Zoek.exe v5.0.0.0 Updated 13-November-2014 Tool run by Michiel on vr 14/11/2014 at 18:35:11,14. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Michiel_2\Downloads\zoek (2).exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2014-07-11-230426.log 42455 bytes ==== Empty Folders Check ====================== C:\PROGRA~3\Oracle deleted successfully C:\PROGRA~3\smdmf deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3766204629-61776352-3966925753-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully HKEY_USERS\S-1-5-21-3766204629-61776352-3966925753-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully HKEY_USERS\S-1-5-21-3766204629-61776352-3966925753-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} deleted successfully HKEY_USERS\S-1-5-21-3766204629-61776352-3966925753-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} deleted successfully HKEY_USERS\S-1-5-21-3766204629-61776352-3966925753-1005\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-3766204629-61776352-3966925753-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_USERS\S-1-5-21-3766204629-61776352-3966925753-1005\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_USERS\S-1-5-21-3766204629-61776352-3966925753-1005\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} deleted successfully HKEY_CLASSES_ROOT\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} deleted successfully HKEY_CLASSES_ROOT\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} deleted successfully HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} deleted successfully HKEY_CLASSES_ROOT\CLSID\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully ==== Installed Programs ====================== Absolute Reminder Adobe Creative Cloud Adobe Photoshop CC Adobe Reader XI (11.0.09) - Nederlands AVG 2015 AVG PC TuneUp 2014 AVG PC TuneUp 2014 (nl-NL) AVG SafeGuard toolbar BlackBerry Desktop Software 7.1 CCleaner De SimsT 3 Dolby Home Theater v4 EA SportsT FIFA World Energy Management ExpressCache Free YouTube Download version 3.2.37.528 Freemake Video Converter versie 4.1.4 Google Chrome Google Drive Google Update Helper HP Deskjet 3520 series Basissoftware van het apparaat HP Deskjet 3520 series Help HP Deskjet 3520 series Productverbeteringsonderzoek HP Deskjet 3520 series Setup Guide HP Photo Creations HP Update iCloud Intel AppUp(SM) center Intel(R) Management Engine Components Intel(R) PRO/Wireless Driver Intel(R) Processor Graphics Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology Intel(R) Rapid Start Technology Intel(R) Rapid Storage Technology Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel© PROSet/Wireless Software Intel© PROSet/Wireless WiFi Software Intel© Trusted Connect Service Client Java 7 Update 60 Lenovo EasyCamera Lenovo MediaShow6 Lenovo OneKey Recovery Lenovo PowerDVD10 Lenovo Smart Update Lenovo YouCam LenovoDrv_x64 Linkey LockKey Microsoft Office 2013 voor Thuisgebruik en Studenten - nl-nl Microsoft Office 365 - nl-nl Microsoft Silverlight Microsoft SkyDrive Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Microsoft WSE 3.0 Runtime NVIDIA-configuratiescherm 327.02 NVIDIA Grafisch stuurprogramma 327.02 NVIDIA Install Application NVIDIA Optimus 1.10.8 NVIDIA PhysX NVIDIA PhysX System Software 9.12.0613 NVIDIA Update 1.10.8 NVIDIA Update Components Office 15 Click-to-Run Extensibility Component Office 15 Click-to-Run Licensing Component Office 15 Click-to-Run Localization Component Origin Power2Go Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader RocketTab Settings Manager Shared C Run-time for x64 Shopper-Pro Synaptics Pointing Device Driver TornTV UserGuide Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables Vuze Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) Windows Driver Package - Lenovo Corporation (LAD) System (06/08/2012 1.0.0.3) WindowsMangerProtect20.0.0.1013 YTD Video Downloader 4.8.4 ==== Running Processes ====================== C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe C:\windows\SysWOW64\irstrtsv.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update Service.exe C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Users\Michiel_2\AppData\Local\Search Extensions\Client.exe C:\Users\Michiel_2\AppData\Roaming\TornTV.com\TornTV Downloader.exe C:\Program Files (x86)\USB Camera\VM331STI.EXE C:\Program Files (x86)\LockKey\LockKey.exe C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update.exe C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe C:\WINDOWS\SysWOW64\ctfmon.exe C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe C:\Program Files (x86)\ShopperPro\JSDriver\1.37.0.199\jsdrv.exe C:\Program Files (x86)\AVG\AVG2015\avgcfgex.exe C:\Users\Michiel_2\Downloads\zoek (2).exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE C:\WINDOWS\SysWOW64\cmd.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.1.9 deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SPBIUpd deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SPBIUpdd deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\trntv deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "BrowserSafeguard"=- "BrowserSafeguard Update Task"=- "vProt"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "RocketTab"=- "RocketTab Update Task"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command] @="C:\\Program Files\\Internet Explorer\\iexplore.exe" ==== Deleting Files \ Folders ====================== C:\Users\Michiel_2\AppData\Local\Linkey deleted C:\ProgramData\ShopperPro deleted C:\Program Files (x86)\BrowserSafeguard deleted C:\ProgramData\WindowsMangerProtect deleted C:\ProgramData\Avg_Update_1114tb deleted C:\Program Files (x86)\AVG Security Toolbar deleted C:\ProgramData\AVG2014 deleted C:\PROGRA~2\YTDownloader deleted C:\PROGRA~2\MyPC Backup deleted C:\Users\Michiel_2\AppData\Roaming\OpenCandy deleted C:\PROGRA~3\Avg_Update_0814tb deleted C:\PROGRA~3\AVG Security Toolbar deleted C:\PROGRA~3\AVG Secure Search deleted C:\PROGRA~3\AVG SafeGuard toolbar deleted C:\Users\Michiel_2\AppData\Local\AVG SafeGuard toolbar deleted C:\Users\Michiel_2\AppData\Local\Installer deleted C:\Users\Michiel_2\AppData\Local\CrashRpt deleted C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma.crx deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader deleted C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com deleted C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk deleted C:\Users\Public\Documents\ShopperPro deleted C:\Users\Michiel_2\AppData\LocalLow\AVG SafeGuard toolbar deleted C:\WINDOWS\sysWoW64\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar deleted C:\windows\SysNative\Tasks\SPBIW_UpdateTask_Time_343236363039363430372d5737325a786c5a3237344541 deleted C:\WINDOWS\Tasks\SPBIW_UpdateTask_Time_343236363039363430372d5737325a786c5a3237344541.job deleted C:\windows\SysNative\Tasks\SPDriver deleted C:\windows\SysNative\tasks\ShopperPro deleted C:\windows\SysNative\tasks\ShopperProJSUpd deleted C:\windows\SysNative\tasks\0814tbUpdateInfo deleted C:\windows\SysNative\GroupPolicy\Machine deleted C:\windows\SysNative\GroupPolicy\User deleted C:\windows\SysNative\GroupPolicy\GPT.INI deleted C:\WINDOWS\Syswow64\GroupPolicy\gpt.ini deleted C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted "C:\Program Files (x86)\AVG SafeGuard toolbar\TBAPI.dll" deleted "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe" deleted "C:\Users\Michiel_2\AppData\Local\Search Extensions\Client.exe" deleted "C:\PROGRA~2\AVG SafeGuard toolbar\TBAPI.dll" deleted "C:\PROGRA~2\AVG SafeGuard toolbar\vprot.exe" deleted "C:\Users\Michiel_2\AppData\Roaming\TornTV.com\CMUtils.dll" deleted "C:\Users\Michiel_2\AppData\Roaming\TornTV.com\Interop.IWshRuntimeLibrary.dll" deleted "C:\Users\Michiel_2\AppData\Roaming\TornTV.com\MonoTorrent.Dht.dll" deleted "C:\Users\Michiel_2\AppData\Roaming\TornTV.com\MonoTorrent.dll" deleted "C:\Users\Michiel_2\AppData\Roaming\TornTV.com\TornTV Downloader.exe" deleted "C:\Users\Michiel_2\AppData\Local\Search Extensions\Client.exe" deleted "C:\Program Files (x86)\ShopperPro\JSDriver\1.37.0.199\jsdrv.exe" deleted "C:\PROGRA~2\ShopperPro\JSDriver\1.37.0.199\jsdrv.exe" deleted "C:\PROGRA~2\ShopperPro\JSDriver\1.37.0.199\jsdrv.exe" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\18.1.9\avgdttbx.dll" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.1.9\SiteSafety.dll" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.1.9\log4cplusU.dll" deleted "C:\Program Files (x86)\AVG SafeGuard toolbar" not deleted "C:\Program Files (x86)\ShopperPro" deleted "C:\Users\Michiel_2\AppData\Local\Search Extensions" deleted "C:\PROGRA~2\ShopperPro" deleted "C:\PROGRA~2\ShopperPro" deleted "C:\PROGRA~2\AVG SafeGuard toolbar" not deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search" deleted "C:\Users\Michiel_2\AppData\Roaming\TornTV.com" not deleted "C:\Users\Michiel_2\AppData\Local\Search Extensions" deleted "C:\Program Files (x86)\ShopperPro\JSDriver" deleted "C:\Program Files (x86)\ShopperPro\JSDriver\1.37.0.199" deleted "C:\PROGRA~2\ShopperPro\JSDriver" deleted "C:\PROGRA~2\ShopperPro\JSDriver\1.37.0.199" deleted "C:\PROGRA~2\ShopperPro\JSDriver" deleted "C:\PROGRA~2\ShopperPro\JSDriver\1.37.0.199" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\DNTInstaller\18.1.9" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\SiteSafetyInstaller\18.1.9" deleted "C:\PROGRA~2\COMMON~1\AVG Secure Search\vToolbarUpdater\18.1.9" deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8067 MB CPU Info: Intel(R) Core(TM) i7-3517U CPU @ 1.90GHz CPU Speed: 2398,7 MHz Sound Card: Speakers (Realtek High Definiti | Display Adapters: Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | Intel(R) HD Graphics 4000 | NVIDIA GeForce GT 625M Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1366 X 768 - 32 bit Network: Network Present Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Bluetooth-apparaat (Personal Area Network) | Intel(R) Centrino(R) Wireless-N 2230 | Realtek PCIe FE Family-controller CD / DVD Drives: 1x (E: | ) E: MATSHITADVD-RAM UJ8B2 Ports: COM4 | COM5 LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 883,8GB | D: 25,0GB Hard Disks - Free: C: 771,9GB | D: 22,6GB Manufacturer *: LENOVO BIOS Info: AT/AT COMPATIBLE | | LENOVO - 1 Time Zone: Romance (standaardtijd) Motherboard *: LENOVO INVALID Country: Belgi‰ Language: NLB ==== System Specs (Software) ====================== Anti-Virus: AVG AntiVirus Free Edition 2015 On-access scanning disabled (Outdated) Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Anti-Spyware: AVG AntiVirus Free Edition 2015 disabled (Outdated) Default Browser: Google Chrome 38.0.2125.111 Internet Explorer Version: 11.0.9600.17416 Google Chrome version: 38.0.2125.111 Adobe Reader version: 11.0.9.29 Sun Java version: 1.7.0_60 (32-bit) ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\MICHIE~1\AppData\Local\Temp ==== 2014-11-14 17:32:17 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite10907.dll 2014-11-14 17:26:48 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite84444.dll 2014-11-13 15:44:56 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite66559.dll 2014-11-12 20:38:33 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite94843.dll 2014-11-12 20:38:14 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite24841.dll 2014-11-12 14:39:38 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite41709.dll 2014-11-12 12:07:43 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite34288.dll 2014-11-10 16:12:17 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite26312.dll 2014-11-10 16:09:35 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite23650.dll 2014-11-10 16:09:12 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite77107.dll 2014-11-10 12:00:21 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite57009.dll 2014-11-10 11:59:42 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite68444.dll 2014-11-10 11:59:24 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite85006.dll 2014-11-08 14:04:50 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite33982.dll 2014-11-08 14:04:12 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite85558.dll 2014-11-08 08:41:09 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite91141.dll 2014-11-08 08:40:24 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite11194.dll 2014-11-08 08:39:53 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite12431.dll 2014-11-07 17:42:38 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite53961.dll 2014-11-07 17:42:08 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite19174.dll 2014-11-07 17:41:40 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite32093.dll 2014-11-06 16:08:04 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite90446.dll 2014-11-06 16:07:43 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite74028.dll 2014-11-05 14:13:47 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite78596.dll 2014-11-04 15:45:14 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite43079.dll 2014-11-03 16:19:47 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite23387.dll 2014-11-02 18:48:39 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite25672.dll 2014-11-02 15:54:19 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite16037.dll 2014-11-02 14:24:18 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite29210.dll 2014-11-01 12:01:00 006CC8260405E231C2006A0CEA2127FD 1053184 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\System.Data.SQLite.dll ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== 2014-11-12 12:24:47 BC426A818B7F3DB5F509BC1B62FF1501 357376 ----a-w- C:\WINDOWS\SysWOW64\schannel.dll 2014-11-12 12:24:47 B2AC9E081A847ACBD5B62BE25AF39DA1 88800 ----a-w- C:\WINDOWS\SysWOW64\ncryptsslp.dll 2014-11-12 12:24:46 46FBD043A1688EFD6AC1395EE886AD33 3607040 ----a-w- C:\WINDOWS\SysWOW64\msi.dll 2014-11-12 12:24:45 B09332CC976AC43EFF595B6F01AA275C 2459136 ----a-w- C:\WINDOWS\SysWOW64\authui.dll 2014-11-12 12:24:44 48C20EB77757F22840FF4CED98D8DEB1 325120 ----a-w- C:\WINDOWS\SysWOW64\msihnd.dll 2014-11-12 12:24:38 5F333FDBF392850373C89BDA31EBEC1B 1346048 ----a-w- C:\WINDOWS\SysWOW64\user32.dll 2014-11-12 12:24:37 3B45EA6108E48406828D4E015FF41DD0 12800 ----a-w- C:\WINDOWS\SysWOW64\winshfhc.dll 2014-11-12 12:24:36 3BF6BEBD0A5666BDB426A734A4578D9B 1346048 ----a-w- C:\WINDOWS\SysWOW64\msxml3.dll 2014-11-12 12:24:33 FACBA112943A89FBB8AC25085521924F 344536 ----a-w- C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2014-11-12 12:24:33 22B2920A0857BDD61B1331C30AD76F30 424544 ----a-w- C:\WINDOWS\SysWOW64\AudioEng.dll 2014-11-12 12:24:33 0CBA301F325F922FAFB3B83AD3337BB2 370424 ----a-w- C:\WINDOWS\SysWOW64\AudioSes.dll 2014-11-12 12:24:28 07330241FD9D9A03811DDBDC4F9FD18F 19781632 ----a-w- C:\WINDOWS\SysWOW64\mshtml.dll 2014-11-12 12:23:29 154532E0EC2317E6924A9D27F894FF2F 12819456 ----a-w- C:\WINDOWS\SysWOW64\ieframe.dll 2014-11-12 12:23:01 3CA90FDAB95FB2B0D91249BEDE3DE0D9 4298240 ----a-w- C:\WINDOWS\SysWOW64\jscript9.dll 2014-11-12 12:22:55 03D7DF4711B851EF286562F97429211D 1892864 ----a-w- C:\WINDOWS\SysWOW64\wininet.dll 2014-11-12 12:22:53 027A2CF002AD94399B51C07E855E3B2B 1310208 ----a-w- C:\WINDOWS\SysWOW64\urlmon.dll 2014-11-12 12:22:51 F169B03C4B9996708DB20FF0C875B4FF 880128 ----a-w- C:\WINDOWS\SysWOW64\inetcomm.dll 2014-11-12 12:22:50 98D83B6B4FBA32C39585D1E07121BEA0 2277376 ----a-w- C:\WINDOWS\SysWOW64\iertutil.dll 2014-11-12 12:22:49 8A88AD059EDC1014D5D6A472A6D1D66C 661504 ----a-w- C:\WINDOWS\SysWOW64\jscript.dll 2014-11-12 12:22:45 A6145F4F8C69C3B46653B1C5E75A7BD6 688640 ----a-w- C:\WINDOWS\SysWOW64\msfeeds.dll 2014-11-12 12:22:45 8FC2FB51EB90E6AA582BDBA39C1935FD 620032 ----a-w- C:\WINDOWS\SysWOW64\jscript9diag.dll 2014-11-12 12:22:44 EF7A48E5955736BEECF0B0ABB478E90E 478208 ----a-w- C:\WINDOWS\SysWOW64\ieui.dll 2014-11-12 12:22:44 E855B15E1BE0B58F84843D31F4CC4795 501248 ----a-w- C:\WINDOWS\SysWOW64\vbscript.dll 2014-11-12 12:22:43 1BE74145FDF58734CFE968063533FBEC 708096 ----a-w- C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-11-12 12:22:43 108D84EE2359C595CCEA32820A2D5405 2051072 ----a-w- C:\WINDOWS\SysWOW64\inetcpl.cpl 2014-11-12 12:22:42 7BCC24D058205664BD700D272B169AEC 418304 ----a-w- C:\WINDOWS\SysWOW64\dxtmsft.dll 2014-11-12 12:22:42 7B0D22C64F9B6A8CD79EFADD29700693 285696 ----a-w- C:\WINDOWS\SysWOW64\dxtrans.dll 2014-11-12 12:22:38 9F6204775EB03156B430FD095E3D0B5C 325632 ----a-w- C:\WINDOWS\SysWOW64\iedkcs32.dll 2014-11-12 12:22:38 151E64E5D34DFB95D57B5B97C50DE64D 230400 ----a-w- C:\WINDOWS\SysWOW64\webcheck.dll 2014-11-12 12:22:36 BE5EDCACB9E83C3695F650094367740C 99328 ----a-w- C:\WINDOWS\SysWOW64\hlink.dll 2014-11-12 12:22:36 8DFBD587DBEBBC8EB50AD169DE88C449 340992 ----a-w- C:\WINDOWS\SysWOW64\html.iec 2014-11-12 12:22:34 ED5A4451A1A2777C6C5DB4238FD09078 115712 ----a-w- C:\WINDOWS\SysWOW64\ieUnatt.exe 2014-11-12 12:22:34 DCFF6E5356CFF5B50BBA0FAAE01A0412 90624 ----a-w- C:\WINDOWS\SysWOW64\iesysprep.dll 2014-11-12 12:22:34 236AD481F1632F4CE7E9835FFD4AF41D 168960 ----a-w- C:\WINDOWS\SysWOW64\msrating.dll 2014-11-12 12:22:33 8A109878FA68DD1A4C91D8D499797E22 128000 ----a-w- C:\WINDOWS\SysWOW64\iepeers.dll 2014-11-12 12:22:33 45CDC0E37774D30BEE8C5F62CE30D599 1042944 ----a-w- C:\WINDOWS\SysWOW64\actxprxy.dll 2014-11-12 12:22:33 1D391C687102569FD1EA154F0C1A4CE8 91136 ----a-w- C:\WINDOWS\SysWOW64\inseng.dll 2014-11-12 12:22:32 615D259116D1B331911CE28C8CD1CCF3 73216 ----a-w- C:\WINDOWS\SysWOW64\tdc.ocx 2014-11-12 12:22:31 FC51834D5057B9D7847666AE88BC981C 130048 ----a-w- C:\WINDOWS\SysWOW64\occache.dll 2014-11-12 12:22:31 971D57DFB6F3FBC98EB74D1AF8E3C13B 76288 ----a-w- C:\WINDOWS\SysWOW64\mshtmled.dll 2014-11-12 12:22:31 0FEEFF4B96CA5972121F59525142A14E 52736 ----a-w- C:\WINDOWS\SysWOW64\msfeedsbs.dll 2014-11-12 12:22:31 02FF387F6228169EDDCB41F5E4B1A4E4 47104 ----a-w- C:\WINDOWS\SysWOW64\jsproxy.dll 2014-11-12 12:22:30 FCAF49AE2E10EF3823262D10E7F2D0DE 60416 ----a-w- C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll 2014-11-12 12:22:30 F1313045CDCBBC4C90C34AEF67CEE088 112128 ----a-w- C:\WINDOWS\SysWOW64\IEAdvpack.dll 2014-11-12 12:22:30 159199095C9959BE75E61C0FF947708F 152064 ----a-w- C:\WINDOWS\SysWOW64\iexpress.exe 2014-11-12 12:22:29 8D1E12756ED6F1FDB026AD3CF264F90C 40448 ----a-w- C:\WINDOWS\SysWOW64\imgutil.dll 2014-11-12 12:22:29 59607FB7C6B84860CE2D1C5F7C57E052 47616 ----a-w- C:\WINDOWS\SysWOW64\ieetwproxystub.dll 2014-11-12 12:22:29 53E15B8DBD615567CA8895D65746C8D3 64000 ----a-w- C:\WINDOWS\SysWOW64\MshtmlDac.dll 2014-11-12 12:22:28 EF7B7299A1D6604AD3CA2CE1BEF8C8F3 30720 ----a-w- C:\WINDOWS\SysWOW64\iernonce.dll 2014-11-12 12:22:28 A66A88FFE53BBB9DDAACE0110A8232EC 137728 ----a-w- C:\WINDOWS\SysWOW64\wextract.exe 2014-11-12 12:22:28 316280CC22CBB15271A91D83CDFB73C3 27136 ----a-w- C:\WINDOWS\SysWOW64\licmgr10.dll 2014-11-12 12:22:28 0812A503FF349D1DCEEB820B2E4FEE15 57344 ----a-w- C:\WINDOWS\SysWOW64\pngfilt.dll 2014-11-12 12:22:27 3C544C566EE7091AC52D4D9156C62687 235520 ----a-w- C:\WINDOWS\SysWOW64\url.dll 2014-11-12 12:22:27 26F4BDB6EA83011885E217A51A4A3E68 62464 ----a-w- C:\WINDOWS\SysWOW64\iesetup.dll 2014-11-12 12:22:26 3FA76B67F25D84B3C2A4E8A8C0919E6E 12800 ----a-w- C:\WINDOWS\SysWOW64\mshta.exe 2014-11-12 12:22:26 1BD4CD20A25B4A3A5F7BAAC25E9D9202 11264 ----a-w- C:\WINDOWS\SysWOW64\msfeedssync.exe 2014-11-12 12:21:28 D1A07DE4DC408E5AA5CFBAE261919BDC 72192 ----a-w- C:\WINDOWS\SysWOW64\packager.dll 2014-11-12 12:21:22 A22688490DCC2DA19441CA09EF7299BF 736768 ----a-w- C:\WINDOWS\SysWOW64\adtschema.dll 2014-11-12 12:21:22 791BDC9FD3C95F92C7DB2162132C8645 324096 ----a-w- C:\WINDOWS\SysWOW64\certcli.dll 2014-11-12 12:21:21 DDAAC7C966436938526D4CF4C6042A5C 154112 ----a-w- C:\WINDOWS\SysWOW64\msaudite.dll 2014-11-12 12:20:19 75D0FAD0165770819770628239BF57DB 602768 ----a-w- C:\WINDOWS\SysWOW64\oleaut32.dll 2014-11-12 12:20:10 F344D6066EA270AABABA83E2A6B6428F 723968 ----a-w- C:\WINDOWS\SysWOW64\wuapi.dll 2014-11-12 12:20:10 DC523277A7EC2336A654960E08EB5BDC 81920 ----a-w- C:\WINDOWS\SysWOW64\wudriver.dll 2014-11-12 12:20:10 529122F3ADC548F0CCBB6164D86FA116 124928 ----a-w- C:\WINDOWS\SysWOW64\wuwebv.dll 2014-11-12 12:20:09 514AEA6CF4B70FAA30A2BC4B4CC10A39 29696 ----a-w- C:\WINDOWS\SysWOW64\wuapp.exe 2014-11-12 12:20:08 C17F3F1EE09758CF9D234B22B80A1006 25600 ----a-w- C:\WINDOWS\SysWOW64\wups.dll 2014-11-12 12:19:03 CA23E168518460519DC8D49EC6AD9550 18723112 ----a-w- C:\WINDOWS\SysWOW64\shell32.dll 2014-11-12 12:18:57 1FB4389CA807D59B105B0827FCC8F768 11820544 ----a-w- C:\WINDOWS\SysWOW64\twinui.dll 2014-11-12 12:18:56 0EEE3F2278E447498B2CDBDF34C63C91 670384 ----a-w- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2014-11-12 12:18:55 C1AD30D5E28B4291D4A16BC6944ABC0C 2030592 ----a-w- C:\WINDOWS\SysWOW64\WsmSvc.dll 2014-11-12 12:18:55 1793FC07D568C930C04F9FF40FFF9A69 799744 ----a-w- C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2014-11-12 12:18:54 A208DEE0CD61E24817C26D5A05503DA7 334336 ----a-w- C:\WINDOWS\SysWOW64\puiobj.dll 2014-11-12 12:18:54 17FC09725FEE2546B96A938288509719 485376 ----a-w- C:\WINDOWS\SysWOW64\untfs.dll 2014-11-12 12:18:53 46C1902654FF54C835E4C4E8C14B7F2A 239104 ----a-w- C:\WINDOWS\SysWOW64\FXSAPI.dll ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2014-11-12 12:24:47 F0CE4A653EEBA09509EAF93AE2226FA9 426496 ----a-w- C:\WINDOWS\Sysnative\schannel.dll 2014-11-12 12:24:47 6DE50D5592C6EE18C87B0C2EEEDC1621 185856 ----a-w- C:\WINDOWS\Sysnative\dpapisrv.dll 2014-11-12 12:24:47 622928F5A8045F8122F10561D6C35ED0 104336 ----a-w- C:\WINDOWS\Sysnative\ncryptsslp.dll 2014-11-12 12:24:46 EF745B98D81B8C462DB99FC8B5C4322A 3320320 ----a-w- C:\WINDOWS\Sysnative\msi.dll 2014-11-12 12:24:45 D5B41A0C38408814A3E9BAC8C82B2E5B 2773504 ----a-w- C:\WINDOWS\Sysnative\authui.dll 2014-11-12 12:24:44 D1A2E993DB1867C79177CCC9DB6337D0 116032 ----a-w- C:\WINDOWS\Sysnative\consent.exe 2014-11-12 12:24:44 D0C15BC83B3D0AF4F9B1D70216D91794 428032 ----a-w- C:\WINDOWS\Sysnative\msihnd.dll 2014-11-12 12:24:44 034ED41F13D9C1845C1E081F05B640DB 110080 ----a-w- C:\WINDOWS\Sysnative\appinfo.dll 2014-11-12 12:24:39 F0A117D19873FCDF801F082F33BFBB6C 1519488 ----a-w- C:\WINDOWS\Sysnative\user32.dll 2014-11-12 12:24:37 668417ED63F9FBE7DD8D7A54B04279DA 14336 ----a-w- C:\WINDOWS\Sysnative\winshfhc.dll 2014-11-12 12:24:36 93645AEBE163230A2ED5050C14AE6603 2149376 ----a-w- C:\WINDOWS\Sysnative\msxml3.dll 2014-11-12 12:24:34 C0484CA5C7F87E38909746B63C7FC868 911360 ----a-w- C:\WINDOWS\Sysnative\audiosrv.dll 2014-11-12 12:24:34 9C88C9397B44B76E5C9A44B8E2CE53A1 500016 ----a-w- C:\WINDOWS\Sysnative\AudioSes.dll 2014-11-12 12:24:33 DFDFDE2EA4B5CD0606BA6E56ECEE502D 272248 ----a-w- C:\WINDOWS\Sysnative\audiodg.exe 2014-11-12 12:24:33 BB93DAAAE9006598935192B9CB65E475 108432 ----a-w- C:\WINDOWS\Sysnative\EncDump.dll 2014-11-12 12:24:33 9F87516BF76C40B41D831F7D729A6044 482872 ----a-w- C:\WINDOWS\Sysnative\AudioEng.dll 2014-11-12 12:24:33 8085F95BB18A171E7221D2831BC08BC2 394120 ----a-w- C:\WINDOWS\Sysnative\AUDIOKSE.dll 2014-11-12 12:24:33 7F70B1044272982AAEA7C16E83424770 226304 ----a-w- C:\WINDOWS\Sysnative\AudioEndpointBuilder.dll 2014-11-12 12:24:29 6432F143CDC9D73BD2BF832CAB2EDC01 25110016 ----a-w- C:\WINDOWS\Sysnative\mshtml.dll 2014-11-12 12:23:39 BED4D30B7FF094E368333CE2D1CE3195 14390272 ----a-w- C:\WINDOWS\Sysnative\ieframe.dll 2014-11-12 12:23:09 079FEE6FC11A74E4309B6A10931C1CB2 6040064 ----a-w- C:\WINDOWS\Sysnative\jscript9.dll 2014-11-12 12:22:57 BF1FC65A307B31939ADF7F976FDE033C 2365440 ----a-w- C:\WINDOWS\Sysnative\wininet.dll 2014-11-12 12:22:54 559E084EEBE44864493B2903433F19B3 1550336 ----a-w- C:\WINDOWS\Sysnative\urlmon.dll 2014-11-12 12:22:53 22CBDB8810CBED0B4F5E4BE69D7E2AE8 2884096 ----a-w- C:\WINDOWS\Sysnative\iertutil.dll 2014-11-12 12:22:52 46B5DD7C4B1851F59E48302185E076DF 1032704 ----a-w- C:\WINDOWS\Sysnative\inetcomm.dll 2014-11-12 12:22:51 62D54F4673A6208C8CC147758122B3C3 2865152 ----a-w- C:\WINDOWS\Sysnative\actxprxy.dll 2014-11-12 12:22:48 DE58DE2C6C8439B7174D6D3568AA4A80 814080 ----a-w- C:\WINDOWS\Sysnative\jscript9diag.dll 2014-11-12 12:22:48 0D03DAD6BB183156C70F863D0F2FA55A 812544 ----a-w- C:\WINDOWS\Sysnative\jscript.dll 2014-11-12 12:22:47 587DEBB59F5F14C9610966FB14A33607 633856 ----a-w- C:\WINDOWS\Sysnative\ieui.dll 2014-11-12 12:22:46 200CEA827BDC503F00C0AED0EA227D49 800768 ----a-w- C:\WINDOWS\Sysnative\msfeeds.dll 2014-11-12 12:22:44 258C3082AD82C1AAD335DA3FE2D3EB25 580096 ----a-w- C:\WINDOWS\Sysnative\vbscript.dll 2014-11-12 12:22:43 175C139D51F99099D1BDA17794B02191 490496 ----a-w- C:\WINDOWS\Sysnative\dxtmsft.dll 2014-11-12 12:22:42 F7522B00C823794F86ABD5BE1F3D6B09 316928 ----a-w- C:\WINDOWS\Sysnative\dxtrans.dll 2014-11-12 12:22:41 BC3B7CCE855F9A8E7BC96F7062229A02 799232 ----a-w- C:\WINDOWS\Sysnative\ieapfltr.dll 2014-11-12 12:22:41 62E2FCF45F349DE6CAFB3AA7E1D81DA4 2124288 ----a-w- C:\WINDOWS\Sysnative\inetcpl.cpl 2014-11-12 12:22:39 A7F53772ECAE2F44B455D14F71179940 48640 ----a-w- C:\WINDOWS\Sysnative\ieetwproxystub.dll 2014-11-12 12:22:39 853BB696932E4C48EE7034BFF1209A5A 262144 ----a-w- C:\WINDOWS\Sysnative\webcheck.dll 2014-11-12 12:22:36 9CD8D475F462F82E6FD8BFCA7186ACD4 372736 ----a-w- C:\WINDOWS\Sysnative\iedkcs32.dll 2014-11-12 12:22:35 FD7C8FAC461BED1FEEB808E477D884D4 716800 ----a-w- C:\WINDOWS\Sysnative\ie4uinit.exe 2014-11-12 12:22:35 F0A53129AE95A895EC8C4DC36E1797A2 108544 ----a-w- C:\WINDOWS\Sysnative\hlink.dll 2014-11-12 12:22:34 E40D3696BE4852956669C285038B37A6 114688 ----a-w- C:\WINDOWS\Sysnative\ieetwcollector.exe 2014-11-12 12:22:34 AF28C90094C4C50F083599C10D2DC072 145408 ----a-w- C:\WINDOWS\Sysnative\iepeers.dll 2014-11-12 12:22:34 8AE1AC97407CD82D8389390C21430579 111616 ----a-w- C:\WINDOWS\Sysnative\iesysprep.dll 2014-11-12 12:22:34 1C3C54FA2D620DF3093F356A56EC5957 144384 ----a-w- C:\WINDOWS\Sysnative\ieUnatt.exe 2014-11-12 12:22:33 2E475D2FCE0125FA0C486DB9D59E739B 417280 ----a-w- C:\WINDOWS\Sysnative\html.iec 2014-11-12 12:22:32 C9AB2198141844D3DF96B4552CE9D5AB 77824 ----a-w- C:\WINDOWS\Sysnative\JavaScriptCollectionAgent.dll 2014-11-12 12:22:32 A348DEFC16B6FBC88B7D61C3B861BCB1 107520 ----a-w- C:\WINDOWS\Sysnative\inseng.dll 2014-11-12 12:22:32 85E97591864F3125C5B08FB44E0E8078 60416 ----a-w- C:\WINDOWS\Sysnative\msfeedsbs.dll 2014-11-12 12:22:32 00FB2FB8C27C834CF575BC415B80F995 87552 ----a-w- C:\WINDOWS\Sysnative\tdc.ocx 2014-11-12 12:22:31 F79E5258AF040A8AD83C7C1273A071C3 54784 ----a-w- C:\WINDOWS\Sysnative\jsproxy.dll 2014-11-12 12:22:31 2CEACC509889A095828F27115257408D 92160 ----a-w- C:\WINDOWS\Sysnative\mshtmled.dll 2014-11-12 12:22:30 70576D76A11DD5AE54E719297A315F90 88064 ----a-w- C:\WINDOWS\Sysnative\MshtmlDac.dll 2014-11-12 12:22:30 3721721151DB49457B0FD35E0C04594C 199680 ----a-w- C:\WINDOWS\Sysnative\msrating.dll 2014-11-12 12:22:29 DD8FD33C108F14681A410067AB21DDF3 152064 ----a-w- C:\WINDOWS\Sysnative\occache.dll 2014-11-12 12:22:29 D66D11191B48007179B0A77DC0717267 33280 ----a-w- C:\WINDOWS\Sysnative\licmgr10.dll 2014-11-12 12:22:29 161BC2E883A8D8759A4DCF2A85AF9128 51200 ----a-w- C:\WINDOWS\Sysnative\imgutil.dll 2014-11-12 12:22:28 6A7F8D139610E5F3F158182778EF9275 34304 ----a-w- C:\WINDOWS\Sysnative\iernonce.dll 2014-11-12 12:22:28 6096209CB47D61499C3608B9C25B073C 64512 ----a-w- C:\WINDOWS\Sysnative\pngfilt.dll 2014-11-12 12:22:27 F54E1190251EB245183BF16D6C315613 237568 ----a-w- C:\WINDOWS\Sysnative\url.dll 2014-11-12 12:22:27 CDC8A85EB301A8CBE55A81A1D55AF5E5 132096 ----a-w- C:\WINDOWS\Sysnative\IEAdvpack.dll 2014-11-12 12:22:27 4B9C652BD0FD95A9E6123913C35519D6 143872 ----a-w- C:\WINDOWS\Sysnative\wextract.exe 2014-11-12 12:22:26 E99E2E88BFE584184AE92B1F8995CE93 66560 ----a-w- C:\WINDOWS\Sysnative\iesetup.dll 2014-11-12 12:22:26 CA2F3153EF3BCB0BD3A8984C933DF604 167424 ----a-w- C:\WINDOWS\Sysnative\iexpress.exe 2014-11-12 12:22:26 A3871DED5ED88F59C0D1396761708F81 13824 ----a-w- C:\WINDOWS\Sysnative\mshta.exe 2014-11-12 12:22:26 66585D645C4E23A0FD5124BD714AE020 12800 ----a-w- C:\WINDOWS\Sysnative\msfeedssync.exe 2014-11-12 12:21:31 B31C4917EC5EADE24A90DDAF37EA00E0 4182016 ----a-w- C:\WINDOWS\Sysnative\win32k.sys 2014-11-12 12:21:28 84549E8C8BF76B293A7E625A98D4BCF9 81408 ----a-w- C:\WINDOWS\Sysnative\packager.dll 2014-11-12 12:21:23 1D25CC0A9C480C5D56A5A6CF2B5DEB99 3547648 ----a-w- C:\WINDOWS\Sysnative\rdpcorets.dll 2014-11-12 12:21:22 949E590B76018E4523FC71CE510ED9ED 1441792 ----a-w- C:\WINDOWS\Sysnative\lsasrv.dll 2014-11-12 12:21:22 91E59FCB3B32DD84E5DCDA2EA1583807 736768 ----a-w- C:\WINDOWS\Sysnative\adtschema.dll 2014-11-12 12:21:22 488CEA4F1B4D2446FFB7A94E3CB385FE 445440 ----a-w- C:\WINDOWS\Sysnative\certcli.dll 2014-11-12 12:21:21 D7B23B3154508256C9F434EF9B65B91D 131584 ----a-w- C:\WINDOWS\Sysnative\rdpudd.dll 2014-11-12 12:21:21 A8484FB640E044858BA19FB4F13DD4CE 154112 ----a-w- C:\WINDOWS\Sysnative\msaudite.dll 2014-11-12 12:21:21 3D2D2EA099D98FE6B94C7D8C7992C08C 40448 ----a-w- C:\WINDOWS\Sysnative\rfxvmt.dll 2014-11-12 12:20:19 9A108C0A3092110F4651B3AFB9CC7B3D 789184 ----a-w- C:\WINDOWS\Sysnative\oleaut32.dll 2014-11-12 12:20:13 DCD090318EC800CF6275C6835900B0C6 3557376 ----a-w- C:\WINDOWS\Sysnative\wuaueng.dll 2014-11-12 12:20:11 BCC10D47920E83EAC8F2E7E2D414692E 894976 ----a-w- C:\WINDOWS\Sysnative\wuapi.dll 2014-11-12 12:20:10 E67B019D23320AA0C5F1E6DE5D30546A 407552 ----a-w- C:\WINDOWS\Sysnative\WUSettingsProvider.dll 2014-11-12 12:20:10 2585412FC573F298FCBFD6759F8C4C0F 1714176 ----a-w- C:\WINDOWS\Sysnative\wucltux.dll 2014-11-12 12:20:09 EA2DF5520D3623F353F43809A2F88086 55776 ----a-w- C:\WINDOWS\Sysnative\wuauclt.exe 2014-11-12 12:20:09 CCE7F88AD038494253B485EC1B144EB3 60416 ----a-w- C:\WINDOWS\Sysnative\wups.dll 2014-11-12 12:20:09 5D67074419BBFDCA587C2E2A93743E8A 140288 ----a-w- C:\WINDOWS\Sysnative\wuwebv.dll 2014-11-12 12:20:09 2E66E7D4F1E39F7048A231AA60FD2532 95744 ----a-w- C:\WINDOWS\Sysnative\wudriver.dll 2014-11-12 12:20:08 70AC0FA699C9420CB282CCF72993C2E1 51712 ----a-w- C:\WINDOWS\Sysnative\wups2.dll 2014-11-12 12:20:08 4D94560FD4982BB52C1FE64AE38E1A9F 35840 ----a-w- C:\WINDOWS\Sysnative\wuapp.exe 2014-11-12 12:20:08 4A112AD7D9C7289FE9945D05E97019D0 17408 ----a-w- C:\WINDOWS\Sysnative\wuaext.dll 2014-11-12 12:19:05 1D303CE5BCBD5B80BBA08321F28A3F86 21197152 ----a-w- C:\WINDOWS\Sysnative\shell32.dll 2014-11-12 12:19:04 BCE66E78D388875B87286CA091E7075F 7484224 ----a-w- C:\WINDOWS\Sysnative\ntoskrnl.exe 2014-11-12 12:19:00 C4306ADC38939CAC60EA38AAD9F170C0 13424128 ----a-w- C:\WINDOWS\Sysnative\twinui.dll 2014-11-12 12:19:00 1907823D5ACFD75D1D8C0D4318299726 2714112 ----a-w- C:\WINDOWS\Sysnative\SettingsHandlers.dll 2014-11-12 12:18:58 CA729FCE295895515A09BD6FF7903DC8 836176 ----a-w- C:\WINDOWS\Sysnative\mfmp4srcsnk.dll 2014-11-12 12:18:58 C88B63FE96DB4BCED65DD442BC8E77F5 1053184 ----a-w- C:\WINDOWS\Sysnative\localspl.dll 2014-11-12 12:18:58 A208498C5CD750A1743C1AC8162A810F 941568 ----a-w- C:\WINDOWS\Sysnative\MFMediaEngine.dll 2014-11-12 12:18:55 9CE162EB9057CF079736F4DD00FC0D6C 2480128 ----a-w- C:\WINDOWS\Sysnative\WsmSvc.dll 2014-11-12 12:18:55 50E96089F9BE352621997143A56C8E76 822272 ----a-w- C:\WINDOWS\Sysnative\win32spl.dll 2014-11-12 12:18:54 8758F5DEBD2B950B2D56ED11F9E0B38F 545792 ----a-w- C:\WINDOWS\Sysnative\untfs.dll 2014-11-12 12:18:54 5416C603B6C85CF0698E8A2A1D28BAA2 448512 ----a-w- C:\WINDOWS\Sysnative\puiobj.dll 2014-11-12 12:18:53 9C55CE9707B3CA29A6505BCDCC546390 275968 ----a-w- C:\WINDOWS\Sysnative\FXSAPI.dll 2014-11-12 12:18:53 6C118AEDD15FDBEAECC0E85C64B5B86B 615424 ----a-w- C:\WINDOWS\Sysnative\FXSCOMEX.dll 2014-11-12 12:18:52 A92EF73B02686B7E6F070B486512DB88 389176 ----a-w- C:\WINDOWS\Sysnative\ApnDatabase.xml ====== C:\WINDOWS\Sysnative\drivers ===== 2014-11-12 12:24:38 DE8D12B4C3F55FA2C5E9774314F6C58A 258368 ----a-w- C:\WINDOWS\Sysnative\drivers\WdFilter.sys 2014-11-12 12:24:37 4AD874CDC812EC156265E451B6B09DAB 114496 ----a-w- C:\WINDOWS\Sysnative\drivers\WdNisDrv.sys 2014-11-12 12:24:37 0359607177E5E9F6041136CC0A5CB0B6 35320 ----a-w- C:\WINDOWS\Sysnative\drivers\WdBoot.sys 2014-11-12 12:21:22 6D2EE96150E35B9EA49F2B481DE0369A 177472 ----a-w- C:\WINDOWS\Sysnative\drivers\ksecpkg.sys 2014-11-12 12:21:22 4E1207CE16E615B0B7A70DC889F4500E 563976 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2014-11-12 12:21:21 9F08A6608F98B5407E7DDBCF306573EF 27456 ----a-w- C:\WINDOWS\Sysnative\drivers\rdpvideominiport.sys 2014-11-12 12:18:59 CCB3A2BB60FE5073F2DEA63FE83CF8FE 2497344 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2014-11-12 12:18:55 E3FCE2A6B3533D99A3B498504DF9CC47 474432 ----a-w- C:\WINDOWS\Sysnative\drivers\netio.sys 2014-11-12 12:18:54 7F23E38C5B6448F91439E4066645191E 428864 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2014-11-12 12:18:54 66732C13628BDB1AB0D6FD46027327C2 148800 -c--a-w- C:\WINDOWS\Sysnative\drivers\USBSTOR.SYS ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2014-11-13 15:59:23 -------- d-----w- C:\PROGRA~2\trend micro ======= C: ===== 2014-11-14 18:01:30 !HASH: COULD NOT OPEN FILE !!!!! 0 --sha-w- C:\DkHyperbootSync ====== C:\Users\Michiel_2\AppData\Roaming ====== 2014-10-23 18:01:32 -------- d-----w- C:\Users\Michiel_2\AppData\Roaming\TornTV.com 2014-10-20 15:12:27 -------- d-----w- C:\Users\Michiel_2\AppData\Roaming\AVG2015 2014-10-20 15:11:30 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\AVG2015 2014-10-20 15:11:08 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Avg2015 2014-10-20 15:09:37 -------- d-----w- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Avg2015 2014-10-20 15:06:57 -------- d-----w- C:\Users\Michiel_2\AppData\Local\Avg2015 ====== C:\Users\Michiel_2 ====== 2014-11-13 15:58:56 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Michiel_2\Downloads\RSIT.exe 2014-11-12 12:05:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices 2014-10-20 15:09:47 -------- d-----w- C:\ProgramData\AVG2015 ====== C: exe-files == 2014-11-14 17:36:09 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateSetup.exe 2014-11-14 17:36:09 5B4ED5734945619EE3BCDB9825D2F526 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe 2014-11-14 17:36:09 06036279056145E0F08FC095CB789E6A 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateBroker.exe 2014-11-14 17:36:08 F172AD4E906D97ED8F071896FC6789DC 107912 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdate.exe 2014-11-14 17:36:08 EDD3E562684CB4C50704B471BEAB1F86 114568 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateComRegisterShell64.exe 2014-11-14 17:36:08 CB8C1CC4F46FBAC78150754D77460C73 230792 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe 2014-11-14 17:36:08 7161E8E31B7FD3B1CE083C2CA5FD5F44 285064 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe 2014-11-14 17:36:07 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.25.11\GoogleUpdateSetup.exe 2014-11-14 17:34:00 23A5AF749C6EFB330387CA4E88227BDA 10447328 ----a-w- C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\IE\GCPIRKQJ\Antivirus_Free_Edition_x64[1].exe 2014-11-13 15:59:23 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files (x86)\trend micro\Michiel.exe 2014-11-13 15:58:56 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\Michiel_2\Downloads\RSIT.exe 2014-11-12 12:24:44 D1A2E993DB1867C79177CCC9DB6337D0 116032 ----a-w- C:\Windows\System32\consent.exe 2014-11-12 12:24:33 DFDFDE2EA4B5CD0606BA6E56ECEE502D 272248 ----a-w- C:\Windows\System32\audiodg.exe 2014-11-12 12:22:35 FD7C8FAC461BED1FEEB808E477D884D4 716800 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-11-12 12:22:34 ED5A4451A1A2777C6C5DB4238FD09078 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-11-12 12:22:34 E40D3696BE4852956669C285038B37A6 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-11-12 12:22:34 1C3C54FA2D620DF3093F356A56EC5957 144384 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-11-12 12:22:30 5AC6DB399DE418E3955F0CA4567BDD37 813712 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-11-12 12:22:30 159199095C9959BE75E61C0FF947708F 152064 ----a-w- C:\Windows\SysWOW64\iexpress.exe 2014-11-12 12:22:29 8D7C6EE90630126F79275BAC5FE16E51 468992 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe 2014-11-12 12:22:29 5F1B1148C830C0F149A476A58CE0D09D 815248 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2014-11-12 12:22:28 A66A88FFE53BBB9DDAACE0110A8232EC 137728 ----a-w- C:\Windows\SysWOW64\wextract.exe 2014-11-12 12:22:28 8CFC152DF5D4FCFD621EF3E231999D03 484352 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-11-12 12:22:27 CFB15ED916904B30D32DFDE29B67CDCC 25600 ----a-w- C:\Program Files (x86)\Internet Explorer\ExtExport.exe 2014-11-12 12:22:27 CC5C5634FA72689449B4BF7960AC1AD5 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe 2014-11-12 12:22:27 6A16741182E4C1E83636053C81CE344E 221184 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe 2014-11-12 12:22:27 4B9C652BD0FD95A9E6123913C35519D6 143872 ----a-w- C:\Windows\System32\wextract.exe 2014-11-12 12:22:26 CA2F3153EF3BCB0BD3A8984C933DF604 167424 ----a-w- C:\Windows\System32\iexpress.exe 2014-11-12 12:22:26 A3871DED5ED88F59C0D1396761708F81 13824 ----a-w- C:\Windows\System32\mshta.exe 2014-11-12 12:22:26 66585D645C4E23A0FD5124BD714AE020 12800 ----a-w- C:\Windows\System32\msfeedssync.exe 2014-11-12 12:22:26 3FA76B67F25D84B3C2A4E8A8C0919E6E 12800 ----a-w- C:\Windows\SysWOW64\mshta.exe 2014-11-12 12:22:26 1BD4CD20A25B4A3A5F7BAAC25E9D9202 11264 ----a-w- C:\Windows\SysWOW64\msfeedssync.exe 2014-11-12 12:20:09 EA2DF5520D3623F353F43809A2F88086 55776 ----a-w- C:\Windows\System32\wuauclt.exe 2014-11-12 12:20:09 514AEA6CF4B70FAA30A2BC4B4CC10A39 29696 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2014-11-12 12:20:08 4D94560FD4982BB52C1FE64AE38E1A9F 35840 ----a-w- C:\Windows\System32\wuapp.exe 2014-11-12 12:19:04 BCE66E78D388875B87286CA091E7075F 7484224 ----a-w- C:\Windows\System32\ntoskrnl.exe 2014-11-12 12:18:54 00027BEFE4F0106DEC51901872EEDB85 86784 ----a-w- C:\Windows\ImmersiveControlPanel\SystemSettings.exe === C: other files == 2014-11-14 17:31:25 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI51762\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-14 17:31:25 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI51762\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-11-14 17:26:26 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI13402\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-14 17:26:26 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI13402\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-11-13 15:44:14 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI35762\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-13 15:44:14 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI35762\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-11-12 20:37:21 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI65842\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-12 20:37:21 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI65842\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-11-12 14:39:03 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI53282\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-12 14:39:03 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI53282\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-11-12 12:24:38 DE8D12B4C3F55FA2C5E9774314F6C58A 258368 ----a-w- C:\Windows\System32\drivers\WdFilter.sys 2014-11-12 12:24:37 4AD874CDC812EC156265E451B6B09DAB 114496 ----a-w- C:\Windows\System32\drivers\WdNisDrv.sys 2014-11-12 12:24:37 0359607177E5E9F6041136CC0A5CB0B6 35320 ----a-w- C:\Windows\System32\drivers\WdBoot.sys 2014-11-12 12:21:31 B31C4917EC5EADE24A90DDAF37EA00E0 4182016 ----a-w- C:\Windows\System32\win32k.sys 2014-11-12 12:21:22 6D2EE96150E35B9EA49F2B481DE0369A 177472 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2014-11-12 12:21:22 4E1207CE16E615B0B7A70DC889F4500E 563976 ----a-w- C:\Windows\System32\drivers\cng.sys 2014-11-12 12:21:21 9F08A6608F98B5407E7DDBCF306573EF 27456 ----a-w- C:\Windows\System32\drivers\rdpvideominiport.sys 2014-11-12 12:18:59 CCB3A2BB60FE5073F2DEA63FE83CF8FE 2497344 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2014-11-12 12:18:55 E3FCE2A6B3533D99A3B498504DF9CC47 474432 ----a-w- C:\Windows\System32\drivers\netio.sys 2014-11-12 12:18:54 7F23E38C5B6448F91439E4066645191E 428864 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2014-11-12 12:18:54 66732C13628BDB1AB0D6FD46027327C2 148800 -c--a-w- C:\Windows\System32\drivers\USBSTOR.SYS 2014-11-12 12:07:14 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI68482\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-12 12:07:14 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI68482\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-11-10 16:08:59 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI95402\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-10 16:08:59 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI95402\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-11-10 11:59:11 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI40042\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-10 11:59:11 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI40042\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-11-08 14:03:54 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI81642\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-08 14:03:53 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI81642\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-11-08 08:39:29 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI58442\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-11-08 08:39:29 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Michiel_2\AppData\Local\Temp\_MEI58442\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-3766204629-61776352-3966925753-1005\Software\Microsoft\Windows\CurrentVersion\Run] "HP Deskjet 3520 series (NET)"="C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe -deviceID CN2AR1241405SY:NW -scfn HP Deskjet 3520 series (NET) -AutoStart 1" "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "TornTv Downloader"="C:\Users\Michiel_2\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "331BigDog"="C:\Program Files (x86)\USB Camera\VM331STI.EXE" "LockKey"="C:\Program Files (x86)\LockKey\LockKey.exe" "Dolby Home Theater v4"="C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe -autostart" "Smart Update"="C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update.exe -s" "YouCam Mirage"="C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe" "YouCam Tray"="C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe /s" "RemoteControl10"="C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe" "Intel AppUp(SM) center"="C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY" "Adobe Creative Cloud"="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "RIMBBLaunchAgent.exe"="C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "HP Deskjet 3520 series (NET)"="C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe -deviceID CN2AR1241405SY:NW -scfn HP Deskjet 3520 series (NET) -AutoStart 1" "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "TornTv Downloader"="C:\Users\Michiel_2\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 " "BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp" "Energy Management"="C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe" "EnergyUtility"="C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" "SynLenovoGestureMgr"=""%ProgramFiles%\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\Users\\MICHIE~1\\AppData\\Local\\Linkey\\IEEXTE~1\\iedll64.dll " ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cf2fdafc58bc18.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22/11/2013 15:59] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22/11/2013 15:59] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Apple Diagnostics" [C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore1cf2fdafc58bc18" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\HPCustParticipation HP Deskjet 3520 series" ["C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe"] "C:\WINDOWS\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe] "C:\WINDOWS\SysNative\tasks\Synaptics TouchPad Enhancements" [\Program Files\Synaptics\SynTP\SynTPEnh.exe] "C:\WINDOWS\SysNative\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{99D61102-5AC6-4F76-B73D-3C6F420C278F}" [C:\WINDOWS\system32\msfeedssync.exe] ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fpmeembnagmagppkgghhfjfdfajdfcah - C:\Users\Michiel_2\AppData\Local\Linkey\ChromeExtension\ChromeExtension.crx[] pelmeidfhdlhlbjimpabfcbnnojbboma - C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma.crx[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[] Google Docs - michiel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - michiel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - michiel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - michiel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - michiel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - michiel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia Google Docs - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Linkey - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah AdBlock - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Webcam Toy - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade Google Wallet - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Battlefield Play4Free - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh Select City - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma Gmail - Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Fix ====================== C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage deleted successfully C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage-journal deleted successfully C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma deleted successfully C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pelmeidfhdlhlbjimpabfcbnnojbboma_0.localstorage deleted successfully C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.mystartsearch.com/?type=hp&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736" "Default_Page_URL"="http://www.mystartsearch.com/?type=hp&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.mystartsearch.com/web/?type=ds&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736&q={searchTerms}" "Default_Page_URL"="http://www.mystartsearch.com/?type=hp&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736" "Start Page"="http://www.mystartsearch.com/?type=hp&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736" "Search Page"="http://www.mystartsearch.com/web/?type=ds&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.mystartsearch.com/web/?type=ds&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736&q={searchTerms}" "Default_Page_URL"="http://www.mystartsearch.com/?type=hp&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736" "Start Page"="http://www.mystartsearch.com/?type=hp&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736" "Search Page"="http://www.mystartsearch.com/web/?type=ds&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736&q={searchTerms}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{33BB0A4E-99AF-4226-BDF6-49120163DE86}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== shortcuts on Users Desktops ====================== C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive C:\Users\Michiel_2\Desktop\Google Drive.lnk - C:\Users\Michiel_2\Google Drive ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\Adobe Creative Cloud.lnk - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --appletID=HomePanel_BL --appletVersion=1.0 C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe C:\Users\Public\Desktop\AVG 2015.lnk - C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\Users\Public\Desktop\Benodigdheden kopen - HP Deskjet 3520 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 3520 series\Bin\hpqDTSS.exe C:\Users\Public\Desktop\BlackBerry Desktop Software.lnk - C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe C:\Users\Public\Desktop\De Sims™ 3.lnk - C:\Users\Public\Desktop\EA Sports FIFA World.lnk - C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe C:\Users\Public\Desktop\Free YouTube Download.lnk - C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe C:\Users\Public\Desktop\Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe C:\Users\Public\Desktop\Goat Simulator.lnk - C:\Program Files (x86)\Goat Simulator\Binaries\Win32\GoatGame-Win32-Shipping.exe C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Public\Desktop\HP Deskjet 3520 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 3520 series\Bin\HP Deskjet 3520 series.exe -Start UDCDevicePage C:\Users\Public\Desktop\HP Photo Creations.lnk - C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake\Uninstall\Uninstall Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\Uninstall\unins000.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk - C:\WINDOWS\Installer\{AC76BA86-7AD7-1043-7B44-AB0000000001}\SC_Reader.ico C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014.lnk - C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2015.lnk - C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlackBerry\BlackBerry Desktop Software.lnk - C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlackBerry\Leesmij.lnk - C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\BlackBerry Desktop Software readme.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices\Michiel Meulenaere.lnk - C:\Program Files (x86)\Intel\Bluetooth\btmsrvview.exe 5C:3C:27:40:57:25 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake\Freemake Video Converter.lnk - C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Docs.lnk - C:\Program Files (x86)\Google\Drive\googledrivesync.exe --new_document C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Drive.lnk - C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Sheets.lnk - C:\Program Files (x86)\Google\Drive\googledrivesync.exe --new_spreadsheet C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Slides.lnk - C:\Program Files (x86)\Google\Drive\googledrivesync.exe --new_presentation C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader\Uninstall.lnk - C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\Uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader\YTD Video Downloader.lnk - C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\ytd.exe ==== shortcuts in Quick Launch ====================== C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk - C:\Program Files (x86)\Vuze\Azureus.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1414087346&from=ild&uid=SanDiskXSSDXU100X24GB_123705308736 C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\UserGuide.lnk - C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe ==== shortcuts After Repair ====================== C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Michiel_2\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyServer"="http=127.0.0.1:49785;https=127.0.0.1:49785" "ProxyOverride"="<-loopback>" "ProxyEnable"=dword:00000001 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ShopperPro deleted successfully HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\RocketTab deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BrowserSafeguard deleted successfully HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE O4 - HKLM\..\Run: [LockKey] C:\Program Files (x86)\LockKey\LockKey.exe O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart O4 - HKLM\..\Run: [Smart Update] C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update.exe -s O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe" O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe" O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4 O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe O4 - HKCU\..\Run: [HP Deskjet 3520 series (NET)] "C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN2AR1241405SY:NW" -scfn "HP Deskjet 3520 series (NET)" -AutoStart 1 O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [TornTv Downloader] C:\Users\Michiel_2\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: Verzenden naar Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll O9 - Extra button: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU) O9 - Extra 'Tools' menuitem: Verzenden naar Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - (no file) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe O23 - Service: BlackBerry Device Manager (Blackberry Device Manager) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: ExpressCache - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\windows\SysWOW64\irstrtsv.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Lenovo Smart Update Service - Lenovo - C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update Service.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\michiel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\michiel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\IE\GCPIRKQJ will be deleted at reboot C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\IE\IVMB7I6O will be deleted at reboot C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\IE\XCGBAECP will be deleted at reboot C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\IE\YNMEFN4Q will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\michiel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Michiel_2\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=686 folders=270 195940039 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\michiel\AppData\Local\Temp emptied successfully C:\Users\Michiel_2\AppData\Local\Temp will be emptied at reboot C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\MICHIE~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Program Files (x86)\AVG SafeGuard toolbar" not found "C:\PROGRA~2\AVG SafeGuard toolbar" not found "C:\Users\Michiel_2\AppData\Roaming\TornTV.com" not found "C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\IE\GCPIRKQJ" not found "C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\IE\IVMB7I6O" not found "C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\IE\XCGBAECP" not found "C:\Users\Michiel_2\AppData\Local\Microsoft\Windows\INetCache\IE\YNMEFN4Q" not found ==== EOF on vr 14/11/2014 at 19:23:30,44 ======================