Zoek.exe v5.0.0.0 Updated 27-09-2014 Tool run by Charlotte on za 27/09/2014 at 14:31:44,96. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Charlotte\Downloads\zoek\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 27/09/2014 14:32:32 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\MSXML 4.0 C:\PROGRA~2\SmarterPower C:\PROGRA~3\374311380 C:\PROGRA~3\GoogleUpd C:\PROGRA~3\Oracle C:\Users\Charlotte\AppData\Roaming\uTorrent C:\Users\Charlotte\AppData\Roaming\Vso C:\Users\Charlotte\AppData\Roaming\YourFileDownloader C:\Users\Charlotte\AppData\Local\CutePDF Writer C:\Users\Charlotte\AppData\Local\PDFC C:\Users\Mounier\AppData\Local\PDFC C:\Users\Mounier\AppData\Local\VirtualStore ==== Deleting CLSID Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IePluginServices deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\IePluginServices deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\IePluginServices deleted successfully ==== Deleting Files \ Folders ====================== C:\PROGRA~3\374311380 deleted C:\PROGRA~3\9ca671d7338eba9c deleted C:\Users\Charlotte\AppData\Roaming\BitLord deleted C:\Users\Charlotte\AppData\Roaming\YourFileDownloader deleted C:\PROGRA~3\IePluginServices deleted C:\PROGRA~3\coupoNpeaiK deleted C:\PROGRA~3\WindowsMangerProtect deleted C:\PROGRA~3\Package Cache deleted C:\windows\SysNative\Tasks\LaunchSignup deleted C:\windows\SysNative\drivers\{5eeb83d0-96ea-4249-942c-beead6847053}w64.sys deleted C:\Windows\SysNative\config\systemprofile\Searches deleted C:\Users\CHARLO~1\AppData\Roaming\Mozilla\Firefox\Profiles\3nqgqq6u.default\extensions\staged deleted C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted "C:\PROGRA~3\Performance Optimizer\PerformanceOptimizer_x64.dll" deleted "C:\Users\Charlotte\AppData\Roaming\Vso" deleted "C:\PROGRA~3\Performance Optimizer" not deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-09-24 18:38:37 A94363181B3A777C47554F155CDF93B0 753873 ----a-w- C:\Windows\unins000.exe 2014-09-24 18:38:37 A4F6D436C0159409DD846634A3DC9F73 68318 ----a-w- C:\Windows\unins000.dat ====== C:\Users\CHARLO~1\AppData\Local\Temp ==== 2014-09-27 10:25:44 4E566FEA83FCEEAF2873702806B55006 43008 ----a-w- C:\Users\Charlotte\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpgvhnb8.dll ====== Java Cache ===== 2014-09-23 17:09:59 15B6A6F45048A520938C242072DABBA9 415 ----a-w- C:\Users\Mounier\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\469e3201-abf5f63e3a324ddc0ef07700cbae8d0cd7e22eeccd6bc9d666a582de562783bd-6.0.lap 2014-09-23 17:10:14 904F9440FF77FC9E38A7F7DF1F288CE1 2129007 ----a-w- C:\Users\Mounier\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\1ba8977c-26edebb9-0.2.3.4.02- ====== C:\Windows\SysWOW64 ===== 2014-09-24 18:38:38 32A1BAD84A4076422848E2DED5E72AC4 175864 ----a-w- C:\Windows\SysWOW64\BytescoutVideoMixerFilter.dll 2014-09-24 18:38:37 FA425C74CE2EB719B2A77A7A2ADDAE32 216064 ----a-w- C:\Windows\SysWOW64\Lagarith.dll 2014-09-24 18:38:37 D4F8F8AFEFE1D103539175F159905613 438008 ----a-w- C:\Windows\SysWOW64\BytescoutScreenCapturing.dll 2014-09-24 18:38:37 11E5376FD83BD220399FD37AA84C0F8F 265976 ----a-w- C:\Windows\SysWOW64\BytescoutScreenCapturingFilter.dll 2014-09-24 11:12:51 C263F3E7E0523556964D661BC7CB9565 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-09-24 18:38:37 EE6407670B4CA47CCC9AF5ED41A19150 148992 ----a-w- C:\Windows\Sysnative\Lagarith.dll 2014-09-24 11:12:51 A8A87343CAE432677D82C0BCC753D905 2048 ----a-w- C:\Windows\Sysnative\tzres.dll ====== C:\Windows\Sysnative\drivers ===== ====== C:\Windows\Tasks ====== 2014-09-02 10:30:53 FD9F655F807CCAAA8DCE7601AE3EEE49 348 ----a-w- C:\Windows\Tasks\HPCeeScheduleForCharlotte.job 2014-09-02 10:30:53 6841A5649AC5A38D2EE6024128C85C7B 3210 ----a-w- C:\Windows\Sysnative\Tasks\HPCeeScheduleForCharlotte ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-08-30 06:15:43 -------- d-----w- C:\Program Files\PDF Split And Merge Basic ======= C:\PROGRA~2 ===== 2014-09-24 18:38:33 -------- d-----w- C:\PROGRA~2\ezvid 2014-09-08 15:58:15 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2014-09-08 15:57:58 -------- d-----w- C:\PROGRA~2\Java ======= C: ===== ====== C:\Users\Charlotte\AppData\Roaming ====== 2014-09-24 19:35:21 -------- d-sh--w- C:\Users\Charlotte\AppData\Local\EmieUserList 2014-09-24 19:35:21 -------- d-sh--w- C:\Users\Charlotte\AppData\Local\EmieSiteList 2014-09-24 18:38:48 55CDE21DF684DE0573E6559D1139D322 7680 ----a-w- C:\Users\Charlotte\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-09-24 18:38:48 -------- d-----w- C:\Users\Charlotte\AppData\Local\ezvid,_inc ====== C:\Users\Charlotte ====== 2014-09-27 10:29:32 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Charlotte\Downloads\RSITx64.exe 2014-09-24 18:38:38 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ezvid 2014-09-24 18:36:32 6F2A546F86D8CE2EE9DF5BADC941E0EE 1168896 ----a-w- C:\Users\Charlotte\Downloads\ezvid0982d.exe 2014-09-22 18:09:04 -------- d-----w- C:\ProgramData\Performance Optimizer 2014-09-16 11:18:02 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader 2014-09-08 15:58:02 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-08-30 06:15:43 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Split And Merge Basic ====== C: exe-files == 2014-09-27 12:41:19 0DE1C4B1585853A8017A2422B745C3E8 836168 ----a-w- C:\Windows\Temp\0235171411821679mcinst.exe 2014-09-27 10:29:32 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Charlotte\Downloads\RSITx64.exe 2014-09-26 17:51:10 28026DB53EEF61CCF0101672C77CE134 277616 ----a-w- C:\Users\Mounier\AppData\Local\Mozilla\updates\E7CF176E110C211B\updates\0\updater.exe 2014-09-25 17:02:55 7CA4092A339EA30DE8FF06D3FF79D6ED 749648 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\37.0.2062.124\37.0.2062.124_37.0.2062.120_chrome_updater.exe 2014-09-24 18:38:37 A94363181B3A777C47554F155CDF93B0 753873 ----a-w- C:\Windows\unins000.exe 2014-09-24 18:38:37 064F6822E661F85DEEB934E0CA441BEC 5800379 ----a-w- C:\Program Files (x86)\ezvid\sox.exe 2014-09-24 18:38:33 8FEC85F4AF7403488F271DADC0314200 8612824 ----a-w- C:\Program Files (x86)\ezvid\ezvid.exe 2014-09-24 18:38:33 300D2FA7791B5EC3C54B62FF50BD08F3 21846016 ----a-w- C:\Program Files (x86)\ezvid\ffmpeg.exe 2014-09-24 18:36:32 6F2A546F86D8CE2EE9DF5BADC941E0EE 1168896 ----a-w- C:\Users\Charlotte\Downloads\ezvid0982d.exe 2014-09-24 11:12:51 916CEC665A9879DEB15BBDD943B7350B 49664 ----a-w- C:\Windows\servicing\GC64\tzupd.exe === C: other files == 2014-09-27 10:25:54 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Charlotte\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-09-27 10:25:16 DE0983FE4B830699312D35A990B3AE1B 1945 ----a-w- C:\Users\Charlotte\AppData\Local\Temp\_MEI36562\resources\chrome_ext\nknebiagdodnminbdpflhpkgfpeijdbf_live.crx 2014-09-27 10:25:16 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Charlotte\AppData\Local\Temp\_MEI36562\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx 2014-09-24 18:01:47 BD9BCC33B0792EA0387F80AAC9CA82B2 77931 ----a-w- C:\Users\Charlotte\Downloads\berichten.zip 2014-09-23 08:20:54 B418EC51D05AFE208FC7B4DDA4DF8EAC 192230 ----a-w- C:\CHARLOTTE\CLW 2014-2015\@BEDRIJFSBEHEER\HANDBOEK\Algemeen.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-697365305-3729413489-3807942375-1000\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" [HKEY_USERS\S-1-5-21-697365305-3729413489-3807942375-1001\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleUpd"="C:\ProgramData\GoogleUpd\omylcqksw.exe" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" "{91140000-0011-0000-0000-0000000FF1CE}"="C:\Windows\system32\cmd.exe /C del C:\ProgramData\Microsoft Help\Rgstrtn.lck /Q /A:H" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601" "{91140000-0011-0000-0000-0000000FF1CE}"="C:\Windows\system32\cmd.exe /C del C:\ProgramData\Microsoft Help\Rgstrtn.lck /Q /A:H" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "PDF Complete"="C:\Program Files (x86)\PDF Complete\pdfsty.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" "HP Software Update"="c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" "Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe" "BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices" "mcpltui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey" "NetworkChecker"="C:\Users\Mounier\AppData\Local\Temp\temp1144259936.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\\progra~3\\perfor~1\\perfor~1.dll" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" "SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" C:\\PROGRA~3\\PERFOR~1\\PERFOR~2.DLL" ==== Startup Folders ====================== 2013-12-02 20:34:07 1017 ----a-w- C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2014-08-04 07:21:42 1147 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [25/09/2014 20:11] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [07/01/2014 14:32] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [07/01/2014 14:32] C:\Windows\tasks\HPCeeScheduleForCharlotte.job --a------ [Undetermined Task] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HPCeeScheduleForCharlotte" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe] "C:\Windows\SysNative\tasks\RecoveryCDWin7" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"] "C:\Windows\SysNative\tasks\ServicePlan" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask" [C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor" [04/08/2014 09:26] ==== Firefox Extensions ====================== ProfilePath: C:\Users\CHARLO~1\AppData\Roaming\Mozilla\Firefox\Profiles\3nqgqq6u.default - System.Security.Cryptography.DSASignatureFormatter - C:\Users\Charlotte\AppData\Roaming\Mozilla\Firefox\Profiles\3nqgqq6u.default\extensions\{8F58782C-34D7-DD8D-B020-75C8F4D52146} - System.Security.Cryptography.DSASignatureFormatter - %ProfilePath%\extensions\{8F58782C-34D7-DD8D-B020-75C8F4D52146} AppDir: C:\Program Files (x86)\mozilla firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Charlotte\AppData\Roaming\Mozilla\Firefox\Profiles\3nqgqq6u.default DFC9460CC37E5C414DC4680B10C19E7A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash 63EE2015B877A2E472CC59E05291AA39 - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMSS.dll - McAfee Security Scanner + ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions fheoggkfdfchfphceeifdbepaooicaho - No path found[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions apdfllckaahabafndbhieahigkjlhalf - C:\Users\CHARLO~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx[27/09/2014 12:25] Google Drive - Charlotte\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf Google Analytics Opt out Add on - Charlotte\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh Google Docs - Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf SiteAdvisor - Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho Google Analytics Opt out Add on - Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh Google Wallet - Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chromium Startpages ====================== C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Preferences "startup_urls": [ "http://www.sweet-page.com/?type=hp&ts=1408779444&from=cor&uid=ST31000528AS_5VP67VF8" ], ==== Chromium Fix ====================== C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage deleted successfully C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully C:\Users\Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh deleted successfully C:\Users\Mounier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh deleted successfully C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fllaojicojecljbmefodhfapmkghcbnh_0.localstorage deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.sweet-page.com/web/?type=ds&ts=1408779444&from=cor&uid=ST31000528AS_5VP67VF8&q={searchTerms}" "Search Page"="http://www.sweet-page.com/web/?type=ds&ts=1408779444&from=cor&uid=ST31000528AS_5VP67VF8&q={searchTerms}" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.sweet-page.com/web/?type=ds&ts=1408779444&from=cor&uid=ST31000528AS_5VP67VF8&q={searchTerms}" "Search Page"="http://www.sweet-page.com/web/?type=ds&ts=1408779444&from=cor&uid=ST31000528AS_5VP67VF8&q={searchTerms}" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Reset Google Chrome ====================== C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Mounier\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully C:\Users\Mounier\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B7AB8DE4-6B39-337A-E65D-7470B1C38198} deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B7AB8DE4-6B39-337A-E65D-7470B1C38198} deleted successfully HKEY_CLASSES_ROOT\CLSID\{B7AB8DE4-6B39-337A-E65D-7470B1C38198} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{B7AB8DE4-6B39-337A-E65D-7470B1C38198} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B7AB8DE4-6B39-337A-E65D-7470B1C38198} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B7AB8DE4-6B39-337A-E65D-7470B1C38198} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbam.exe deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mbamgui.exe deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rstrui.exe deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho deleted successfully HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{892cc6a3} deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Charlotte\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Charlotte\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mounier\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mounier\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Mounier\AppData\Local\Mozilla\Firefox\Profiles\ur1dpi4u.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\Users\Mounier\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=193 folders=38 33401273 bytes) ==== Empty Temp Folders ====================== C:\Users\Charlotte\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Mounier\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\CHARLO~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Mounier\AppData\Local\Temp\FXSAPIDebugLogFile.txt" not found "C:\PROGRA~3\Performance Optimizer" not found ==== EOF on za 27/09/2014 at 15:08:32,58 ======================