Zoek.exe v5.0.0.0 Updated 04-May-2015 Tool run by xander on zo 24-05-2015 at 11:01:59,44. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\xander\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 24-5-2015 11:05:14 Zoek.exe System Restore Point Created Successfully. ==== Empty Folders Check ====================== C:\PROGRA~2\Assassins Creed China deleted successfully C:\PROGRA~2\DivX deleted successfully C:\PROGRA~2\PowerISO deleted successfully C:\PROGRA~2\Steam deleted successfully C:\PROGRA~2\VideoLAN deleted successfully C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully C:\PROGRA~3\374311380 deleted successfully C:\PROGRA~3\FeiNeDeialSoft deleted successfully C:\PROGRA~3\Windows Server deleted successfully C:\PROGRA~3\WinSpeed deleted successfully C:\Users\xander\AppData\Local\Axialis deleted successfully C:\Users\xander\AppData\Local\CheckCode deleted successfully C:\Users\xander\AppData\Local\PackageStaging deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1016731020-189593763-1222235395-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1A84286C-B9A7-4CB6-AB1A-A81E9E0B05E5} deleted successfully HKEY_USERS\S-1-5-21-1016731020-189593763-1222235395-1002\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AD6C7CB1-6324-401E-94F4-A09BDC10C866} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== "Windows Live Essentials" ?????? ??????? ?????? Windows Live ???????? ?????????? Windows Live ?????????? ?????????? (????????????? ??????) ??????????? ???????????? Aangifte inkomstenbelasting 2013 AAOT-AAW Apple Application Support (32-bit) Apple Application Support (64-bit) Apple Mobile Device Support Apple Software Update Assassin's Creed Rogue AVG 2015 Battery Calibration Battle.net Battlefield 4T BattlefieldT Hardline Battlelog Web Plugins Bonjour Boot Configure BurnRecovery Call of Duty: Advanced Warfare - Multiplayer Call of Duty: Advanced Warfare D3DX10 Dragon Gaming Center eM Client Epson Connect Printer Setup EPSON Printer Finder EPSON Scan EPSON XP-302 303 305 306 Series Printer Uninstall Foto-galerija Fotoattelu galerija Fotogal‚ria Fotogalerie Fotogalerii Fotogalerija Fotogalleri Fotogalleriet Fotograf Galerisi Fot˘t r Galeria de Fotografias Galeria de Fotos Galerˇa de fotos Galeria fotografii Galerie de photos Galerie foto Galerija fotografija Google Chrome Google Update Helper Grand Theft Auto V iCloud Intel(R) Manageability Engine Firmware Recovery Agent Intel(R) Management Engine Components Intel(R) PRO/Wireless Driver Intel(R) Processor Graphics Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 3.0.1342.2) Intel(R) Rapid Storage Technology Intel© PROSet/Wireless Software Intel© PROSet/Wireless WiFi Software Intel© Trusted Connect Service Client iTunes K-Lite Codec Pack 11.1.0 Full KB9X Radio Switch Driver KMSpico v9.3.1 Logitech Gaming Software Logitech Gaming Software 8.57 MAGIX MX Suite Microsoft Application Error Reporting Microsoft SkyDrive Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft USB Hub and Controller Test Tool (MUTT) v1.9.1 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 Movie Maker Mozilla Firefox 38.0.1 (x86 nl) Mozilla Maintenance Service MSI Social Media Collection MSVCRT MSVCRT110 MSVCRT110_amd64 MyDriveConnect 3.3.0.1812 Norton Anti-Theft Norton Online Backup NVIDIA-configuratiescherm 350.12 NVIDIA GeForce Experience 2.4.3.22 NVIDIA GeForce Experience Service NVIDIA Grafisch stuurprogramma 350.12 NVIDIA Install Application NVIDIA LED Visualizer 1.0 NVIDIA Network Service NVIDIA Optimus Update 2.4.3.22 NVIDIA PhysX NVIDIA PhysX systeemsoftware 9.14.0702 NVIDIA ShadowPlay 2.4.1.21 NVIDIA Update 2.4.3.22 NVIDIA Update Core NVIDIA Virtual Audio 1.2.27 Origin Photo Common Photo Gallery Podstawowe programy Windows Live PokerStars.eu PowerISO Project CARS Update v1.2 Qualcomm Atheros Bandwidth Control Filter Driver Qualcomm Atheros Killer E220x Drivers Qualcomm Atheros Killer Network Manager Suite Qualcomm Atheros Network Manager Raccolta foto Realtek Card Reader Realtek High Definition Audio Driver Rockstar Games Social Club S?????? f?t???af??? SCM SDFormatter Search Protect SHIELD Streaming SHIELD Wireless Controller Driver SoftMaker Office Professional 2012 Software Updater Sound Blaster Cinema Steam SteelSeries Engine Super-Charger TomTom HOME TomTom HOME Visual Studio Merge Modules Trojan Killer Uplay UseNeXT by Tangysoft Valokuvavalikoima VC80CRTRedist - 8.0.50727.6195 Veetle Broadcaster 0.9.18 Visual Studio 2012 x64 Redistributables Visual Studio 2012 x86 Redistributables Visual Studio C++ 10.0 Runtime VobSub v2.23 (Remove Only) WATCH_DOGS Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live Temel Par‡alar Windows Live UX Platform Windows Live UX Platform Language Pack Windows Liven peruspaketti WindowsMangerProtect20.0.0.722 WinRAR 5.01 (64-bit) WinSpeed WinZip 17.5 XSplit Gamecaster ==== Running Processes ====================== C:\Program Files (x86)\SCM\MSIService.exe C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\AVG\AVG2015\avgfws.exe C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Users\xander\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\AVG\AVG2015\avgcfgex.exe ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RgFltX64 deleted successfully ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=- ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Assassins Creed China not found C:\PROGRA~2\DivX not found C:\PROGRA~2\PowerISO not found C:\PROGRA~2\Steam not found C:\PROGRA~2\VideoLAN not found C:\Users\xander\AppData\Local\CronFilePath deleted C:\Windows\Syswow64\CodecOpenWinsock deleted C:\ProgramData\Avg_Update_0415av deleted C:\ProgramData\Avg_Update_0614t deleted C:\ProgramData\Avg_Update_0814avt deleted C:\ProgramData\Avg_Update_1114avt deleted C:\ProgramData\Avg_Update_1214avt deleted C:\Users\xander\AppData\LocalLow\{2046A511-F54E-BB33-6CA9-3AF0F1653BF5} deleted C:\Users\xander\AppData\Local\Packages\windows_ie_ac_001\AC\{2046A511-F54E-BB33-6CA9-3AF0F1653BF5} deleted C:\PROGRA~3\95f0da5d8026fb2f deleted C:\PROGRA~3\DivX deleted C:\Users\xander\AppData\Roaming\msconfig.ini deleted C:\Users\xander\AppData\Roaming\ihelper deleted C:\Windows\SysNative\config\systemprofile\AppData\Roaming\ETDCoInstaller.log deleted C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Systweak deleted C:\PROGRA~3\Package Cache deleted C:\Users\xander\AppData\Local\SearchProtect deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted C:\Windows\AppPatch\Custom\Custom64\{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb deleted C:\Windows\tasks\0415avUpdateInfo.job deleted C:\Windows\tasks\0614tUpdateInfo.job deleted C:\Windows\tasks\0814avtUpdateInfo.job deleted C:\Windows\tasks\1114avtUpdateInfo.job deleted C:\Windows\tasks\1214avtUpdateInfo.job deleted C:\Windows\AppPatch\Custom\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb deleted "C:\Windows\Installer\a697c55.msi" deleted "C:\Users\xander\AppData\Local\Tempdivx4340" deleted "C:\Users\xander\AppData\Local\Tempdivx4c77" deleted "C:\Users\xander\AppData\Local\Tempdivx59ee" deleted "C:\Users\xander\AppData\Local\Tempdivx8ddd" deleted "C:\Users\xander\AppData\Local\Tempdivx96fd" deleted "C:\Users\xander\AppData\Local\Tempdivxb0d4" deleted "C:\Users\xander\AppData\Local\Tempdivxb9b4" deleted "C:\Users\xander\AppData\Local\Tempdivxd366" deleted "C:\PROGRA~2\Norton Anti-Theft" deleted "C:\PROGRA~2\Norton Online Backup ARA" deleted "C:\PROGRA~2\NortonInstaller" deleted ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8112 MB CPU Info: Intel(R) Core(TM) i7-4700HQ CPU @ 2.40GHz CPU Speed: 2394,7 MHz Sound Card: Luidsprekers (Realtek High Defi | Display Adapters: Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 | Intel(R) HD Graphics 4600 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1920 X 1080 - 32 bit Network: Network Present Network Adapters: Microsoft Hosted Network Virtual Adapter | Killer e2200 Gigabit Ethernet Controller (NDIS 6.30) | Microsoft Wi-Fi Direct Virtual Adapter | Intel(R) Dual Band Wireless-AC 3160 CD / DVD Drives: 4x (E: | F: | G: | H: | ) E: HL-DT-STDVDRAM GTA0N | F: | G: | H: Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 584,1GB | D: 328,9GB Hard Disks - Free: C: 371,2GB | D: 64,4GB Manufacturer *: American Megatrends Inc. BIOS Info: AT/AT COMPATIBLE | | MSI_NB - 1072009 Time Zone: West-Europa (standaardtijd) Motherboard *: Micro-Star International Co., Ltd. MS-1759 Country: Nederland Language: NLD ==== System Specs (Software) ====================== Anti-Virus: AVG Internet Security 2015 On-access scanning disabled (Outdated) Anti-Spyware: AVG Internet Security 2015 disabled (Outdated) Firewall: AVG Internet Security 2015 disabled Default Browser: Firefox 38.0.1 Internet Explorer Version: 11.0.9600.17801 Mozilla Firefox version: 38.0.1 (x86 nl) Google Chrome version: 43.0.2357.65 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2015-05-05 17:11:28 C10A66189DC8C090E7C84873EDCEBC88 2501368 ----a-w- C:\Windows\explorer.exe 2015-05-05 17:01:07 335C38783B3F1B383ECAC17DB3705895 9728 ----a-w- C:\Windows\winhlp32.exe 2015-05-05 16:58:32 727B4519FE9919447108CBEC4768F34A 54272 ----a-w- C:\Windows\twain_32.dll 2015-05-05 16:48:16 73E19BE0E0ECD88616B5762F621B0226 11264 ----a-w- C:\Windows\write.exe 2015-05-05 16:46:03 B67DB709F5FDAA89CA6C2CB6C1E39B3B 154624 ----a-w- C:\Windows\regedit.exe 2015-05-05 16:45:46 4D9DA155B7B449964E14FC32124CC601 128512 ----a-w- C:\Windows\splwow64.exe 2015-05-05 16:45:09 959A31D0CD013CEA0C66DB7C03BCBDDF 221184 ----a-w- C:\Windows\notepad.exe 2015-05-05 16:43:43 B934411DFE7DEACFA95A1255A48133C9 17408 ----a-w- C:\Windows\hh.exe 2015-05-05 16:43:42 80E856B1AFAEB6195EADAAD65945147C 1001472 ----a-w- C:\Windows\HelpPane.exe ====== C:\Users\xander\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2015-05-19 13:23:41 A8B72561E67739D416C4BB3A62EC7331 102608 ----a-w- C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-05-18 14:38:59 3250046189DF6429ECD93D9B483C62C7 1943040 ----a-w- C:\Windows\SysWOW64\dwmcore.dll 2015-05-18 14:38:49 CB07788DF1639ED547F645403BECD759 141824 ----a-w- C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll 2015-05-18 14:38:49 7C29FBB11679B9B4F08D5AA771DABD90 358912 ----a-w- C:\Windows\SysWOW64\schannel.dll 2015-05-18 14:38:47 69304975B8DF00BDC9567AAAF97791F2 1812992 ----a-w- C:\Windows\SysWOW64\SRH.dll 2015-05-18 14:38:47 3C2B9089839D283DD6F91CF5F0748D1D 2985984 ----a-w- C:\Windows\SysWOW64\dbgeng.dll 2015-05-18 14:38:46 697177C5242095DBDB3A3B52DD27C400 1207296 ----a-w- C:\Windows\SysWOW64\dbghelp.dll 2015-05-18 14:38:43 95AB9B30166221ED22E43290D47198CD 364544 ----a-w- C:\Windows\SysWOW64\PhotoMetadataHandler.dll 2015-05-18 14:38:42 F601DD8702FB90928A4069AAF3329D2D 1560576 ----a-w- C:\Windows\SysWOW64\DWrite.dll 2015-05-18 14:38:37 96111DD5552A2A1DC02FC090EF80AF2D 324096 ----a-w- C:\Windows\SysWOW64\certcli.dll 2015-05-18 14:38:35 0FDCB0931B57280D59942556A6706372 21504 ----a-w- C:\Windows\SysWOW64\sdbinst.exe 2015-05-18 14:38:34 032D9982B72E4F9A9B62A43B4CEDB072 1969664 ----a-w- C:\Windows\SysWOW64\wpdshext.dll 2015-05-18 14:38:22 D74445161E58644309F858342F5E265C 19691008 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2015-05-18 14:38:18 0E22CD36FC3292CB812CC46CBCFD8444 12828672 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2015-05-18 14:38:14 6E2B4875B968324E5844F35A37A79260 4305920 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2015-05-18 14:38:13 F2DB87F164BC13AB8EF90FBF5D866B65 664576 ----a-w- C:\Windows\SysWOW64\jscript.dll 2015-05-18 14:38:13 CB5F450D21B9D76B7F01D006E4AEDB40 1882112 ----a-w- C:\Windows\SysWOW64\wininet.dll 2015-05-18 14:38:13 C525258A00ECFB4CE089F54C163268C3 2278400 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2015-05-18 14:38:13 C1A32612710492D0C3339E46EC15E333 504320 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2015-05-18 14:38:13 AA2F2D55DEF98007839D0189D721D70B 1310208 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2015-05-18 14:38:12 C2EB0AA5570CF8BC881B36EE55A59337 688640 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2015-05-18 14:38:12 136687227F11CE928CB05F4FD90319AC 2052608 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2015-05-18 14:38:12 07E82A31808C8BC053D1DE547082C58F 341504 ----a-w- C:\Windows\SysWOW64\html.iec 2015-05-18 14:38:11 F7F090E8B59FEFC50BE6F2A1ABB1ED5D 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll 2015-05-18 14:38:11 D8CAF4753CD2456C761E6761F2C713EE 128000 ----a-w- C:\Windows\SysWOW64\iepeers.dll 2015-05-18 14:38:11 CFCB89C0FE8EF502A7934C0D20E5DBD6 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2015-05-18 14:38:11 8004E2E3D4DFEE81D6E102C537568AEC 327168 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll 2015-05-18 14:38:11 7B4FA4B41FBDBB12C5038FCB6E6652AA 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2015-05-18 14:38:11 48143005C6FCE6D252162EE371532063 880128 ----a-w- C:\Windows\SysWOW64\inetcomm.dll 2015-05-18 14:38:10 63A2E3E9C771B1D4D7D84942D6FCB661 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2015-05-19 13:23:41 5461373AB510F4C22CE61EB7965BE8F2 124112 ----a-w- C:\Windows\Sysnative\PresentationCFFRasterizerNative_v0300.dll 2015-05-18 14:38:59 3DB29814EA5A2091425200B58E25BA15 2256896 ----a-w- C:\Windows\Sysnative\dwmcore.dll 2015-05-18 14:38:50 A709D50BD3125B53283220BA44B78690 116736 ----a-w- C:\Windows\Sysnative\SystemSettingsDatabase.dll 2015-05-18 14:38:50 4658D596725A71521971054D3AF1DCD0 2819584 ----a-w- C:\Windows\Sysnative\SettingsHandlers.dll 2015-05-18 14:38:49 9703EC57F5BBB94F89CA80A5D0C12221 1429504 ----a-w- C:\Windows\Sysnative\diagtrack.dll 2015-05-18 14:38:49 7E36F0698777668A09DD316E59807E0E 172544 ----a-w- C:\Windows\Sysnative\Windows.UI.Input.Inking.dll 2015-05-18 14:38:49 62E3FCC2789CA52AA8A59122FDFCE26E 429568 ----a-w- C:\Windows\Sysnative\schannel.dll 2015-05-18 14:38:49 4C0E8295772A78291A0E256882A0D0E2 36864 ----a-w- C:\Windows\Sysnative\UtcResources.dll 2015-05-18 14:38:49 0F5DF8F08C138D9E1DE88984FEAA1B96 1696256 ----a-w- C:\Windows\Sysnative\wevtsvc.dll 2015-05-18 14:38:48 8442CC9A31FC381255B98D615E49EF82 2162176 ----a-w- C:\Windows\Sysnative\SRH.dll 2015-05-18 14:38:47 48CC2698381AA1F6FBE0D78507281B40 4417536 ----a-w- C:\Windows\Sysnative\dbgeng.dll 2015-05-18 14:38:46 161156327265FB02A820506B98DA7A07 1491456 ----a-w- C:\Windows\Sysnative\dbghelp.dll 2015-05-18 14:38:45 E0C7813A97CA7947FF5C18A8F3B61A45 410128 ----a-w- C:\Windows\Sysnative\services.exe 2015-05-18 14:38:43 B023C38663271E79FC2A9B63F6FE6417 445440 ----a-w- C:\Windows\Sysnative\PhotoMetadataHandler.dll 2015-05-18 14:38:43 4829F2EFACF23F63D6D85B7F1084FB70 1996800 ----a-w- C:\Windows\Sysnative\DWrite.dll 2015-05-18 14:38:42 6C068E7207F183FF3647E45D2599E80C 1387008 ----a-w- C:\Windows\Sysnative\FntCache.dll 2015-05-18 14:38:41 7719BBE3BDA2171FF0955171D9460D26 4180480 ----a-w- C:\Windows\Sysnative\win32k.sys 2015-05-18 14:38:39 9D17F78BB04A3EF67426AFD087660188 410017 ----a-w- C:\Windows\Sysnative\ApnDatabase.xml 2015-05-18 14:38:37 CBB2FE432D81825C174A65DCE538A610 1441792 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2015-05-18 14:38:37 2DDC7AE2C753033E5EC95F3358358043 445440 ----a-w- C:\Windows\Sysnative\certcli.dll 2015-05-18 14:38:35 952D277678FC177CA8549B92A01C4C2C 24576 ----a-w- C:\Windows\Sysnative\sdbinst.exe 2015-05-18 14:38:34 0BB6089A1AEE468209FE22E29E6B87BD 2067968 ----a-w- C:\Windows\Sysnative\wpdshext.dll 2015-05-18 14:38:32 053EF531F55B508343BB3CA91386C1C7 186368 ----a-w- C:\Windows\Sysnative\dpapisrv.dll 2015-05-18 14:38:25 C31D57F7A58FACDA2671075CEBA75199 24971776 ----a-w- C:\Windows\Sysnative\mshtml.dll 2015-05-18 14:38:19 E061B5A1D0F9BBACA41149201ADF4A3B 14401536 ----a-w- C:\Windows\Sysnative\ieframe.dll 2015-05-18 14:38:15 79A4C71CD8B610DE9F66B72B5654C450 6025728 ----a-w- C:\Windows\Sysnative\jscript9.dll 2015-05-18 14:38:14 F0289B3A341429117696F0279DA977B6 2352128 ----a-w- C:\Windows\Sysnative\wininet.dll 2015-05-18 14:38:14 843D063E75B19188759CBEC82828BCB1 2885120 ----a-w- C:\Windows\Sysnative\iertutil.dll 2015-05-18 14:38:13 ED4EB5A0CDD251A17B946C515CB94D70 1547264 ----a-w- C:\Windows\Sysnative\urlmon.dll 2015-05-18 14:38:13 63061A0826839DE8F5B4713976C99F1B 816640 ----a-w- C:\Windows\Sysnative\jscript.dll 2015-05-18 14:38:12 F918BE3C5ACA0B6485D725CC1A5348DC 2125824 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2015-05-18 14:38:12 E20B5098C8707B2CF0858024568234FF 801280 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2015-05-18 14:38:12 C1D6BD834E69E8F77C8B4DDFCEE073F6 417792 ----a-w- C:\Windows\Sysnative\html.iec 2015-05-18 14:38:12 B85ECB91C88F6E74045061B7F7DDEFA2 584192 ----a-w- C:\Windows\Sysnative\vbscript.dll 2015-05-18 14:38:12 5EDC6AF7589B65C89CB1154B3377D0C4 720384 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2015-05-18 14:38:12 1921A72BF1273BED72E569EF1F1A0611 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2015-05-18 14:38:11 EB9FCD39D65E23380CB2C2F0E6F2ED53 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2015-05-18 14:38:11 AB8DF81AC1BF4546C3102469B840009E 145408 ----a-w- C:\Windows\Sysnative\iepeers.dll 2015-05-18 14:38:11 8541124139D68239B1EDE3E490367A6C 107520 ----a-w- C:\Windows\Sysnative\inseng.dll 2015-05-18 14:38:11 673582881DAC4B27E9368BC8834507DD 374272 ----a-w- C:\Windows\Sysnative\iedkcs32.dll 2015-05-18 14:38:11 1D610F215769E4FF56C7B1847DE4B86D 633856 ----a-w- C:\Windows\Sysnative\ieui.dll 2015-05-18 14:38:11 14673D16D433373898FE3006C5A01157 1032704 ----a-w- C:\Windows\Sysnative\inetcomm.dll 2015-05-18 14:38:11 0D2B130C7B5BCEC85D7A789A4338F9B7 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll 2015-05-18 14:38:10 49B1935F131A44CD29857D6900CB643F 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll ====== C:\Windows\Sysnative\drivers ===== 2015-05-18 14:39:08 95B0179BDA907252025DEEA183699FB3 467776 ----a-w- C:\Windows\Sysnative\drivers\USBHUB3.SYS 2015-05-18 14:39:07 272A62B660A48AEF366F8A1836CED19F 57856 ----a-w- C:\Windows\Sysnative\drivers\bthhfenum.sys 2015-05-18 14:38:50 FE14D249D39368CA62D8DA6BC94AC694 80384 ----a-w- C:\Windows\Sysnative\drivers\ahcache.sys 2015-05-18 14:38:45 C61EAF8E1E4B2F62BA4FDF457440B2C6 316416 ----a-w- C:\Windows\Sysnative\drivers\udfs.sys 2015-05-18 14:38:37 5E5AB950693F2C6D6ACBEE3A74697ED7 561928 ----a-w- C:\Windows\Sysnative\drivers\cng.sys 2015-05-18 14:38:35 C54B6B2170BF628FD42F799A66956D75 239424 ----a-w- C:\Windows\Sysnative\drivers\sdbus.sys 2015-05-18 14:38:35 95E295FD19F80B3AD33629B5AEFEC9C7 154432 ----a-w- C:\Windows\Sysnative\drivers\dumpsd.sys 2015-05-07 11:50:22 7EC2B7BBA7A30691D2E0D8478F219B90 378336 ----a-w- C:\Windows\Sysnative\drivers\avgloga.sys 2015-05-07 11:49:24 398FEC9A9146E31E84AFB29731F4CA17 253920 ----a-w- C:\Windows\Sysnative\drivers\avgidsha.sys 2015-05-07 11:49:22 BA60ECC498585DA1A918D424D7D07A18 220128 ----a-w- C:\Windows\Sysnative\drivers\avgmfx64.sys 2015-05-05 17:25:24 D296D0F0DB2CD1504F90405603664493 264000 ----a-w- C:\Windows\Sysnative\drivers\WdFilter.sys 2015-05-05 17:25:24 9F4DF0043965808973023A9B51A11136 114496 ----a-w- C:\Windows\Sysnative\drivers\WdNisDrv.sys 2015-05-05 17:25:24 1751F6B031ADAC34724511057D2E455D 44024 ----a-w- C:\Windows\Sysnative\drivers\WdBoot.sys 2015-05-05 17:18:11 15C8C65CEA018C02EA0F648448C491C5 177984 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2015-05-05 17:15:13 6D3A2565E01B3E4B0F1BEDB0D4B00B3F 1113920 ----a-w- C:\Windows\Sysnative\drivers\ndis.sys 2015-05-05 17:13:42 DC66AE45816614D2999DCD3834DCCC4E 167424 ----a-w- C:\Windows\Sysnative\drivers\rfcomm.sys 2015-05-05 17:13:42 42F88B57CAE42FC10059C887B3FCFCEA 97792 ----a-w- C:\Windows\Sysnative\drivers\hidbth.sys 2015-05-05 17:13:42 1104A31260CCF4318C884E0AE6C513BF 53248 ----a-w- C:\Windows\Sysnative\drivers\bthenum.sys 2015-05-05 17:13:41 DB32958F0E704EFBF7F15161A569E39F 140800 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys 2015-05-05 17:12:44 A770340FC02B999EF0DE6C2A6BC8437C 39744 ----a-w- C:\Windows\Sysnative\drivers\intelpep.sys 2015-05-05 17:12:44 24A8DFC07E4BAF29AEA26E383D4CC886 86336 ----a-w- C:\Windows\Sysnative\drivers\pdc.sys 2015-05-05 17:11:43 BC8A79C625568DDB7DCA49D0C2741A64 27456 ----a-w- C:\Windows\Sysnative\drivers\rdpvideominiport.sys 2015-05-05 16:49:12 EF31713EE4C7CCFE4049F7E7F15645A2 69952 ----a-w- C:\Windows\Sysnative\drivers\vpci.sys 2015-05-05 16:49:11 A53E798C06D729CCF8459968B4372F6E 89368 ----a-w- C:\Windows\Sysnative\drivers\vmbkmcl.sys 2015-05-05 16:49:11 511AD3FF957A0127E6BD336FF6F89C38 97048 ----a-w- C:\Windows\Sysnative\drivers\vmbus.sys 2015-05-05 16:49:11 10A78656BF6126245631705E45F9B9CF 61208 ----a-w- C:\Windows\Sysnative\drivers\winhv.sys 2015-05-05 16:49:10 8B9486B64E5FC17FB9CC04CA10B77A34 49944 ----a-w- C:\Windows\Sysnative\drivers\vmstorfl.sys 2015-05-05 16:49:09 D4DCE03870314D3354F3501F9DDD4123 87040 ----a-w- C:\Windows\Sysnative\drivers\netvsc63.sys 2015-05-05 16:49:01 F00B189ECA74DDF408AD934ADDC72477 89088 ----a-w- C:\Windows\Sysnative\drivers\drmk.sys 2015-05-05 16:49:01 C76097CA941FA7CAFEDB1E557969025C 272384 ----a-w- C:\Windows\Sysnative\drivers\portcls.sys 2015-05-05 16:49:01 C06E8481E068F170A258441639AC5792 551232 ----a-w- C:\Windows\Sysnative\drivers\vhdmp.sys 2015-05-05 16:49:01 807F8CF3E973305FC435C61CBBEE2A49 189248 ----a-w- C:\Windows\Sysnative\drivers\UCX01000.SYS 2015-05-05 16:49:01 64CA2B4A49A8EAF495E435623ECCE7DB 310080 ----a-w- C:\Windows\Sysnative\drivers\volsnap.sys 2015-05-05 16:49:01 5C8F604F6DC74177CDD8372D7B1ADFF0 212736 ----a-w- C:\Windows\Sysnative\drivers\usbvideo.sys 2015-05-05 16:49:01 1A20F03700D2B2ED775E38D751EF2F63 324928 ----a-w- C:\Windows\Sysnative\drivers\USBXHCI.SYS 2015-05-05 16:49:01 00C594D5A1DBD22AD8B2902B9F6EFF94 14528 ----a-w- C:\Windows\Sysnative\drivers\drmkaud.sys 2015-05-05 16:49:00 FEF0BC107812B36849741C3211BA6B60 419648 ----a-w- C:\Windows\Sysnative\drivers\usbhub.sys 2015-05-05 16:49:00 66732C13628BDB1AB0D6FD46027327C2 148800 ----a-w- C:\Windows\Sysnative\drivers\USBSTOR.SYS 2015-05-05 16:48:58 FF78D053A05E5A394F4E3C1816CC65A8 143680 ----a-w- C:\Windows\Sysnative\drivers\usbccgp.sys 2015-05-05 16:48:58 0139248F6B95CF0D837B5B46A2722D40 98304 ----a-w- C:\Windows\Sysnative\drivers\usbcir.sys 2015-05-05 16:48:57 65454187E0F8B6C0DCECB0287D06EC43 14144 ----a-w- C:\Windows\Sysnative\drivers\swenum.sys 2015-05-05 16:48:57 58035FD3369879E02D65989C44D27450 23040 ----a-w- C:\Windows\Sysnative\drivers\WSDScan.sys 2015-05-05 16:48:57 20185BEB7512EDE4EFECDFA148AC9F99 29696 ----a-w- C:\Windows\Sysnative\drivers\TsUsbGD.sys 2015-05-05 16:48:57 0F030491BA4A27BD46F8B8ACEEE83F1A 44544 ----a-w- C:\Windows\Sysnative\drivers\usbscan.sys 2015-05-05 16:48:56 D24B1945ED1F9C96DA786DBBF1E983CE 415040 ----a-w- C:\Windows\Sysnative\drivers\spaceport.sys 2015-05-05 16:48:41 6FC047578785B0435F4E2660946D1ADC 74240 ----a-w- C:\Windows\Sysnative\drivers\mpsdrv.sys 2015-05-05 16:48:40 96B01F117057FB4DAE0FF919ACB55770 26112 ----a-w- C:\Windows\Sysnative\drivers\sermouse.sys 2015-05-05 16:48:39 91223A2AE2955B3E0DA3DB79C3A897A6 30208 ----a-w- C:\Windows\Sysnative\drivers\mouhid.sys 2015-05-05 16:48:39 2A2F8D5284E59815169A88F1FC9CEE28 51008 ----a-w- C:\Windows\Sysnative\drivers\mouclass.sys 2015-05-05 16:48:00 5F66B7BB330AA80067FC66149A692620 33600 ----a-w- C:\Windows\Sysnative\drivers\wimmount.sys 2015-05-05 16:47:35 0E046FF5823B95326D10CF1B4AF23541 39424 ----a-w- C:\Windows\Sysnative\drivers\nsiproxy.sys 2015-05-05 16:47:33 9746BA79DE0CA5EB5104406A9ED62D01 11776 ----a-w- C:\Windows\Sysnative\drivers\rootmdm.sys 2015-05-05 16:47:26 A57A897E3F87B8E9F30A627C42779A76 21824 ----a-w- C:\Windows\Sysnative\drivers\tbs.sys 2015-05-05 16:47:23 BF8205666BA2F9C2ABFA821DB8230C12 428864 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2015-05-05 16:47:23 468273F7089A3A33D149955F0F203FA4 2485056 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys 2015-05-05 16:46:57 13EFD41E351F31E087283CF66C29A25E 373568 ----a-w- C:\Windows\Sysnative\drivers\storport.sys 2015-05-05 16:46:52 00D8AC8E3053290BDE6EA2FB6810D2FC 678400 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys 2015-05-05 16:46:51 D047CD668E6277FD80F0C613946F034C 246272 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys 2015-05-05 16:46:51 6416E79A58A8FCC33A447A4DDDD3BF04 412160 ----a-w- C:\Windows\Sysnative\drivers\srv.sys 2015-05-05 16:46:51 6276AC2AA203CF47811F6EFBBD214FBF 202752 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys 2015-05-05 16:46:51 31233271EDE50D1BBB220F78AFA60486 405504 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys 2015-05-05 16:46:51 13BEA6C882D4D877A5A85CA149C86BC1 40960 ----a-w- C:\Windows\Sysnative\drivers\scfilter.sys 2015-05-05 16:46:05 D7A41959BB3A8510F1BAC36F5CEC1874 144384 ----a-w- C:\Windows\Sysnative\drivers\rmcast.sys 2015-05-05 16:46:03 615DFD97DEA56CE1C3A52185A3038FF8 921920 ----a-w- C:\Windows\Sysnative\drivers\refs.sys 2015-05-05 16:45:58 6505C9E72910F91D4C317EECF22D1DE6 80896 ----a-w- C:\Windows\Sysnative\drivers\wanarp.sys 2015-05-05 16:45:57 E8FFD8BE3C50E7A71C5FBB87BDD1128E 96768 ----a-w- C:\Windows\Sysnative\drivers\agilevpn.sys 2015-05-05 16:45:57 DDD7F92A83F74D1476B71FBA9530A8DC 72192 ----a-w- C:\Windows\Sysnative\drivers\ndproxy.sys 2015-05-05 16:45:57 B337B1F1E82A83E20A1743E008E25C0F 17408 ----a-w- C:\Windows\Sysnative\drivers\rasacd.sys 2015-05-05 16:45:57 82821F4EEC776B4CF11695A38F3ABA46 24576 ----a-w- C:\Windows\Sysnative\drivers\ndistapi.sys 2015-05-05 16:45:57 41F631007A158FEBB67F0E2AD1601BBA 93696 ----a-w- C:\Windows\Sysnative\drivers\rassstp.sys 2015-05-05 16:45:49 83868EB2924E6BC21A54337C65D614D1 47104 ----a-w- C:\Windows\Sysnative\drivers\qwavedrv.sys 2015-05-05 16:45:48 FC0141B4A5AD6D637D883C1A89FC45C5 151040 ----a-w- C:\Windows\Sysnative\drivers\pacer.sys 2015-05-05 16:45:37 BAFF6122CFC9F95CA175AD8C348179A4 88896 ----a-w- C:\Windows\Sysnative\drivers\partmgr.sys 2015-05-05 16:45:37 A2468CC3509394A33C4C32F99563D845 54784 ----a-w- C:\Windows\Sysnative\drivers\wpcfltr.sys 2015-05-05 16:45:10 7F68063A5A0461E02BC860CE0E6BFDDC 2025792 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys 2015-05-05 16:45:07 F3C060444777A59FC63D920719E43CCD 115712 ----a-w- C:\Windows\Sysnative\drivers\bridge.sys 2015-05-05 16:45:07 BAB713B409258DB7B5D9F9693F802B0E 136512 ----a-w- C:\Windows\Sysnative\drivers\wfplwfs.sys 2015-05-05 16:45:05 E3FCE2A6B3533D99A3B498504DF9CC47 474432 ----a-w- C:\Windows\Sysnative\drivers\netio.sys 2015-05-05 16:45:04 42FF4975D032CAE558AE4BB8448F6E5A 48128 ----a-w- C:\Windows\Sysnative\drivers\netbios.sys 2015-05-05 16:45:04 3083926D1CC5B56EA0786527B557DD1B 103424 ----a-w- C:\Windows\Sysnative\drivers\Ndu.sys 2015-05-05 16:45:03 269882812E9A68FFF1AFE1283D428322 126464 ----a-w- C:\Windows\Sysnative\drivers\NdisImPlatform.sys 2015-05-05 16:44:57 008F7CED69FD5B30CBDE1E03C6F36A27 445440 ----a-w- C:\Windows\Sysnative\drivers\nwifi.sys 2015-05-05 16:44:53 8CECC8DA55F3274181FD1EA28AD76664 43008 ----a-w- C:\Windows\Sysnative\drivers\ndiscap.sys 2015-05-05 16:44:30 D1D82F007A079A4D623DBD1F36EF30A1 102208 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys 2015-05-05 16:44:14 4E829B18D5BAEC29893792A3C671A847 100672 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys 2015-05-05 16:44:12 E1BB0B6F00F470B451AB45EA13EBA0B3 1552704 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys 2015-05-05 16:44:12 982B9495F70FEEA269C48F18E960EFDE 389952 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys 2015-05-05 16:44:12 51B3AC0560848CD6D65AC2033E293113 66560 ----a-w- C:\Windows\Sysnative\drivers\mslldp.sys 2015-05-05 16:44:11 1DD05F4857C2188744B9E864658949DD 295424 ----a-w- C:\Windows\Sysnative\drivers\ks.sys 2015-05-05 16:43:32 C1FB505A73FA2E9019D32444AB33B75A 354112 ----a-w- C:\Windows\Sysnative\drivers\fltMgr.sys 2015-05-05 16:43:30 A7C31B168F371E8E6796219F23E354DB 61248 ----a-w- C:\Windows\Sysnative\drivers\fsdepends.sys 2015-05-05 16:43:09 D7B4859227B02BCC1055B279A63C937F 226304 ----a-w- C:\Windows\Sysnative\drivers\WUDFRd.sys 2015-05-05 16:43:09 481286719402E4BAEFEA0604AB1B5113 113664 ----a-w- C:\Windows\Sysnative\drivers\WUDFPf.sys 2015-05-05 16:43:03 2787A73C848128C950385CB3A63A6B91 337728 ----a-w- C:\Windows\Sysnative\drivers\Classpnp.sys 2015-05-05 16:42:53 415DD71628795197F7AFC176CBADC74E 82944 ----a-w- C:\Windows\Sysnative\drivers\appid.sys 2015-05-05 16:42:46 D887446F3F6051C60C26F4FD1FC8D43F 107520 ----a-w- C:\Windows\Sysnative\drivers\i8042prt.sys 2015-05-05 16:42:46 A1D4D34A56DF1D5122CDB265038A2E72 59712 ----a-w- C:\Windows\Sysnative\drivers\kbdclass.sys 2015-05-05 16:42:46 9C096BF5E10CA8BFA56F32522A89FAF1 79872 ----a-w- C:\Windows\Sysnative\drivers\IPMIDrv.sys 2015-05-05 16:42:46 91ED124E261EA8FAA1C0FFDF2A71B0C4 280384 ----a-w- C:\Windows\Sysnative\drivers\pci.sys 2015-05-05 16:42:46 4A34D7084B862A92F3ABC4969166B3D3 32256 ----a-w- C:\Windows\Sysnative\drivers\kbdhid.sys 2015-05-05 16:42:45 D4B7ED39C7900384D9E5C1283F1E7926 76800 ----a-w- C:\Windows\Sysnative\drivers\hdaudbus.sys 2015-05-05 16:42:36 25BB93167DEF270188072603F92A1EF5 118272 ----a-w- C:\Windows\Sysnative\drivers\bthpan.sys 2015-05-05 16:42:35 C37F4930795B771400C63C3C87E7A6C2 1198080 ----a-w- C:\Windows\Sysnative\drivers\bthport.sys 2015-05-05 16:42:35 08EA90955AED2D959EE67DF6EDF0E2B6 81920 ----a-w- C:\Windows\Sysnative\drivers\BTHUSB.SYS 2015-05-05 16:42:31 E796AE43DDD1844281DB4D57294D17C0 533824 ----a-w- C:\Windows\Sysnative\drivers\acpi.sys 2015-05-04 12:14:30 5EBB839735C5089D255C521A8503F4C2 293856 ----a-w- C:\Windows\Sysnative\drivers\avgwfpa.sys 2015-04-27 11:19:16 D5735E2268D835B97F60D8508709B0D4 284128 ----a-w- C:\Windows\Sysnative\drivers\avgidsdrivera.sys ====== C:\Windows\Tasks ====== 2015-05-15 20:01:13 8C21B9D96C5057AA9C26965A4CE7AD77 1074 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f49e50ce652.job ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2015-05-23 07:50:19 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2015-05-23 13:35:11 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service 2015-05-22 07:54:38 -------- d-----w- C:\PROGRA~2\COMMON~1\DivX Shared 2015-05-11 09:01:06 -------- d-----w- C:\PROGRA~2\Project CARS 2015-05-03 11:43:39 -------- d-----w- C:\PROGRA~2\SDA ======= C: ===== 2015-04-29 18:38:37 73FD85AB44B4AEF1F2B147D90A4C73F6 567 ----a-w- C:\DelFix.txt ====== C:\Users\xander\AppData\Roaming ====== 2015-05-22 19:27:44 -------- d-----w- C:\Users\xander\AppData\Local\Mozilla 2015-05-22 07:54:52 -------- d-----w- C:\Users\xander\AppData\Roaming\DivX 2015-05-15 08:16:15 -------- d-----w- C:\Users\xander\AppData\Local\Avg 2015-05-11 07:55:55 -------- d-sh--w- C:\Users\xander\AppData\Local\EmieBrowserModeList 2015-05-11 07:55:32 -------- d-sh--w- C:\Users\xander\AppData\Locallow\EmieBrowserModeList 2015-05-06 14:18:00 -------- d-----w- C:\Users\xander\AppData\Roaming\Identities 2015-05-06 11:21:16 -------- d-----w- C:\Users\xander\AppData\Roaming\MPC-HC 2015-05-01 15:08:35 -------- d-----w- C:\Users\xander\AppData\Local\ESN 2015-04-29 18:25:28 -------- d-----w- C:\Users\xander\AppData\Local\Creative ====== C:\Users\xander ====== 2015-05-23 13:34:46 E201E1AB57839E738097A89AA828C0EC 243480 ----a-w- C:\Users\xander\Downloads\Firefox Setup Stub 38.0.1.exe 2015-05-23 07:49:39 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\xander\Downloads\RSITx64.exe 2015-05-22 19:27:37 -------- d-----w- C:\ProgramData\Mozilla 2015-05-22 09:38:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2015-05-03 11:43:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter ====== C: exe-files == 2015-05-24 06:11:11 C764DE4FB4743CD9DBEFB97EF8461B1B 328656 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgndisa.exe 2015-05-24 06:10:12 F30DBBEE483BDC4952C28EAD1F2C609E 24016 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgrdtesta.exe 2015-05-24 06:10:12 C09630506604BF5CB94944ECE5D8D4D6 70096 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avguirux.exe 2015-05-24 06:10:12 AF7B951814C89D96CD63DAF111D28834 6474120 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe 2015-05-24 06:10:12 506204DABC65EC42F7BDB33DDF37E33B 22992 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgrdtestx.exe 2015-05-23 13:35:12 DD370A8148862150BA81A3F5C56A1E40 148080 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 2015-05-23 13:35:12 BDA219F3019FC6FAF32C8883C5A80E77 103588 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe 2015-05-23 13:34:46 E201E1AB57839E738097A89AA828C0EC 243480 ----a-w- C:\Users\xander\Downloads\Firefox Setup Stub 38.0.1.exe 2015-05-23 07:50:19 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\xander.exe 2015-05-23 07:50:01 5BAC9E6C35485D4BE0973891B8C655C7 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1016731020-189593763-1222235395-1002\$I4Z6HE9.exe 2015-05-23 07:50:01 33EC352A4AD13EC0708345C6D86EC294 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1016731020-189593763-1222235395-1002\$IDY2CVC.exe 2015-05-23 07:49:39 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\xander\Downloads\RSITx64.exe 2015-05-22 19:27:03 E201E1AB57839E738097A89AA828C0EC 243480 ----a-w- C:\$Recycle.Bin\S-1-5-21-1016731020-189593763-1222235395-1002\$R4Z6HE9.exe 2015-05-22 14:50:24 A4EB37BD57781647EC9D275A7A54E49A 5672344 ----a-w- C:\Users\xander\AppData\Local\NVIDIA\NvBackend\Packages\00007700\DAO.19604528.exe 2015-05-22 14:50:24 6F6AFBD93BB17B50D91DA63EA85DF4A3 453056 ----a-w- C:\Users\xander\AppData\Local\NVIDIA\NvBackend\Packages\0000770c\CoProc update.19606705.exe 2015-05-22 09:38:41 E8B42C0C3C68D4BFE62D6D411AC2AA12 2756384 ----a-w- C:\Program Files (x86)\K-Lite Codec Pack\Filters\madVR\madHcCtrl.exe 2015-05-22 09:38:41 B053B14BCD7A97C592BFEE8309550DAC 4383744 ----a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\GraphStudioNext.exe 2015-05-22 09:38:41 AD937F57725167E2D5D7BE534FEED706 1048576 ----a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\mediainfo.exe 2015-05-22 09:38:41 51C6C0C7B3CAD8A8841771B3424078D9 5688320 ----a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\GraphStudioNext64.exe 2015-05-22 09:38:39 93D91DF628A99C41583C9680137AC147 8145920 ----a-w- C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe 2015-05-22 09:38:38 B1463F06E4997432168365B975FC2CA6 1334699 ----a-w- C:\Program Files (x86)\K-Lite Codec Pack\unins000.exe 2015-05-22 09:38:38 84551CD8625713FEEDFEBC769562A67D 443392 ----a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\SetACL_x64.exe 2015-05-22 09:38:38 567BEFCC4CAF8EE4C1F68DED96562727 301056 ----a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\SetACL_x86.exe 2015-05-22 09:38:38 2A5C656B0A364580E578B26EAE2EE889 1173504 ----a-w- C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe 2015-05-22 09:34:40 2712412B536C489370DBA4528F46327A 35431386 ----a-w- C:\$Recycle.Bin\S-1-5-21-1016731020-189593763-1222235395-1002\$RDY2CVC.exe 2015-05-22 08:12:18 FF88767DEDE0997DCD9B2E553BF30690 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1016731020-189593763-1222235395-1002\$I7EOKSP.exe 2015-05-22 08:12:06 D8A2D65622ED4524E66557D6C2F2E0C3 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1016731020-189593763-1222235395-1002\$IJBPOKH.exe 2015-05-22 07:53:41 04B249C577DBC5D192B28990BEF9466A 1010672 ----a-w- C:\$Recycle.Bin\S-1-5-21-1016731020-189593763-1222235395-1002\$RJBPOKH.exe 2015-05-22 06:47:36 E142943F079252AE0ABA47260C4E7196 413840 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\setup.exe 2015-05-22 06:47:36 93E4C51FE870A900E0417F852F781081 196240 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\Update.Core\WLMerger.exe 2015-05-22 06:47:36 9047D1D9F1E6FB4244F53965E89C0796 20698768 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\x86\server\nvstreamsvc.exe 2015-05-22 06:47:35 FAE46B3931E8FCA37F43F5284E9D61E1 4703888 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience\GFExperience.exe 2015-05-22 06:47:35 D5FFA9F81738C81253C0D3C7E03E3AB0 2685072 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\Update.Core\NvBackend.exe 2015-05-22 06:47:35 C9D89A33162D10F23148DAD1723A7497 87184 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\LEDVisualizer\NvLedServiceHost.exe 2015-05-22 06:47:35 C76E7ED75A7FFA50FFDF3B07400C5E84 595600 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience\7z.exe 2015-05-22 06:47:35 C0B698B7D0E03B2A01D0F781BEE052BB 1152656 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GfExperienceService\GfExperienceService64.exe 2015-05-22 06:47:35 B237375302410B9C4E811B9D0699248F 3936912 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShadowPlay\nvspcaps64.exe 2015-05-22 06:47:35 A2D5614BE5957B21272800B63E070C50 1057424 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience\LaunchGFExperience.exe 2015-05-22 06:47:35 8B4CDD6AD795DA62E5FFBB3BFAC32D6F 126608 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\LEDVisualizer\NvLedVisualizer.exe 2015-05-22 06:47:35 6FEA38EA54D6FE0B61D08E93F8F4CAC0 3051152 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShadowPlay\nvspcaps.exe 2015-05-22 06:47:35 601B970FC5875C4B54CD19421D000DEC 22997648 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\amd64\server\nvstreamsvc.exe 2015-05-22 06:47:35 5A0A278308A9F42266C59F68D5E2FA68 5261456 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\x86\server\nvstreamer.exe 2015-05-22 06:47:35 437063300629BED250D5951EAB298DE0 7896720 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\amd64\server\NvStreamNetworkService.exe 2015-05-22 06:47:35 32ECE52E4C4A5FC2115279D7B13E6270 1884304 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVNetworkService.exe 2015-05-22 06:47:35 32ECE52E4C4A5FC2115279D7B13E6270 1884304 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\Network.Service\NVNetworkService.exe 2015-05-22 06:47:35 2985430DAF228D3E48C6BA5A20FF4329 637584 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe 2015-05-22 06:47:35 272CABCCAC57377AA8B8029051FFDD73 519824 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShadowPlay\DXSETUP.exe 2015-05-22 06:47:35 1B2F134B70CD9BB16DEEE3DA52A43C0C 6739088 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\amd64\server\nvstreamer.exe 2015-05-22 06:47:35 164108CA78D3AF5310CB8255157C8105 919184 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GfExperienceService\GfExperienceService32.exe 2015-05-22 06:47:35 08D5498728CACC31A914526B7C3DED92 5983888 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\x86\server\NvStreamNetworkService.exe 2015-05-22 06:47:26 FD7B3B3530475D34ABE199D09F3E7D5E 36892808 ----a-w- C:\ProgramData\NVIDIA Corporation\NetService\1f9479cc-3295-4324-99f7-a8b9ab881b32\GeForce_Experience_Update_v2.4.3.31.exe 2015-05-22 06:44:39 CCAF0DCB4BEF3FCD615E15B46B22F349 6714960 ----a-w- C:\Program Files (x86)\Google\Update\Install\{AF367CF5-901F-4256-8235-27B6D2B1ABBD}\43.0.2357.65_42.0.2311.152_chrome_updater.exe 2015-05-22 06:44:39 CCAF0DCB4BEF3FCD615E15B46B22F349 6714960 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\43.0.2357.65\43.0.2357.65_42.0.2311.152_chrome_updater.exe 2015-05-21 20:30:36 1DBCD4D0DE5191FEB37DDD4F41695C53 675256 ----a-w- C:\Users\xander\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe 2015-05-21 20:30:34 624433A59822ED21E0F51CB606F3B704 172984 ----a-w- C:\Users\xander\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe 2015-05-19 12:48:44 0409E9951C802195107286AB4D373606 1254200 ----a-w- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe 2015-05-18 14:39:05 57ABF04B01CBA20B76F3EE89C18C6612 474624 ----a-w- C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe 2015-05-18 14:38:50 E022185998E5BC0F2EBD8F5875747D3E 87296 ----a-w- C:\Windows\ImmersiveControlPanel\SystemSettings.exe 2015-05-18 14:37:44 3E4D0668C6E0AFD10AFF52C134AC3CC8 2138112 ----a-w- C:\Program Files\Windows Journal\Journal.exe 2015-05-18 14:13:24 F9CF3FB8DD81B390783532B3C98D6976 1884304 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\installer.{7C3DB17E-8F0D-4AE7-81E6-4B052C3D1D56}\NVNetworkService.exe 2015-05-18 09:54:26 B72FA18554341668FD979988A3EFE9A2 3438544 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe 2015-05-18 09:49:54 A1D2D4B24D82CBB5F089D8697DF6E07D 3745744 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgui.exe 2015-05-18 09:49:04 74A5051B41963FFFC16E03054B71683F 1105360 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe 2015-05-18 09:48:52 2C68F9B8E4E83350EDD55E1A2332FEC1 1312208 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe 2015-05-18 09:48:50 E17208F46F7A1363D2C749D474CD7082 403224 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgwsc.exe 2015-05-18 09:48:44 92979A45CFAE281BAC50E68DA6131DF1 252368 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgcmgr.exe 2015-05-18 09:48:32 71812E9A96C12EE1791BF903C214562F 3029968 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe 2015-05-18 09:47:44 A1801AA92FFD1F9D154747E59274B437 340432 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgcfgex.exe 2015-05-18 09:47:42 8FB6E2079824B2E620C8CA5A0DD517EF 702928 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgcsrvx.exe 2015-05-18 09:47:36 B259A529847765C9C97A9A8166CFB892 719312 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgntdumpx.exe 2015-05-18 09:47:26 48F26732CCFC8EC912BA4C0297677EFC 1522664 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgfws.exe 2015-05-18 09:46:52 9BED024D4019D37BA834A07BE54F0815 736152 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgdumpx.exe 2015-05-18 09:46:14 C33BDB732E32AABD5F08BAC6D220401B 322512 ----a-w- C:\Program Files (x86)\AVG\AVG2015\fixcfg.exe 2015-05-18 09:46:08 41B54A3716D0041B56CFD1BC783D6BFA 790480 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgemca.exe 2015-05-18 09:45:46 FE8BF780BED8D892F67AA70550F51D2C 311792 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe 2015-05-18 09:45:32 A39E42E476F5E35C50E926E9BC770BEC 883664 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgntdumpa.exe 2015-05-18 09:45:30 11E2A4297DF0BB06B1AF476AD1BEC987 906096 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgdumpa.exe 2015-05-18 09:45:26 45467263EBB34A6E57B402D388F66848 408528 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgscanx.exe 2015-05-18 09:44:32 ADAD885F7579AA5E491D01779CD2FE78 864208 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe 2015-05-18 09:44:20 0370BD06A577C31A1B897C1B63CBEACF 475600 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgscana.exe 2015-05-18 09:44:04 65A5087922CB776AB30B3E84A1C0D329 371152 ----a-w- C:\Program Files (x86)\AVG\AVG2015\avgcomdlga.exe === C: other files == 2015-05-22 08:12:06 DAC632328938B6FA964748DC76FD7A1A 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1016731020-189593763-1222235395-1002\$I5G27XN.zip 2015-05-22 06:47:38 DFF17A8330FB7813E3F9A4F75D69F377 15504 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVI2SystemService64.sys 2015-05-22 06:47:38 DBFE7B2DF103F74AE51840B3C5F25FE9 38032 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NvVAD\nvvad64v.sys 2015-05-22 06:47:38 DA48A4EB3DD38C7BF90CB12DD1672618 19600 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\amd64\server\NvStreamKms.sys 2015-05-22 06:47:38 CE9812A9B6695E0FA4ACBDF18AC9076B 16032 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShieldWirelessController\NVSWCFilter32.sys 2015-05-22 06:47:38 CB31DA7A5C788DC64E2C3BCCE066825B 14480 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVI2SystemService32.sys 2015-05-22 06:47:38 A3E321C92C09F995542A0B939DFF836B 18576 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience.NvStreamSrv\x86\server\NvStreamKms.sys 2015-05-22 06:47:38 3EEDE5E218F0978D802CE3196E8B9028 32912 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\NvVAD\nvvad32v.sys 2015-05-22 06:47:38 17D21ADA263B31EEDB7EA344AEA4F2E7 19616 ----a-w- C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\ShieldWirelessController\NVSWCFilter64.sys 2015-05-18 14:39:08 95B0179BDA907252025DEEA183699FB3 467776 ----a-w- C:\Windows\System32\drivers\USBHUB3.SYS 2015-05-18 14:39:07 272A62B660A48AEF366F8A1836CED19F 57856 ----a-w- C:\Windows\System32\drivers\bthhfenum.sys 2015-05-18 14:38:50 FE14D249D39368CA62D8DA6BC94AC694 80384 ----a-w- C:\Windows\System32\drivers\ahcache.sys 2015-05-18 14:38:45 C61EAF8E1E4B2F62BA4FDF457440B2C6 316416 ----a-w- C:\Windows\System32\drivers\udfs.sys 2015-05-18 14:38:41 7719BBE3BDA2171FF0955171D9460D26 4180480 ----a-w- C:\Windows\System32\win32k.sys 2015-05-18 14:38:37 5E5AB950693F2C6D6ACBEE3A74697ED7 561928 ----a-w- C:\Windows\System32\drivers\cng.sys 2015-05-18 14:38:35 C54B6B2170BF628FD42F799A66956D75 239424 ----a-w- C:\Windows\System32\drivers\sdbus.sys 2015-05-18 14:38:35 95E295FD19F80B3AD33629B5AEFEC9C7 154432 ----a-w- C:\Windows\System32\drivers\dumpsd.sys 2015-05-18 14:13:54 DBFE7B2DF103F74AE51840B3C5F25FE9 38032 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{E1C085F0-5170-4043-9ADC-2745886D4FB3}\nvvad64v.sys 2015-05-18 14:13:54 3EEDE5E218F0978D802CE3196E8B9028 32912 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\VirtualAudio.Driver.{E1C085F0-5170-4043-9ADC-2745886D4FB3}\nvvad32v.sys 2015-05-18 14:13:53 CE9812A9B6695E0FA4ACBDF18AC9076B 16032 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShieldWirelessController.{F315C2D9-559F-4340-8FD8-B8B90F514BFF}\NVSWCFilter32.sys 2015-05-18 14:13:52 17D21ADA263B31EEDB7EA344AEA4F2E7 19616 ----a-w- C:\Program Files\NVIDIA Corporation\Installer2\ShieldWirelessController.{F315C2D9-559F-4340-8FD8-B8B90F514BFF}\NVSWCFilter64.sys 2015-05-18 09:56:34 E237842B2795C94108CE8B0F4AB3CC40 1205445 ----a-w- C:\Program Files (x86)\AVG\AVG2015\banners\banners.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-1016731020-189593763-1222235395-1002\Software\Microsoft\Windows\CurrentVersion\Run] "SteelSeries Engine"="C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe" "EADM"="d:\Program Files (x86)\Origin\Origin.exe -AutoStart" "EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT EPLTarget\P0000000000000000 /M XP-302 303 305 306 Series" "iFunBox Price Watch"="C:\Program Files (x86)\iFunbox 2014\iFunBox2014.exe /tray" "TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" "MyDriveConnect.exe"="C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe" "EPLTarget\P0000000000000001"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT EPLTarget\P0000000000000001 /M XP-302 303 305 306 Series" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sound Blaster Cinema"="C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe /r" "UpdReg"="C:\Windows\UpdReg.EXE" "Super-Charger"="C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY" "PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE -startup" "DivXMediaServer"="C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "SteelSeries Engine"="C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe" "EADM"="d:\Program Files (x86)\Origin\Origin.exe -AutoStart" "EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT EPLTarget\P0000000000000000 /M XP-302 303 305 306 Series" "iFunBox Price Watch"="C:\Program Files (x86)\iFunbox 2014\iFunBox2014.exe /tray" "TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" "MyDriveConnect.exe"="C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe" "EPLTarget\P0000000000000001"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT EPLTarget\P0000000000000001 /M XP-302 303 305 306 Series" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60" "MBCfg64"="C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64" "BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll,TrayApp" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "Launch LCore"="C:\Program Files\Logitech Gaming Software\LCore.exe /minimized" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "Radio Manager"="C:\Program Files (x86)\SCM\Radio Manager.exe" "SCM"="C:\Program Files (x86)\SCM\SCM.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\PROGRA~2\\SearchProtect\\SearchProtect\\bin\\SPVC64Loader.dll C:\\PROGRA~3\\WinSpeed\\WINSPE~1.DLL" ==== Startup Folders ====================== 2014-01-27 19:22:24 2837 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-08-2014 15:17] C:\Windows\tasks\GoogleUpdateTaskMachineCore1cff43c11ad7e19.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-08-2014 15:17] C:\Windows\tasks\GoogleUpdateTaskMachineCore1cfffda6f94d2c.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-08-2014 15:17] C:\Windows\tasks\GoogleUpdateTaskMachineCore1d04143209f2121.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-08-2014 15:17] C:\Windows\tasks\GoogleUpdateTaskMachineCore1d08f49e50ce652.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [20-08-2014 15:17] C:\Windows\tasks\Trojan Killer.job --a-------- C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe [12-09-2014 12:20] C:\Windows\tasks\User_Feed_Synchronization-{3993DAE7-CFCF-4DD3-AAC9-0DFA545BE83E}.job --ah------- C:\Windows\system32\msfeedssync.exe [31-10-2014 05:25] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\MSI_Dragon Gaming Center" [C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe] "C:\Windows\SysNative\tasks\Norton Online Backup ARA" [C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.5.0.9\\Ara.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{3993DAE7-CFCF-4DD3-AAC9-0DFA545BE83E}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\Norton Anti-Theft\Norton Error Analyzer" [C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe] "C:\Windows\SysNative\tasks\Norton Anti-Theft\Norton Error Processor" [C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe] ==== Firefox Extensions ====================== ProfilePath: C:\Users\xander\AppData\Roaming\TomTom\HOME\Profiles\bsmo1bs2.default - Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== ==== Chromium Look ====================== Google Chrome Version: 43.0.2357.65 Google Docs - xander\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - xander\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - xander\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - xander\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Bookmark Manager - xander\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik Google Wallet - xander\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - xander\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\xander\AppData\Local\Google\Chrome\User Data\Default\Preferences oIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/update2/crx","version":"8.1"},"page_ordinal":"n","path":"pjkljhegncpnkpknbcohdijeoejaedia\\8.1_0","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":true,"was_installed_by_oem":false}}},"google":{"services":{"last_username":"XWennink@gmail.com"}},"homepage":"http://google.com/","homepage_is_newtabpage":false,"pinned_tabs":[],"prefs":{"preference_reset_time":"13068889078240933"},"protection":{"macs":{"browser":{"show_home_button":"F6555AF10F925E99AA37C16CB8F4CCE9981BFBF7C7F0FD824C6D675339F4340C"},"default_search_provider":{"keyword":"6856B6CE24863EA03F1CAFAB1BD27D4766B91EBE968310A6FB577B0C123FFBBA","name":"CC5EC0C3609383CC9EEC39CF03D35638FA6C10634DFF267A9BEA3456D1B5E175","search_url":"19E1F95D5D9D855A3AF78FF5A0BA2E533D05C76FC9F1FFC83F5EC90772E9053D"},"default_search_provider_data":{"template_url_data":"DD7BA5BE8553B654EA5354DBD749D1CB8AFAE6CD7B0EFFCF34705C4986CB45E9"},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"3528FAA4170A0794038CD1C47DDB5CF26A5EAA809EDA2CAAD8B33E595CA925B2","aohghmighlieiainnegkcijnfilokake":"68779B14070D717AFF18D61673DEE1AD7B329012E506E4813D41A8EDBF226336","apdfllckaahabafndbhieahigkjlhalf":"B12EA3C4E219FDA26BB3034A93BD261B295577F44BB50B13C13D682A1DDAB462","bepbmhgboaologfdajaanbcjmnhjmhfn":"F5337F3CBEACD23A64AF209594880BA21A29389F660331DFF1970FC54C339169","blpcfgokakmgnkcojhhkbfbldkacnbeo":"15E0DD97C034394ACD1FDD6C4FF5D8280DA30CFF815295288AD5B756CAE93DD3","coobgpohoikkiipiblmjeljniedjpjpf":"CA504F880DD2CB269A7E5E84C02450CE096179611F39BAB1820E2E39F25EE45F","eemcgdkfndhakfknompkggombfjjjeno":"683562214DA2911EE6B7A73FD40184D17C6790B8B32C330CB1A7876C4C9C8E66","ennkphjdgehloodpbhlhldgbnhmacadg":"D1E26116275189401B5AF91C3D0C1370D13D81708A79BDD98DDA596B2396E909","gfdkimpbcpahaombhbimeihdjnejgicl":"F9CD9CBC415FDB97A114C67C52B641750A6BAA54E2E9E8FCCE89D305EE6850AD","gmlllbghnfkpflemihljekbapjopfjik":"94C903DF9F9736FB56F69DB98DCF7E9A82A20A1442BAE87A9BA12960AE94AC25","kmendfapggjehodndflmmgagdbamhnfd":"CF85A0172D751C8345B08C15E13D5258DDA8F757369B7BEC35DBA0405B175CDA","mfehgcgbbipciphmccgaenjidiccnmng":"70B3592B9ECA49A6F7CFCA6DAC83D3CCE44133C519F5EE380D8D28047ED00867","mfffpogegjflfpflabcdkioaeobkgjik":"AD61305B482F7237B9F5B9B3019BC7EC741F7272775DDEDC8A047EBA6B6B694E","mgndgikekgjfcpckkfioiadnlibdjbkf":"AA31CD81B3364F06AF9D75DC69D7FDC1CA2F4E185FCB6DF65773B841A0B39300","mhjfbmdgcfjbbpaeojofohoefgiehjai":"FFD98A3652F273A216157355264773316015B6485544C8E4746717E363CC56A5","neajdppkdcdipfabeoofebfddakdcjhd":"F3BD3A82D706D3E04CB1E1DB3291056EB79DCDCA00E24368FC752B364A977FB4","nkeimhogjdpnpccoofpliimaahmaaome":"74EC732D62A821521E0DD16E9828F6449F1638C47A2199F8B033E470FBAF4FC8","nmmhkkegccagdldgiimedpiccmgmieda":"C35E5E71F89E5891B94CED33B889FD684A321C22CD3F298248DCFE20DD1273E4","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"88B17E43A78C52C1B33A857FE018FA13613EEF6784CAC492845C9D022AC62C40","pjkljhegncpnkpknbcohdijeoejaedia":"44EEB23194BDE025BA910F7B8537A7ECC2D6A4AA024D9E45DFF98A18477EC825"}},"google":{"services":{"last_username":"8DFD75081C20D741B39DDE4449036CF606E97BAAD92F9C7DE78743FDC7526E37","username":"51668502523687A9D26595347A71EB16C287530539121BB03B812D07E8CB48C8"}},"homepage":"AC7BF2024CA948EDAE12218D9305BED2F89003AF041AE453976A9C84638F5288","homepage_is_newtabpage":"E070D85B7611EE49CE3F8C66C21E8B97FB4CF870CAB77A262CA0125C49470DFF","pinned_tabs":"142B85EBF8F13A1881AC5EF872F3D67B393803A636ADD2A8287BFA95D1B1A254","prefs":{"preference_reset_time":"459E1D69B16EA55A51146DCA495AF0B1A5862FAAB728747F37684C1B9E3AF68D"},"profile":{"reset_prompt_memento":"CC774DB98C67F858ABBED254A7F351E19A9A9398A05A919A70518B7F8D7D6D63"},"safebrowsing":{"incidents_sent":"BCB1C0006DC2E8D315939C4304CA8B68A69EE31FE4CFA62CCF79107EBCBBAE38"},"search_provider_overrides":"A98FF92729288BF623792634C4778F7B6F512FC94E4E9E235291AEB8777B71CF","session":{"restore_on_startup":"091DFEB99199525EDA2BE29D7EA39BE09995DEB6DB09818CCCCC11DC3EB6A962","startup_urls":"9E8830980E6135D8B1011F672AB2645961675ADDCE7EA371AB830AFBAC280379"},"software_reporter":{"prompt_reason":"4F15C54F688FB846B9FC5EA4D7527D25CC26AB7DDF03F57134E6DA4E460755CF","prompt_seed":"C7517D6E6226FCAE11BC44C2657A9020B647018AE0D3F3934E8DB6553D5D228E","prompt_version":"3484332F62B0CE8A32848FA6C986C910388EF6DCFF62AFF1AC034BB538ABC674"},"sync":{"remaining_rollback_tries":"616286BD69EBED425FD0184ADF2EC68A6E68939D7E1DEC5DEF5B7A985645D88F"}},"super_mac":"D32C66DD1528ED0790DFE1509671AE7F510D181102AF270E2A4A64CD7AFE564C"},"session":{"restore_on_startup":4,"startup_urls":["http://google.nl/"]},"software_reporter":{"prompt_reason":0,"prompt_version":"3.20.1"}} ==== Chromium Fix ====================== C:\Users\xander\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_vlc-media-player.nl.softonic.com_0.localstorage deleted successfully C:\Users\xander\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_vlc-media-player.nl.softonic.com_0.localstorage-journal deleted successfully C:\Users\xander\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_vlc-windows-8.nl.softonic.com_0.localstorage deleted successfully C:\Users\xander\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_vlc-windows-8.nl.softonic.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://istart.webssearches.com/web/?type=ds&ts=1408527965&from=fimo&uid=HGSTXHTS721010A9E630_JR10006PGVY56FGVY56FX&q={searchTerms}" "Default_Page_URL"="http://istart.webssearches.com/?type=hp&ts=1408527965&from=fimo&uid=HGSTXHTS721010A9E630_JR10006PGVY56FGVY56FX" "Start Page"="http://istart.webssearches.com/?type=hp&ts=1408527965&from=fimo&uid=HGSTXHTS721010A9E630_JR10006PGVY56FGVY56FX" "Search Page"="http://istart.webssearches.com/web/?type=ds&ts=1408527965&from=fimo&uid=HGSTXHTS721010A9E630_JR10006PGVY56FGVY56FX&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://istart.webssearches.com/web/?type=ds&ts=1408527965&from=fimo&uid=HGSTXHTS721010A9E630_JR10006PGVY56FGVY56FX&q={searchTerms}" "Default_Page_URL"="http://istart.webssearches.com/?type=hp&ts=1408527965&from=fimo&uid=HGSTXHTS721010A9E630_JR10006PGVY56FGVY56FX" "Start Page"="http://istart.webssearches.com/?type=hp&ts=1408527965&from=fimo&uid=HGSTXHTS721010A9E630_JR10006PGVY56FGVY56FX" "Search Page"="http://istart.webssearches.com/web/?type=ds&ts=1408527965&from=fimo&uid=HGSTXHTS721010A9E630_JR10006PGVY56FGVY56FX&q={searchTerms}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02" {33BB0A4E-99AF-4226-BDF6-49120163DE86} Unknown Url="Not_Found" {95FBED97-3D75-4B7A-82F7-295EC6038CA2} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1016731020-189593763-1222235395-1002\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_USERS\S-1-5-21-1016731020-189593763-1222235395-1002\Software\Microsoft\Internet Explorer\SearchScopes\{95FBED97-3D75-4B7A-82F7-295EC6038CA2} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{95FBED97-3D75-4B7A-82F7-295EC6038CA2} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95FBED97-3D75-4B7A-82F7-295EC6038CA2} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== shortcuts on Users Desktops ====================== C:\Users\xander\Desktop\Besiege_v0.03.lnk - C:\Games\Besiege_v0.03\Besiege.exe C:\Users\xander\Desktop\FarCry4 - Snelkoppeling.lnk - C:\Program Files (x86)\Ubisoft\Far Cry 4\bin\FarCry4.exe C:\Users\xander\Desktop\UseNeXT by Tangysoft.lnk - C:\Program Files (x86)\UseNeXT\UseNeXT.exe C:\Users\xander\Desktop\wizard - Snelkoppeling.lnk - D:\Users\xander\Documents\UseNeXT\wizard C:\Users\xander\Desktop\Nieuwe map\Nieuwe map (2)\PokerStars.eu.lnk - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe C:\Users\xander\Desktop\werk\AAOT-AAW.lnk - D:\Program Files (x86)\AAOT-AAW\AAOT-AAW.exe ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\AVG 2015.lnk - C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\Users\Public\Desktop\Battle.net.lnk - C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk - D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe C:\Users\Public\Desktop\Battlefield 4.lnk - D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe C:\Users\Public\Desktop\Battlefield Hardline.lnk - D:\Program Files (x86)\Origin Games\BFH\bfh.exe C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Public\Desktop\Intel(R) HD Graphics Control Panel.lnk - C:\Windows\system32\igfxstarter.exe Desktop C:\Users\Public\Desktop\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\Public\Desktop\Origin.lnk - D:\Program Files (x86)\Origin\Origin.exe C:\Users\Public\Desktop\PowerISO.lnk - C:\Program Files\PowerISO\PowerISO.exe C:\Users\Public\Desktop\Project CARS.lnk - C:\Program Files (x86)\Project CARS\pCARS.exe C:\Users\Public\Desktop\SDFormatter.lnk - C:\Program Files (x86)\SDA\SD Formatter\SDFormatter.exe C:\Users\Public\Desktop\Steam.lnk - D:\Program Files (x86)\Steam\Steam.exe C:\Users\Public\Desktop\Trojan Killer.lnk - C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe ==== shortcuts in Users Start Menu ====================== C:\Users\xander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uninstall.lnk - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe C:\Users\xander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uplay.lnk - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project CARS.lnk - C:\Program Files (x86)\Project CARS\pCARS.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2015.lnk - C:\Program Files (x86)\AVG\AVG2015\avgui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Hardline\Battlefield Hardline End User License Agreement.lnk - D:\Program Files (x86)\Origin Games\BFH\Support\eula\en_US_eula.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Hardline\Battlefield Hardline.lnk - D:\Program Files (x86)\Origin Games\BFH\bfh.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Hardline\Technical Support.lnk - D:\Program Files (x86)\Origin Games\BFH\Support\EA Help\Technical Support.en_US.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Agenda.lnk - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe calendar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Contactgegevens.lnk - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe contacts C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\E-mail.lnk - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe mail C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Herinneringen.lnk - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe reminders C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iCloud-foto's.lnk - C:\Program Files (x86)\Common Files\Apple\Internet Services\ShellStreamsShortcut.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\iCloud.lnk - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Notities.lnk - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe notes C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud\Zoek mijn iPhone.lnk - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudWeb.exe find C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\Info iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.Resources\nl.lproj\About iTunes.rtf C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool.lnk - C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Media Player Classic.lnk - C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\DirectVobSub (x64).lnk - C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\K-Lite Codec Pack\Filters\vsfilter64.dll",DirectVobSub C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\DirectVobSub.lnk - C:\Windows\SysWOW64\rundll32.exe "C:\Program Files (x86)\K-Lite Codec Pack\Filters\vsfilter.dll",DirectVobSub C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\LAV Audio (x64).lnk - C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\K-Lite Codec Pack\Filters\LAV64\lavaudio.ax",OpenConfiguration C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\LAV Audio.lnk - C:\Windows\SysWOW64\rundll32.exe "C:\Program Files (x86)\K-Lite Codec Pack\Filters\LAV\lavaudio.ax",OpenConfiguration C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\LAV Splitter (x64).lnk - C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\K-Lite Codec Pack\Filters\LAV64\lavsplitter.ax",OpenConfiguration C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\LAV Splitter.lnk - C:\Windows\SysWOW64\rundll32.exe "C:\Program Files (x86)\K-Lite Codec Pack\Filters\LAV\lavsplitter.ax",OpenConfiguration C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\LAV Video (x64).lnk - C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\K-Lite Codec Pack\Filters\LAV64\lavvideo.ax",OpenConfiguration C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\LAV Video.lnk - C:\Windows\SysWOW64\rundll32.exe "C:\Program Files (x86)\K-Lite Codec Pack\Filters\LAV\lavvideo.ax",OpenConfiguration C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\madVR.lnk - C:\Program Files (x86)\K-Lite Codec Pack\Filters\madVR\madHcCtrl.exe editLocalSettingsDontWait C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\Reset to recommended settings.lnk - C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe /resetsettings C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Help\Frequently Asked Questions.lnk - C:\Program Files (x86)\K-Lite Codec Pack\Info\faq.htm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\GraphStudioNext (x64).lnk - C:\Program Files (x86)\K-Lite Codec Pack\Tools\GraphStudioNext64.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\GraphStudioNext.lnk - C:\Program Files (x86)\K-Lite Codec Pack\Tools\GraphStudioNext.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\MediaInfo.lnk - C:\Program Files (x86)\K-Lite Codec Pack\Tools\mediainfo.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Uninstall\Uninstall K-Lite Codec Pack.lnk - C:\Program Files (x86)\K-Lite Codec Pack\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\LaunchGFExperience.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin Error Reporter.lnk - D:\Program Files (x86)\Origin\OriginER.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO\PowerISO Help.lnk - C:\Program Files\PowerISO\PowerISO.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO\PowerISO Virtual Drive Manager.lnk - C:\Program Files\PowerISO\PWRISOVM.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO\PowerISO.lnk - C:\Program Files\PowerISO\PowerISO.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO\Uninstall PowerISO.lnk - C:\Program Files\PowerISO\uninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter\SDFormatter.lnk - C:\Program Files (x86)\SDA\SD Formatter\SDFormatter.exe ==== shortcuts in Quick Launch ====================== C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\xander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\xander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc&ts=1408527965&from=fimo&uid=HGSTXHTS721010A9E630_JR10006PGVY56FGVY56FX C:\Users\xander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\xander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\xander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk - C:\Users\xander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==== shortcuts After Repair ====================== C:\Users\xander\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyServer"="http=127.0.0.1:14887" "ProxyOverride"="*origin.com;*ea.com;*akamaihd.net;" "ProxyEnable"=dword:00000000 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\472EE7AF07377B34A9543AB971CCDC5C deleted successfully HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\NAT deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PowerISO deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Steam deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FA7EE274-7370-43B7-9A45-A39B17CCCDC5} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\472EE7AF07377B34A9543AB971CCDC5C deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{f1f78e38} deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE -startup O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe O4 - HKCU\..\Run: [SteelSeries Engine] C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe O4 - HKCU\..\Run: [EADM] "d:\Program Files (x86)\Origin\Origin.exe" -AutoStart O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-302 303 305 306 Series" O4 - HKCU\..\Run: [iFunBox Price Watch] C:\Program Files (x86)\iFunbox 2014\iFunBox2014.exe /tray O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [MyDriveConnect.exe] "C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe" O4 - HKCU\..\Run: [EPLTarget\P0000000000000001] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT "EPLTarget\P0000000000000001" /M "XP-302 303 305 306 Series" O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - Global Startup: Killer Network Manager.lnk = ? O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: DOSGammaJAVA.exe - Unknown owner - C:\Users\xander\AppData\Local\DOSGammaJAVA\DOSGammaJAVA.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing) O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O23 - Service: Norton Anti-Theft (NAT) - Unknown owner - C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\NAT.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Norton Online Backup (NOBU) - Unknown owner - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: Origin Client Service - Electronic Arts - D:\Program Files (x86)\Origin\OriginClientService.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\xander\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\xander\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\xander\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Users\xander\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully ==== Empty FireFox Cache ====================== C:\Users\xander\AppData\Local\Mozilla\Firefox\Profiles\30pt32lz.default\cache2 emptied successfully ==== Empty Chrome Cache ====================== C:\Users\xander\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=78 folders=53 152650352 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\xander\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\xander\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on zo 24-05-2015 at 11:35:49,41 ======================