Zoek.exe v5.0.0.0 Updated 16-10-2014 Tool run by lucky on vr 17/10/2014 at 8:15:35,16. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ILL4DTO6\zoek.exe [Scan all users] [Script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2014-09-08-114054.log 19849 bytes C:\zoek-results2014-09-23-085823.log 21324 bytes C:\zoek-results2014-09-27-161139.log 18646 bytes C:\zoek-results2014-09-30-135142.log 18779 bytes C:\zoek-results2014-10-05-080507.log 19072 bytes C:\zoek-results2014-10-16-100552.log 19423 bytes C:\zoek-results2014-10-16-114622.log 24662 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== "C:\Windows\zoek-delete.exe" not found C:\zoek_backup deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\lucky\AppData\Local\Temp ==== 2014-10-16 13:38:36 A5FC2AF113F1E7651598A28A2F21CC98 166792 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\psuser.dll 2014-10-16 13:38:36 0AC4470EC565A14ACE5342B6C78B27B6 189320 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\psuser_64.dll 2014-10-16 13:38:35 80E879A4C23F740A8D22685690A34543 166792 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\psmachine.dll 2014-10-16 13:38:35 60C4C0775904FDB862355A696EFB577B 189320 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\psmachine_64.dll 2014-10-16 13:38:34 40AAE0A1A4F664828DF5A95875AEA1C8 604040 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\npGoogleUpdate3.dll 2014-10-16 13:38:30 E243FE74E2ADE67A1BD3F79E6D8D9245 1689480 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\goopdate.dll 2014-10-16 13:38:29 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleCrashHandler.exe 2014-10-16 13:38:29 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdateBroker.exe 2014-10-16 13:38:29 5EA3B112C4AA3E628A68F0499A4D5CE9 26112 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdateHelper.msi 2014-10-16 13:38:29 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdate.exe 2014-10-16 13:38:29 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdateOnDemand.exe 2014-10-16 13:38:29 3ECB98A910BBF8EAE447DB14F93DC053 880272 ----a-w- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdateSetup.exe 2014-10-16 13:38:29 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdateComRegisterShell64.exe 2014-10-16 13:38:29 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleCrashHandler64.exe 2014-10-16 12:17:24 A5FC2AF113F1E7651598A28A2F21CC98 166792 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\psuser.dll 2014-10-16 12:17:24 80E879A4C23F740A8D22685690A34543 166792 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\psmachine.dll 2014-10-16 12:17:24 60C4C0775904FDB862355A696EFB577B 189320 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\psmachine_64.dll 2014-10-16 12:17:24 40AAE0A1A4F664828DF5A95875AEA1C8 604040 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\npGoogleUpdate3.dll 2014-10-16 12:17:24 0AC4470EC565A14ACE5342B6C78B27B6 189320 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\psuser_64.dll 2014-10-16 12:17:19 E243FE74E2ADE67A1BD3F79E6D8D9245 1689480 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\goopdate.dll 2014-10-16 12:17:18 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleCrashHandler.exe 2014-10-16 12:17:18 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdateBroker.exe 2014-10-16 12:17:18 5EA3B112C4AA3E628A68F0499A4D5CE9 26112 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdateHelper.msi 2014-10-16 12:17:18 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdate.exe 2014-10-16 12:17:18 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdateOnDemand.exe 2014-10-16 12:17:18 3ECB98A910BBF8EAE447DB14F93DC053 880272 ----a-w- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdateSetup.exe 2014-10-16 12:17:18 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdateComRegisterShell64.exe 2014-10-16 12:17:18 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleCrashHandler64.exe 2014-10-16 12:16:19 A5FC2AF113F1E7651598A28A2F21CC98 166792 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\psuser.dll 2014-10-16 12:16:19 80E879A4C23F740A8D22685690A34543 166792 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\psmachine.dll 2014-10-16 12:16:19 60C4C0775904FDB862355A696EFB577B 189320 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\psmachine_64.dll 2014-10-16 12:16:19 40AAE0A1A4F664828DF5A95875AEA1C8 604040 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\npGoogleUpdate3.dll 2014-10-16 12:16:19 0AC4470EC565A14ACE5342B6C78B27B6 189320 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\psuser_64.dll 2014-10-16 12:16:17 E243FE74E2ADE67A1BD3F79E6D8D9245 1689480 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\goopdate.dll 2014-10-16 12:16:17 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleCrashHandler.exe 2014-10-16 12:16:17 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdateBroker.exe 2014-10-16 12:16:17 5EA3B112C4AA3E628A68F0499A4D5CE9 26112 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdateHelper.msi 2014-10-16 12:16:17 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdate.exe 2014-10-16 12:16:17 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdateOnDemand.exe 2014-10-16 12:16:17 3ECB98A910BBF8EAE447DB14F93DC053 880272 ----a-w- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdateSetup.exe 2014-10-16 12:16:17 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdateComRegisterShell64.exe 2014-10-16 12:16:17 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleCrashHandler64.exe ====== Java Cache ===== 2014-10-16 11:41:05 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\lucky\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-57c60189 ====== C:\Windows\system32 ===== 2014-10-17 05:46:45 1EB8CA23B805D3F8DBDAC8CAE7979B8B 66560 ----a-w- C:\Windows\System32\packager.dll ====== C:\Windows\system32\drivers ===== ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C: ===== ====== C:\Users\lucky\AppData\Roaming ====== 2014-10-16 11:12:17 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp 2014-10-16 11:12:17 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp 2014-10-16 11:12:17 -------- d-----w- C:\Users\lucky\AppData\Local\Temp 2014-10-16 11:12:17 -------- d-----w- C:\Users\Default\AppData\Local\Temp 2014-10-16 11:12:17 -------- d-----w- C:\Users\Default User\AppData\Local\Temp ====== C:\Users\lucky ====== 2014-10-16 10:45:38 9AE4C48DB6D9EB7D060C71AB1AABF5F0 4965896 ----a-w- C:\Users\lucky\Downloads\ccsetup418.exe 2014-10-16 10:24:09 7B97AE6DCB48D9D5EB69B95FF1E9D7B3 880272 ----a-w- C:\Users\lucky\Downloads\ChromeSetup (2).exe 2014-10-16 08:51:33 0A1A642D035BFE6EA34DA374F7D46206 5709016 ----a-w- C:\Users\lucky\Downloads\MarineAquariumWrapper.MarineAquarium3Free_57.aannbadihichfdnlljnipflliplmcnpo.ch.exe ====== C: exe-files == 2014-10-16 16:17:29 8685FAF50C04F9A9C2F56FF64B0B7ACB 1107968 ----a-w- C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BB8BCTBC\RSIT.exe 2014-10-16 13:39:05 EC87C870FC286178E461C1D917567DCE 41081424 ----a-w- C:\Program Files\Google\Update\Install\{00A8CA32-EF5D-46FB-9C42-F6BBF57D09FC}\38.0.2125.104_chrome_installer.exe 2014-10-16 13:38:29 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleCrashHandler.exe 2014-10-16 13:38:29 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdateBroker.exe 2014-10-16 13:38:29 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdate.exe 2014-10-16 13:38:29 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdateOnDemand.exe 2014-10-16 13:38:29 3ECB98A910BBF8EAE447DB14F93DC053 880272 ----a-w- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdateSetup.exe 2014-10-16 13:38:29 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleUpdateComRegisterShell64.exe 2014-10-16 13:38:29 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Users\lucky\AppData\Local\Temp\{9BF06DE3-FB17-4953-ABD1-D45509522911}\GoogleCrashHandler64.exe 2014-10-16 12:17:18 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleCrashHandler.exe 2014-10-16 12:17:18 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdateBroker.exe 2014-10-16 12:17:18 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdate.exe 2014-10-16 12:17:18 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdateOnDemand.exe 2014-10-16 12:17:18 3ECB98A910BBF8EAE447DB14F93DC053 880272 ----a-w- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdateSetup.exe 2014-10-16 12:17:18 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleUpdateComRegisterShell64.exe 2014-10-16 12:17:18 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Users\lucky\AppData\Local\Temp\{62102D2B-094E-4491-A1C4-434EB44CF926}\GoogleCrashHandler64.exe 2014-10-16 12:16:17 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleCrashHandler.exe 2014-10-16 12:16:17 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdateBroker.exe 2014-10-16 12:16:17 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdate.exe 2014-10-16 12:16:17 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdateOnDemand.exe 2014-10-16 12:16:17 3ECB98A910BBF8EAE447DB14F93DC053 880272 ----a-w- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdateSetup.exe 2014-10-16 12:16:17 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleUpdateComRegisterShell64.exe 2014-10-16 12:16:17 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Users\lucky\AppData\Local\Temp\{59D68EA0-9121-4851-83FA-B05B2A99A7F7}\GoogleCrashHandler64.exe 2014-10-16 10:45:38 9AE4C48DB6D9EB7D060C71AB1AABF5F0 4965896 ----a-w- C:\Users\lucky\Downloads\ccsetup418.exe 2014-10-16 10:24:09 7B97AE6DCB48D9D5EB69B95FF1E9D7B3 880272 ----a-w- C:\Users\lucky\Downloads\ChromeSetup (2).exe 2014-10-16 10:12:39 EC87C870FC286178E461C1D917567DCE 41081424 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\38.0.2125.104\38.0.2125.104_chrome_installer.exe 2014-10-16 10:12:08 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateBroker.exe 2014-10-16 10:12:08 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateOnDemand.exe 2014-10-16 10:12:08 3ECB98A910BBF8EAE447DB14F93DC053 880272 ----a-w- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateSetup.exe 2014-10-16 10:12:08 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateComRegisterShell64.exe 2014-10-16 10:12:07 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler.exe 2014-10-16 10:12:07 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdate.exe 2014-10-16 10:12:07 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler64.exe 2014-10-16 08:51:33 0A1A642D035BFE6EA34DA374F7D46206 5709016 ----a-w- C:\Users\lucky\Downloads\MarineAquariumWrapper.MarineAquarium3Free_57.aannbadihichfdnlljnipflliplmcnpo.ch.exe === C: other files == 2014-10-16 18:00:42 6E953CC15871E0E71AA2ECB28CFFE0A6 22589 ----a-w- C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BOQ6JWWW\radio1[1].zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_USERS\S-1-5-21-515218178-1156182028-4208866919-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "Facebook Update"="C:\Users\lucky\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "Facebook Update"="C:\Users\lucky\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "Skype"="C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun" "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner.exe /MONITOR" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\"" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [24/09/2014 06:45] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-515218178-1156182028-4208866919-1000Core.job --a------ C:\Users\lucky\AppData\Local\Facebook\Update\FacebookUpdate.exe [30/10/2012 11:19] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-515218178-1156182028-4208866919-1000UA.job --a------ [Undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [16/10/2014 12:11] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [16/10/2014 12:11] ==== Other Scheduled Tasks ====================== "C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe] "C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-515218178-1156182028-4208866919-1000Core" [C:\Users\lucky\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\system32\tasks\FacebookUpdateTaskUserS-1-5-21-515218178-1156182028-4208866919-1000UA" [C:\Users\lucky\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe] "C:\Windows\system32\tasks\User_Feed_Synchronization-{E9A451A0-E0BF-4D6E-AADD-1E4FB8142B54}" [C:\Windows\system32\msfeedssync.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [30/12/2011 09:25] ==== Chromium Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[22/11/2012 11:30] Google Docs - lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Skype Click to Call - lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Google Wallet - lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - lucky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{4A58D356-4688-4004-9F57-8822849B0785}" {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {105E99FF-8B9A-4492-B155-06194B9056D2} Bing Url="http://www.bing.com/search?FORM=UP22DF&PC=UP22&dt=010613&q={searchTerms}&src=IE-SearchBox" {4A58D356-4688-4004-9F57-8822849B0785} (www.google.com) Google Url="https://www.google.com/search?q={searchTerms}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}&rlz=1I7ADFA_nlBE454" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Policies\Google deleted successfully ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\lucky\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ILL4DTO6 will be deleted at reboot C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J0LJTG5F will be deleted at reboot C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\lucky\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files= ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\lucky\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\lucky\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ILL4DTO6" not found "C:\Users\lucky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J0LJTG5F" not found ==== EOF on vr 17/10/2014 at 9:47:47,82 ======================