Zoek.exe v5.0.0.0 Updated 19-February-2014 Tool run by JB on do 20-02-2014 at 14:06:03,79. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\JB\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean] ==== System Restore Info ====================== 20-2-2014 14:07:08 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\Kozaka deleted successfully C:\Program Files\MSXML 4.0 deleted successfully C:\Program Files\predm deleted successfully C:\PROGRA~2\Oracle deleted successfully C:\PROGRA~2\ProductData deleted successfully C:\PROGRA~2\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted successfully C:\Users\JB\AppData\Roaming\Systweak deleted successfully C:\Users\JB\AppData\Local\DriverTuner deleted successfully C:\Users\JB\AppData\Local\Secunia PSI deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-337151610-1292039628-3553547256-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully HKEY_CLASSES_ROOT\CLSID\{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} deleted successfully HKEY_CLASSES_ROOT\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} deleted successfully ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\PirritUpdater deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\PirritUpdater deleted successfully ==== Deleting Files \ Folders ====================== C:\PROGRA~2\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} not found C:\Users\JB\daemonprocess.txt deleted C:\Users\JB\.android deleted C:\Program Files\MyPC Backup deleted C:\Program Files\SaveSenseLive deleted C:\Program Files\Common Files\Spigot deleted C:\Users\JB\AppData\Roaming\newnext.me deleted C:\Users\JB\AppData\Roaming\SaveSense deleted C:\Users\JB\AppData\Roaming\Pirrit deleted C:\Users\JB\AppData\Roaming\eCyber deleted C:\Users\JB\AppData\Roaming\iSafe deleted C:\Users\JB\AppData\Roaming\GoforFiles deleted C:\PROGRA~2\WPM deleted C:\PROGRA~2\SaveSenseLive deleted C:\Users\JB\AppData\Local\SaveSenseLive deleted C:\Users\JB\AppData\Local\cache deleted C:\Windows\system32\config\systemprofile\AppData\LocalLow\Application Updater deleted C:\Windows\system32\tasks\SaveSense deleted C:\Windows\tasks\SaveSense.job deleted C:\Windows\system32\Tasks\GoforFilesUpdate deleted C:\Windows\system32\roboot.exe deleted "C:\Program Files\Pirrit\AutoUpdater.exe" deleted "C:\Program Files\Pirrit\msvcp100.dll" deleted "C:\Program Files\Pirrit\msvcr100.dll" not deleted "C:\Program Files\Pirrit\QtCore4.dll" deleted "C:\Program Files\Pirrit\QtNetwork4.dll" deleted "C:\Program Files\Pirrit" not deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-02-17 13:49:25 C1D58C2442335DAF58CB9A4A7C91A26F 19865 ----a-w- C:\Windows\prodsett_copy.ini ====== C:\Users\JB\AppData\Local\Temp ==== ====== Java Cache ===== 2014-02-02 20:48:17 11E3AA1BDBF27ED0B692F0A0E4B6D966 94 ----a-w- C:\Users\JB\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\53b843e7-6.0.lap 2014-02-02 20:48:27 DFFB20E715A4407C509877DB9DCEEE4D 94 ----a-w- C:\Users\JB\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\1ef319f3-6.0.lap 2014-02-02 20:48:18 FE1A9E87978EC14F27F46C5DA7303423 159258 ----a-w- C:\Users\JB\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\68fff775-34eb6fe5 ====== C:\Windows\system32 ===== 2014-02-18 22:22:54 533BA6ECC7AEB4926DCF5A70F3315B71 696 ----a-w- C:\Windows\System32\.crusader 2014-02-14 09:14:50 B5B3334F177CED627C2D7FE38235B6B1 2724864 ----a-w- C:\Windows\System32\mshtml.tlb 2014-02-14 09:14:50 85AC8EB265EDCAD86D651D45C5E3AB83 440832 ----a-w- C:\Windows\System32\ieui.dll 2014-02-14 09:14:50 1D724A2EC124094B83FCB07533FC9BB5 208896 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-02-14 09:14:49 6F2E12C6229558B5829FDD07603763C2 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll 2014-02-14 09:14:48 B8F28AAC003060E3B125D2447CFC19E2 164864 ----a-w- C:\Windows\System32\msrating.dll 2014-02-14 09:14:48 6A06EB11F1E5BDAA795DAE7838F9FE20 43008 ----a-w- C:\Windows\System32\jsproxy.dll 2014-02-14 09:14:48 408805B8083896DC95E6340F4016BEBD 61952 ----a-w- C:\Windows\System32\iesetup.dll 2014-02-14 09:14:48 0E7B7C9F483300F9FF97C6A1E4BC4F57 32768 ----a-w- C:\Windows\System32\iernonce.dll 2014-02-14 09:14:47 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-02-14 09:14:47 29B66A7E3E1AA79C690D5D862AC76F64 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-02-14 09:14:47 260D6B421E5551E8BA75D16B5CA90D9A 51200 ----a-w- C:\Windows\System32\ieetwproxystub.dll 2014-02-14 09:14:46 0F739443669F3A48F1B2325995117BFE 553472 ----a-w- C:\Windows\System32\jscript9diag.dll 2014-02-14 09:14:45 5DD49C02D059C1E6E47A8FB4A076C9B1 703488 ----a-w- C:\Windows\System32\ieapfltr.dll 2014-02-14 09:14:44 C9D1131E2163CE932DF3EAAF0EEA3673 524288 ----a-w- C:\Windows\System32\msfeeds.dll 2014-02-14 09:14:43 34CBED7698D557DDB43F8732FBC2ACB9 2168320 ----a-w- C:\Windows\System32\iertutil.dll 2014-02-14 09:14:42 9C89246184979A070B0C6CCF61C68136 1820160 ----a-w- C:\Windows\System32\wininet.dll 2014-02-14 09:14:41 5D9DC6332A4FC66388B09BBE7CF53750 1156096 ----a-w- C:\Windows\System32\urlmon.dll 2014-02-14 09:14:41 40E68599FE3A10F816217D3789FCE74E 1964032 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-02-14 09:14:39 79FA7D8B488F90EDE325963379A6F738 11266048 ----a-w- C:\Windows\System32\ieframe.dll 2014-02-14 09:14:38 C863E5A2417DF0F2A31ED32C3B2CB23F 17103872 ----a-w- C:\Windows\System32\mshtml.dll 2014-02-14 09:14:37 99280392987A1A96C756A9F38C4CE396 4244480 ----a-w- C:\Windows\System32\jscript9.dll 2014-02-14 09:07:49 3D485254E43EF4E4F707346B5731EA9A 454656 ----a-w- C:\Windows\System32\vbscript.dll 2014-02-13 22:22:20 EA093130471090037BB70A4AF86FAD1B 420008 ----a-w- C:\Windows\System32\locale.nls 2014-02-13 22:22:18 E4561704CBFA193761743E5AF746C669 1237504 ----a-w- C:\Windows\System32\msxml3.dll 2014-02-13 22:22:18 17B06F23237FCD731FA2E10ECD6EDFE1 2048 ----a-w- C:\Windows\System32\msxml3r.dll 2014-02-13 22:22:04 D96106CF60505734B14F6AE80AAA4B07 1987584 ----a-w- C:\Windows\System32\d3d10warp.dll 2014-02-13 22:22:04 14800BD31701A5047AC3145BB1E698AE 3419136 ----a-w- C:\Windows\System32\d2d1.dll 2014-02-13 22:22:01 E01D2AC63453534DB8AD1EA97DEE9C3A 594944 ----a-w- C:\Windows\System32\RMActivate_isv.exe 2014-02-13 22:22:01 6142C5540C8D2764D59CBC11AF4A5900 572416 ----a-w- C:\Windows\System32\RMActivate.exe 2014-02-13 22:22:01 0F5FEF37588AF457E02125674F171A4F 508928 ----a-w- C:\Windows\System32\RMActivate_ssp_isv.exe 2014-02-13 22:22:00 BBCE3E9E74C7CEA47FA4115B360AC2C6 423936 ----a-w- C:\Windows\System32\secproc_isv.dll 2014-02-13 22:22:00 12A9F24DC9F465DA79AC2272D829A81E 428032 ----a-w- C:\Windows\System32\secproc.dll 2014-02-13 22:22:00 08D323750350A8A29611D1004C0CF319 510976 ----a-w- C:\Windows\System32\RMActivate_ssp.exe 2014-02-13 22:21:59 9158DBE2F8483434FC72F320690C9DB8 87040 ----a-w- C:\Windows\System32\secproc_ssp_isv.dll 2014-02-13 22:21:59 7FA485555BF802FE3DB5598004DBDFAC 390144 ----a-w- C:\Windows\System32\msdrm.dll 2014-02-13 22:21:59 58712A48D31B40EBCB35B47205F87771 87040 ----a-w- C:\Windows\System32\secproc_ssp.dll ====== C:\Windows\system32\drivers ===== 2014-01-26 11:27:58 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf ====== C:\Windows\Tasks ====== 2014-02-18 22:36:39 A043C9094F1C150FD1CE6500A0D4BF72 3098 ----a-w- C:\Windows\system32\Tasks\{4A07E9A3-F3A7-46EB-BFCB-92011563A0EF} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-02-20 11:48:04 -------- d-----w- C:\Program Files\trend micro 2014-02-02 20:46:33 -------- d-----w- C:\Program Files\Common Files\Java 2014-02-02 20:46:10 -------- d-----w- C:\Program Files\Java ======= C: ===== ====== C:\Users\JB\AppData\Roaming ====== 2014-02-17 20:42:31 0C4B1ACB72943D8D024DABD9CDC37F85 7605 ----a-w- C:\Users\JB\AppData\Local\Resmon.ResmonCfg 2014-02-17 13:49:39 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\f-secure 2014-02-17 13:48:59 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\F-Secure 2014-02-15 10:46:19 -------- d-----w- C:\Users\JB\AppData\Local\PirritSuggestor 2014-01-31 19:34:40 -------- d-----w- C:\Users\JB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP ====== C:\Users\JB ====== 2014-02-20 11:46:07 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\JB\Downloads\RSIT.exe 2014-02-18 22:19:05 -------- d-----w- C:\ProgramData\HitmanPro 2014-02-18 22:18:35 283CCAEB29C5B49D28EE3B0A2256223A 9988304 ----a-w- C:\Users\JB\Downloads\HitmanPro36.exe 2014-02-18 18:33:21 82ED9BE3A0E185670CDD31903B54B0DF 24793312 ----a-w- C:\Users\JB\Downloads\Windows-KB890830-V5.9 (1).exe 2014-02-18 18:31:04 82ED9BE3A0E185670CDD31903B54B0DF 24793312 ----a-w- C:\Users\JB\Downloads\Windows-KB890830-V5.9.exe 2014-02-17 13:35:42 -------- d-----w- C:\ProgramData\F-Secure 2014-02-17 13:35:19 0D2E4697037BA29BE93BFF9C28056DB8 1166376 ----a-w- C:\Users\JB\Downloads\XS4ALL-NetworkInstaller_C-F49HZ-DK36M-FC79K-B4KTN_.exe 2014-02-02 20:46:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java ====== C: exe-files == 2014-02-20 11:48:04 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\JB.exe 2014-02-20 11:46:07 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Users\JB\Downloads\RSIT.exe 2014-02-18 22:18:35 283CCAEB29C5B49D28EE3B0A2256223A 9988304 ----a-w- C:\Users\JB\Downloads\HitmanPro36.exe 2014-02-18 20:43:31 EB63BEF2EFC3884C288AE5F1454A2D32 3278528 ----a-w- C:\Users\JB\AppData\Local\NVIDIA\NvBackend\Packages\00005825\DAO.17882696.exe 2014-02-18 18:33:21 82ED9BE3A0E185670CDD31903B54B0DF 24793312 ----a-w- C:\Users\JB\Downloads\Windows-KB890830-V5.9 (1).exe 2014-02-18 18:31:04 82ED9BE3A0E185670CDD31903B54B0DF 24793312 ----a-w- C:\Users\JB\Downloads\Windows-KB890830-V5.9.exe 2014-02-17 13:35:19 0D2E4697037BA29BE93BFF9C28056DB8 1166376 ----a-w- C:\Users\JB\Downloads\XS4ALL-NetworkInstaller_C-F49HZ-DK36M-FC79K-B4KTN_.exe 2014-02-15 10:46:20 8ECE08EF255693EC4B1A335FD80DC509 52568 ----a-w- C:\Users\JB\AppData\Local\PirritSuggestor\PirritService.exe 2014-02-15 10:46:20 33E1F4D1BA2C558BAB72959EB3706C32 190808 ----a-w- C:\Users\JB\AppData\Local\PirritSuggestor\PirritDesktop.exe 2014-02-15 10:45:59 74CE77D9C3D6A0D7E055747DBE80A0EC 5823416 ----a-w- C:\Windows\Temp\PirritUpdater.exe 2014-02-14 17:03:08 FF3FD6B78A82624C7B319EEA7F7EB8F6 51080 ----atw- C:\Program Files\Google\Update\1.3.22.5\GoogleUpdateOnDemand.exe 2014-02-14 17:03:08 6D24CD9918A11CD8AB9AE678CB2CC3C7 51080 ----atw- C:\Program Files\Google\Update\1.3.22.5\GoogleUpdateBroker.exe 2014-02-14 17:03:07 BA5C08130D2EFBD4E546912646DC4461 847640 ----a-w- C:\Program Files\Google\Update\1.3.22.5\GoogleUpdateSetup.exe 2014-02-14 17:02:53 EA8B5B41163A06FFA8930F5316473035 273800 ----atw- C:\Program Files\Google\Update\1.3.22.5\GoogleCrashHandler64.exe 2014-02-14 17:02:53 C98ACDE22458C8F46FD0503CB9E2D01F 223112 ----atw- C:\Program Files\Google\Update\1.3.22.5\GoogleCrashHandler.exe 2014-02-14 17:02:52 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files\Google\Update\1.3.22.5\GoogleUpdate.exe 2014-02-14 17:02:43 BA5C08130D2EFBD4E546912646DC4461 847640 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.22.5\GoogleUpdateSetup.exe 2014-02-14 09:14:50 1D724A2EC124094B83FCB07533FC9BB5 208896 ----a-w- C:\Windows\System32\ie4uinit.exe 2014-02-14 09:14:47 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-02-14 09:14:47 29B66A7E3E1AA79C690D5D862AC76F64 108032 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-02-14 09:14:42 9E8F9FDD407DDE997965EEFD9E635CCF 469504 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe 2014-02-14 09:14:41 4263F6C131E513CEA1AE82B5B81A4E1A 808152 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe 2014-02-14 08:58:31 B0AB350E3E98C7FB1E4930F762D0477B 3273016 ----a-w- C:\Users\JB\AppData\Local\NVIDIA\NvBackend\Packages\000057eb\DAO.17845377.exe 2014-02-13 22:22:01 E01D2AC63453534DB8AD1EA97DEE9C3A 594944 ----a-w- C:\Windows\System32\RMActivate_isv.exe 2014-02-13 22:22:01 6142C5540C8D2764D59CBC11AF4A5900 572416 ----a-w- C:\Windows\System32\RMActivate.exe 2014-02-13 22:22:01 0F5FEF37588AF457E02125674F171A4F 508928 ----a-w- C:\Windows\System32\RMActivate_ssp_isv.exe 2014-02-13 22:22:00 08D323750350A8A29611D1004C0CF319 510976 ----a-w- C:\Windows\System32\RMActivate_ssp.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "QlbCtrl.exe"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start" "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "NvBackend"="C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe" "NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup" "NvMediaCenter"="RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit" "HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " ==== Startup Folders ====================== 2013-12-26 11:09:23 1048 ----a-w- C:\Users\JB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2014-01-17 14:29:26 2076 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Driver Booster Update.job --a------ C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [07-01-2014 14:16] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [12-01-2014 09:50] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [12-01-2014 09:50] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\Driver Booster Scan" [C:\Program Files\IObit\Driver Booster\Scheduler.exe] "C:\Windows\system32\tasks\Driver Booster Update" [C:\Program Files\IObit\Driver Booster\AutoUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [17-01-2014 15:30] [HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions] "smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [17-01-2014 15:30] ==== Firefox Extensions ====================== ProfilePath: C:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\extensions - Undetermined - %ProfilePath%\extensions\suggestor@suggestor.pirrit.com.xpi ExtDir: C:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\extensions - Undetermined - %ExtDir%\suggestor@suggestor.pirrit.com.xpi ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions hbcennhacfaagdopikcegfcobcadeocj - C:\Program Files\Common Files\Spigot\GC\saebay_1.1.crx[] icdlfehblmklkikfigmjhbmmpmkmpooj - C:\Program Files\Common Files\Spigot\GC\ErrorAssistant_1.2.crx[] ifohbjbgfchkkfhphahclmkpgejiplfo - C:\Users\JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx[] khcceooakamlehbimaepcldnnlnkcmfk - C:\Program Files\SaveSense\SaveSense.crx[] pfndaklgolladniicklehhancnlgocpp - C:\Program Files\Common Files\Spigot\GC\saamazon_1.0.crx[] Google Docs - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Freecell Solitaire - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\cabpjbpfakfhcfidnjahmdophhihafkh Google Search - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Solitaire - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkelcbhdkpcdiiancfjhjcpdinbbfolp Ebay Shopping Assistant by Spigot - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj Domain Error Assistant - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj IP Address - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnjjlbngpejmmhgcaagljaomgnginml Google Maps - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh Google Wallet - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Weeronline actueel Nederland - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\npgafdngocgnaincgfbpeblbeaadkpfa Last updated at time on date - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch Amazon Shopping Assistant by Spigot - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp Gmail - JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj deleted successfully C:\Users\JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully C:\Users\JB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{434C7813-3579-4637-BC01-ABCF9FA10E50}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found" {434C7813-3579-4637-BC01-ABCF9FA10E50} Google Url="http://www.google.nl/search?hl=nl&q={searchTerms}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-337151610-1292039628-3553547256-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\khcceooakamlehbimaepcldnnlnkcmfk deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JB\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\JB\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\JB\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=187 folders=56 8402858 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\JB\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\JB\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Program Files\Pirrit\msvcr100.dll" not found "C:\Program Files\Pirrit" not found ==== EOF on do 20-02-2014 at 14:23:59,89 ======================