Zoek.exe v5.0.0.0 Updated 22-05-2014 Tool run by Glenn on vr 23-05-2014 at 18:36:36,27. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Glenn\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 23-5-2014 18:38:29 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\AGEIA Technologies deleted successfully C:\PROGRA~2\Origin Games deleted successfully C:\PROGRA~2\COMMON~1\Overwolf deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\Users\Glenn\AppData\Roaming\QuickScan deleted successfully C:\Users\Glenn\AppData\Local\LogMeIn Rescue Applet deleted successfully C:\Users\Glenn\AppData\Local\VirtualStore deleted successfully C:\Users\Glenn\AppData\Local\WarThunder deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1542524670-50481999-1251613050-1000\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\found.000 deleted C:\Users\Glenn\AppData\Roaming\OpenCandy deleted C:\Windows\Syswow64\SearchProtect deleted C:\Users\Glenn\AppData\Roaming\Mozilla\Firefox\Profiles\pvjjqi9p.default\searchplugins\conduit-search-1.xml deleted C:\Users\Glenn\AppData\Roaming\Mozilla\Firefox\Profiles\pvjjqi9p.default\searchplugins\conduit-search.xml deleted "C:\PROGRA~3\Package Cache" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-05-19 17:33:13 AF7BBEBAC5C7687A3AC5206D3DA5BD8D 647859138 ----a-w- C:\Windows\MEMORY.DMP ====== C:\Users\Glenn\AppData\Local\Temp ==== ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-05-15 02:55:54 FBCF3F01177953EBF1E735643621CCF5 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-05-15 02:55:54 EB5347F6149D3FF25F4D609A21A3BD67 17382912 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-05-15 02:55:53 10D531ADC7B8FB36C7361D44AF6E8AB6 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2014-05-15 02:51:47 E9D88493FBDB36D4B65C6F2F7F122C95 12874240 ----a-w- C:\Windows\SysWOW64\shell32.dll 2014-05-15 02:51:29 9DE19EA21DF99AF15BA5A947E5317F9E 550912 ----a-w- C:\Windows\SysWOW64\kerberos.dll 2014-05-15 02:51:29 4D59F470985D08139E42D15842816C47 3969984 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe 2014-05-15 02:51:29 31FA2485DFC773F1E718A4D19F443FA9 3914176 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe 2014-05-15 02:51:28 FBC78B5D12A4F5A62D9C91E0E0E46D46 49664 ----a-w- C:\Windows\SysWOW64\adprovider.dll 2014-05-15 02:51:28 ED195AC76E10F17F6DD60C49666F2A83 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll 2014-05-15 02:51:28 995B39A08421C7725D1DF8DACEBBFC89 538112 ----a-w- C:\Windows\SysWOW64\objsel.dll 2014-05-15 02:51:28 834A859BB331B0B2CCAE25BB1986F80D 47616 ----a-w- C:\Windows\SysWOW64\dpapiprovider.dll 2014-05-15 02:51:28 828185688FDAAE6C7959B884ABED1766 247808 ----a-w- C:\Windows\SysWOW64\schannel.dll 2014-05-15 02:51:28 62C0798CC68EBF42F29C92E6CD6DC3D6 36864 ----a-w- C:\Windows\SysWOW64\dimsroam.dll 2014-05-15 02:51:28 541BB9B4C899ADCC5D3DB89208C1F409 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll 2014-05-15 02:51:28 461B713DE7F353C6447B744F1A049930 274944 ----a-w- C:\Windows\SysWOW64\KernelBase.dll 2014-05-15 02:51:28 3A1ABE045A3E30799576E83A2D012B43 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll 2014-05-15 02:51:28 38A30B8E4216BE24D30F766EF3BAC2C7 48128 ----a-w- C:\Windows\SysWOW64\capiprovider.dll 2014-05-15 02:51:28 335FA669FC952BC4888CEDBDB42607E2 51200 ----a-w- C:\Windows\SysWOW64\cngprovider.dll 2014-05-15 02:51:27 C94CE65AE7701E9FDBA889045543E27C 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll 2014-05-15 02:51:27 75878492F2B33405EEF900F8C16C6D08 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll 2014-05-15 02:51:27 5E11C55CC4D9330E55CCB22B1F20BB33 35328 ----a-w- C:\Windows\SysWOW64\wincredprovider.dll 2014-05-15 02:51:27 2A86C18CE6869C77FCEB62F3B47D4D5B 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-05-23 16:27:01 6A2AC2C657798DFE09FBE5C48318C7C8 512 ----a-w- C:\Windows\Sysnative\F39D4DE6-98B8-4E05-91BD-549E8A8248BD 2014-05-15 02:55:54 A920E1336F9FEA95477763E2CC15891B 84992 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-05-15 02:55:54 A45BFDCFD5864F658289A165E6E0227F 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2014-05-15 02:55:54 797E2E5C309AFF76990D5B7AF457EACA 23544320 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-05-15 02:51:47 427015D56DF17241F634611557146C57 14175744 ----a-w- C:\Windows\Sysnative\shell32.dll 2014-05-15 02:51:46 4A795989DF0043973711B666D36D2678 477184 ----a-w- C:\Windows\Sysnative\aepdu.dll 2014-05-15 02:51:46 485FB1F3792FF7B5D5EBB99AB870E588 424448 ----a-w- C:\Windows\Sysnative\aeinv.dll 2014-05-15 02:51:29 B19C8390A1D641B9AC4490D4828A7B5E 728064 ----a-w- C:\Windows\Sysnative\kerberos.dll 2014-05-15 02:51:29 9358149234A4F3FE00CF5C2096DC1652 1460736 ----a-w- C:\Windows\Sysnative\lsasrv.dll 2014-05-15 02:51:28 E2A483E796D5FC7E447725FD01D98FA0 314880 ----a-w- C:\Windows\Sysnative\msv1_0.dll 2014-05-15 02:51:28 CF13522172342AD8196B329C15D68E23 44544 ----a-w- C:\Windows\Sysnative\dimsroam.dll 2014-05-15 02:51:28 BDA8B14AFE99A0C52BFEA64C5AC62171 52736 ----a-w- C:\Windows\Sysnative\dpapiprovider.dll 2014-05-15 02:51:28 B6D8C1202DACA028AD94BDA2795CBBE9 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll 2014-05-15 02:51:28 9D942180B5B6CE1C882B9CC54EA1F275 57344 ----a-w- C:\Windows\Sysnative\cngprovider.dll 2014-05-15 02:51:28 89EF1CE0CE43AB8F55247D746739A321 722944 ----a-w- C:\Windows\Sysnative\objsel.dll 2014-05-15 02:51:28 851BB346CD59D9B3BC8854384C7DD5C3 424960 ----a-w- C:\Windows\Sysnative\KernelBase.dll 2014-05-15 02:51:28 6B47CF5C27865DDF6680E4D834FBE34F 5550016 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe 2014-05-15 02:51:28 692E9886B2A475684F7E3294BF66E97D 56832 ----a-w- C:\Windows\Sysnative\adprovider.dll 2014-05-15 02:51:28 4959DE74643CBC4B83E5BC99486A4FC9 53760 ----a-w- C:\Windows\Sysnative\capiprovider.dll 2014-05-15 02:51:28 481F70241D4EA038BB02590A30F15A23 340992 ----a-w- C:\Windows\Sysnative\schannel.dll 2014-05-15 02:51:28 26AF184300C0868D854D5A3092234E24 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll 2014-05-15 02:51:27 C072064F95579C0D6D86AF5B3DC53192 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll 2014-05-15 02:51:27 9A3C6D8593F29A9F66744A3D4E6309B2 39936 ----a-w- C:\Windows\Sysnative\wincredprovider.dll 2014-05-15 02:51:27 82A72E99AA1CF0B04D3B9843CBA3AEC1 22016 ----a-w- C:\Windows\Sysnative\credssp.dll 2014-05-15 02:51:27 8098627D0AA1706D69C5AF3F74332ABB 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll 2014-05-15 02:51:27 39312B37C5FE5138F99680A49ACD3AEA 28160 ----a-w- C:\Windows\Sysnative\secur32.dll 2014-05-15 02:51:27 204F3F58212B3E422C90BD9691A2DF28 31232 ----a-w- C:\Windows\Sysnative\lsass.exe ====== C:\Windows\Sysnative\drivers ===== 2014-05-20 13:36:58 EA841584EF59528D11F20355770E427E 786416 ----a-w- C:\Windows\Sysnative\drivers\iusb3xhc.sys 2014-05-20 13:36:58 78D369F8A81A341109FBA1DB64B4C512 20464 ----a-w- C:\Windows\Sysnative\drivers\iusb3hcs.sys 2014-05-20 13:36:58 5B632ABA038CE2E2D5D2D1115C6B26D1 368112 ----a-w- C:\Windows\Sysnative\drivers\iusb3hub.sys 2014-05-15 02:51:28 1C2D8E18AA8FD50CD04C15CC27F7F5AB 155072 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys 2014-05-15 02:51:27 353009DEDF918B2A51414F330CF72DEC 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-05-22 13:33:13 -------- d-----w- C:\Program Files\trend micro 2014-05-08 15:07:41 -------- d-----w- C:\Program Files\Speccy ======= C:\PROGRA~2 ===== ======= C: ===== ====== C:\Users\Glenn\AppData\Roaming ====== 2014-05-14 00:47:03 -------- d-----w- C:\Users\Glenn\AppData\Roaming\SpaceEngineers ====== C:\Users\Glenn ====== 2014-05-22 13:30:49 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Glenn\Downloads\RSITx64(1).exe 2014-05-22 13:30:07 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Glenn\Desktop\RSITx64.exe 2014-05-18 13:42:03 EE0BD36B32507A459575E3256041C197 147334 ----a-w- C:\Users\Glenn\Desktop\Memtest86+ USB Installer.exe 2014-05-08 15:07:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2014-05-04 10:40:32 -------- d-----w- C:\ProgramData\Intel(R) Update Manager ====== C: exe-files == 2014-05-22 18:57:45 29198D93029027C9BB4DA8E9C70AF13E 26832976 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.114\35.0.1916.114_34.0.1847.137_chrome_updater.exe 2014-05-22 18:39:42 D32327B5D0EDA65530207F3C59B2A6DC 2007992 ----a-w- C:\Program Files (x86)\Steam\SteamApps\downloading\244850\Bin\SpaceEngineers.exe 2014-05-22 18:39:42 9C49CD159A3885EA30E3731EAF90620C 2520504 ----a-w- C:\Program Files (x86)\Steam\SteamApps\downloading\244850\Bin64\SpaceEngineers.exe 2014-05-22 18:39:42 79168F83119379D998F4D438F04E8392 809400 ----a-w- C:\Program Files (x86)\Steam\SteamApps\downloading\244850\Tools\MwmBuilder.exe 2014-05-22 13:33:20 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Glenn.exe 2014-05-22 13:30:49 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Glenn\Downloads\RSITx64(1).exe 2014-05-22 13:30:07 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Glenn\Desktop\RSITx64.exe 2014-05-21 13:24:12 81EA7A841F5AB0B9B92BAA98D4CFC2ED 3554320 ----a-w- C:\Users\Glenn\AppData\Local\NVIDIA\NvBackend\Packages\00005af9\DAO.18491361.exe 2014-05-20 17:06:51 E2ADA570911EDAAAE7D1B3C979345FCE 5207896 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Wolfenstein.The.New.Order\_CommonRedist\vcredist\2008\vcredist_x64.exe 2014-05-20 17:06:51 C9D9EEBCCEF20D637F193490CEC05E79 10274136 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Wolfenstein.The.New.Order\_CommonRedist\vcredist\2010\vcredist_x64.exe 2014-05-20 17:06:51 BF3F290275C21BDD3951955C9C3CF32C 517976 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Wolfenstein.The.New.Order\_CommonRedist\DirectX\Jun2010\DXSETUP.exe 2014-05-20 17:06:51 47710BD2766658BFEE864FF8CD45C462 26339920 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Wolfenstein.The.New.Order\WolfNewOrder_x64.exe 2014-05-20 17:06:51 35DA2BF2BEFD998980A495B6F4F55E60 4479832 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Wolfenstein.The.New.Order\_CommonRedist\vcredist\2008\vcredist_x86.exe 2014-05-20 17:06:51 1801436936E64598BAB5B87B37DC7F87 8990552 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Wolfenstein.The.New.Order\_CommonRedist\vcredist\2010\vcredist_x86.exe 2014-05-20 13:36:58 639BE31B5E10CFD29F9132178754A218 966640 ----a-w- C:\Users\Glenn\Desktop\homla\USB3(v2.5.0.19)\Setup.exe 2014-05-20 13:36:58 25F06D2A40987D14B19A35C82EB1C5C9 185840 ----a-w- C:\Users\Glenn\Desktop\homla\USB3(v2.5.0.19)\x64\Drv64.exe 2014-05-20 13:36:58 094E4E76FB9AB960A73F841BC6733F42 292848 ----a-w- C:\Users\Glenn\Desktop\homla\USB3(v2.5.0.19)\apps\iusb3mon.exe 2014-05-18 13:42:03 EE0BD36B32507A459575E3256041C197 147334 ----a-w- C:\Users\Glenn\Desktop\Memtest86+ USB Installer.exe 2014-05-16 19:49:26 F965082DEA5CFC30A75880C92E803D41 10102800 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Men of War Assault Squad 2\mowas_2.exe 2014-05-16 19:49:26 A932E12B28E25608550881C7EE160345 9788944 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Men of War Assault Squad 2\mowas_2_ed.exe 2014-05-16 17:43:09 93377D21681461D44A04ED786EA20D39 33298832 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Wargame Red Dragon\WarGame3.exe 2014-05-16 17:43:09 93377D21681461D44A04ED786EA20D39 33298832 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Wargame Red Dragon\Data\PC\430000319\WarGame3.exe === C: other files == 2014-05-22 18:39:42 F0E422CB85DF181DF60824657BC38F89 64709483 ----a-w- C:\Program Files (x86)\Steam\SteamApps\downloading\244850\Tools\ModelPack.zip 2014-05-20 13:36:58 EA841584EF59528D11F20355770E427E 786416 ----a-w- C:\Windows\System32\drivers\iusb3xhc.sys 2014-05-20 13:36:58 EA841584EF59528D11F20355770E427E 786416 ----a-w- C:\Users\Glenn\Desktop\homla\USB3(v2.5.0.19)\Drivers\xHCI\Win7\x64\iusb3xhc.sys 2014-05-20 13:36:58 92A7944E8379F910BEF44858D43FF7C1 793072 ----a-w- C:\Users\Glenn\Desktop\homla\USB3(v2.5.0.19)\Drivers\xHCI\Win7\x86\iusb3xhc.sys 2014-05-20 13:36:58 90DCED9D906CFC405D09A21B16EAD0D7 361968 ----a-w- C:\Users\Glenn\Desktop\homla\USB3(v2.5.0.19)\Drivers\xHCI\Win7\x86\iusb3hub.sys 2014-05-20 13:36:58 78D369F8A81A341109FBA1DB64B4C512 20464 ----a-w- C:\Windows\System32\drivers\iusb3hcs.sys 2014-05-20 13:36:58 78D369F8A81A341109FBA1DB64B4C512 20464 ----a-w- C:\Users\Glenn\Desktop\homla\USB3(v2.5.0.19)\Drivers\HCSwitch\Win7\x64\iusb3hcs.sys 2014-05-20 13:36:58 5B632ABA038CE2E2D5D2D1115C6B26D1 368112 ----a-w- C:\Windows\System32\drivers\iusb3hub.sys 2014-05-20 13:36:58 5B632ABA038CE2E2D5D2D1115C6B26D1 368112 ----a-w- C:\Users\Glenn\Desktop\homla\USB3(v2.5.0.19)\Drivers\xHCI\Win7\x64\iusb3hub.sys 2014-05-20 13:36:58 4232E075A2E1C2E01B83666B0885C35F 16880 ----a-w- C:\Users\Glenn\Desktop\homla\USB3(v2.5.0.19)\Drivers\HCSwitch\Win7\x86\iusb3hcs.sys 2014-05-20 13:34:45 2D64EDD92440EE8F0D749A381178AB52 5449933 ----a-w- C:\Users\Glenn\Downloads\USB3(v2.5.0.19).zip 2014-05-18 13:41:38 84F545B40A251CA60A93D87B332BA757 121069 ----a-w- C:\Users\Glenn\Downloads\memtest86+-5.01.usb.installer.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1542524670-50481999-1251613050-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Steam"="C:\Program Files (x86)\Steam\steam.exe -silent" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "DAEMON Tools Pro Agent"="C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe -autorun" "BitTorrent"="C:\Users\Glenn\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IMSS"="C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Steam"="C:\Program Files (x86)\Steam\steam.exe -silent" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "DAEMON Tools Pro Agent"="C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe -autorun" "BitTorrent"="C:\Users\Glenn\AppData\Roaming\BitTorrent\BitTorrent.exe /MINIMIZED" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60" "Nvtmru"="C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" "ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "BullGuard"="C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe -boot" "BullGuardUpdate2"="c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" ==== Startup Folders ====================== 2013-11-07 10:49:35 737 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Philips Device Manager.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [14-05-2014 01:34] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01-10-2013 03:15] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01-10-2013 03:15] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d" ["C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe"] "C:\Windows\SysNative\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon" ["C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe"] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "antiphishing@bullguard"="C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\FF\antiphishing@bullguard" [12-11-2013 17:16] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Glenn\AppData\Roaming\Mozilla\Firefox\Profiles\pvjjqi9p.default - BullGuard Safe Browsing - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\FF\antiphishing@bullguard - Adblock Plus Pop-up Addon - %ProfilePath%\extensions\adblockpopups@jessehakanen.net.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Glenn\AppData\Roaming\Mozilla\Firefox\Profiles\pvjjqi9p.default A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash B33B016B77560C7832BF4D311EA23328 - C:\Users\Glenn\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player 87132527E2256CF6683A18C4EB34DD3B - C:\Windows\system32\Wat\npWatWeb.dll - Windows Activation Technologies ==== Chrome Look ====================== YouTube - Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Google Wallet - Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Glenn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Glenn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Glenn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3VR8DJG9 will be deleted at reboot C:\Users\Glenn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EOKAAHU0 will be deleted at reboot C:\Users\Glenn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HU4JBE9D will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Users\Glenn\AppData\Local\Mozilla\Firefox\Profiles\pvjjqi9p.default\Cache emptied successfully ==== Empty Chrome Cache ====================== No Chrome Cache found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=19 folders=21 14959438 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Glenn\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Glenn\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Glenn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3VR8DJG9" not found "C:\Users\Glenn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EOKAAHU0" not found "C:\Users\Glenn\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HU4JBE9D" not found ==== EOF on vr 23-05-2014 at 18:52:38,86 ======================