Zoek.exe Version 4.0.0.4 Updated 14-September-2013 Tool run by Danny on ma 16/09/2013 at 23:25:21,34. Running in: Normal Mode Internet Access Detected Launched: C:\Users\Danny\Desktop\zoek\zoek.exe [Script inserted] ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Danny\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2013-09-11 20:35:36 BCA4913CDE903B4BDEEDAD1D6DBF5E2A 391168 ----a-w- C:\Windows\SysWOW64\ieui.dll 2013-09-11 20:35:36 06EEAD5864F357ADC618F65A2F2C5156 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2013-09-11 20:35:34 7E540E07B97DCBCF8F76FA743B486BF2 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2013-09-11 20:35:34 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-09-11 20:35:34 000B55B43992179E69C2E83CCB8F1126 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2013-09-11 20:35:33 3B74EADF1B70251D3CDB87BC338DC34D 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2013-09-11 20:35:33 281A720B0A984E325599EE1F0342E8FB 2048000 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2013-09-11 20:35:31 2EC47CF6A36F6A83BB8B98C1425B4D41 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2013-09-11 20:35:30 00531B52C9468929F2C651B3BCADCBC9 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll 2013-09-11 20:35:29 79DC575FE905D5DD5C5A4C5993A7C7F9 2876928 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2013-09-11 20:35:28 E5D91D6B81A293AB6854CAD112240A4B 1141248 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2013-09-11 20:35:27 7C63629508BB87227C3C861355A155B4 39424 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2013-09-11 20:35:26 535F6263035F2530A62D5D64EF6E73D3 1767936 ----a-w- C:\Windows\SysWOW64\wininet.dll 2013-09-11 20:35:25 4FCC53B82D91607FB9AE24E617108BB2 13761024 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2013-09-11 20:35:20 5D2D7E7850CE963C2F401D4DEE7BB32A 14332928 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2013-09-11 20:02:53 1A9E4EE88B31750E5CA207424143F99C 3968960 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2013-09-11 20:02:52 5D0325AEF9DE48330908EC2E2DB0359F 3913664 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2013-09-11 20:02:51 365A5034093AD9E04F433046C4CDF6AB 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll 2013-09-11 20:02:51 0184CC60AB10C8124D69AFB332C6AF1C 1292192 ----a-w- C:\Windows\SysWOW64\ntdll.dll 2013-09-11 20:02:50 1B7343C3765638D4D17CB925F84F8ABE 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2013-09-11 20:02:49 57EC6102661E0E1D156C1EC251E7CAF8 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll 2013-09-11 20:02:48 73EF27E157855E3CB18B021BC9622E4C 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll 2013-09-11 20:02:43 3808FD7522646BEB1CCEA94C45D4228C 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2013-09-11 20:02:42 B83592F532FB320F0001F8099ECC192B 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2013-09-11 20:02:42 8489D083E46BFD2096A6CECFF6C7C227 2048 ----a-w- C:\Windows\SysWOW64\user.exe 2013-09-11 20:02:42 812A161FC470FA832C3F0CC3D7ACA2F9 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll 2013-09-11 20:02:25 E02781D4871844DCD30DF1D69A650F78 12872704 ----a-w- C:\Windows\SysWOW64\shell32.dll 2013-09-11 20:02:24 2C4A87CA8C00E98EFDCFA2E8EC9A3503 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2013-09-11 20:35:36 B98DDA3209E252884F6F9431A43424B3 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2013-09-11 20:35:35 C016B4170A836CBA9DF98F02CD055C1B 526336 ----a-w- C:\Windows\Sysnative\ieui.dll 2013-09-11 20:35:34 91573C042B3D9163F29CB1E1E51FF51A 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll 2013-09-11 20:35:34 7248896237039BBC477DBB9C62C37FCB 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll 2013-09-11 20:35:33 8E9898BF21FF4232EE07BD5D1D1C6281 2647040 ----a-w- C:\Windows\Sysnative\iertutil.dll 2013-09-11 20:35:33 73BA149C61D2B164E25E1455D9D7F648 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe 2013-09-11 20:35:33 390231BA1644AFE0ADD5A7F186EF6FA4 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2013-09-11 20:35:33 3581F49B7B32B4514FFD9481ED8BAE61 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2013-09-11 20:35:31 DCAE7117A97F5922B853981D6D491D71 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2013-09-11 20:35:30 CF57F63E6878BEA029B1098D03143AED 855552 ----a-w- C:\Windows\Sysnative\jscript.dll 2013-09-11 20:35:29 C6DBD79D39061F189A3F1055D44E1590 3959296 ----a-w- C:\Windows\Sysnative\jscript9.dll 2013-09-11 20:35:28 35552F806607A86E65B6047BF695D34B 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll 2013-09-11 20:35:27 537394CF1A70BFFB0B3C7510404CF91C 53248 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2013-09-11 20:35:26 AAFA952E774DDDB0956D3BDFAE5B5B99 2241024 ----a-w- C:\Windows\Sysnative\wininet.dll 2013-09-11 20:35:24 08F6335D55310C334B13B9616E61D13D 15404544 ----a-w- C:\Windows\Sysnative\ieframe.dll 2013-09-11 20:35:23 CC4AE7E2ECAEE7612B3C0D3AB302375C 19246592 ----a-w- C:\Windows\Sysnative\mshtml.dll 2013-09-11 20:02:52 63B563F1FC047AB3E21530DBBE773260 5550528 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2013-09-11 20:02:52 5B79D52A0388D8DEC5BF68411EA05A02 1732032 ----a-w- C:\Windows\Sysnative\ntdll.dll 2013-09-11 20:02:51 D8973E71F1B35CD3F3DEA7C12D49D0F0 1161216 ----a-w- C:\Windows\Sysnative\kernel32.dll 2013-09-11 20:02:51 B22C00ED0491FD7B8803D7DDE2849F4C 424448 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2013-09-11 20:02:51 AA913C4E63B6F3F52E20BC9932205BCC 243712 ----a-w- C:\Windows\Sysnative\wow64.dll 2013-09-11 20:02:50 F0970A4BC8395659C22BF53D0FADF16F 112640 ----a-w- C:\Windows\Sysnative\smss.exe 2013-09-11 20:02:49 BF95EA5809E3BBF55370F7CB309FEBD0 338432 ----a-w- C:\Windows\Sysnative\conhost.exe 2013-09-11 20:02:49 9209EA3F29DFC339A87EFD604E035FE4 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll 2013-09-11 20:02:49 88EDD0B34EED542745931E581AD21A32 215040 ----a-w- C:\Windows\Sysnative\winsrv.dll 2013-09-11 20:02:49 659D71E315FB40FFE9AD46CB0588BEB1 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll 2013-09-11 20:02:49 49CEA3942A2B99A906EAFC94B853EDBD 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll 2013-09-11 20:02:49 216BABD555BC550952320EEA89C25DDF 43520 ----a-w- C:\Windows\Sysnative\csrsrv.dll 2013-09-11 20:02:42 70A1D465390C393AA118D9764E065B06 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll 2013-09-11 20:02:40 42A88ECF903BFE11411D188DCE830E84 3155456 ----a-w- C:\Windows\Sysnative\win32k.sys 2013-09-11 20:02:29 AD662B34B161198B9D66A564EDDA7D43 14172672 ----a-w- C:\Windows\Sysnative\shell32.dll 2013-09-11 20:02:23 23B001185B7C3CB1F4BDEB143E6B45B7 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll ====== C:\Windows\Sysnative\drivers ===== 2013-09-11 20:02:54 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\Sysnative\drivers\ataport.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-09-16 11:48:08 -------- d-----w- C:\Program Files\trend micro ======= C:\Program Files (x86) ===== ======= C: ===== ====== C:\Users\Danny\AppData\Roaming ====== 2013-09-16 19:42:53 -------- d-----w- C:\Users\Danny\AppData\Local\Temp ====== C:\Users\Danny ====== ====== C: exe-files == 2013-09-16 11:48:08 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Danny.exe 2013-09-13 07:52:37 9C4C59387996C1DF0545B6E67D4CFF4B 8614432 ----a-w- C:\Users\Danny\AppData\Roaming\Azureus\tmp\AZU4086554863667942432.tmp\Vuze_5.1.0.0_win64.exe 2013-09-12 07:47:57 58245139FBE2AC28694DEFF87B761EDF 18935664 ----a-w- C:\Users\Danny\.frostwire5\updates\frostwire-5.6.4.windows.exe 2013-09-11 20:35:34 43852485D0B78C021A47E9548A4CFFE0 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-09-11 20:35:33 73BA149C61D2B164E25E1455D9D7F648 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-09-11 20:35:33 3581F49B7B32B4514FFD9481ED8BAE61 51712 ----a-w- C:\Windows\System32\ie4uinit.exe 2013-09-11 20:35:31 37287D98A1BF5D56AA729CEB9B27C6B1 770648 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe 2013-09-11 20:35:31 351657C79B62B91E16A95AD23EA3710D 775256 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2013-09-11 20:02:53 1A9E4EE88B31750E5CA207424143F99C 3968960 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2013-09-11 20:02:52 63B563F1FC047AB3E21530DBBE773260 5550528 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-09-11 20:02:52 5D0325AEF9DE48330908EC2E2DB0359F 3913664 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2013-09-11 20:02:50 F0970A4BC8395659C22BF53D0FADF16F 112640 ----a-w- C:\Windows\System32\smss.exe 2013-09-11 20:02:49 BF95EA5809E3BBF55370F7CB309FEBD0 338432 ----a-w- C:\Windows\System32\conhost.exe 2013-09-11 20:02:43 3808FD7522646BEB1CCEA94C45D4228C 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe 2013-09-11 20:02:42 B83592F532FB320F0001F8099ECC192B 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe 2013-09-11 20:02:42 8489D083E46BFD2096A6CECFF6C7C227 2048 ----a-w- C:\Windows\SysWOW64\user.exe === C: other files == 2013-09-11 20:02:54 059F00DEF82BF41E433B7ED465847726 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys 2013-09-11 20:02:40 42A88ECF903BFE11411D188DCE830E84 3155456 ----a-w- C:\Windows\System32\win32k.sys ==== Chrome Look ====================== YouTube - Febe - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Febe - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Gmail - Febe - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://hbvl.be/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://hbvl.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Reset Google Chrome ====================== Nothing found to reset ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Carine 2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Carine 2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Carine 2\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Carine 2\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Danny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Danny\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Febe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Febe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Febe\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Febe\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Febe\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Danny\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 16/09/2013 at 23:36:04,57 ======================