Zoek.exe v5.0.0.0 Updated 21-09-2014 Tool run by Lammert on ma 22-09-2014 at 9:55:53,49. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Lammert\Desktop\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2014-09-21-193658.log 24213 bytes ==== Creating Sample_22-09-2014_1002.zip ====================== Process firefox.exe killed Copied file C:\Users\Lammert\Downloads\handreikingvoorbcsjan2010pdf.exe to sample\handreikingvoorbcsjan2010pdf.exe Copied file C:\Users\Lammert\Downloads\formuliervooroprichtingbewonerscommissiebewonersgroeppdf.exe to sample\formuliervooroprichtingbewonerscommissiebewonersgroeppdf.exe sample\formuliervooroprichtingbewonerscommissiebewonersgroeppdf.exe renamed to 04A7228511A09EE0D3AA8C4691A59BD7 sample\handreikingvoorbcsjan2010pdf.exe renamed to A9A76E22F2889E0A695D9582CE03618A C:\Users\Public\Desktop\sample_22-09-2014_1002.zip created successfully ==== File Information Results ====================== --- C:\Users\Lammert\Downloads\2010 Toolkit.exe --- Company: File Description: Office 2010 Toolkit File Version: 2.0.0.0 Product Name: Office 2010 Toolkit Copyright: CODYQX4 & Bosh Original Filename: Office 2010 Toolkit.exe File type: ----a-w- File size: 15823872 Created time: 2014-09-17 07:23:47 Modified time: 2014-09-17 07:25:18 MD5: CF973E3CC9F47B5B2E3305F8B17071EB SHA1: 5E844596F34B82E8A315B928C5195C73A74FC877 ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "fmconverter@gmail.com"=- ==== Deleting Files \ Folders ====================== C:\Program Files (x86)\ExpressFiles not found C:\Program Files (x86)\Freemake not found C:\Users\Lammert\AppData\Local\Torch not found C:\Windows\SysNative\tasks\Express FilesUpdate deleted C:\Users\Lammert\AppData\Roaming\Mozilla\Firefox\Profiles\negfo2iy.default\extensions\jid0-UgB5JNMPWHIRM4dcAe76c7EcVis@jetpack.xpi deleted "C:\Users\Lammert\Downloads\handreikingvoorbcsjan2010pdf.exe" deleted "C:\Users\Lammert\Downloads\formuliervooroprichtingbewonerscommissiebewonersgroeppdf.exe" deleted ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bpegkgagfojjbcpkihigfmkojdmmimdf - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[] ehgldbbpchgpcfagfpfjgoomddhccfgh - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx[] jbolfgndggfhhpbnkgnpjkfhinclbigj - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[] kiplfnciaokpcennlkldkdaeaaomamof - C:\Users\Lammert\AppData\Local\Torch\Plugins\TorchPlugin.crx[] ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Lammert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Lammert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Lammert\Downloads\Users\Lammert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Lammert\Downloads\Users\Lammert\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== No Chrome Cache found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=505 folders=148 97880536 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Lammert\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Lammert\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on ma 22-09-2014 at 10:06:19,34 ======================