Zoek.exe v5.0.0.0 Updated 28-06-2014 Tool run by fred on ma 30/06/2014 at 10:38:01,81. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\fred\Desktop\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== System Restore Info ====================== 30/06/2014 10:41:22 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\AskPartnerNetwork deleted successfully C:\Program Files\Bitdefender deleted successfully C:\Program Files\GreenTree Applications deleted successfully C:\Program Files\Malwarebytes' Anti-Malware deleted successfully C:\Program Files\TomTom DesktopSuite deleted successfully C:\PROGRA~2\Malwarebytes' Anti-Malware (portable) deleted successfully C:\PROGRA~2\Oracle deleted successfully C:\Users\fred\AppData\Roaming\Malwarebytes deleted successfully C:\Users\fred\AppData\Roaming\QuickScan deleted successfully C:\Users\fred\AppData\Local\ms-drivers deleted successfully C:\Users\fred\AppData\Local\VirtualRouterPlus deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2745406066-188088592-2588830699-1001\Software\Microsoft\Internet Explorer\SearchScopes\{AF4EA4E1-BC03-40AE-A455-491918A4F514} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-2745406066-188088592-2588830699-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{D8278076-BC68-4484-9233-6E7F1628B56C} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{4F524A2D-5637-006A-76A7-7A786E7484D7} deleted successfully ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\Malwarebytes' Anti-Malware (portable) not found C:\PROGRA~2\AskPartnerNetwork deleted C:\PROGRA~2\APN deleted C:\PROGRA~2\boost_interprocess deleted C:\PROGRA~2\Apple deleted C:\PROGRA~2\Application Data deleted C:\PROGRA~2\Package Cache deleted C:\Users\fred\Searches deleted C:\user.js deleted C:\Windows\system32\config\systemprofile\Searches deleted C:\Windows\System32\AI_RecycleBin deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\fred\AppData\Local\Temp ==== 2014-06-29 10:41:02 DC575C1BCE7582065B802999EAC21286 117904 ----a-w- C:\Users\fred\AppData\Local\temp\QDrive.sys 2014-06-27 16:14:16 648584CDD57A2392993EC4155D1C09E2 22415552 ----a-w- C:\Users\fred\AppData\Local\temp\tmpoojnkj\googledrivesync.exe ====== Java Cache ===== 2014-06-29 10:12:34 34949F20D11438D7E57CD27F8ED9134F 18156 ----a-w- C:\Users\fred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\2fb889a6-55e04605-temp 2014-06-29 10:12:32 CCB6B3300C446232B1F69D7E97A16F0D 1104407 ----a-w- C:\Users\fred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\7db58084-7159d499 2014-06-29 10:12:26 B293EF97C1FFAA3BABEF4909C254B177 97 ----a-w- C:\Users\fred\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\278c0abb-e2160a39c49ea9499367a4b3702f0c6dde9ef449a1d4d487cd2dfc39219a35fa-6.0.lap ====== C:\Windows\system32 ===== 2014-06-29 19:09:08 CE34AF734EBB57A1CFC73DCF552D1F75 544 ----a-w- C:\Windows\System32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD ====== C:\Windows\system32\drivers ===== 2014-06-13 11:47:45 12E71DA845D76665B56753AD149E32B3 110296 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-06-13 11:47:06 BD27D97297934FD4217A37FD28A7ABC7 51928 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-06-12 08:30:50 DEE7EDA5AAA96C4C68A1F098F5145799 187840 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2014-06-12 08:30:50 5579DD18546999F5D0EC39D018726C6B 1294272 ----a-w- C:\Windows\System32\drivers\tcpip.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-06-29 17:00:02 -------- d-----w- C:\Program Files\trend micro 2014-06-05 20:59:52 -------- d-----w- C:\Program Files\Common Files\Skype ======= C: ===== ====== C:\Users\fred\AppData\Roaming ====== ====== C:\Users\fred ====== 2014-06-29 16:59:05 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\fred\Desktop\RSIT.exe ====== C: exe-files == 2014-06-29 17:00:02 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\fred.exe 2014-06-29 16:59:05 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\fred\Desktop\RSIT.exe 2014-06-27 19:41:27 DDBAD1C89B017CF5662C45F5F671325E 174680088 ----a-w- C:\ProgramData\Sony Corporation\PMB\Installer\PMHOME.exe 2014-06-27 16:14:16 648584CDD57A2392993EC4155D1C09E2 22415552 ----a-w- C:\Users\fred\AppData\Local\temp\tmpoojnkj\googledrivesync.exe 2014-06-27 16:07:36 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Program Files\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe 2014-06-27 16:07:35 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Program Files\Google\Update\1.3.24.15\GoogleUpdateBroker.exe 2014-06-27 16:07:22 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Program Files\Google\Update\1.3.24.15\GoogleUpdateSetup.exe 2014-06-27 16:06:48 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Program Files\Google\Update\1.3.24.15\GoogleUpdateComRegisterShell64.exe 2014-06-27 16:06:41 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler64.exe 2014-06-27 16:06:40 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe 2014-06-27 16:05:11 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files\Google\Update\1.3.24.15\GoogleUpdate.exe 2014-06-27 16:04:59 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.24.15\GoogleUpdateSetup.exe 2014-06-24 12:41:42 32382BB862F002E34DC97A04B7C7DE56 762392 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBFileConfig.exe 2014-06-24 12:41:34 D74363C87AE77974A4208F26CBFE63BF 192024 ----a-w- C:\Program Files\Sony\PlayMemories Home\TapeImporter\SPUMPThumb.exe 2014-06-24 12:41:04 8A5FBF4F3C4ACF3E3FAF5D53EFB05E1A 671256 ----a-w- C:\Program Files\Sony\PlayMemories Home\TapeImporter\PMBTapeImporter.exe 2014-06-24 12:41:02 DDA8AF2EC09C12A1F0E1FDC674E4346A 52760 ----a-w- C:\Program Files\Sony\PlayMemories Home\TapeImporter\PMBTapeCamAccessor.exe 2014-06-24 12:39:08 386600031DD243292A8812233ADEA8E3 233496 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBAVCHDUDF.exe 2014-06-24 12:38:46 6D24989D40823EBB7CB320898B727AE1 117784 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBMPThumb.exe 2014-06-24 12:37:54 39BD4319D72AEC03FC1C8FC172BD0694 402968 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBDownloader.exe 2014-06-24 12:37:42 305F2E1F122CFA330C8E3EC6AA129E9E 1910808 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBMP4Conversion.exe 2014-06-24 12:37:28 6CDF6C86E41AFF97F49B252ED62831F4 101217816 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBActionCamUtility.exe 2014-06-24 12:37:12 8C5EC1968474797B56668AEE21AD6397 326680 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBFirewallController.exe 2014-06-24 12:36:54 E788B03DEE05EBE6D62C172E5C1F7C90 563224 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBWifiImportSetting.exe 2014-06-24 12:36:30 9B9CF370E9395E70DFCF482E9B715D30 89112 ----a-w- C:\Program Files\Sony\PlayMemories Home\PnPXProc.exe 2014-06-24 12:36:30 1835AB0AC927169A22148DFB7ABCD02E 669720 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMB3DPlayer.exe 2014-06-24 12:36:28 91E50FEEA3FFB2A82BA34020F7305206 444952 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBMtpDeviceSwitch.exe 2014-06-24 12:36:26 E16D133B889D989C6F74FD912B90A68A 481304 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe 2014-06-24 12:36:20 EDCEF9C39DC9829BA64960BB2A9AE1F2 1713688 ----a-w- C:\Program Files\Sony\PlayMemories Home\BG360Viewer.exe 2014-06-24 12:36:20 AF02BAF7DA6BC4EF55558720E6D1CA34 2139160 ----a-w- C:\Program Files\Sony\PlayMemories Home\BG360Converter.exe 2014-06-24 12:36:00 21D56B743B4FB433AB873AADE820AFFD 1835032 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBMediaExporter.exe 2014-06-24 12:35:48 E2CED895038E822BE59346404B0911BD 1387544 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBContentAnalyzer.exe 2014-06-24 12:35:42 7BC978140756BEEFEC62FFC4CC6D26A8 1256984 ----a-w- C:\Program Files\Sony\PlayMemories Home\AnimationHtmlMaker.exe 2014-06-24 12:35:22 D6049F3077291F29380260A9ED2ED753 757272 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBGPSSupportTool.exe 2014-06-24 12:35:02 41C9A6BB71728C67EA59302C23823B41 2646552 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBGPSMatch.exe 2014-06-24 12:35:00 B975DDB63EAB0DAFBF887FACAB726B37 2561560 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBMapView.exe 2014-06-24 12:35:00 76A08AF361488B485071D7E21C4D6D66 1298968 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBMapViewVideoPlayer.exe 2014-06-24 12:34:38 C9C9990CE471E59667BF3B378264615F 730136 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBUpdateNetworkService.exe 2014-06-24 12:34:20 1293E3B149825A7DBBA0BF9F3A2FBF16 417816 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBBDSelector.exe 2014-06-24 12:33:58 47416FE85EA7C85DE605E369298AA07B 1700376 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBDiscMaker.exe 2014-06-24 12:33:32 1F31659E4F293723AC9A0DFABA7A3FBE 1958424 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBBDAVAuthor.exe 2014-06-24 12:33:16 E30CCF7DACDF688CC918F3404A1142FE 2292760 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBDVDAuthor.exe 2014-06-24 12:32:58 7F9D758D8ECF06545ED26CEBF8319AEA 4174360 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBHDAuthor.exe 2014-06-24 12:32:28 7886626EBB04CB11B4F6598070D6AE77 1124888 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBAVCHDPlayer.exe 2014-06-24 12:32:08 38F9E19AB9748CDB6C73D104B7896796 2855960 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBVideoTrimming.exe 2014-06-24 12:31:36 43077E4DEEEF6364259C0A6B5ECEE1B1 2945048 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBVideoCombining.exe 2014-06-24 12:31:34 24670B71E71C7150F78D64C33B760A1C 480280 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBEnvironmentCheckTool.exe 2014-06-24 12:31:14 28E86B7A017208FAFC7998291B79D656 7005720 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBSettingsTool.exe 2014-06-24 12:30:56 73ECEFC487444EF8D39632A0478BA678 352792 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBInit.exe 2014-06-24 12:30:54 3C71ACCC3512CDC00349BE03462BB23C 472088 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBAnnounce.exe 2014-06-24 12:30:34 B07CF243BF76B0DBBE3A20929998EF8C 2557976 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe 2014-06-24 12:29:52 78C624AAC50D47F58F642FEEA1A2CFCF 1510936 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBSlideshow.exe 2014-06-24 12:29:46 C4BD58B0265EFA2F06B473E98632E49F 25265688 ----a-w- C:\Program Files\Sony\PlayMemories Home\PMBBrowser.exe === C: other files == 2014-06-29 10:41:02 DC575C1BCE7582065B802999EAC21286 117904 ----a-w- C:\Users\fred\AppData\Local\temp\QDrive.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "Copy"="C:\Users\fred\AppData\Roaming\Copy\CopyAgent.exe" "Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" "Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard" "Bitdefender Wallet Application Agent"="C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe" [HKEY_USERS\S-1-5-21-2745406066-188088592-2588830699-1001\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Google Update"="C:\Users\fred\AppData\Local\Google\Update\GoogleUpdate.exe /c" "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" "GoogleDriveSync"="C:\Program Files\Google\Drive\googledrivesync.exe /autostart" "Spotify"="C:\Users\fred\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart" "Spotify Web Helper"="C:\Users\fred\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "SkyDrive"="C:\Users\fred\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "GoogleChromeAutoLaunch_1C75F5F3159E2E0C8F34EC22B661D718"="C:\Program Files\Google\Chrome\Application\chrome.exe --no-startup-window" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "Copy"="C:\Users\fred\AppData\Roaming\Copy\CopyAgent.exe" "Bitdefender Wallet Agent"="C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" "Bitdefender Wallet"="C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe --hidden --nowizard" "Bitdefender Wallet Application Agent"="C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe" [HKEY_USERS\S-1-5-21-2745406066-188088592-2588830699-1001\Software\Microsoft\Windows\CurrentVersion\runonce] "FlashPlayerUpdate"="C:\Windows\system32\Macromed\Flash\FlashUtil32_13_0_0_214_ActiveX.exe -update activex" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s" "Skytel"="C:\Program Files\Realtek\Audio\HDA\Skytel.exe" "LManager"="C:\Program Files\Launch Manager\LManager.EXE" "VitaKeyPdtWzd"="C:\Program Files\Acer Bio Protection\PdtWzd.exe" "BrMfcWnd"="C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "WordWeb"="C:\Program Files\WordWeb\wweb32.exe -startup" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "InstallerLauncher"="C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe /run:C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\Installer.exe" "BullGuard"="C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BullGuard.exe -boot" "BullGuardUpdate2"="c:\program files\bullguard ltd\bullguard antivirus\BullGuardUpdate2.exe" "PMBVolumeWatcher"="C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "Google Update"="C:\Users\fred\AppData\Local\Google\Update\GoogleUpdate.exe /c" "TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" "GoogleDriveSync"="C:\Program Files\Google\Drive\googledrivesync.exe /autostart" "Spotify"="C:\Users\fred\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart" "Spotify Web Helper"="C:\Users\fred\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "SkyDrive"="C:\Users\fred\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "GoogleChromeAutoLaunch_1C75F5F3159E2E0C8F34EC22B661D718"="C:\Program Files\Google\Chrome\Application\chrome.exe --no-startup-window" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] "FlashPlayerUpdate"="C:\Windows\system32\Macromed\Flash\FlashUtil32_13_0_0_214_ActiveX.exe -update activex" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Folders ====================== 2013-09-30 16:29:18 1101 ----a-w- C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [19/01/2013 17:55] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ [Undetermined Task] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2745406066-188088592-2588830699-1001Core.job --a------ [Undetermined Task] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2745406066-188088592-2588830699-1001UA.job --a------ C:\Users\fred\AppData\Local\Google\Update\GoogleUpdate.exe [20/02/2013 00:13] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\Adobe-online actualiseringsprogramma" [C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2745406066-188088592-2588830699-1001Core" [C:\Users\fred\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-2745406066-188088592-2588830699-1001UA" [C:\Users\fred\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\iSCSIAgentAutoStartup" ["C:\Program Files\QNAP\Qfinder\iSCSIAgent.exe"] "C:\Windows\system32\tasks\Java Update Scheduler" [C:\Program Files\Common Files\Java\Java Update\jusched.exe] "C:\Windows\system32\tasks\NetBak-freddy-fred-AutoStartup" ["C:\Program Files\QNAP\NetBak\NetBak.exe"] "C:\Windows\system32\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\system32\tasks\Sony Corporation\Sony Home Network Library\SOHLib SOHDms" [C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "antiphishing@bullguard"="C:\Program Files\BullGuard Ltd\BullGuard Antivirus\Antiphishing\FF\antiphishing@bullguard" [10/05/2014 20:10] ==== Firefox Extensions ====================== ProfilePath: C:\Users\fred\AppData\Roaming\Mozilla\Firefox\Profiles\p1l2hsr7.default - Undetermined - C:\Program Files\IObit Apps Toolbar\FF ProfilePath: C:\Users\fred\AppData\Roaming\TomTom\HOME\Profiles\i9noli0l.default - Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com - TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.8.415.1240@tomtom.com - Emulator - %ProfilePath%\extensions\Navcore.9.510.1234792@tomtom.com ==== Firefox Plugins ====================== Profilepath: C:\Users\fred\AppData\Roaming\Mozilla\Firefox\Profiles\p1l2hsr7.default 5CB01CF141E021DAAE96991A5BA57944 - C:\Users\fred\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer DD31F0C436E4F5E6FA9783FF8A80ADC1 - C:\Users\fred\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin 025BBEF5A248B09BDC6684747F6EB5BC - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U55 14365399E83D7BC15760E8676E890C87 - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat 14365399E83D7BC15760E8676E890C87 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat 3B00376AE69AC2E815425E54DEBFF750 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Photo Gallery 15E298B5EC5B89C5994A59863969D9FF - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jbolfgndggfhhpbnkgnpjkfhinclbigj - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[11/09/2012 14:45] lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[11/04/2014 19:46] mjdepfkicdcciagbigfcmdhknnoaaegf - C:\Program Files\WordWeb\wcxChrome.crx[28/02/2013 23:24] Google Translate - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb Google Docs - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf AdBlock - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Skype Click to Call - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Google Wallet - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.standaard.be/" "Search Page"="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.standaard.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Empty IE Cache ====================== C:\Users\fred\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\fred\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache is not empty, a reboot is needed ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=24 folders=32 7733176 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\temp emptied successfully C:\Users\Default User\AppData\Local\temp emptied successfully C:\Users\fred\AppData\Local\temp will be emptied at reboot C:\Users\Public\AppData\Local\temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\fred\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\fred\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\AZQJU9QU\syndication.vmma.be" not found "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on ma 30/06/2014 at 11:43:32,80 ======================