Internet Explorer Version: 11.0.9600.17280 Google Chrome version: 37.0.2062.103 Adobe Reader version: 10.0.0.396 Sun Java version: 1.7.0_67 (32-bit) Flash Player version: 11.6.602.171 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Anne\AppData\Local\Temp ==== 2014-09-13 14:23:11 D11FB7A5078631BE2E183DC56FCD5375 43008 ----a-w- C:\Users\Anne\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpyeh9b_.dll ====== Java Cache ===== 2014-08-17 05:39:09 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Anne\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-5a536125 ====== C:\Windows\system32 ===== 2014-09-12 20:29:29 7C3D593AB1E2F5E5687D97772EF99AC7 61952 ----a-w- C:\Windows\System32\iesetup.dll 2014-09-12 20:29:27 E3D7B3F64C30994409BDF8E48048A854 2724864 ----a-w- C:\Windows\System32\mshtml.tlb 2014-09-12 20:29:27 297EF1AB73B8FCE76BCA1365C2E49AFC 440320 ----a-w- C:\Windows\System32\ieui.dll 2014-09-12 20:29:26 6DD476318F524D2DCB73AFEB2EE27B4A 61952 ----a-w- C:\Windows\System32\MshtmlDac.dll 2014-09-12 20:29:26 2E2E40E5D92EEA979548E307C5781038 597504 ----a-w- C:\Windows\System32\jscript9diag.dll 2014-09-12 20:29:25 CC8F34B345DA638D77BB48C035DA628D 164864 ----a-w- C:\Windows\System32\msrating.dll 2014-09-12 20:29:25 AE7BCEA48C8AE4C1A26A2A26C94DD29D 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll 2014-09-12 20:29:24 D603AC77E17E5B9583E382F2EE0381A7 43008 ----a-w- C:\Windows\System32\jsproxy.dll 2014-09-12 20:29:24 1D8C086A39B9794D7131384586811B25 678400 ----a-w- C:\Windows\System32\ieapfltr.dll 2014-09-12 20:29:24 13C2C87C35E52AAB1B439FB2E26DF2DE 69632 ----a-w- C:\Windows\System32\mshtmled.dll 2014-09-12 20:29:22 AA595171932ACC79DA9851067DCBDABF 32768 ----a-w- C:\Windows\System32\iernonce.dll 2014-09-12 20:29:22 84E96F4AF8A7748A3DE7C3EBBC6768E5 365056 ----a-w- C:\Windows\System32\dxtmsft.dll 2014-09-12 20:29:22 4F2EDC301EC63F803C0FDB6CC87EDA24 454656 ----a-w- C:\Windows\System32\vbscript.dll 2014-09-12 20:29:22 42F6F28D4885505F687CAF0459FF9F90 112128 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-09-12 20:29:22 010DFAF3EF93994B805BAA1493D47973 243200 ----a-w- C:\Windows\System32\dxtrans.dll 2014-09-12 20:29:21 77F79126444896B5867E6761490735B8 60416 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll 2014-09-12 20:29:20 88EBB8526981D03C5777AB0A4AEBA8B4 1068032 ----a-w- C:\Windows\System32\mshtmlmedia.dll 2014-09-12 20:29:20 5074835337862817DB3726558D0908DE 51200 ----a-w- C:\Windows\System32\ieetwproxystub.dll 2014-09-12 20:29:19 95D7609E05218407071E353800581BF2 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-09-12 20:29:15 24225D0B94B800F4A78A0AC08E7FA4AE 646144 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2014-09-12 20:29:14 074646C5A979DE79133DE4A8530A9C5D 603136 ----a-w- C:\Windows\System32\msfeeds.dll 2014-09-12 20:29:11 E16EA38E5E98E485BE566738367AF16F 673792 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-09-12 20:29:11 8D4FCAB2643DFEF68040B70F1EDCCBC5 327872 ----a-w- C:\Windows\System32\iedkcs32.dll 2014-09-12 20:29:08 FD96C05DE700F5FD26273D6DDB6495A7 2185728 ----a-w- C:\Windows\System32\iertutil.dll 2014-09-12 20:29:08 D58988722C72D265B51A54103DFC2C6F 1812992 ----a-w- C:\Windows\System32\wininet.dll 2014-09-12 20:29:02 77B7DDF91F3ED2CDB6CF60224EE13433 4232704 ----a-w- C:\Windows\System32\jscript9.dll 2014-09-12 20:29:01 41010A88B70A2168F801DC19EBD4CB4F 1190400 ----a-w- C:\Windows\System32\urlmon.dll 2014-09-12 20:28:58 6A3A809CA7A8F40C89E6F1D301898A66 2014208 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-09-12 20:28:56 7BF1CE9240CB9DD27C3E30733176EB8E 17455104 ----a-w- C:\Windows\System32\mshtml.dll 2014-09-12 20:28:54 A3560FAFC1686D5EE9830B33B5C74B66 11769856 ----a-w- C:\Windows\System32\ieframe.dll 2014-09-12 20:19:38 2413D2216D08FAF7D7178D9E0B481AEB 2285056 ----a-w- C:\Windows\System32\msmpeg2vdec.dll ====== C:\Windows\system32\drivers ===== 2014-08-20 19:49:40 D3C8B449545ED1FEFA568AEF9482BD00 193304 ----a-w- C:\Windows\System32\drivers\avgldx86.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-09-13 13:28:09 -------- d-----w- C:\Program Files\trend micro ======= C: ===== ====== C:\Users\Anne\AppData\Roaming ====== 2014-09-12 19:47:07 -------- d-----w- C:\Users\Anne\AppData\Roaming\AVG2015 2014-09-12 19:46:18 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\AVG2015 2014-09-12 19:44:01 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Avg2015 2014-09-12 19:41:44 -------- d-----w- C:\Users\Anne\AppData\Local\Avg2015 2014-09-04 06:38:27 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser 2014-09-04 06:38:27 -------- d-----w- C:\Users\Gast\AppData\Local\Chromatic Browser 2014-09-04 06:38:26 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Torch 2014-09-04 06:38:26 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Comodo 2014-09-04 06:38:26 -------- d-----w- C:\Users\Gast\AppData\Local\Torch 2014-09-04 06:38:26 -------- d-----w- C:\Users\Gast\AppData\Local\Comodo 2014-09-04 06:38:26 -------- d-----w- C:\Users\Anne\AppData\Local\Chromatic Browser 2014-09-04 06:38:26 -------- d-----w- C:\Users\Administrator\AppData\Local\Torch 2014-09-04 06:38:26 -------- d-----w- C:\Users\Administrator\AppData\Local\Chromatic Browser 2014-09-04 06:38:25 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Google 2014-09-04 06:38:25 -------- d-----w- C:\Users\Gast\AppData\Local\Google 2014-09-04 06:38:25 -------- d-----w- C:\Users\Anne\AppData\Local\Comodo 2014-09-04 06:38:25 -------- d-----w- C:\Users\Administrator\AppData\Local\Comodo 2014-09-04 06:38:24 -------- d-----w- C:\Users\Administrator\AppData\Local\Google ====== C:\Users\Anne ====== 2014-09-13 13:27:40 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Anne\Downloads\RSIT.exe 2014-09-13 04:38:42 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Anne\Downloads\dds.com 2014-09-12 19:46:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2011 2014-09-12 19:45:44 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2014-09-12 19:45:04 -------- d-----w- C:\ProgramData\AVG2015 2014-09-12 05:14:36 4309628508C43A0CAF01CC106216A861 784616 ----a-w- C:\Users\Anne\Downloads\adobe_flash_setup.exe 2014-09-04 06:38:29 02C1EE40968BAA67C3A785CDA9807125 262 --sha-r- C:\ProgramData\ntuser.pol 2014-09-04 06:38:25 -------- d-----w- C:\Users\HomeGroupUser$\AppData 2014-09-04 06:38:25 -------- d-----w- C:\Users\Gast\AppData ====== C: exe-files == 2014-09-13 13:28:09 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Anne.exe 2014-09-13 13:27:40 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Anne\Downloads\RSIT.exe 2014-09-12 20:29:22 42F6F28D4885505F687CAF0459FF9F90 112128 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-09-12 20:29:19 95D7609E05218407071E353800581BF2 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-09-12 20:29:15 24225D0B94B800F4A78A0AC08E7FA4AE 646144 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2014-09-12 20:29:11 E16EA38E5E98E485BE566738367AF16F 673792 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-09-12 20:29:06 4DABFE3A9D3C67E9D9AD83C7F8FAD855 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-09-12 20:29:03 665256B575BF83E4B188BE73450C5C29 470016 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-09-12 20:28:59 EEA63B8CF19E59C4A51AD2D9A59DDA25 812216 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-09-12 19:44:44 FE99370B570B4E727E9978FF24422F1F 238096 ----a-w- C:\Program Files\AVG\AVG2015\avgndisx.exe 2014-09-12 05:14:36 4309628508C43A0CAF01CC106216A861 784616 ----a-w- C:\Users\Anne\Downloads\adobe_flash_setup.exe === C: other files == 2014-09-13 04:38:42 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Anne\Downloads\dds.com 2014-09-09 19:08:48 76CDB2BAD9582D23C1F6F4D868218D6C 22 ----a-w- C:\Users\Anne\Downloads\Outlook.com (11).zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe /background" "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" "MediaGet2"="C:\Users\Anne\AppData\Local\MediaGet2\mediaget.exe --minimized" "Rim.DesktopHelper.exe"="C:\Program Files\Research In Motion\BlackBerry Desktop\Rim.DesktopHelper.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Application Restart #1"="C:\Program Files\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session -- http://home.mcafee.com/SecurityScanner/SSLandPage.aspx?ss=0&avs=1&avu=1&avm=0&av=&fws=3&fwu=1&fwm=0&fw=Windows+Firewall&sa=0&ths=3&trj=0&vir=0&pup=1&webd=0&web=0&virc=0&trjc=0&pupc=0&cver=3.8.150.1&rid=20&affid=739&culture=nl-NL&src=banner" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon" "CanonSolutionMenu"="C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" "NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "nmctxth"="C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" "nmapp"="C:\Program Files\Pure Networks\Network Magic\nmapp.exe -autorun -nosplash" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "AVG_UI"="C:\Program Files\AVG\AVG2015\avgui.exe /TRAYONLY" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe /background" "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" "MediaGet2"="C:\Users\Anne\AppData\Local\MediaGet2\mediaget.exe --minimized" "Rim.DesktopHelper.exe"="C:\Program Files\Research In Motion\BlackBerry Desktop\Rim.DesktopHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Application Restart #1"="C:\Program Files\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session -- http://home.mcafee.com/SecurityScanner/SSLandPage.aspx?ss=0&avs=1&avu=1&avm=0&av=&fws=3&fwu=1&fwm=0&fw=Windows+Firewall&sa=0&ths=3&trj=0&vir=0&pup=1&webd=0&web=0&virc=0&trjc=0&pupc=0&cver=3.8.150.1&rid=20&affid=739&culture=nl-NL&src=banner" ==== Startup Folders ====================== 2012-10-26 08:53:33 1055 ----a-w- C:\Users\Anne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2011-07-21 13:24:46 1770 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Kaspersky Security Scan.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"="C:\Program Files\AVG\AVG10\Firefox4" [] ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bopakagnckmlgajfccecajhnimjiiedh - No path found[] PriiCeecchouP - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Administrator\AppData\Local\Torch\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Administrator\AppData\Local\Torch\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Administrator\AppData\Local\Torch\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Administrator\AppData\Local\Torch\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Administrator\AppData\Local\Torch\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Administrator\AppData\Local\Torch\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Docs - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Notifications - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi MSS+ Extension - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh priceuChop - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio Google Search - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf pricecHopp - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi Last updated at time on date - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd GQueues Chrome Extension - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfaboplgcinooacenccbofkaadcfbkkb MyWebFace - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\njienacjggibaeolcbbjfnigbojkcggj Google Wallet - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia PriiCeecchouP - Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi Ask Toolbar - Anne\AppData\Local\Torch\User Data\Default\Extensions\aaaalejpmnocmhmlbmlkjemekckoagne PriiCeecchouP - Anne\AppData\Local\Torch\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Docs - Anne\AppData\Local\Torch\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Anne\AppData\Local\Torch\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Anne\AppData\Local\Torch\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Notifications - Anne\AppData\Local\Torch\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi DropToS - Anne\AppData\Local\Torch\User Data\Default\Extensions\cipmepknanmbbaneimacddfemfbfgpgo priceuChop - Anne\AppData\Local\Torch\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio DowonlOaed keeper - Anne\AppData\Local\Torch\User Data\Default\Extensions\epfkjfpbdnckdecallggffgccblinnel pricecHopp - Anne\AppData\Local\Torch\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc Torch Music - Anne\AppData\Local\Torch\User Data\Default\Extensions\gcjbdjlojcomlphfchhihkigepfabcad priCechoipp - Anne\AppData\Local\Torch\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib Facemoods - Anne\AppData\Local\Torch\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif iMesh New Tabs - Anne\AppData\Local\Torch\User Data\Default\Extensions\ijbjbpmhcemdbplaiccloimaedacmjdo priiceCHop - Anne\AppData\Local\Torch\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi Torch Helper - Anne\AppData\Local\Torch\User Data\Default\Extensions\lecpjhggilhbceadobnggaagnpfpafhg DownlOaD keepoer - Anne\AppData\Local\Torch\User Data\Default\Extensions\mfjcfaaoljpfcbiplgkjigimhkmaongg GQueues Chrome Extension - Anne\AppData\Local\Torch\User Data\Default\Extensions\nfaboplgcinooacenccbofkaadcfbkkb Torch Music - Anne\AppData\Local\Torch\User Data\Default\Extensions\ohimbkoaphfnmekmfppijeblmkncneed Gmail - Anne\AppData\Local\Torch\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia PriiCeecchouP - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - Gast\AppData\Local\Torch\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - Gast\AppData\Local\Torch\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - Gast\AppData\Local\Torch\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - Gast\AppData\Local\Torch\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - Gast\AppData\Local\Torch\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - Gast\AppData\Local\Torch\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi PriiCeecchouP - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan Google Notifications - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi priceuChop - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio pricecHopp - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc priCechoipp - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib priiceCHop - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi ==== Chromium Startpages ====================== C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Preferences "homepage": "http://www.search.ask.com/?o=APN10653A&gct=hp&d=1-393&v=a9396-200&t=4", "startup_urls": [ "http://www.search.ask.com/?o=APN10653A&gct=hp&d=1-393&v=a9396-200&t=4" ], ==== Chromium Fix ====================== C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\mfjcfaaoljpfcbiplgkjigimhkmaongg deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mfjcfaaoljpfcbiplgkjigimhkmaongg_0.localstorage deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mfjcfaaoljpfcbiplgkjigimhkmaongg deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\aaaalejpmnocmhmlbmlkjemekckoagne deleted successfully C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\angmlfekckcabhkfhebhmbillkkighan deleted successfully C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_boemmnepglcoinjcdlfcpcbmhiecichi_0.localstorage deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_boemmnepglcoinjcdlfcpcbmhiecichi_0.localstorage-journal deleted successfully C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\cohkpgmolmioahdcoplhkcejmcofmfio deleted successfully C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\faoccfpcfpaaffedckoekcmnmkeigmbc deleted successfully C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\golheofofbiannofaknglpigffnkidib deleted successfully C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Anne\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Anne\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Gast\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jocgkenccbdeagikcibaclhfbbdeldmi deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfaboplgcinooacenccbofkaadcfbkkb deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\nfaboplgcinooacenccbofkaadcfbkkb deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nfaboplgcinooacenccbofkaadcfbkkb_0.localstorage deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nfaboplgcinooacenccbofkaadcfbkkb_0.localstorage-journal deleted successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Extensions\epfkjfpbdnckdecallggffgccblinnel deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_epfkjfpbdnckdecallggffgccblinnel_0.localstorage deleted successfully C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\epfkjfpbdnckdecallggffgccblinnel deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.search.ask.com/?o=APN10653A&gct=hp&d=1-393&v=a9396-200&t=4" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] @="http://www.google.com/search?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "SearchAssistant"="http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl] "(Default)"="http://search.msn.com/results.asp?q=%s" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {1A866EC3-7772-4F78-B742-2C383110ABC9} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {3F4BEA38-8DC4-4323-A18E-1BAE57FBA088} Bing Url="http://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}" {65814380-6CF5-47AD-909A-B1B77262A410} Google Url="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={sear" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64182481-4F71-486B-A045-B233BD0DA8FC} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{64182481-4F71-486B-A045-B233BD0DA8FC} deleted successfully HKEY_USERS\S-1-5-21-74716692-3808151042-2833116917-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{474597C5-AB09-49D6-A4D5-2E8D7341384E} deleted successfully HKEY_CLASSES_ROOT\CLSID\{64182481-4F71-486B-A045-B233BD0DA8FC} deleted successfully HKEY_CLASSES_ROOT\CLSID\{474597C5-AB09-49D6-A4D5-2E8D7341384E} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{1E73965B-8B48-48be-9C8D-68B920ABC1C4} deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B811D096-384E-7D35-BBB5-D5C8B2266811} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\iSafe deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\S-493389286 deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FDB962F0-B5B8-9460-D12F-7966E97BAA43} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C1A27135-69EB-8D44-7358-34727DD7B820} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{32148148} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine deleted successfully ==== HijackThis Entries ====================== O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [nmctxth] "C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" O4 - HKLM\..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2015\avgui.exe" /TRAYONLY O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MediaGet2] C:\Users\Anne\AppData\Local\MediaGet2\mediaget.exe --minimized O4 - HKCU\..\Run: [Rim.DesktopHelper.exe] C:\Program Files\Research In Motion\BlackBerry Desktop\Rim.DesktopHelper.exe O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Program Files\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session -- http://home.mcafee.com/SecurityScanner/SSLandPage.aspx?ss=0&avs=1&avu=1&avm=0&av=&fws=3&fwu=1&fwm=0&fw=Windows+Firewall&sa=0&ths=3&trj=0&vir=0&pup=1&webd=0&web=0&virc=0&trjc=0&pupc=0&cver=3.8.150.1&rid=20&affid=739&culture=nl-NL&src=banner O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = Anne\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Global Startup: Kaspersky Security Scan.lnk = ? O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgwdsvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing) O23 - Service: Google Update-service (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe ==== Empty IE Cache ====================== C:\Users\Anne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Anne\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Anne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FK3H8TYS will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Anne\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Anne\AppData\Local\Torch\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=1657 folders=462 80058413 bytes) ==== Empty Temp Folders ====================== C:\Users\Anne\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Anne\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Anne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FK3H8TYS" not found ==== EOF on za 13-09-2014 at 19:58:07,57 ======================